$ rpki-client -vvf rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft File: I3Q0S3Gynw44NSDK_GyINQw1YWg.mft (raw, json) Hash identifier: eYWVG1bkMbnR5AKMBztdGyNWeDB7REvaaHd/qTjj3Co= Subject key identifier: 6D:D4:02:B6:9F:99:EB:87:5C:86:AE:97:3B:A0:B9:B0:CE:42:0F:F6 Authority key identifier: 23:74:34:4B:71:B2:9F:0E:38:35:20:CA:FC:6C:88:35:0C:35:61:68 Certificate issuer: /CN=A91A58AA/serialNumber=2374344B71B29F0E383520CAFC6C88350C356168 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft Manifest number: AA Signing time: Wed 25 Mar 2026 06:23:55 +0000 Manifest this update: Wed 25 Mar 2026 06:23:55 +0000 Manifest next update: Wed 01 Apr 2026 06:23:55 +0000 Files and hashes: 1: I3Q0S3Gynw44NSDK_GyINQw1YWg.crl (hash: je5u+KQzdDbxjP/Yrkw9DT3EbHBYEscqPyO9luEz34M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.crl rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A58AA, serialNumber=2374344B71B29F0E383520CAFC6C88350C356168 Validity Not Before: Mar 25 06:23:55 2026 GMT Not After : Apr 1 06:23:55 2026 GMT Subject: CN=69c37f7b-7809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:57:7b:18:d5:79:18:13:f9:f1:ea:ff:b0:2b: 10:d6:59:6d:2f:1a:9e:98:d2:b1:2a:ae:1a:93:07: 50:70:57:b9:fc:7f:21:0b:52:95:d6:9c:c2:f6:90: 61:54:ec:e4:19:92:3b:67:f4:e0:8b:7d:f9:8c:11: b9:eb:84:b4:8b:e0:bf:60:0f:97:f9:49:0b:85:3b: ae:83:00:68:0d:51:84:9d:22:73:e0:3a:e5:6a:53: c6:20:be:fd:d5:65:d0:16:48:6c:a0:72:66:62:1e: 6b:cc:e4:f6:4f:c2:5a:e4:dd:de:a2:58:e0:3a:83: de:35:3f:1d:bc:0f:dc:da:84:c0:22:44:62:fa:b6: 86:89:d9:f5:56:d0:50:0e:54:8f:98:b1:ab:7c:94: 70:c1:7f:1a:99:30:68:e1:b7:04:a8:de:3b:c0:0c: a8:ee:89:00:65:fd:05:a8:f4:a3:0c:04:20:ab:f4: b8:ad:4a:06:76:db:29:be:7d:4d:e8:fd:dc:d7:98: a7:e4:df:c9:4b:74:4c:18:1a:8e:1e:c6:d9:30:2c: 6b:0a:6d:02:b3:2a:9b:82:c1:4f:8f:a0:6e:a5:bc: c8:dd:58:e9:3a:5b:e8:0d:f7:4a:0e:df:aa:73:79: 75:fc:51:ba:77:b7:17:63:6a:bc:a3:19:d3:53:e5: 9f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:D4:02:B6:9F:99:EB:87:5C:86:AE:97:3B:A0:B9:B0:CE:42:0F:F6 X509v3 Authority Key Identifier: keyid:23:74:34:4B:71:B2:9F:0E:38:35:20:CA:FC:6C:88:35:0C:35:61:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:2d:a8:87:f1:6a:7c:e9:6c:59:bd:65:0c:0b:ba:21:94:2d: 14:ea:ca:60:74:9b:68:71:2e:68:e8:23:cb:6e:29:7c:3b:71: 