$ rpki-client -vvf rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft File: Ic_hSZujbpQWt_68gTw8LqkWvEY.mft (raw, json) Hash identifier: TMHqTdZZ+KWCLxLkxGwIVV4U8Gs0LtBghKMGzWMsIio= Subject key identifier: 06:7A:99:46:60:69:6C:2A:BE:7E:D5:00:14:E9:8F:27:B6:54:B7:46 Authority key identifier: 21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 Certificate issuer: /CN=A917B413/serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Certificate serial: 0B67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft Manifest number: 0B5B Signing time: Tue 24 Mar 2026 19:00:06 +0000 Manifest this update: Tue 24 Mar 2026 19:00:06 +0000 Manifest next update: Tue 31 Mar 2026 19:00:06 +0000 Files and hashes: 1: Ic_hSZujbpQWt_68gTw8LqkWvEY.crl (hash: iU/3i2nPv3FGcycJXB/Qf/iWSnP3xS8Yg2z7phveeKM=) 2: 498B6EFE942411EA816FC855C4F9AE02.roa (hash: ShVKBDsZHucxua11jITqEB/zC8bAit+Mc5m8VG1vvj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:00:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2919 (0xb67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B413, serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Validity Not Before: Mar 24 19:00:06 2026 GMT Not After : Mar 31 19:00:06 2026 GMT Subject: CN=69c2df36-f1a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d4:60:a8:85:aa:20:9d:6f:10:48:ba:94:a9: 67:ea:9f:30:2b:0c:42:9b:d7:44:6b:b4:bb:e2:87: b1:79:b1:52:cf:46:64:f9:ed:3b:3a:4a:bc:d1:79: ce:3a:97:a9:42:04:44:c0:00:48:e3:89:3f:57:dd: b9:9a:60:85:d3:76:b2:84:9f:02:61:c3:6b:a6:90: 73:65:da:a5:e8:de:ed:88:0d:c0:cb:60:00:4e:39: 00:6e:18:04:01:dd:3e:ae:3a:05:f0:d0:a0:a1:33: 60:a0:60:28:85:1c:c0:73:53:e3:7a:71:2d:c3:9f: 5f:0c:23:d1:88:0f:42:e0:84:2e:0e:c4:5f:32:19: 15:05:0a:f6:94:35:ee:4d:97:7b:75:cc:1d:b4:01: 41:bc:0e:aa:2e:43:42:ae:01:df:6b:e4:81:77:7e: c0:5d:d2:1a:a0:d7:4e:09:cc:2a:b4:a5:20:e8:dc: 08:cb:07:2a:99:af:d3:cf:ee:61:c3:ce:6d:a8:5b: ab:be:9b:c2:c3:17:5e:24:9c:31:46:37:7a:0e:43: da:c7:48:15:58:7c:ab:8c:b8:be:f5:a7:84:8c:4d: 78:05:64:3d:6d:85:5d:4c:63:9b:ba:24:97:e0:58: c8:7f:f1:a7:70:f0:65:ae:79:2d:6e:de:90:90:66: b2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:7A:99:46:60:69:6C:2A:BE:7E:D5:00:14:E9:8F:27:B6:54:B7:46 X509v3 Authority Key Identifier: keyid:21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:e5:c2:a6:37:fb:71:2c:c1:4d:9c:ea:4a:eb:9a:0c:27:cf: 7b:86:04:f9:c1:9d:40:6a:b1:74:2a:42:f5:8a:37:17:e3:7d: 18:73:69:2c:b3:58:2a:e2:04:3b:6c:9d:dd:d1:96:fc:44:f7: 55:14:ba:70:4f:10:d7:45:20:71:4b:c3:7a:a7:c8:34:dc:cd: dc:b7:df:c2:01:45:90:3c:8f:1e:1a:3a:05:f9:5c:58:29:9d: 11:4c:ab:c6:63:79:f7:4c:10:fd:02:63:04:65:12:5f:e1:73: 7f:b5:53:bf:1b:20:35:89:09:74:56:44:59:cc:76:25:72:30: cc:46:56:09:70:69:f1:5f:42:83:48:ad:3c:be:16:8d:b6:d6: a2:2a:e7:14:85:fa:44:a8:4f:3e:43:6e:3c:a4:12:ab:63:83: a8:ad:99:74:2d:f0:a5:4b:68:a2:bc:e4:ef:b1:7f:41:9d:e2: de:a8:3a:d8:97:1c:47:b9:f7:4b:48:40:22:40:e4:4d:66:48: dd:7c:2f:8a:d8:0c:bf:57:7e:33:8f:c7:a4:fe:2a:19:9c:98: 4c:30:45:a7:ec:62:79:49:56:4f:85:f2:c1:2b:ed:7d:2e:09: 8f:46:bc:c0:a4:45:b3:52:49:f2:64:05:f5:fa:9c:c7:ef:f6: 76:db:49:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0MTMxMTAvBgNVBAUTKDIxQ0ZFMTQ5OUJBMzZFOTQxNkI3RkVCQzgxM0MzQzJF QTkxNkJDNDYwHhcNMjYwMzI0MTkwMDA2WhcNMjYwMzMxMTkwMDA2WjAYMRYwFAYD VQQDEw02OWMyZGYzNi1mMWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl9RgqIWqIJ1vEEi6lKln6p8wKwxCm9dEa7S74oexebFSz0Zk+e07Okq80XnO OpepQgREwABI44k/V925mmCF03ayhJ8CYcNrppBzZdql6N7tiA3Ay2AATjkAbhgE Ad0+rjoF8NCgoTNgoGAohRzAc1PjenEtw59fDCPRiA9C4IQuDsRfMhkVBQr2lDXu TZd7dcwdtAFBvA6qLkNCrgHfa+SBd37AXdIaoNdOCcwqtKUg6NwIywcqma/Tz+5h w85tqFurvpvCwxdeJJwxRjd6DkPax0gVWHyrjLi+9aeEjE14BWQ9bYVdTGObuiSX 4FjIf/GncPBlrnktbt6QkGayUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAZ6mUZg aWwqvn7VABTpjye2VLdGMB8GA1UdIwQYMBaAFCHP4Umbo26UFrf+vIE8PC6pFrxG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjQxMy9COEZDQTdCQTUx NkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJwUVd0XzY4Z1R3OExxa1d2 RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljX2hTWnVqYnBRV3RfNjhnVHc4THFrV3ZFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjQxMy9COEZDQTdCQTUxNkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJw UVd0XzY4Z1R3OExxa1d2RVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdOXCpjf7cSzBTZzqSuuaDCfPe4YE+cGdQGqxdCpC9Yo3F+N9GHNpLLNYKuIE O2yd3dGW/ET3VRS6cE8Q10UgcUvDeqfINNzN3LffwgFFkDyPHho6BflcWCmdEUyr xmN590wQ/QJjBGUSX+Fzf7VTvxsgNYkJdFZEWcx2JXIwzEZWCXBp8V9Cg0itPL4W jbbWoirnFIX6RKhPPkNuPKQSq2ODqK2ZdC3wpUtoorzk77F/QZ3i3qg62JccR7n3 S0hAIkDkTWZI3XwvitgMv1d+M4/HpP4qGZyYTDBFp+xieUlWT4XywSvtfS4Jj0a8 wKRFs1JJ8mQF9fqcx+/2dttJeQ== -----END CERTIFICATE-----Generated at Thu Mar 26 00:54:01 2026 by rpki-client