$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft File: iyhQBa2gBz4MCUttpqOLtR__oaQ.mft (raw, json) Hash identifier: GyvztsbwUtbIPRdB3YxvCCjUU8AyfpcX7PTE3431Xpo= Subject key identifier: 79:96:88:1D:6C:AA:79:C9:DB:45:1F:A6:45:C9:46:0E:DC:26:38:11 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 0476 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft Manifest number: 045A Signing time: Tue 24 Mar 2026 23:52:22 +0000 Manifest this update: Tue 24 Mar 2026 23:52:22 +0000 Manifest next update: Tue 31 Mar 2026 23:52:22 +0000 Files and hashes: 1: iyhQBa2gBz4MCUttpqOLtR__oaQ.crl (hash: Uzm0SAVSEyiq8vWMWImSe6CrL+HBlMW3Sio6B2rSDdA=) 2: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (hash: JVO8JZCfYqp3N9h+hRdEkwlagsjOuD7MM+G3/8q05pI=) 3: 58C00854905211EC90E6100FC4F9AE02.roa (hash: HavGxilFCXPwJZ5ysPf3ohVQv79l6ZGEb7A58aULo/M=) 4: 989BBF70904F11EC8B118911C4F9AE02.roa (hash: OS+MMRRjQluFNuI+98G/Gv/Ff4t99hp6Izi7LUhaJJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1142 (0x476) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B, serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Mar 24 23:52:22 2026 GMT Not After : Mar 31 23:52:22 2026 GMT Subject: CN=69c323b6-d636 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:25:5e:5a:d9:ef:3c:6f:fa:49:5e:d6:63:c0: e1:9e:bf:c9:5f:49:4f:c3:8b:cd:4c:f8:1a:03:7b: df:85:f4:6e:d4:e1:07:9a:d3:89:d2:da:1f:ca:db: 8d:6c:73:0c:15:3f:a8:5e:23:17:80:0b:07:45:2b: 94:ed:59:bb:33:e1:21:2e:63:4d:65:51:6a:28:10: 21:d0:a4:5c:a4:59:c5:a9:61:d3:77:55:63:b2:54: a8:77:a3:86:ee:6b:d8:1a:8b:4c:b5:2b:08:f0:31: 32:d2:05:f2:08:cc:96:25:f8:5b:8a:e9:c2:bf:88: 64:01:04:ed:63:92:fe:d9:da:a6:22:26:af:7b:02: 7e:41:51:d0:af:74:f2:ac:e7:3b:af:03:fd:bf:f6: 8c:8d:23:45:4f:32:6d:da:11:7d:84:80:c6:4e:1e: 84:bd:bc:60:59:67:ae:23:4a:b7:ea:f1:92:20:d6: c1:1f:1b:e2:6e:c2:74:ac:c1:18:65:63:c1:fc:36: 2f:8d:a1:40:6b:ff:c1:fc:61:12:d8:cd:9a:07:67: 76:5a:d2:a4:13:fc:35:16:be:94:0f:47:1c:3e:49: f6:d4:84:18:e0:e7:14:7b:54:55:3e:6e:db:6f:e3: 80:fd:d5:7e:a3:30:9b:36:23:d2:82:10:74:f7:b3: 17:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:96:88:1D:6C:AA:79:C9:DB:45:1F:A6:45:C9:46:0E:DC:26:38:11 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:c2:1e:ca:0c:43:2c:2e:6e:2d:9c:3b:ee:e2:ca:b6:07:66: f2:be:51:d6:b0:28:b3:6a:e6:14:62:fb:45:56:06:d5:9d:23: 86:bb:d5:8e:3f:46:80:54:c3:d4:7a:a5:78:dc:ae:76:37:bd: c2:ae:82:fa:30:cd:a9:e6:f3:3d:44:8a:0d:3d:d3:e3:07:83: ba:a7:2f:6d:ff:87:ac:8c:0a:74:a4:d9:d4:08:5c:c7:81:89: dd:f9:b4:9c:67:2a:c1:b0:54:ac:47:8a:7d:a5:66:31:41:90: 97:1b:73:74:8f:cc:ee:42:e2:d2:6b:26:b8:9b:c2:95:39:89: b9:b9:9e:cb:72:8b:67:e1:6d:a5:17:85:6a:ad:88:09:83:14: 2e:22:02:d2:7f:07:dc:86:18:74:6b:e2:de:8a:a4:73:8b:54: 02:31:82:f5:6a:dd:6e:8d:f4:a0:de:ad:4b:3a:0b:06:44:b1: 60:bc:f4:67:30:3f:27:ad:2d:8d:18:c0:58:a4:a4:73:9e:72: 2c:e1:2a:f5:90:69:f2:7c:2c:39:01:5b:8e:eb:4e:21:f2:fd: a8:5a:f8:58:10:28:1b:89:ab:35:09:12:84:7d:d1:40:4b:9d: 7f:69:8e:ad:72:63:7b:b7:8c:86:69:45:10:31:cb:e1:d8:dd: b1:5b:4f:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjYwMzI0MjM1MjIyWhcNMjYwMzMxMjM1MjIyWjAYMRYwFAYD VQQDEw02OWMzMjNiNi1kNjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyVeWtnvPG/6SV7WY8Dhnr/JX0lPw4vNTPgaA3vfhfRu1OEHmtOJ0tofytuN bHMMFT+oXiMXgAsHRSuU7Vm7M+EhLmNNZVFqKBAh0KRcpFnFqWHTd1VjslSod6OG 7mvYGotMtSsI8DEy0gXyCMyWJfhbiunCv4hkAQTtY5L+2dqmIiavewJ+QVHQr3Ty rOc7rwP9v/aMjSNFTzJt2hF9hIDGTh6EvbxgWWeuI0q36vGSINbBHxvibsJ0rMEY ZWPB/DYvjaFAa//B/GES2M2aB2d2WtKkE/w1Fr6UD0ccPkn21IQY4OcUe1RVPm7b b+OA/dV+ozCbNiPSghB097MXZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHmWiB1s qnnJ20UfpkXJRg7cJjgRMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDE0Qi85NEM4OThDQzhGRTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6 NE1DVXR0cHFPTHRSX19vYVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQMIeygxDLC5uLZw77uLKtgdm8r5R1rAos2rmFGL7RVYG1Z0jhrvVjj9GgFTD 1HqleNyudje9wq6C+jDNqebzPUSKDT3T4weDuqcvbf+HrIwKdKTZ1Ahcx4GJ3fm0 nGcqwbBUrEeKfaVmMUGQlxtzdI/M7kLi0msmuJvClTmJubmey3KLZ+FtpReFaq2I CYMULiIC0n8H3IYYdGvi3oqkc4tUAjGC9Wrdbo30oN6tSzoLBkSxYLz0ZzA/J60t jRjAWKSkc55yLOEq9ZBp8nwsOQFbjutOIfL9qFr4WBAoG4mrNQkShH3RQEudf2mO rXJje7eMhmlFEDHL4djdsVtPQA== -----END CERTIFICATE-----Generated at Thu Mar 26 10:06:59 2026 by rpki-client