$ rpki-client -vvf rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft File: IooLm4TrYOtGFVZbAhDVR1xRiKk.mft (raw, json) Hash identifier: YGjWLQ4CtOWxN/z2/LnaI47FpAYA4rRqmE6sltiBBb8= Subject key identifier: DA:35:EF:61:5E:BB:77:26:1B:28:EF:57:4D:A7:93:7F:22:78:95:86 Authority key identifier: 22:8A:0B:9B:84:EB:60:EB:46:15:56:5B:02:10:D5:47:5C:51:88:A9 Certificate issuer: /CN=A916BE2F/serialNumber=228A0B9B84EB60EB4615565B0210D5475C5188A9 Certificate serial: 0BD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft Manifest number: 0BC9 Signing time: Tue 24 Mar 2026 18:45:01 +0000 Manifest this update: Tue 24 Mar 2026 18:45:01 +0000 Manifest next update: Tue 31 Mar 2026 18:45:01 +0000 Files and hashes: 1: IooLm4TrYOtGFVZbAhDVR1xRiKk.crl (hash: pygXi7AjtyWRioz/u6sFCCQPxgnePDpdiHqK9nkCmwU=) 2: CFF490F63B3211EAA19CAB2DC4F9AE02.roa (hash: 44ZNomVUKhNrCvYmD9LvtSWCJcYF4pVIBILUsyf7SwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.crl rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:45:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3026 (0xbd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BE2F, serialNumber=228A0B9B84EB60EB4615565B0210D5475C5188A9 Validity Not Before: Mar 24 18:45:01 2026 GMT Not After : Mar 31 18:45:01 2026 GMT Subject: CN=69c2dbad-eaaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:bf:a8:94:4c:9b:50:db:78:73:30:fb:53:7b: 18:7f:84:e8:c1:83:b1:90:6d:9b:97:02:1f:0e:72: c9:f5:09:bb:b0:4b:7b:d5:3f:11:89:00:25:6d:9e: cc:9a:8f:cc:8f:0b:27:ac:31:51:3f:85:68:5a:0f: 81:9e:1b:93:ce:46:91:c9:b4:f0:9b:10:07:73:c3: 90:bc:16:d5:a3:80:42:b1:96:3b:8e:bd:60:82:97: 8a:b9:61:b9:e6:b6:b0:16:81:c2:bc:a9:ac:54:d2: 5c:0e:cb:0d:64:88:ca:52:91:1f:71:dd:3e:78:a8: d9:b6:fd:65:78:5b:b5:1f:e4:8c:d3:cb:32:08:2e: 5a:14:4d:ad:54:b5:9b:ee:32:f1:d4:c8:74:4c:22: b9:5e:58:3a:70:2b:79:e1:b7:9b:01:40:b6:79:4c: 79:8c:d4:90:b4:62:cf:ab:5b:85:ca:10:06:e1:18: d3:02:b8:9d:59:b8:3f:b8:2d:8c:db:cb:57:0c:c1: 18:80:66:4e:9c:97:e6:5e:8b:3d:6f:96:46:24:60: af:a3:50:82:8a:2d:bd:d1:0d:7c:3b:67:80:fa:33: a1:98:b8:7e:19:69:d6:f5:c0:84:47:3f:e5:1f:5b: 79:05:16:f9:70:46:e3:2d:ed:11:a7:c8:b5:54:3c: 3c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:35:EF:61:5E:BB:77:26:1B:28:EF:57:4D:A7:93:7F:22:78:95:86 X509v3 Authority Key Identifier: keyid:22:8A:0B:9B:84:EB:60:EB:46:15:56:5B:02:10:D5:47:5C:51:88:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:5e:90:ed:10:1a:a2:12:a5:36:8b:a3:5a:56:b5:22:87:68: d3:02:0a:a8:98:11:d6:e8:d1:bb:97:1d:a8:2e:81:6c:da:33: 16:6b:2d:57:8b:cb:36:b8:9b:04:a3:5b:4d:39:62:f1:26:d5: ea:e4:74:fc:54:c6:8a:35:4f:da:86:56:a1:37:47:88:4f:32: 0a:c0:eb:3c:9e:24:8c:d0:1b:97:70:15:d7:42:6d:66:6e:29: b0:f4:5a:bb:7d:89:9c:3e:f2:f2:3a:f8:8c:24:f5:27:69:b0: 36:25:a7:5d:dc:d6:6b:36:eb:bc:fe:3c:76:39:96:16:e5:17: 61:41:6e:74:a0:80:52:2e:d0:74:a8:98:c8:1c:3f:35:3a:7c: bd:83:12:f9:79:ab:9c:0b:d7:b8:69:8a:e8:a2:04:85:39:de: 24:f8:0d:15:ea:f6:36:84:aa:34:60:52:25:66:65:a6:58:12: db:1b:49:86:94:6e:d1:e4:9e:e5:1e:6e:7b:47:b7:45:c8:66: e9:79:0d:02:e5:e6:60:f9:fd:ec:ff:2d:9b:96:61:bf:42:62: b3:de:63:62:73:9e:0c:e8:d9:af:1b:84:84:f1:cc:63:a4:8a: b2:f3:1d:07:a4:49:60:72:c6:62:af:0e:69:f1:2f:1f:74:3f: 1d:c0:60:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJFMkYxMTAvBgNVBAUTKDIyOEEwQjlCODRFQjYwRUI0NjE1NTY1QjAyMTBENTQ3 NUM1MTg4QTkwHhcNMjYwMzI0MTg0NTAxWhcNMjYwMzMxMTg0NTAxWjAYMRYwFAYD VQQDEw02OWMyZGJhZC1lYWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAib+olEybUNt4czD7U3sYf4TowYOxkG2blwIfDnLJ9Qm7sEt71T8RiQAlbZ7M mo/MjwsnrDFRP4VoWg+BnhuTzkaRybTwmxAHc8OQvBbVo4BCsZY7jr1ggpeKuWG5 5rawFoHCvKmsVNJcDssNZIjKUpEfcd0+eKjZtv1leFu1H+SM08syCC5aFE2tVLWb 7jLx1Mh0TCK5Xlg6cCt54bebAUC2eUx5jNSQtGLPq1uFyhAG4RjTAridWbg/uC2M 28tXDMEYgGZOnJfmXos9b5ZGJGCvo1CCii290Q18O2eA+jOhmLh+GWnW9cCERz/l H1t5BRb5cEbjLe0Rp8i1VDw80wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNo172Fe u3cmGyjvV02nk38ieJWGMB8GA1UdIwQYMBaAFCKKC5uE62DrRhVWWwIQ1UdcUYip MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkUyRi9GRUIxMjI1ODNC MzAxMUVBQTlCN0EwMjdDNEY5QUUwMi9Jb29MbTRUcllPdEdGVlpiQWhEVlIxeFJp S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvb0xtNFRyWU90R0ZWWmJBaERWUjF4UmlLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkUyRi9GRUIxMjI1ODNCMzAxMUVBQTlCN0EwMjdDNEY5QUUwMi9Jb29MbTRUcllP dEdGVlpiQWhEVlIxeFJpS2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEl6Q7RAaohKlNoujWla1Iodo0wIKqJgR1ujRu5cdqC6BbNozFmstV4vLNrib BKNbTTli8SbV6uR0/FTGijVP2oZWoTdHiE8yCsDrPJ4kjNAbl3AV10JtZm4psPRa u32JnD7y8jr4jCT1J2mwNiWnXdzWazbrvP48djmWFuUXYUFudKCAUi7QdKiYyBw/ NTp8vYMS+XmrnAvXuGmK6KIEhTneJPgNFer2NoSqNGBSJWZlplgS2xtJhpRu0eSe 5R5ue0e3Rchm6XkNAuXmYPn97P8tm5Zhv0Jis95jYnOeDOjZrxuEhPHMY6SKsvMd B6RJYHLGYq8OafEvH3Q/HcBg9w== -----END CERTIFICATE-----Generated at Thu Mar 26 19:46:57 2026 by rpki-client