$ rpki-client -vvf rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft File: IkB3DhUcdBqE3pTijHUgArg5--0.mft (raw, json) Hash identifier: agZHomGG42NMQ4ipEG/8/GIAXWrUeYiMsZc1QEpphH0= Subject key identifier: 12:C9:27:74:67:21:0E:A4:8D:D5:3C:0C:BE:05:A3:C1:A6:5A:EA:8C Authority key identifier: 22:40:77:0E:15:1C:74:1A:84:DE:94:E2:8C:75:20:02:B8:39:FB:ED Certificate issuer: /CN=A91A665A/serialNumber=2240770E151C741A84DE94E28C752002B839FBED Certificate serial: 07EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft Manifest number: 07E2 Signing time: Tue 24 Mar 2026 21:00:40 +0000 Manifest this update: Tue 24 Mar 2026 21:00:39 +0000 Manifest next update: Tue 31 Mar 2026 21:00:39 +0000 Files and hashes: 1: IkB3DhUcdBqE3pTijHUgArg5--0.crl (hash: uBwmw71hKJUm73cmGuIPJ8fYXce//HLpi8b1Q5gFtBA=) 2: 05E355AEA03811EDBC101B49C4F9AE02.roa (hash: wEVKzo/06lgCcRwDbGVatHG5G3Gc2ADy2oBpbkeEK8Y=) 3: 8224075A293711EB9DE16C62C4F9AE02.roa (hash: pYQQWevua0AS/DnR7jQgYAc7go0rrhJf56jb391i7kE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.crl rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2031 (0x7ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A665A, serialNumber=2240770E151C741A84DE94E28C752002B839FBED Validity Not Before: Mar 24 21:00:39 2026 GMT Not After : Mar 31 21:00:39 2026 GMT Subject: CN=69c2fb78-53e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:46:42:4f:aa:45:ef:30:38:f0:3d:3f:7a:9f: 3e:fe:6e:ae:a2:5e:95:74:83:5f:9f:df:af:e5:d9: 0c:2c:84:9d:9b:b2:dd:7d:74:6f:e0:b4:1a:b0:d1: c3:95:00:17:ae:4e:56:90:cd:72:26:a3:0a:7e:56: 00:44:84:f7:1f:e9:5f:ea:8f:fc:55:11:05:3c:0d: 2c:5b:41:b1:1f:f5:72:6c:29:8f:5f:8a:ec:26:3b: ee:23:1b:23:87:53:82:0b:f9:14:ff:67:56:c0:c9: fd:67:cc:eb:0c:23:d7:11:6c:4d:8f:38:1b:11:33: c2:51:76:66:b6:93:83:58:04:69:0b:f0:8c:7c:88: 20:0d:12:5d:26:05:77:9f:74:6d:a5:0c:82:5b:9c: 22:39:67:ee:a1:88:e7:c1:69:ff:ee:42:af:5b:ae: f0:67:1e:dd:05:f4:59:f8:9e:89:6d:c5:8b:2d:ba: 04:68:27:3b:68:e7:2a:ce:98:d7:ea:fa:a9:47:59: 25:6f:3e:9d:b5:fb:83:5c:3a:af:f7:50:6f:26:23: 72:b7:87:fa:82:08:fa:33:de:ee:6a:be:45:fe:46: 8a:2a:21:b0:40:49:69:ac:39:6e:c1:ae:dd:d1:24: 8d:5f:d7:b7:06:b3:ee:ac:1e:5a:de:4e:fb:1a:0f: 7c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:C9:27:74:67:21:0E:A4:8D:D5:3C:0C:BE:05:A3:C1:A6:5A:EA:8C X509v3 Authority Key Identifier: