$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: v+kTjZQssxwMyh4XZPrVHqU65i9LpnpxG9jK7iGOw7E= Subject key identifier: 32:DF:95:0C:97:27:98:F9:07:26:B9:32:62:0E:0D:47:C4:A2:60:AA Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 0A69 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 0A57 Signing time: Tue 24 Mar 2026 19:27:00 +0000 Manifest this update: Tue 24 Mar 2026 19:26:59 +0000 Manifest next update: Tue 31 Mar 2026 19:26:59 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: YYi0E3ee+U61Vt3ru6wWIlR4xlirDoenpt10AgSs4GU=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: LPpHOK81C3pNsWyGa2Q2W3gfstRuGd26hh2KRKuaOPE=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: KvrhkQvnKnpFTYVGWnMJN98DGB3DYDNMGELyZhZWRGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:26:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2665 (0xa69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Mar 24 19:26:59 2026 GMT Not After : Mar 31 19:26:59 2026 GMT Subject: CN=69c2e583-d7db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:85:94:66:fd:81:0b:23:f9:f8:71:c1:78:f4: 88:ce:20:5f:ee:14:f9:5c:dd:00:4d:ca:d2:88:53: e4:ff:9a:6a:a1:61:ce:c5:69:ea:02:3a:fe:8c:61: 36:cc:bc:6b:48:00:e1:2c:55:48:e7:f6:fc:cb:51: d3:c1:b8:91:3e:c5:db:f6:b0:17:f3:e6:35:08:5a: 17:f3:f2:7c:36:5c:3b:05:5b:18:29:9a:13:46:af: ce:6d:d7:b7:54:c9:66:bb:3a:43:f9:db:76:d6:e1: 92:cb:76:22:5f:26:87:cb:19:b0:96:cb:21:49:43: b4:dc:83:e6:67:26:9f:9e:38:fe:b8:48:f0:0a:22: 54:28:3f:32:1f:4c:3c:85:96:04:fe:1d:04:56:25: 4b:e7:be:6e:5b:32:d1:e2:ad:38:2a:ae:97:52:f1: bb:4d:82:04:04:05:aa:a1:26:c0:d2:50:18:b8:74: f2:97:1b:c0:45:e3:fb:7f:cc:0f:8b:bc:14:db:6c: 80:53:aa:60:b8:12:cb:62:4e:a4:59:9c:14:38:5f: 0d:03:ea:1d:1c:10:de:65:d5:91:88:47:49:9d:83: 51:10:ef:4d:80:40:12:44:34:0d:e3:bc:5d:d2:75: 1f:f2:90:d3:e7:31:79:0b:e7:bb:25:05:cf:63:41: e4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:DF:95:0C:97:27:98:F9:07:26:B9:32:62:0E:0D:47:C4:A2:60:AA X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:a5:92:b3:07:ee:a6:3f:3a:f4:67:b0:50:7c:85:6d:d5:10: 6b:27:97:bc:38:ef:ca:9e:8d:7b:a5:d2:cb:4b:bb:1c:8b:9d: cd:b2:22:e1:2a:76:f3:3b:30:89:6f:47:ef:d3:50:c9:51:c4: 24:38:1c:f2:a0:b6:4f:e2:93:d2:60:54:f6:29:57:ee:91:0b: 48:f6:3f:b3:10:86:6e:c9:19:86:51:b4:b5:02:94:3c:37:a0: 2b:59:4c:0e:ee:23:bd:a5:52:76:e3:7e:9f:00:5a:ec:3f:cd: 49:35:27:7b:32:9e:36:47:86:f7:3d:e9:09:b3:86:47:59:2a: c1:b5:57:bc:ee:59:e5:61:3c:19:88:98:57:a3:f2:a6:ef:58: 07:ea:fd:98:d2:de:2b:da:f3:91:4e:05:8d:50:38:d1:ae:2a: 33:3b:c4:cf:9d:31:8a:47:10:eb:55:74:61:e6:b1:63:ab:86: 8f:9b:e4:d5:9b:fb:29:89:a6:94:19:a8:ff:ef:8d:14:d8:25: e8:2c:62:9b:2b:7d:33:4d:33:9a:8c:2f:92:ff:6d:4b:1e:63: e6:2a:6b:03:3f:cf:ef:9a:3c:66:23:db:cd:68:35:e5:13:71: cb:29:b3:8d:ac:4d:df:a0:51:2c:e2:19:f2:4f:ca:d7:fb:36: ed:83:61:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjYwMzI0MTkyNjU5WhcNMjYwMzMxMTkyNjU5WjAYMRYwFAYD VQQDEw02OWMyZTU4My1kN2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4WUZv2BCyP5+HHBePSIziBf7hT5XN0ATcrSiFPk/5pqoWHOxWnqAjr+jGE2 zLxrSADhLFVI5/b8y1HTwbiRPsXb9rAX8+Y1CFoX8/J8Nlw7BVsYKZoTRq/Obde3 VMlmuzpD+dt21uGSy3YiXyaHyxmwlsshSUO03IPmZyafnjj+uEjwCiJUKD8yH0w8 hZYE/h0EViVL575uWzLR4q04Kq6XUvG7TYIEBAWqoSbA0lAYuHTylxvAReP7f8wP i7wU22yAU6pguBLLYk6kWZwUOF8NA+odHBDeZdWRiEdJnYNREO9NgEASRDQN47xd 0nUf8pDT5zF5C+e7JQXPY0HkYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDLflQyX J5j5Bya5MmIODUfEomCqMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGqWSswfupj869GewUHyFbdUQayeXvDjvyp6Ne6XSy0u7HIudzbIi4Sp28zsw iW9H79NQyVHEJDgc8qC2T+KT0mBU9ilX7pELSPY/sxCGbskZhlG0tQKUPDegK1lM Du4jvaVSduN+nwBa7D/NSTUnezKeNkeG9z3pCbOGR1kqwbVXvO5Z5WE8GYiYV6Py pu9YB+r9mNLeK9rzkU4FjVA40a4qMzvEz50xikcQ61V0YeaxY6uGj5vk1Zv7KYmm lBmo/++NFNgl6Cximyt9M00zmowvkv9tSx5j5iprAz/P75o8ZiPbzWg15RNxyymz jaxN36BRLOIZ8k/K1/s27YNh9g== -----END CERTIFICATE-----Generated at Thu Mar 26 16:45:14 2026 by rpki-client