$ rpki-client -vvf rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft File: cIW1tFSazbW2wnBMhbp4h2D4iic.mft (raw, json) Hash identifier: ksMb5ynE0zly+I9mpzdroH+jCdiZNe3b8fBnmdk3v24= Subject key identifier: 9E:E5:1C:5D:8F:7C:39:1E:29:BE:B8:0E:06:90:46:E2:47:D0:34:F4 Authority key identifier: 70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 Certificate issuer: /CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Certificate serial: 0C22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft Manifest number: 0C19 Signing time: Tue 24 Mar 2026 18:37:49 +0000 Manifest this update: Tue 24 Mar 2026 18:37:48 +0000 Manifest next update: Tue 31 Mar 2026 18:37:48 +0000 Files and hashes: 1: cIW1tFSazbW2wnBMhbp4h2D4iic.crl (hash: hCRpmzlQviTx0z3JfTikkjl479aam0AsozVEInVE4Po=) 2: 002DDDC22B9D11EA92F3094CC4F9AE02.roa (hash: 4BKljBwTJ54sgoUO+GlHrdqF9//rEaG2GoS412dY6XI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3106 (0xc22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722A3, serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Validity Not Before: Mar 24 18:37:48 2026 GMT Not After : Mar 31 18:37:48 2026 GMT Subject: CN=69c2d9fd-ff70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:97:39:05:08:86:52:55:6d:1b:94:ab:57:b4: 72:99:2b:d8:ab:5f:93:86:b8:38:6b:85:38:6f:ce: 02:8b:ec:9d:45:12:9f:9a:59:ac:f0:cd:e4:01:94: f7:d5:80:22:68:a4:61:d3:c4:ab:d1:61:0f:73:f5: 3d:c0:7f:4a:54:6a:17:94:ba:b2:80:d0:ac:dc:97: be:a2:c5:73:9a:7a:04:26:23:40:3c:78:ff:c8:33: ac:9f:3c:d1:5a:1f:14:25:50:37:23:29:0a:08:eb: 91:fb:5c:a4:20:03:f1:64:80:81:c8:20:0b:3c:b1: e6:93:24:f7:26:ad:eb:38:fb:c0:6d:1e:cb:0d:7a: 69:0a:33:80:2c:d7:33:7a:04:54:b8:87:3a:69:58: e8:17:74:e3:c5:31:bb:22:e3:f3:75:29:2e:19:13: 04:48:c1:4e:69:59:88:51:3f:cd:5c:ac:41:b6:3f: ca:16:e8:10:e5:aa:4f:04:3c:40:f4:17:cf:e1:d8: a1:4f:96:67:ed:55:14:c3:03:42:3e:fc:dd:34:69: 3a:fc:4b:7c:96:3c:3b:d9:6f:13:2e:81:ec:62:03: 4d:2f:68:73:04:88:e8:26:4e:f9:3b:13:d9:59:26: 2c:46:2c:1e:39:6d:65:4e:30:4a:43:4f:19:c0:32: 01:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:E5:1C:5D:8F:7C:39:1E:29:BE:B8:0E:06:90:46:E2:47:D0:34:F4 X509v3 Authority Key Identifier: keyid:70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:7d:7a:cc:93:70:fc:2f:a2:a9:ba:dd:be:ed:03:f1:34:cb: 7b:c5:7d:a5:a4:a2:7b:3f:f6:59:87:06:59:7b:8d:b6:ed:cb: 18:20:0b:97:90:7b:f3:d2:52:42:ba:78:05:a9:81:b1:f2:af: bc:c5:98:c6:f1:07:71:d5:c2:95:73:66:ab:da:da:05:74:44: ac:c4:d2:7f:10:48:27:7d:eb:99:d5:79:0c:9a:95:c7:a9:14: 99:79:a4:a9:d6:bf:ba:9f:10:2c:b2:36:e3:9e:fb:7b:82:59: 8b:b9:d6:11:c2:7d:31:92:ac:76:d0:f1:d1:c3:61:68:bf:1f: 4e:05:ac:cc:1d:ac:7e:9b:f7:c7:04:90:e2:87:ee:0a:2d:94: 15:9d:b3:bd:55:26:37:c4:af:3d:e4:cc:14:b7:6c:39:4e:4a: 76:5e:51:c9:7d:b1:8d:b3:38:46:08:cc:0b:29:9e:73:ee:91: c0:74:00:57:1e:e5:a1:96:a0:95:62:a9:01:6c:58:a5:e0:bb: 58:88:b8:07:06:5a:a8:51:8a:ad:6f:4d:64:e7:d8:da:67:d0: 41:1f:44:53:d5:dc:53:fb:0a:b2:c5:bc:1b:e2:e0:ba:8d:c0: b9:12:45:0b:5e:e8:fa:2d:7e:7d:c9:d5:23:4b:ea:ee:a7:55: 07:21:a8:53 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQTMxMTAvBgNVBAUTKDcwODVCNUI0NTQ5QUNEQjVCNkMyNzA0Qzg1QkE3ODg3 NjBGODhBMjcwHhcNMjYwMzI0MTgzNzQ4WhcNMjYwMzMxMTgzNzQ4WjAYMRYwFAYD VQQDEw02OWMyZDlmZC1mZjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJc5BQiGUlVtG5SrV7RymSvYq1+Thrg4a4U4b84Ci+ydRRKfmlms8M3kAZT3 1YAiaKRh08Sr0WEPc/U9wH9KVGoXlLqygNCs3Je+osVzmnoEJiNAPHj/yDOsnzzR Wh8UJVA3IykKCOuR+1ykIAPxZICByCALPLHmkyT3Jq3rOPvAbR7LDXppCjOALNcz egRUuIc6aVjoF3TjxTG7IuPzdSkuGRMESMFOaVmIUT/NXKxBtj/KFugQ5apPBDxA 9BfP4dihT5Zn7VUUwwNCPvzdNGk6/Et8ljw72W8TLoHsYgNNL2hzBIjoJk75OxPZ WSYsRiweOW1lTjBKQ08ZwDIBVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ7lHF2P fDkeKb64DgaQRuJH0DT0MB8GA1UdIwQYMBaAFHCFtbRUms21tsJwTIW6eIdg+Ion MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJBMy9DMDJEODVERTJC OUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpiVzJ3bkJNaGJwNGgyRDRp aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NJVzF0RlNhemJXMnduQk1oYnA0aDJENGlpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjJBMy9DMDJEODVERTJCOUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpi VzJ3bkJNaGJwNGgyRDRpaWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxH16zJNw/C+iqbrdvu0D8TTLe8V9paSiez/2WYcGWXuNtu3LGCALl5B789JS Qrp4BamBsfKvvMWYxvEHcdXClXNmq9raBXRErMTSfxBIJ33rmdV5DJqVx6kUmXmk qda/up8QLLI24577e4JZi7nWEcJ9MZKsdtDx0cNhaL8fTgWszB2sfpv3xwSQ4ofu Ci2UFZ2zvVUmN8SvPeTMFLdsOU5Kdl5RyX2xjbM4RgjMCymec+6RwHQAVx7loZag lWKpAWxYpeC7WIi4BwZaqFGKrW9NZOfY2mfQQR9EU9XcU/sKssW8G+Lguo3AuRJF C17o+i1+fcnVI0vq7qdVByGoUw== -----END CERTIFICATE-----Generated at Thu Mar 26 02:32:46 2026 by rpki-client