keyid:22:40:77:0E:15:1C:74:1A:84:DE:94:E2:8C:75:20:02:B8:39:FB:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:9a:c2:42:b0:11:74:e4:55:5f:8f:6f:fe:26:6e:ae:bc:37: 0a:99:55:1b:80:ac:0c:e5:e6:b5:1a:ea:0e:97:2f:34:5d:ae: c9:b9:1c:9e:11:2a:c8:5a:d5:06:0c:84:92:bb:bc:99:82:69: 80:ad:5e:0c:91:6f:95:30:c0:88:a2:f2:a9:e5:f4:2c:c7:43: d3:63:b5:32:71:9e:32:9f:84:02:f7:85:0d:a1:d1:a3:93:a1: f5:19:f9:da:d1:fb:7b:98:c6:5e:b8:33:61:c2:f4:9a:b4:5a: c1:49:f3:ee:20:ec:a5:41:b3:91:6f:24:b3:a2:07:15:d4:68: cc:15:17:70:67:9f:4e:b1:50:e6:c0:c1:a1:a5:fc:96:57:01: c6:82:af:53:34:be:89:fd:df:35:f8:60:c6:f4:02:71:18:07: 20:35:2a:5a:c3:1d:4b:64:85:6f:28:c8:eb:49:5e:b7:c1:96: 6b:c6:7d:1c:e4:ee:73:7b:0d:8e:63:59:dc:15:e2:a0:4a:f3: 06:e6:19:c0:3f:41:dc:33:64:18:b8:3a:5d:c2:a9:6a:28:c7: 65:ef:40:3b:cf:bb:49:3f:96:da:97:92:0b:7b:9d:a9:df:46: 7d:02:f9:08:e8:86:b6:85:67:80:0b:fd:06:1f:ec:2f:f9:c5: 51:7c:8f:bc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY2NUExMTAvBgNVBAUTKDIyNDA3NzBFMTUxQzc0MUE4NERFOTRFMjhDNzUyMDAy QjgzOUZCRUQwHhcNMjYwMzI0MjEwMDM5WhcNMjYwMzMxMjEwMDM5WjAYMRYwFAYD VQQDEw02OWMyZmI3OC01M2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUZCT6pF7zA48D0/ep8+/m6uol6VdINfn9+v5dkMLISdm7LdfXRv4LQasNHD lQAXrk5WkM1yJqMKflYARIT3H+lf6o/8VREFPA0sW0GxH/VybCmPX4rsJjvuIxsj h1OCC/kU/2dWwMn9Z8zrDCPXEWxNjzgbETPCUXZmtpODWARpC/CMfIggDRJdJgV3 n3RtpQyCW5wiOWfuoYjnwWn/7kKvW67wZx7dBfRZ+J6JbcWLLboEaCc7aOcqzpjX 6vqpR1klbz6dtfuDXDqv91BvJiNyt4f6ggj6M97uar5F/kaKKiGwQElprDluwa7d 0SSNX9e3BrPurB5a3k77Gg98WwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBLJJ3Rn IQ6kjdU8DL4Fo8GmWuqMMB8GA1UdIwQYMBaAFCJAdw4VHHQahN6U4ox1IAK4Ofvt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjY1QS9DOEZBRDEzODI5 MzUxMUVCQUU3MjVFNjFDNEY5QUUwMi9Ja0IzRGhVY2RCcUUzcFRpakhVZ0FyZzUt LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lrQjNEaFVjZEJxRTNwVGlqSFVnQXJnNS0tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjY1QS9DOEZBRDEzODI5MzUxMUVCQUU3MjVFNjFDNEY5QUUwMi9Ja0IzRGhVY2RC cUUzcFRpakhVZ0FyZzUtLTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFprCQrARdORVX49v/iZurrw3CplVG4CsDOXmtRrqDpcvNF2uybkcnhEqyFrV BgyEkru8mYJpgK1eDJFvlTDAiKLyqeX0LMdD02O1MnGeMp+EAveFDaHRo5Oh9Rn5 2tH7e5jGXrgzYcL0mrRawUnz7iDspUGzkW8ks6IHFdRozBUXcGefTrFQ5sDBoaX8 llcBxoKvUzS+if3fNfhgxvQCcRgHIDUqWsMdS2SFbyjI60let8GWa8Z9HOTuc3sN jmNZ3BXioErzBuYZwD9B3DNkGLg6XcKpaijHZe9AO8+7ST+W2peSC3udqd9GfQL5 COiGtoVngAv9Bh/sL/nFUXyPvA== -----END CERTIFICATE-----Generated at Thu Mar 26 19:40:44 2026 by rpki-client