$ rpki-client -vvf rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft File: iA5rTc1s7FPI0D10DIjpdzsEexk.mft (raw, json) Hash identifier: dSyhadaqck/CHPKcrOAz5kXftE3znjd0psxvExxJtOg= Subject key identifier: 9A:7D:C9:A5:42:C2:77:F5:22:A7:3D:63:9B:6A:AF:D9:CD:40:D0:43 Authority key identifier: 88:0E:6B:4D:CD:6C:EC:53:C8:D0:3D:74:0C:88:E9:77:3B:04:7B:19 Certificate issuer: /CN=A9187465/serialNumber=880E6B4DCD6CEC53C8D03D740C88E9773B047B19 Certificate serial: 1718 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft Manifest number: 16FB Signing time: Thu 26 Mar 2026 16:36:36 +0000 Manifest this update: Thu 26 Mar 2026 16:36:36 +0000 Manifest next update: Thu 02 Apr 2026 16:36:36 +0000 Files and hashes: 1: iA5rTc1s7FPI0D10DIjpdzsEexk.crl (hash: Bin6MA3jSZ7BLKzaoPDWLN8/bxpjr6bQTHKu5ccb4wY=) 2: 7D2EA194B20711EA8B74F445C4F9AE02.roa (hash: sk2XL2BNft3Qb5DlW0IYmAxdXBhZMlrkB9WLp+WKc50=) 3: E259315C57CA11EA8D931284C4F9AE02.roa (hash: bxgVx+Ckcae/iQQ31WregWFbQ2YBNnnGGH36C1uq1eE=) 4: E1ADA4BC062B11F08449516EC4F9AE02.roa (hash: ABbCRm4169Zmlom/mbAM7SPDMmE+tdeoPLo48LZrXpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.crl rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 16:36:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5912 (0x1718) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187465, serialNumber=880E6B4DCD6CEC53C8D03D740C88E9773B047B19 Validity Not Before: Mar 26 16:36:36 2026 GMT Not After : Apr 2 16:36:36 2026 GMT Subject: CN=69c56094-8172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:fb:01:a4:81:7d:28:2e:ad:68:1f:ca:91:17: 4d:3a:ca:79:ce:11:43:1d:82:f7:3d:95:04:a5:43: eb:02:a6:fa:55:7e:5d:4c:80:bb:fc:29:07:29:a2: 7a:87:df:52:60:d2:2b:22:5a:81:82:5b:3b:03:97: d2:99:a1:5b:82:f4:7d:2b:d6:11:3e:4b:cc:70:17: 19:78:20:12:5b:78:51:c4:b0:9e:54:56:f7:14:37: 04:be:8c:af:87:1c:40:b0:74:80:00:da:41:c4:5a: b8:f3:9e:6f:a2:fc:29:85:d8:e4:78:03:39:94:97: 07:69:ed:42:a4:57:41:a5:7d:06:55:34:11:37:24: 17:4a:c3:d2:09:e5:26:72:8f:83:9d:08:0b:27:98: d1:3b:e2:c8:8d:b8:4e:ac:8a:bb:b4:43:14:63:a1: 82:19:1e:d8:ed:fa:1b:a4:e6:f0:d6:91:26:1a:f6: f5:65:94:0a:f1:1e:12:b2:0a:7e:af:16:30:af:26: 7f:a2:10:23:5b:20:01:4d:6a:58:b9:9e:5b:d1:7b: 2c:31:a5:4d:04:46:5e:4f:77:90:96:1e:dc:5d:79: 77:1f:1c:2f:9e:b6:97:ba:e5:6f:ea:f4:b3:5b:39: f9:d5:6d:9b:73:01:16:55:97:33:b8:7d:b6:0f:f2: 71:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:7D:C9:A5:42:C2:77:F5:22:A7:3D:63:9B:6A:AF:D9:CD:40:D0:43 X509v3 Authority Key Identifier: keyid:88:0E:6B:4D:CD:6C:EC:53:C8:D0:3D:74:0C:88:E9:77:3B:04:7B:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:2b:63:0a:d3:de:6f:80:7a:a5:7a:c2:58:01:fc:ac:8a:d8: 52:7d:5d:19:f8:84:f7:ae:b6:84:82:3f:94:d7:20:fc:8a:0a: cc:e2:3b:47:a5:f7:b1:c3:b9:45:05:64:a9:57:13:12:e0:4e: 49:5b:a3:d7:ef:8c:12:2c:a4:0d:47:da:06:d4:2d:2a:78:fb: 64:96:3b:53:17:97:46:7c:36:b6:fe:88:0b:e7:10:ad:6e:6c: c5:da:32:d9:4b:50:6d:92:b5:cb:2f:ef:bf:f9:0a:67:5c:0c: ca:1f:68:e8:4f:97:32:a4:76:a6:b4:19:37:29:49:9f:4d:99: 48:55:24:25:04:97:f1:72:a9:5f:dc:00:e2:31:bc:d7:62:22: c5:7a:2f:bc:84:19:1d:5a:74:aa:99:96:66:f6:53:f2:aa:db: f7:f8:22:35:36:47:7c:38:ff:6c:8c:9a:9f:73:c9:06:35:bc: f2:a7:bf:45:f3:87:7d:f4:31:c7:3b:e2:b6:75:81:9c:3b:84: 55:a3:0c:fb:cc:fd:bc:f4:e6:d9:68:cc:6c:bf:f4:be:3e:3d: 09:c6:ab:48:17:92:41:7e:a6:3c:90:a3:3c:c3:99:2e:7d:16: a8:2a:81:d5:dd:76:a9:25:60:7b:39:1d:c9:ec:46:71:10:c1: 78:42:90:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0NjUxMTAvBgNVBAUTKDg4MEU2QjREQ0Q2Q0VDNTNDOEQwM0Q3NDBDODhFOTc3 M0IwNDdCMTkwHhcNMjYwMzI2MTYzNjM2WhcNMjYwNDAyMTYzNjM2WjAYMRYwFAYD VQQDEw02OWM1NjA5NC04MTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjfsBpIF9KC6taB/KkRdNOsp5zhFDHYL3PZUEpUPrAqb6VX5dTIC7/CkHKaJ6 h99SYNIrIlqBgls7A5fSmaFbgvR9K9YRPkvMcBcZeCASW3hRxLCeVFb3FDcEvoyv hxxAsHSAANpBxFq4855vovwphdjkeAM5lJcHae1CpFdBpX0GVTQRNyQXSsPSCeUm co+DnQgLJ5jRO+LIjbhOrIq7tEMUY6GCGR7Y7fobpObw1pEmGvb1ZZQK8R4Ssgp+ rxYwryZ/ohAjWyABTWpYuZ5b0XssMaVNBEZeT3eQlh7cXXl3HxwvnraXuuVv6vSz Wzn51W2bcwEWVZczuH22D/JxGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJp9yaVC wnf1Iqc9Y5tqr9nNQNBDMB8GA1UdIwQYMBaAFIgOa03NbOxTyNA9dAyI6Xc7BHsZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ2NS9CMUFGQjZGQTBB NTMxMUU4QUM3QkVFMkVDNEY5QUUwMi9pQTVyVGMxczdGUEkwRDEwRElqcGR6c0Vl eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lBNXJUYzFzN0ZQSTBEMTBESWpwZHpzRWV4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ2NS9CMUFGQjZGQTBBNTMxMUU4QUM3QkVFMkVDNEY5QUUwMi9pQTVyVGMxczdG UEkwRDEwRElqcGR6c0VleGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsStjCtPeb4B6pXrCWAH8rIrYUn1dGfiE9662hII/lNcg/IoKzOI7R6X3scO5 RQVkqVcTEuBOSVuj1++MEiykDUfaBtQtKnj7ZJY7UxeXRnw2tv6IC+cQrW5sxdoy 2UtQbZK1yy/vv/kKZ1wMyh9o6E+XMqR2prQZNylJn02ZSFUkJQSX8XKpX9wA4jG8 12IixXovvIQZHVp0qpmWZvZT8qrb9/giNTZHfDj/bIyan3PJBjW88qe/RfOHffQx xzvitnWBnDuEVaMM+8z9vPTm2WjMbL/0vj49CcarSBeSQX6mPJCjPMOZLn0WqCqB 1d12qSVgezkdyexGcRDBeEKQZQ== -----END CERTIFICATE-----Generated at Sat Mar 28 08:46:54 2026 by rpki-client