$ rpki-client -vvf rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft File: iiZW272QAzaEH_UDU2_5kY_rJcY.mft (raw, json) Hash identifier: URtiLiNyARASc2DKAxK8I86ZG4P2UNkPn3Gc36OnpE4= Subject key identifier: DA:0E:D3:3C:8F:20:67:09:4A:2B:AD:D7:F5:9A:2F:DE:43:93:43:F3 Authority key identifier: 8A:26:56:DB:BD:90:03:36:84:1F:F5:03:53:6F:F9:91:8F:EB:25:C6 Certificate issuer: /CN=A91A267C/serialNumber=8A2656DBBD900336841FF503536FF9918FEB25C6 Certificate serial: 0A8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft Manifest number: 0A7D Signing time: Tue 24 Mar 2026 19:22:17 +0000 Manifest this update: Tue 24 Mar 2026 19:22:17 +0000 Manifest next update: Tue 31 Mar 2026 19:22:17 +0000 Files and hashes: 1: iiZW272QAzaEH_UDU2_5kY_rJcY.crl (hash: 6WxKImjB2w3xmNmUMbnntpkHtG3Vs8UeC3rRb8HdUOc=) 2: 9244682C7BD711EAA889485EC4F9AE02.roa (hash: CU9KCOMgB/CimY7ixX135rNt1bHyh2BWO2MK74ixj8U=) 3: 8B802D485F2211EC88AA0F84C4F9AE02.roa (hash: 7eNnv9/n13JHxhn9eXPX/2+r30TjaibukF568rxiuT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.crl rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2699 (0xa8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A267C, serialNumber=8A2656DBBD900336841FF503536FF9918FEB25C6 Validity Not Before: Mar 24 19:22:17 2026 GMT Not After : Mar 31 19:22:17 2026 GMT Subject: CN=69c2e469-285a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:42:35:d2:e9:cb:33:f7:23:39:78:77:de:4e: 34:91:a1:a3:59:0a:35:f0:d3:74:c1:5a:75:5b:06: f8:99:77:5a:4a:ed:f6:ac:5b:12:7d:2d:de:a1:8b: dc:d8:dc:6d:0b:0c:60:93:1d:b9:af:8b:68:28:37: 2b:68:b8:6a:fd:8c:50:52:00:ad:71:17:8d:54:d7: ee:5b:ce:de:f1:16:fa:07:b7:bd:01:3d:e5:4c:f5: 83:e7:69:30:85:3f:f9:73:a5:dc:cb:79:69:e3:b5: f6:08:8e:b7:13:ee:ba:dc:a4:f4:87:f5:fb:0b:e8: 9f:9b:6c:62:4f:53:05:d4:4c:a7:c6:e8:c9:3e:4b: 68:6a:ce:3d:f2:3b:ac:85:87:7d:7c:87:e2:c2:46: f3:77:92:37:fd:64:e0:6b:ef:2f:21:d7:19:f5:c9: 7c:be:b1:af:47:ac:ff:4d:e4:88:31:ce:79:d4:68: 1a:6d:e4:fe:a5:c7:78:a4:c2:55:d3:4a:71:76:b7: 25:1d:0b:c9:98:7d:18:78:ce:84:51:de:76:c7:a9: 69:a1:ee:1f:7d:b6:e7:7c:13:1c:f5:19:92:f2:8a: a4:f2:0d:c7:7c:2b:aa:2d:cf:ef:f5:ea:3a:4e:6b: 76:8f:03:20:59:70:08:1c:0b:b7:cb:87:c4:9d:77: 30:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:0E:D3:3C:8F:20:67:09:4A:2B:AD:D7:F5:9A:2F:DE:43:93:43:F3 X509v3 Authority Key Identifier: keyid:8A:26:56:DB:BD:90:03:36:84:1F:F5:03:53:6F:F9:91:8F:EB:25:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:d2:9d:6b:59:b7:07:bf:d2:b3:d9:ff:29:01:e5:29:b8:03: 2d:a7:30:38:c1:bb:f0:7f:c2:b0:d0:1b:d7:3e:8a:ad:d0:c7: 41:1d:6c:7d:6e:1b:ce:30:96:64:25:96:b6:8d:67:6c:b4:cf: 03:7b:bc:c4:88:00:9a:46:3a:56:f0:22:5d:fa:a0:41:61:42: 8b:95:f2:eb:da:91:a0:2a:c8:b4:06:49:70:07:2d:d5:0c:59: 51:e9:cf:7c:cb:fd:46:cb:d6:18:6c:3d:69:be:09:e9:2a:e6: d8:2b:e0:b1:7c:a9:f3:ed:0c:80:70:9a:66:75:70:3d:59:16: c6:aa:bc:43:ad:f4:ec:16:d3:34:6c:18:22:65:9d:78:58:5e: a9:01:f7:53:3d:e9:ae:71:fb:07:1d:86:b3:92:19:df:bf:b6: 06:db:1c:07:d5:cf:25:17:42:93:95:98:ec:f8:6a:ae:47:2d: bc:a7:a0:75:4a:cc:86:f6:52:b0:e5:4d:e4:fd:33:3b:d7:c4: 14:f4:f5:a2:9e:f1:9a:c8:75:e8:70:42:db:9e:1b:2a:c7:c2: cc:5b:87:bc:d1:65:8b:ce:d8:0e:b2:73:81:eb:90:c5:69:06: a0:35:2d:d7:83:ce:4a:9f:13:00:a8:b6:12:6c:70:08:05:b6: 77:1e:d6:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI2N0MxMTAvBgNVBAUTKDhBMjY1NkRCQkQ5MDAzMzY4NDFGRjUwMzUzNkZGOTkx OEZFQjI1QzYwHhcNMjYwMzI0MTkyMjE3WhcNMjYwMzMxMTkyMjE3WjAYMRYwFAYD VQQDEw02OWMyZTQ2OS0yODVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UI10unLM/cjOXh33k40kaGjWQo18NN0wVp1Wwb4mXdaSu32rFsSfS3eoYvc 2NxtCwxgkx25r4toKDcraLhq/YxQUgCtcReNVNfuW87e8Rb6B7e9AT3lTPWD52kw hT/5c6Xcy3lp47X2CI63E+663KT0h/X7C+ifm2xiT1MF1EynxujJPktoas498jus hYd9fIfiwkbzd5I3/WTga+8vIdcZ9cl8vrGvR6z/TeSIMc551GgabeT+pcd4pMJV 00pxdrclHQvJmH0YeM6EUd52x6lpoe4ffbbnfBMc9RmS8oqk8g3HfCuqLc/v9eo6 Tmt2jwMgWXAIHAu3y4fEnXcwlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNoO0zyP IGcJSiut1/WaL95Dk0PzMB8GA1UdIwQYMBaAFIomVtu9kAM2hB/1A1Nv+ZGP6yXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjY3Qy81QjUzODk2NjdC RDYxMUVBODAzRjlCNUNDNEY5QUUwMi9paVpXMjcyUUF6YUVIX1VEVTJfNWtZX3JK Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpWlcyNzJRQXphRUhfVURVMl81a1lfckpjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjY3Qy81QjUzODk2NjdCRDYxMUVBODAzRjlCNUNDNEY5QUUwMi9paVpXMjcyUUF6 YUVIX1VEVTJfNWtZX3JKY1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxdKda1m3B7/Ss9n/KQHlKbgDLacwOMG78H/CsNAb1z6KrdDHQR1sfW4bzjCW ZCWWto1nbLTPA3u8xIgAmkY6VvAiXfqgQWFCi5Xy69qRoCrItAZJcAct1QxZUenP fMv9RsvWGGw9ab4J6Srm2CvgsXyp8+0MgHCaZnVwPVkWxqq8Q6307BbTNGwYImWd eFheqQH3Uz3prnH7Bx2Gs5IZ37+2BtscB9XPJRdCk5WY7PhqrkctvKegdUrMhvZS sOVN5P0zO9fEFPT1op7xmsh16HBC254bKsfCzFuHvNFli87YDrJzgeuQxWkGoDUt 14POSp8TAKi2EmxwCAW2dx7Wqg== -----END CERTIFICATE-----Generated at Thu Mar 26 15:53:16 2026 by rpki-client