$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft File: iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft (raw, json) Hash identifier: 4tenarjqcp8uvBJCw9mFReCKwADsm9SpNunzkNg7ato= Subject key identifier: 03:B3:4B:06:C8:BA:20:49:42:ED:8A:4F:C8:71:43:34:79:A4:38:EB Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: 01BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft Manifest number: 01A7 Signing time: Wed 25 Mar 2026 03:35:33 +0000 Manifest this update: Wed 25 Mar 2026 03:35:32 +0000 Manifest next update: Wed 01 Apr 2026 03:35:32 +0000 Files and hashes: 1: iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl (hash: 6ng9SMTSo9I7lQIqIHsQmuFM1TYteafUMvlJJOfLuHM=) 2: D7FEF354562111EFA7B3F00AC4F9AE02.roa (hash: zRLwbdLjJcZ9xIvEJX9pjeEu223B0K+u9rS591OrK1I=) 3: F406C3F26AE311EF82D7860FC4F9AE02.roa (hash: e+A9R6047fz/CtRSSMnfQGJqOvNAoPOsGN6eczRG5bA=) 4: 87662556555511EF88D9F680C4F9AE02.roa (hash: gXURQ3TI01OPFheyWVk20K8W06Uu/H87clLm9KAplj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B, serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Validity Not Before: Mar 25 03:35:32 2026 GMT Not After : Apr 1 03:35:32 2026 GMT Subject: CN=69c35805-2d87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7e:3b:65:ce:36:52:63:58:48:f3:03:1e:97: e0:ed:53:82:24:27:da:68:6e:7a:c5:73:cf:bb:21: cc:17:4a:5c:f8:3d:c0:b3:b3:ad:2f:2f:22:e1:b2: fa:a3:1a:75:f0:ed:22:60:ae:6d:c8:6c:18:f9:d5: da:67:50:67:d3:0b:51:1a:99:1b:42:fb:20:4b:ab: f6:be:56:5c:e7:9f:32:2d:ea:b7:ef:d7:83:62:7d: 71:2a:da:98:9f:e8:93:0d:5f:31:1e:a3:0d:f9:c7: 42:a3:6f:42:8d:41:5c:a1:3d:79:10:b1:c4:12:41: b9:b3:10:c0:c0:b2:7e:76:52:9f:6b:18:32:32:9a: 21:bb:56:7d:d7:a7:8e:90:85:bb:be:be:f5:43:8d: 72:48:28:6b:03:81:bf:77:72:6f:65:7c:dc:07:bf: 30:da:c1:1d:51:15:69:4a:9e:a5:b6:4e:7e:86:68: dc:0d:b1:60:d2:1d:81:c1:50:01:88:98:96:ad:13: 58:79:f1:fb:a5:70:ec:65:b5:14:20:77:f4:1f:7e: b3:01:7c:42:e1:87:e9:04:0d:e4:f9:0b:6c:71:fb: 98:d4:be:54:32:10:60:90:a7:c6:e0:33:13:dd:dd: c5:73:dd:ee:58:fa:58:65:a5:b2:6e:ba:7d:c7:dd: 2e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:B3:4B:06:C8:BA:20:49:42:ED:8A:4F:C8:71:43:34:79:A4:38:EB X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:b8:4c:a3:5c:82:2b:ef:33:e4:3b:00:88:60:9d:27:3f:de: 42:fa:25:9a:cd:53:b3:34:15:a3:77:cf:ee:7c:cf:d4:a4:95: 7c:79:f4:85:12:2b:77:e0:65:12:08:f4:ff:2a:a0:d4:ca:98: 87:6c:af:47:2b:48:6e:c7:61:33:ed:b2:2f:20:34:b9:e6:62: 98:d4:e0:fb:e3:c5:63:e8:52:c6:89:7e:48:04:f7:74:a2:b7: d8:d5:08:e0:6f:14:73:05:e6:08:5f:9d:a5:d7:3e:5b:15:17: ec:d3:c1:43:60:aa:7a:cf:36:82:b3:7c:49:f4:8d:e9:52:ef: 1a:cd:0f:cf:27:c7:00:f9:e5:98:48:ef:91:23:e8:1f:90:36: 89:a8:89:35:84:dc:91:49:2a:cd:23:ce:03:cd:03:32:62:37: 1b:5b:b8:6f:2f:da:81:00:fc:92:d6:9d:51:d4:4c:83:90:e0: 15:f9:24:43:d7:f7:fe:24:5a:ab:e5:fb:e0:e3:17:50:28:47: f4:c1:6b:a7:34:5e:c5:57:3b:a8:3b:21:5e:44:d7:c4:34:95: a7:b2:a0:9a:1c:e3:8b:72:97:08:80:4b:79:bd:1e:0e:b9:ab: b8:2b:93:a8:97:cc:c4:54:64:cc:b7:99:9e:b7:65:7a:ac:5f: 23:1e:d5:c5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGN0IxMTAvBgNVBAUTKDg5MEIxREVGRTg4RDU5MTk2QkNDN0I2NTI2OEM2MkU4 NkU1NEQ0NkQwHhcNMjYwMzI1MDMzNTMyWhcNMjYwNDAxMDMzNTMyWjAYMRYwFAYD VQQDEw02OWMzNTgwNS0yZDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqn47Zc42UmNYSPMDHpfg7VOCJCfaaG56xXPPuyHMF0pc+D3As7OtLy8i4bL6 oxp18O0iYK5tyGwY+dXaZ1Bn0wtRGpkbQvsgS6v2vlZc558yLeq379eDYn1xKtqY n+iTDV8xHqMN+cdCo29CjUFcoT15ELHEEkG5sxDAwLJ+dlKfaxgyMpohu1Z916eO kIW7vr71Q41ySChrA4G/d3JvZXzcB78w2sEdURVpSp6ltk5+hmjcDbFg0h2BwVAB iJiWrRNYefH7pXDsZbUUIHf0H36zAXxC4YfpBA3k+QtscfuY1L5UMhBgkKfG4DMT 3d3Fc93uWPpYZaWybrp9x90udwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAOzSwbI uiBJQu2KT8hxQzR5pDjrMB8GA1UdIwQYMBaAFIkLHe/ojVkZa8x7ZSaMYuhuVNRt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY3Qi9BMTMxQjM5NEJC MzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldSbHJ6SHRsSm94aTZHNVUx RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY3Qi9BMTMxQjM5NEJCMzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldS bHJ6SHRsSm94aTZHNVUxRzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdrhMo1yCK+8z5DsAiGCdJz/eQvolms1TszQVo3fP7nzP1KSVfHn0hRIrd+Bl Egj0/yqg1MqYh2yvRytIbsdhM+2yLyA0ueZimNTg++PFY+hSxol+SAT3dKK32NUI 4G8UcwXmCF+dpdc+WxUX7NPBQ2Cqes82grN8SfSN6VLvGs0PzyfHAPnlmEjvkSPo H5A2iaiJNYTckUkqzSPOA80DMmI3G1u4by/agQD8ktadUdRMg5DgFfkkQ9f3/iRa q+X74OMXUChH9MFrpzRexVc7qDshXkTXxDSVp7Kgmhzji3KXCIBLeb0eDrmruCuT qJfMxFRkzLeZnrdleqxfIx7VxQ== -----END CERTIFICATE-----Generated at Thu Mar 26 18:25:23 2026 by rpki-client