$ rpki-client -vvf rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft File: Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft (raw, json) Hash identifier: Fofb7unvvV2P8TuIbl0qQxvS4T/I1E8n/hndlUCxMBk= Subject key identifier: 28:37:22:42:FE:5E:93:92:81:C3:AB:C0:0E:35:70:9D:52:F3:83:E2 Authority key identifier: 22:1F:50:14:3E:1D:5F:93:C4:CD:31:C9:FE:E7:A2:4D:E8:01:F2:D7 Certificate issuer: /CN=A919D539/serialNumber=221F50143E1D5F93C4CD31C9FEE7A24DE801F2D7 Certificate serial: 08AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft Manifest number: 0895 Signing time: Tue 24 Mar 2026 20:18:47 +0000 Manifest this update: Tue 24 Mar 2026 20:18:46 +0000 Manifest next update: Tue 31 Mar 2026 20:18:46 +0000 Files and hashes: 1: Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl (hash: aSpHyDnCShxNGITMlZp380a+OCYXqvsN3KhVCDUkTrc=) 2: B94BEEA036D811ECB5BD1470C4F9AE02.roa (hash: +xbbDGKjJ6DqQpBrbDd8JJCmqdHxccmvBDGEJY8Y1eA=) 3: DA0C233E3EE411ED905A3415C4F9AE02.roa (hash: mf6qln82PscHDH0xPIvnUcgowJvdgyrORzlGrhrol0w=) 4: 903E8812E38A11EAA3B8AE59C4F9AE02.roa (hash: GhHf45/vb5I/X0MIOpzOvwX20CEWTC0IaH/0NH4EfF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:18:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2223 (0x8af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D539, serialNumber=221F50143E1D5F93C4CD31C9FEE7A24DE801F2D7 Validity Not Before: Mar 24 20:18:46 2026 GMT Not After : Mar 31 20:18:46 2026 GMT Subject: CN=69c2f1a7-3f41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:e9:a0:be:77:cb:ef:3e:90:15:d3:29:84:e3: cf:be:72:32:c1:f8:ae:28:e4:1a:6e:e6:13:11:3f: 1b:2d:80:c5:a1:41:d3:34:21:3a:82:75:17:48:0a: 29:60:27:db:10:b8:87:d3:d9:10:c5:f6:ac:72:df: bb:31:82:dd:8d:9b:ee:73:a9:54:f6:96:00:5a:16: be:aa:fa:b3:e9:f1:b1:36:e2:f6:8f:d9:d8:95:93: ca:59:21:03:63:b3:0b:7a:13:1f:9a:15:32:28:c0: 5b:df:21:6d:7a:ff:05:0e:68:86:52:4f:2c:15:db: 65:52:ff:ff:b3:f5:57:ab:e1:17:cb:fb:84:d9:a2: 8c:8b:e6:90:96:d4:dd:82:a4:72:de:e4:46:e3:38: 7a:f0:91:35:c4:1b:00:5a:81:81:a9:37:f9:59:69: de:7f:8f:c4:53:f0:b7:85:1d:0e:ca:e1:2e:2b:01: 43:3c:79:4d:e3:5c:4c:dc:8c:0f:42:f1:80:38:26: 23:cc:d9:20:12:d8:9e:3e:15:00:66:1b:e0:d0:01: f6:dc:e7:f9:eb:94:de:14:bc:2a:6b:32:fd:d7:d5: 8a:67:c8:3f:fc:b9:0e:01:a6:87:6b:16:6e:a0:d4: 5d:6e:f9:ec:74:e5:4f:f1:93:cc:0d:88:ba:42:3a: 99:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:37:22:42:FE:5E:93:92:81:C3:AB:C0:0E:35:70:9D:52:F3:83:E2 X509v3 Authority Key Identifier: