$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: esGtF4cJ+6+rnwVVxP4rmpGDRyUxtxO/yMSCC/EC+K8= Subject key identifier: 82:49:59:33:9C:84:68:A9:86:2F:D5:EF:41:48:C0:97:08:B8:7D:8D Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 0854 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 0846 Signing time: Tue 24 Mar 2026 20:37:15 +0000 Manifest this update: Tue 24 Mar 2026 20:37:14 +0000 Manifest next update: Tue 31 Mar 2026 20:37:14 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: 3AcaaAAk+7vghZ7zjO9bW5zFDuPdzmfV4lQTMXi7re4=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: rCKXyCh+EMd4ulOOsHCpQ92EvtiU4kyrN3RmnguBNlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:37:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2132 (0x854) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5, serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: Mar 24 20:37:14 2026 GMT Not After : Mar 31 20:37:14 2026 GMT Subject: CN=69c2f5fb-4c41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:68:bd:0c:ee:e0:53:af:d2:72:9d:1e:10:27: 10:ca:f4:24:c4:af:f9:ce:0a:94:62:a1:90:d3:59: dd:f4:49:6d:f9:ed:00:64:62:0f:d6:bf:08:ca:7e: 47:f3:b4:53:c1:4c:87:b4:8d:86:d9:50:50:13:13: 67:7b:b4:f0:0c:97:09:d1:48:92:c6:a9:6d:d2:7c: e4:87:14:de:41:27:53:6b:39:18:bc:fe:fa:42:ba: bb:98:6c:11:53:eb:5a:06:25:3f:3a:c1:1c:51:7c: f6:38:8b:5e:ce:41:65:d3:ce:a5:0b:2e:10:96:05: 69:13:85:8c:0c:2a:37:fe:c9:f2:cf:2c:a9:54:af: b3:56:76:5b:dc:0d:b6:26:f5:45:88:73:74:10:94: b9:d8:a3:38:d7:5d:49:48:91:b7:71:68:b4:23:34: 0b:d7:57:81:9d:85:49:5d:a9:ec:0d:47:19:38:7f: 2a:d6:d4:cd:76:47:58:bb:0f:a0:75:a3:7b:28:e6: 51:23:76:7a:1f:22:f7:23:0d:5c:92:39:7c:f5:d7: cd:d1:db:2e:be:ad:0b:22:9f:45:0b:53:57:17:33: 06:84:a7:28:ab:90:75:ae:f8:dd:67:81:ab:22:95: f7:f4:3c:01:d5:99:3a:0a:db:3e:a0:1e:e3:71:2b: b5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:49:59:33:9C:84:68:A9:86:2F:D5:EF:41:48:C0:97:08:B8:7D:8D X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:fd:7f:67:96:ec:e3:e7:c7:1f:80:b2:10:33:ea:33:31:15: a9:11:81:04:08:c3:b5:48:0e:db:38:73:37:ce:c2:6e:fb:7c: ad:8e:ec:6a:e8:7a:42:ff:4b:c2:20:b7:1d:33:ef:03:69:d3: 30:0b:b1:f4:84:26:b8:7a:b5:45:99:fc:84:c1:e5:df:e9:47: 1f:4c:e5:a7:71:e4:dd:4a:54:3c:07:5c:f5:e5:5a:fa:8b:e5: ff:05:43:6c:8e:14:1f:9a:34:a3:74:cc:ba:41:5e:33:43:ca: a6:6c:ba:41:1f:10:d1:81:8b:0b:52:54:10:81:f4:68:ba:9b: c8:99:b6:e2:68:d8:11:1a:60:01:84:45:dd:3d:03:0d:c5:5d: 48:0c:05:a3:9f:27:e2:70:46:c4:2d:dc:e5:84:98:5a:00:64: 1f:39:fe:59:de:74:84:dd:da:04:f2:5b:2c:d9:36:f3:9b:ce: 44:59:b7:43:a2:bd:5b:81:09:22:b3:1b:2d:aa:96:a4:fe:45: f8:c9:91:ce:19:92:22:65:9c:1d:ae:b2:dc:dc:9b:d6:9c:5d: dc:7e:fb:35:e2:d6:d5:fe:75:78:80:ce:74:ee:43:a7:2d:81: c5:79:96:2f:7d:98:fe:52:5c:fd:58:84:9e:34:0f:30:c4:6d: 38:20:82:11 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjYwMzI0MjAzNzE0WhcNMjYwMzMxMjAzNzE0WjAYMRYwFAYD VQQDEw02OWMyZjVmYi00YzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Wi9DO7gU6/Scp0eECcQyvQkxK/5zgqUYqGQ01nd9Elt+e0AZGIP1r8Iyn5H 87RTwUyHtI2G2VBQExNne7TwDJcJ0UiSxqlt0nzkhxTeQSdTazkYvP76Qrq7mGwR U+taBiU/OsEcUXz2OItezkFl086lCy4QlgVpE4WMDCo3/snyzyypVK+zVnZb3A22 JvVFiHN0EJS52KM4111JSJG3cWi0IzQL11eBnYVJXansDUcZOH8q1tTNdkdYuw+g daN7KOZRI3Z6HyL3Iw1ckjl89dfN0dsuvq0LIp9FC1NXFzMGhKcoq5B1rvjdZ4Gr IpX39DwB1Zk6Cts+oB7jcSu1DQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIJJWTOc hGiphi/V70FIwJcIuH2NMB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU/1/Z5bs4+fHH4CyEDPqMzEVqRGBBAjDtUgO2zhzN87Cbvt8rY7sauh6Qv9L wiC3HTPvA2nTMAux9IQmuHq1RZn8hMHl3+lHH0zlp3Hk3UpUPAdc9eVa+ovl/wVD bI4UH5o0o3TMukFeM0PKpmy6QR8Q0YGLC1JUEIH0aLqbyJm24mjYERpgAYRF3T0D DcVdSAwFo58n4nBGxC3c5YSYWgBkHzn+Wd50hN3aBPJbLNk285vORFm3Q6K9W4EJ IrMbLaqWpP5F+MmRzhmSImWcHa6y3Nyb1pxd3H77NeLW1f51eIDOdO5Dpy2BxXmW L32Y/lJc/ViEnjQPMMRtOCCCEQ== -----END CERTIFICATE-----Generated at Thu Mar 26 02:27:08 2026 by rpki-client