34:84:0a:56:93:aa:27:12:3c:5c:9f:63:e7:fc:44:b1:01:4d: 9c:00:fb:7e:69:42:b7:80:7a:aa:3f:1b:f9:0a:4d:f0:1f:cd: d3:16:45:b1:83:96:20:9b:36:5a:89:5e:4e:42:8c:24:ad:7e: d9:aa:94:28:40:d7:7b:67:0a:ca:8c:3a:3c:db:fd:a8:ce:be: 12:78:4a:e1:99:f3:ea:24:07:54:09:99:44:aa:c7:bd:ad:e7: 8b:67:b6:95:04:4f:9d:12:cb:e8:33:46:c9:35:6d:a0:84:95: 66:14:fa:c0:1e:ae:97:74:68:84:23:52:05:30:6c:41:dc:6f: 43:e7:cf:14:78:1a:65:47:d9:d4:b1:eb:4a:31:84:17:0b:76: 7c:71:b1:a7:1f:36:10:bb:af:99:ab:2d:98:96:6f:e6:9d:ee: 57:bf:83:0f:41:79:db:57:bf:25:7d:6e:92:21:00:eb:0e:d1: 0b:48:17:d2:6a:38:34:c1:ea:a4:ed:ae:fa:dd:84:69:a9:ca: c0:18:c8:20:30:65:69:b5:34:49:17:2f:dd:f5:72:55:94:4e: e6:8a:1c:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU4QUExMTAvBgNVBAUTKDIzNzQzNDRCNzFCMjlGMEUzODM1MjBDQUZDNkM4ODM1 MEMzNTYxNjgwHhcNMjYwMzI1MDYyMzU1WhcNMjYwNDAxMDYyMzU1WjAYMRYwFAYD VQQDEw02OWMzN2Y3Yi03ODA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjVd7GNV5GBP58er/sCsQ1lltLxqemNKxKq4akwdQcFe5/H8hC1KV1pzC9pBh VOzkGZI7Z/Tgi335jBG564S0i+C/YA+X+UkLhTuugwBoDVGEnSJz4DrlalPGIL79 1WXQFkhsoHJmYh5rzOT2T8Ja5N3eoljgOoPeNT8dvA/c2oTAIkRi+raGidn1VtBQ DlSPmLGrfJRwwX8amTBo4bcEqN47wAyo7okAZf0FqPSjDAQgq/S4rUoGdtspvn1N 6P3c15in5N/JS3RMGBqOHsbZMCxrCm0CsyqbgsFPj6BupbzI3VjpOlvoDfdKDt+q c3l1/FG6d7cXY2q8oxnTU+WfUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG3UAraf meuHXIaulzugubDOQg/2MB8GA1UdIwQYMBaAFCN0NEtxsp8OODUgyvxsiDUMNWFo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNThBQS9DQTUwQzkyNjI0 MDIxMUYwOTYxQjY0NkRDNEY5QUUwMi9JM1EwUzNHeW53NDROU0RLX0d5SU5RdzFZ V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzUTBTM0d5bnc0NE5TREtfR3lJTlF3MVlXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NThBQS9DQTUwQzkyNjI0MDIxMUYwOTYxQjY0NkRDNEY5QUUwMi9JM1EwUzNHeW53 NDROU0RLX0d5SU5RdzFZV2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIi2oh/FqfOlsWb1lDAu6IZQtFOrKYHSbaHEuaOgjy24pfDtxNIQKVpOqJxI8 XJ9j5/xEsQFNnAD7fmlCt4B6qj8b+QpN8B/N0xZFsYOWIJs2WoleTkKMJK1+2aqU KEDXe2cKyow6PNv9qM6+EnhK4Znz6iQHVAmZRKrHva3ni2e2lQRPnRLL6DNGyTVt oISVZhT6wB6ul3RohCNSBTBsQdxvQ+fPFHgaZUfZ1LHrSjGEFwt2fHGxpx82ELuv mastmJZv5p3uV7+DD0F521e/JX1ukiEA6w7RC0gX0mo4NMHqpO2u+t2EaanKwBjI IDBlabU0SRcv3fVyVZRO5oocyQ== -----END CERTIFICATE-----Generated at Thu Mar 26 06:04:42 2026 by rpki-client