$ rpki-client -vvf rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft File: IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft (raw, json) Hash identifier: yQVYW1QsoLH+5YHCeYlWx7tj5P/u0DuFXphFZWSXL2U= Subject key identifier: F4:5B:11:10:09:09:C7:0F:24:2B:30:65:8D:6D:2E:44:36:AC:8B:0D Authority key identifier: 21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 Certificate issuer: /CN=A9170BBF/serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Certificate serial: 0559 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft Manifest number: 0549 Signing time: Tue 24 Mar 2026 23:08:57 +0000 Manifest this update: Tue 24 Mar 2026 23:08:57 +0000 Manifest next update: Tue 31 Mar 2026 23:08:57 +0000 Files and hashes: 1: IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl (hash: gALaiEuyiPTX5StKeNDPvpIwP5iKr3z5vVUHVwVbHBI=) 2: 06CAA9C230C211ECBB5A4116C4F9AE02.roa (hash: mMzlkdBS5l7zH1NqOtcSGsyrLWVpyJgkzBlaJ0LOo5U=) 3: 0628D74630C211ECBB5A4116C4F9AE02.roa (hash: IekuGWz95qJq1RkERKwpFfkq5YP338H+OPjlC3vFHYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:08:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1369 (0x559) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170BBF, serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Validity Not Before: Mar 24 23:08:57 2026 GMT Not After : Mar 31 23:08:57 2026 GMT Subject: CN=69c31989-b744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e1:64:e3:b6:b7:66:c2:6b:a3:35:6d:c1:5a: ae:04:c5:e2:57:fc:82:b2:a3:d9:b1:07:2f:3f:9b: aa:98:9a:6f:cf:d6:e8:85:58:6d:8a:8f:e6:9d:fe: 0f:32:3f:9e:60:2d:c8:d1:d0:cf:5a:6f:1e:b9:16: b2:6b:6f:85:07:b1:fd:20:90:4a:97:23:41:02:f8: 34:7c:6c:b1:c9:8e:77:11:26:f7:9a:63:8b:4c:44: 72:be:e8:5e:9c:f4:72:a1:1c:88:cc:b6:c0:df:55: 67:cc:8e:6f:9d:85:9b:46:fe:9b:75:23:7d:4c:26: 7b:b0:15:9c:76:d8:52:d0:ac:cb:8a:5e:69:a7:2e: f1:78:78:6c:6c:de:a6:cc:ee:ad:f6:bb:51:0b:20: 91:7d:fd:7b:ee:8f:e6:83:69:2a:64:12:89:ef:cd: 4d:3d:ca:94:e9:45:bd:cd:f9:f3:d2:54:72:6b:95: 06:33:44:e0:60:d7:37:da:ed:a8:ca:0e:72:02:78: 1d:3e:27:b2:d1:ce:a9:c1:9a:cd:5b:9e:cc:1d:16: 31:2f:48:01:75:63:86:bf:1f:78:58:11:b1:da:92: a2:df:15:e3:c3:03:ab:b1:36:77:30:01:b0:f7:71: 46:b0:5b:da:8a:a3:a4:7f:08:ac:d5:05:db:12:0b: 27:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:5B:11:10:09:09:C7:0F:24:2B:30:65:8D:6D:2E:44:36:AC:8B:0D X509v3 Authority Key Identifier: keyid:21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:d5:be:92:06:11:af:3d:7a:00:83:b4:2e:19:40:f7:9e:4c: 2f:2d:ef:a3:16:46:f8:64:c2:d6:51:6d:5b:ac:1d:9f:b2:cc: 09:96:6e:3a:51:a5:f6:9e:08:d4:b2:2e:f2:41:37:91:f1:7e: 45:c3:d3:ee:31:05:28:a7:01:fb:d4:c1:d6:d9:c5:a6:76:aa: 08:13:97:b6:a1:35:97:f8:70:c9:0f:56:43:07:ac:05:3f:de: 10:fc:bd:72:82:a7:d0:0a:94:fe:18:6f:a0:8c:80:17:15:10: a6:94:5c:50:98:0f:df:fd:87:d3:b0:be:6e:f3:2b:30:7a:f6: d4:19:e6:c6:3c:83:a3:44:d3:38:65:33:38:84:b1:67:61:91: 92:d8:e7:14:8f:8f:56:df:fb:4e:a7:4a:f0:23:d3:77:fa:76: c2:46:68:93:50:27:7c:c0:b1:e9:c8:27:e3:49:9b:c5:08:64: 47:f0:d9:8a:93:9e:b7:98:80:73:1a:51:dd:95:c0:e6:84:c1: 24:36:4c:bc:34:b7:f0:d2:32:e7:00:0e:e5:53:1c:df:18:c9: 5a:59:bf:8b:29:19:26:e2:ef:8d:59:d8:2e:cb:f8:c3:7d:44: 40:24:87:32:43:8b:c9:78:9a:e9:8b:41:31:be:15:b8:d5:38: 54:54:2d:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBCQkYxMTAvBgNVBAUTKDIxMEZGMTY2NjhERjk2M0JFMEZDQTkwNjkzMzkxN0ZG RURFRDlGOTUwHhcNMjYwMzI0MjMwODU3WhcNMjYwMzMxMjMwODU3WjAYMRYwFAYD VQQDEw02OWMzMTk4OS1iNzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+Fk47a3ZsJrozVtwVquBMXiV/yCsqPZsQcvP5uqmJpvz9bohVhtio/mnf4P Mj+eYC3I0dDPWm8euRaya2+FB7H9IJBKlyNBAvg0fGyxyY53ESb3mmOLTERyvuhe nPRyoRyIzLbA31VnzI5vnYWbRv6bdSN9TCZ7sBWcdthS0KzLil5ppy7xeHhsbN6m zO6t9rtRCyCRff177o/mg2kqZBKJ781NPcqU6UW9zfnz0lRya5UGM0TgYNc32u2o yg5yAngdPiey0c6pwZrNW57MHRYxL0gBdWOGvx94WBGx2pKi3xXjwwOrsTZ3MAGw 93FGsFvaiqOkfwis1QXbEgsnMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPRbERAJ CccPJCswZY1tLkQ2rIsNMB8GA1UdIwQYMBaAFCEP8WZo35Y74PypBpM5F//t7Z+V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEJCRi9FNDkxMTIzQTMw QkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxqdmdfS2tHa3prWF8tM3Ru NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRX3habWpmbGp2Z19La0dremtYXy0zdG41VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEJCRi9FNDkxMTIzQTMwQkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxq dmdfS2tHa3prWF8tM3RuNVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWtW+kgYRrz16AIO0LhlA955MLy3voxZG+GTC1lFtW6wdn7LMCZZuOlGl9p4I 1LIu8kE3kfF+RcPT7jEFKKcB+9TB1tnFpnaqCBOXtqE1l/hwyQ9WQwesBT/eEPy9 coKn0AqU/hhvoIyAFxUQppRcUJgP3/2H07C+bvMrMHr21BnmxjyDo0TTOGUzOISx Z2GRktjnFI+PVt/7TqdK8CPTd/p2wkZok1AnfMCx6cgn40mbxQhkR/DZipOet5iA cxpR3ZXA5oTBJDZMvDS38NIy5wAO5VMc3xjJWlm/iykZJuLvjVnYLsv4w31EQCSH MkOLyXia6YtBMb4VuNU4VFQtPA== -----END CERTIFICATE-----Generated at Thu Mar 26 19:44:42 2026 by rpki-client