$ rpki-client -vvf rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft File: iCJHhVdMHyPKnEOe2PVTiPamjOI.mft (raw, json) Hash identifier: 9kIOzVXuL1aYFqpDaAZ5csjne1RMyw7GiidonnNJWTA= Subject key identifier: 2C:5B:07:BE:C1:EC:38:3C:C2:29:EB:33:1B:34:80:D1:43:EA:F0:ED Authority key identifier: 88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 Certificate issuer: /CN=A91689B7/serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Certificate serial: 028D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft Manifest number: 0284 Signing time: Wed 25 Mar 2026 01:17:05 +0000 Manifest this update: Wed 25 Mar 2026 01:17:05 +0000 Manifest next update: Wed 01 Apr 2026 01:17:05 +0000 Files and hashes: 1: iCJHhVdMHyPKnEOe2PVTiPamjOI.crl (hash: Bc9pclYZ1VhgDbPZr6YcDsOiYVbbKS0hOzIVBQ9NJ9g=) 2: 2455276E39B311EEA6DFE66BC4F9AE02.roa (hash: Ot9ybUKOEhuNzPb2fA0AHKITpD0tgf/ehRwyWkuwPQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 653 (0x28d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689B7, serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Validity Not Before: Mar 25 01:17:05 2026 GMT Not After : Apr 1 01:17:05 2026 GMT Subject: CN=69c33791-f062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4a:96:90:c1:1b:a8:82:2f:28:cf:da:16:d1: fd:47:46:52:2c:1d:15:55:44:bc:c5:97:b7:97:73: 91:65:09:15:54:95:6c:b3:8d:cb:9a:79:69:ca:57: 6d:ac:11:d8:5b:88:ce:8f:d0:48:74:ab:00:30:74: 84:f3:54:02:14:43:0f:06:33:d3:ab:0e:eb:8f:af: 88:97:01:41:c5:bb:df:6d:e4:bc:cb:9e:6e:83:4b: 8b:0e:b2:6d:db:e4:34:fe:2c:35:ed:58:74:d7:5e: 05:0e:fa:e5:d7:3f:86:2d:b5:13:b9:98:70:fa:10: b3:4d:34:f0:5b:06:b2:57:39:98:ed:58:5a:48:80: 00:00:df:47:c9:75:56:09:81:bf:7f:24:26:f1:16: 32:d0:0a:c0:a7:7d:79:12:f3:8d:13:57:e8:ee:5c: c3:8a:22:ce:5b:a8:0c:7c:31:de:1d:02:71:3d:e5: 4d:ff:1a:46:df:ee:56:c9:de:9d:ad:1e:4d:66:b7: 00:70:2a:f6:3a:b4:a1:2d:ff:28:f3:c6:30:59:e2: f6:af:f9:f2:31:33:6b:67:8d:a1:70:f8:eb:b7:62: e6:0c:43:17:cf:f5:a5:6c:0e:9a:75:38:71:47:57: 78:75:0c:37:73:fd:fd:b8:44:27:00:45:7e:3f:00: 93:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:5B:07:BE:C1:EC:38:3C:C2:29:EB:33:1B:34:80:D1:43:EA:F0:ED X509v3 Authority Key Identifier: keyid:88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:51:36:54:3c:53:23:86:4e:a8:2a:92:f2:ec:fb:84:84:01: 4b:75:4d:5d:64:aa:5b:7e:ee:fa:ea:cb:28:d1:9a:14:8b:3f: 63:f8:2c:ef:2b:7e:5b:dd:74:28:21:34:ce:c8:b0:b7:88:29: 88:6a:51:87:8d:59:7a:4b:60:44:17:5c:f0:8a:e9:2a:5a:dc: 06:8f:c6:ae:3a:0c:6b:f3:87:a9:5f:c9:8c:a8:ff:35:71:e8: 2c:9d:bc:0a:ae:ad:a6:3c:a1:b8:5b:97:ce:38:c8:06:fc:c2: 55:f3:b3:62:36:d5:2d:7f:26:1c:2b:36:a7:c0:a5:30:23:87: a8:5d:ef:79:5d:4c:72:d6:81:16:c4:7c:6d:b5:12:85:d6:52: 4a:9d:3b:1a:64:d9:1b:62:5a:37:5e:15:5f:18:ad:bb:29:e6: e0:87:1a:c0:33:e7:e7:77:43:a2:8d:42:b5:14:17:d4:dc:d3: 7d:61:23:ef:9c:7b:32:ec:72:6b:6d:b3:db:8f:7f:bf:86:4c: ea:0b:81:cc:fe:ae:66:ac:b8:bd:d5:c3:fa:94:bf:dd:b6:f7: 82:81:f3:18:25:36:9a:c8:b6:32:1c:e8:c1:5d:10:ad:f5:8b: c7:f9:71:38:7e:c6:27:54:ae:90:13:4e:82:ea:70:6a:cc:a0: 9c:84:0f:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5QjcxMTAvBgNVBAUTKDg4MjI0Nzg1NTc0QzFGMjNDQTlDNDM5RUQ4RjU1Mzg4 RjZBNjhDRTIwHhcNMjYwMzI1MDExNzA1WhcNMjYwNDAxMDExNzA1WjAYMRYwFAYD VQQDEw02OWMzMzc5MS1mMDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUqWkMEbqIIvKM/aFtH9R0ZSLB0VVUS8xZe3l3ORZQkVVJVss43Lmnlpyldt rBHYW4jOj9BIdKsAMHSE81QCFEMPBjPTqw7rj6+IlwFBxbvfbeS8y55ug0uLDrJt 2+Q0/iw17Vh0114FDvrl1z+GLbUTuZhw+hCzTTTwWwayVzmY7VhaSIAAAN9HyXVW CYG/fyQm8RYy0ArAp315EvONE1fo7lzDiiLOW6gMfDHeHQJxPeVN/xpG3+5Wyd6d rR5NZrcAcCr2OrShLf8o88YwWeL2r/nyMTNrZ42hcPjrt2LmDEMXz/WlbA6adThx R1d4dQw3c/39uEQnAEV+PwCTgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCxbB77B 7Dg8winrMxs0gNFD6vDtMB8GA1UdIwQYMBaAFIgiR4VXTB8jypxDntj1U4j2pozi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODlCNy9CMUU1NEFCODU2 QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5UEtuRU9lMlBWVGlQYW1q T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lDSkhoVmRNSHlQS25FT2UyUFZUaVBhbWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODlCNy9CMUU1NEFCODU2QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5 UEtuRU9lMlBWVGlQYW1qT0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAClE2VDxTI4ZOqCqS8uz7hIQBS3VNXWSqW37u+urLKNGaFIs/Y/gs7yt+W910 KCE0zsiwt4gpiGpRh41ZektgRBdc8IrpKlrcBo/GrjoMa/OHqV/JjKj/NXHoLJ28 Cq6tpjyhuFuXzjjIBvzCVfOzYjbVLX8mHCs2p8ClMCOHqF3veV1MctaBFsR8bbUS hdZSSp07GmTZG2JaN14VXxituynm4IcawDPn53dDoo1CtRQX1NzTfWEj75x7Muxy a22z249/v4ZM6guBzP6uZqy4vdXD+pS/3bb3goHzGCU2msi2MhzowV0QrfWLx/lx OH7GJ1SukBNOgupwasygnIQPkw== -----END CERTIFICATE-----Generated at Thu Mar 26 06:51:05 2026 by rpki-client