keyid:22:1F:50:14:3E:1D:5F:93:C4:CD:31:C9:FE:E7:A2:4D:E8:01:F2:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:36:ab:2b:4e:82:a3:88:ae:5b:5c:b4:12:90:c9:e0:a3:60: 57:58:95:4f:b6:18:4c:c8:1f:41:5e:73:89:66:9c:cf:18:39: 25:38:eb:9a:ac:ae:27:e0:77:da:8f:f4:4e:2f:98:bb:e3:dc: 5b:f5:4c:24:60:7a:71:46:ef:41:fa:2d:88:0d:40:b6:1d:cc: 42:44:1f:29:78:c5:14:92:68:da:38:53:d3:bd:4e:ba:91:9d: d4:e5:4a:7d:fe:cd:70:e3:9d:3b:74:79:42:b7:02:e9:e2:e9: db:89:45:52:d9:88:32:74:dd:28:fb:11:12:16:39:d9:be:00: 9c:80:99:9a:14:b7:e1:03:30:81:7e:a4:9d:42:fc:3e:1e:42: 56:36:6c:a8:ea:01:4e:ec:4e:59:16:09:4b:42:d0:3b:5c:6e: 78:07:45:7a:c2:de:99:58:e9:20:88:81:11:83:0f:72:71:d6: 22:7f:7b:19:e7:a2:28:c5:63:d0:c0:a5:91:b3:9f:f2:4c:3b: 67:c2:4b:68:68:d9:3f:c6:af:35:20:ac:21:45:87:ef:8e:83: 97:d6:28:14:04:73:21:2f:bd:90:fb:0c:2b:3c:ea:39:79:6e: ac:fd:af:49:39:da:b3:d3:12:bb:43:82:09:94:80:13:80:93: b4:d8:52:17 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ1MzkxMTAvBgNVBAUTKDIyMUY1MDE0M0UxRDVGOTNDNENEMzFDOUZFRTdBMjRE RTgwMUYyRDcwHhcNMjYwMzI0MjAxODQ2WhcNMjYwMzMxMjAxODQ2WjAYMRYwFAYD VQQDEw02OWMyZjFhNy0zZjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjumgvnfL7z6QFdMphOPPvnIywfiuKOQabuYTET8bLYDFoUHTNCE6gnUXSAop YCfbELiH09kQxfasct+7MYLdjZvuc6lU9pYAWha+qvqz6fGxNuL2j9nYlZPKWSED Y7MLehMfmhUyKMBb3yFtev8FDmiGUk8sFdtlUv//s/VXq+EXy/uE2aKMi+aQltTd gqRy3uRG4zh68JE1xBsAWoGBqTf5WWnef4/EU/C3hR0OyuEuKwFDPHlN41xM3IwP QvGAOCYjzNkgEtiePhUAZhvg0AH23Of565TeFLwqazL919WKZ8g//LkOAaaHaxZu oNRdbvnsdOVP8ZPMDYi6QjqZTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCg3IkL+ XpOSgcOrwA41cJ1S84PiMB8GA1UdIwQYMBaAFCIfUBQ+HV+TxM0xyf7nok3oAfLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDUzOS9DMTI2NURDMEUz ODkxMUVBQjczQTM2NTlDNEY5QUUwMi9JaDlRRkQ0ZFg1UEV6VEhKX3VlaVRlZ0I4 dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loOVFGRDRkWDVQRXpUSEpfdWVpVGVnQjh0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDUzOS9DMTI2NURDMEUzODkxMUVBQjczQTM2NTlDNEY5QUUwMi9JaDlRRkQ0ZFg1 UEV6VEhKX3VlaVRlZ0I4dGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwzarK06Co4iuW1y0EpDJ4KNgV1iVT7YYTMgfQV5ziWaczxg5JTjrmqyuJ+B3 2o/0Ti+Yu+PcW/VMJGB6cUbvQfotiA1Ath3MQkQfKXjFFJJo2jhT071OupGd1OVK ff7NcOOdO3R5QrcC6eLp24lFUtmIMnTdKPsREhY52b4AnICZmhS34QMwgX6knUL8 Ph5CVjZsqOoBTuxOWRYJS0LQO1xueAdFesLemVjpIIiBEYMPcnHWIn97GeeiKMVj 0MClkbOf8kw7Z8JLaGjZP8avNSCsIUWH746Dl9YoFARzIS+9kPsMKzzqOXlurP2v STnas9MSu0OCCZSAE4CTtNhSFw== -----END CERTIFICATE-----Generated at Thu Mar 26 12:23:21 2026 by rpki-client