$ rpki-client -vvf rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft File: IMAbBSwVg-NofN7L_BPplBAa1C8.mft (raw, json) Hash identifier: sFXlaLpntp54eNBvOvuMqyBwQKhhIRua6cQLV81b2LE= Subject key identifier: 39:68:8D:65:81:6B:D1:97:EE:48:A0:6F:4F:89:09:D2:9A:A1:8C:33 Authority key identifier: 20:C0:1B:05:2C:15:83:E3:68:7C:DE:CB:FC:13:E9:94:10:1A:D4:2F Certificate issuer: /CN=A919794D/serialNumber=20C01B052C1583E3687CDECBFC13E994101AD42F Certificate serial: 0227 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMAbBSwVg-NofN7L_BPplBAa1C8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft Manifest number: 0223 Signing time: Wed 25 Mar 2026 02:07:01 +0000 Manifest this update: Wed 25 Mar 2026 02:07:00 +0000 Manifest next update: Wed 01 Apr 2026 02:07:00 +0000 Files and hashes: 1: IMAbBSwVg-NofN7L_BPplBAa1C8.crl (hash: oaRRc1C7jcqsn2yn6P5QRQW1W4CJ2jYQjEWnRw0/Xo8=) 2: CFC4BC00EB2911ED882B8A32C4F9AE02.roa (hash: 1qv+Y4Kd1SuwcWW5nSTbql7n0CDsusRmzUBuj3QR9BA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.crl rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMAbBSwVg-NofN7L_BPplBAa1C8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 551 (0x227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919794D, serialNumber=20C01B052C1583E3687CDECBFC13E994101AD42F Validity Not Before: Mar 25 02:07:00 2026 GMT Not After : Apr 1 02:07:00 2026 GMT Subject: CN=69c34345-afa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:70:05:b3:60:44:de:65:10:65:58:43:07:d6: 0b:4e:03:2a:bd:5c:d1:86:f6:67:f0:b6:71:4f:30: 2f:e0:94:ec:41:d6:ca:de:a1:77:95:01:0f:41:98: 9f:8a:57:47:c5:d1:33:3a:b3:ba:91:54:3d:f9:36: 68:03:57:04:2e:1d:7a:8e:fc:ac:42:c5:ce:73:56: 59:45:e0:7d:ab:07:e6:48:f4:20:9b:85:0a:46:8f: 22:4d:8a:cb:31:bc:9e:62:84:ee:58:97:1b:3b:a7: 09:fc:70:b2:56:96:7a:5f:bd:a8:93:c3:3d:08:5b: f3:79:78:5a:76:ff:47:01:ee:0e:ec:8c:06:63:55: 88:89:d5:e7:53:8c:76:56:20:81:67:b4:f7:76:61: 26:8e:b3:72:84:25:36:32:b3:95:e9:59:fd:0c:eb: b7:79:f0:42:f3:ef:6d:1f:a2:e4:61:70:05:de:e7: 2c:2d:69:00:5d:f9:37:f2:ed:9e:c2:05:a0:c6:ee: 24:e1:f0:8e:b3:2b:4d:0d:ce:3b:db:5c:c8:79:01: d6:98:01:0e:93:2d:de:5a:6f:5b:70:7b:1b:3e:06: 82:3a:d5:c7:6d:0c:f4:60:65:5f:cb:c4:43:85:76: 2b:59:36:70:9f:20:bf:73:d4:77:d6:c8:5d:92:7d: 19:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:68:8D:65:81:6B:D1:97:EE:48:A0:6F:4F:89:09:D2:9A:A1:8C:33 X509v3 Authority Key Identifier: keyid:20:C0:1B:05:2C:15:83:E3:68:7C:DE:CB:FC:13:E9:94:10:1A:D4:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMAbBSwVg-NofN7L_BPplBAa1C8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:0a:78:f7:39:fd:96:51:3d:b7:82:98:f7:ce:8a:5c:31:e0: a9:8b:3f:58:9a:ce:de:5b:71:34:ad:45:a6:15:4b:e3:5d:4f: 14:db:12:94:ce:a2:77:c7:5c:4b:0d:d9:a0:68:d9:ca:6a:18: 07:ed:f4:80:57:71:db:ff:56:ea:c1:ab:58:ae:1a:d3:64:ba: 83:21:49:50:31:b9:d7:41:bd:a9:8c:ea:04:fc:27:5c:1a:38: aa:5f:28:9a:68:90:8a:59:d1:0f:bf:53:56:17:3c:13:52:6d: 72:87:96:7d:87:63:fc:52:b9:1d:f6:1c:0e:76:39:75:26:22: cc:b4:b2:ad:d5:d3:ba:c5:8a:26:dd:fd:8e:c8:b0:31:3c:cf: bb:55:f8:23:8d:d6:6d:49:e4:93:1d:7d:28:36:1e:06:e1:63: 9f:e5:34:7e:ef:27:2f:a2:13:a8:f0:b2:1d:96:7d:4f:4b:df: 5e:4f:c9:3a:b1:25:75:58:52:fc:36:7d:2c:6b:5c:83:56:44: 62:38:d5:8b:67:d8:dc:7d:bc:9b:5c:b8:c0:b4:81:f7:0e:67: 6e:b0:50:6e:cf:a2:02:10:54:75:dd:98:3e:87:5b:60:9d:dc: 7e:26:e3:2e:c8:3d:2c:22:88:07:da:02:40:09:d4:46:61:39: 40:e0:15:b5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc5NEQxMTAvBgNVBAUTKDIwQzAxQjA1MkMxNTgzRTM2ODdDREVDQkZDMTNFOTk0 MTAxQUQ0MkYwHhcNMjYwMzI1MDIwNzAwWhcNMjYwNDAxMDIwNzAwWjAYMRYwFAYD VQQDEw02OWMzNDM0NS1hZmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHAFs2BE3mUQZVhDB9YLTgMqvVzRhvZn8LZxTzAv4JTsQdbK3qF3lQEPQZif ildHxdEzOrO6kVQ9+TZoA1cELh16jvysQsXOc1ZZReB9qwfmSPQgm4UKRo8iTYrL MbyeYoTuWJcbO6cJ/HCyVpZ6X72ok8M9CFvzeXhadv9HAe4O7IwGY1WIidXnU4x2 ViCBZ7T3dmEmjrNyhCU2MrOV6Vn9DOu3efBC8+9tH6LkYXAF3ucsLWkAXfk38u2e wgWgxu4k4fCOsytNDc4721zIeQHWmAEOky3eWm9bcHsbPgaCOtXHbQz0YGVfy8RD hXYrWTZwnyC/c9R31shdkn0ZRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDlojWWB a9GX7kigb0+JCdKaoYwzMB8GA1UdIwQYMBaAFCDAGwUsFYPjaHzey/wT6ZQQGtQv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Nzk0RC9DMkNDRTFEQ0U0 MjQxMUVEOUFENTkzNUZDNEY5QUUwMi9JTUFiQlN3VmctTm9mTjdMX0JQcGxCQWEx QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lNQWJCU3dWZy1Ob2ZON0xfQlBwbEJBYTFDOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Nzk0RC9DMkNDRTFEQ0U0MjQxMUVEOUFENTkzNUZDNEY5QUUwMi9JTUFiQlN3Vmct Tm9mTjdMX0JQcGxCQWExQzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKwp49zn9llE9t4KY986KXDHgqYs/WJrO3ltxNK1FphVL411PFNsSlM6id8dc Sw3ZoGjZymoYB+30gFdx2/9W6sGrWK4a02S6gyFJUDG510G9qYzqBPwnXBo4ql8o mmiQilnRD79TVhc8E1JtcoeWfYdj/FK5HfYcDnY5dSYizLSyrdXTusWKJt39jsiw MTzPu1X4I43WbUnkkx19KDYeBuFjn+U0fu8nL6ITqPCyHZZ9T0vfXk/JOrEldVhS /DZ9LGtcg1ZEYjjVi2fY3H28m1y4wLSB9w5nbrBQbs+iAhBUdd2YPodbYJ3cfibj Lsg9LCKIB9oCQAnURmE5QOAVtQ== -----END CERTIFICATE-----Generated at Thu Mar 26 09:51:51 2026 by rpki-client