$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft File: iWZCPuKkFWMfevMU5NiEAHqEaLY.mft (raw, json) Hash identifier: ILs5llkFPczDU61FQAzToeL604JV25go/okG+Jf+mms= Subject key identifier: 35:A0:E7:AC:1D:57:AC:35:14:8C:56:A6:1C:0B:7F:6E:C1:1B:66:7B Authority key identifier: 89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 Certificate issuer: /CN=A91A91CB/serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft Manifest number: D4 Signing time: Fri 27 Mar 2026 06:15:26 +0000 Manifest this update: Fri 27 Mar 2026 06:15:26 +0000 Manifest next update: Fri 03 Apr 2026 06:15:26 +0000 Files and hashes: 1: iWZCPuKkFWMfevMU5NiEAHqEaLY.crl (hash: 04Vtk5Dn48Ye29UUqx7NuiCju4FRmzCeNoR1Y5DR1L8=) 2: 0EB302DCEA5B11EFABB07C6DC4F9AE02.roa (hash: yxcEwj+JBBXiVTX+aFQc5ddxq/vEi232S7B1rwDfWO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 06:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Validity Not Before: Mar 27 06:15:26 2026 GMT Not After : Apr 3 06:15:26 2026 GMT Subject: CN=69c6207e-9ee8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f7:5e:cb:04:21:ac:02:29:f3:bd:79:35:b1: 48:6b:9b:05:32:47:f3:f9:5b:36:a1:9a:41:ff:c9: 68:64:25:6b:b6:11:ea:9b:c1:98:e3:90:d1:b7:43: 38:89:fc:37:47:43:bc:c8:06:1b:e1:8e:3c:7e:34: d4:2a:4a:4b:2c:de:a3:0d:b9:a2:d8:ba:de:b5:5f: 33:72:25:ed:2b:b8:b7:6e:80:bd:dd:ee:25:3f:80: fb:43:b5:4c:0f:99:ec:94:be:6d:a0:4a:2c:a4:ec: 17:f1:f1:70:4a:bd:9f:e9:30:c5:50:82:14:b8:f2: fd:74:ef:01:7a:37:24:2e:35:ae:fd:a4:5f:80:19: 27:b4:8f:91:e3:73:0c:c2:41:bc:51:dc:33:9e:41: 5c:46:54:a9:1e:de:5b:11:cb:b6:44:35:8f:71:70: ec:41:38:84:b6:3b:35:76:dc:25:18:58:68:06:62: f8:14:e3:fa:df:b1:bf:07:0c:cb:96:27:9e:8f:47: 19:2f:36:fa:d2:20:76:e6:2d:42:a1:e3:1a:66:25: 91:e1:f7:81:f1:a5:52:b3:d6:de:50:10:01:f6:b9: ff:77:a5:2e:bd:c0:ff:9c:58:66:ce:9e:c7:32:b6: 0c:29:5e:7e:c4:3f:1f:89:61:5b:ad:dd:f8:a1:e7: 07:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:A0:E7:AC:1D:57:AC:35:14:8C:56:A6:1C:0B:7F:6E:C1:1B:66:7B X509v3 Authority Key Identifier: keyid:89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:8c:cc:c6:30:a5:a8:18:20:4e:5b:c3:d8:26:1e:a6:b4:4e: af:a9:61:6b:08:70:1f:68:23:2b:cf:da:0b:02:e9:d6:3b:dd: 36:7e:cd:39:4d:d5:8b:86:6e:2b:e0:4a:bd:02:e1:c0:6a:9e: e9:7f:b8:9a:22:7c:40:5a:06:42:cc:40:fe:2e:8a:3d:d1:a0: 91:bd:26:1a:91:56:eb:11:53:00:8f:89:3d:1d:2d:fa:ae:5e: 3f:69:a3:67:65:38:d0:14:a6:08:0e:9d:c1:6c:fe:f4:a7:a0: 5d:25:00:bb:f5:21:07:d9:f4:7c:17:49:df:6c:65:5e:0a:6d: 68:c2:5a:8e:1a:d2:54:fd:46:9e:a0:48:94:d1:27:59:3c:e9: ac:bb:80:e9:87:7e:48:79:1e:92:a0:f2:a9:5f:df:7d:99:cd: c8:89:5a:3a:3f:e0:b9:5a:e3:2b:e4:96:22:47:7d:3b:67:87: 13:f1:8e:d1:61:95:99:f7:11:12:c7:7b:3f:5d:50:73:75:8f: 85:cd:68:31:86:0c:ce:8d:f9:d8:12:29:1c:61:c9:34:8a:4b: 2d:36:61:fc:d0:2a:d9:12:8d:35:7e:e9:29:a7:0f:17:91:85: 01:6e:76:15:d7:2f:5b:24:03:3a:7f:df:f9:08:68:a8:3d:18: 3e:ab:01:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxQ0IxMTAvBgNVBAUTKDg5NjY0MjNFRTJBNDE1NjMxRjdBRjMxNEU0RDg4NDAw N0E4NDY4QjYwHhcNMjYwMzI3MDYxNTI2WhcNMjYwNDAzMDYxNTI2WjAYMRYwFAYD VQQDEw02OWM2MjA3ZS05ZWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfdeywQhrAIp8715NbFIa5sFMkfz+Vs2oZpB/8loZCVrthHqm8GY45DRt0M4 ifw3R0O8yAYb4Y48fjTUKkpLLN6jDbmi2LretV8zciXtK7i3boC93e4lP4D7Q7VM D5nslL5toEospOwX8fFwSr2f6TDFUIIUuPL9dO8BejckLjWu/aRfgBkntI+R43MM wkG8UdwznkFcRlSpHt5bEcu2RDWPcXDsQTiEtjs1dtwlGFhoBmL4FOP637G/BwzL lieej0cZLzb60iB25i1CoeMaZiWR4feB8aVSs9beUBAB9rn/d6UuvcD/nFhmzp7H MrYMKV5+xD8fiWFbrd34oecHRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDWg56wd V6w1FIxWphwLf27BG2Z7MB8GA1UdIwQYMBaAFIlmQj7ipBVjH3rzFOTYhAB6hGi2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFDQi82NTBFNjAwQUVB NUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZXTWZldk1VNU5pRUFIcUVh TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lXWkNQdUtrRldNZmV2TVU1TmlFQUhxRWFMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTFDQi82NTBFNjAwQUVBNUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZX TWZldk1VNU5pRUFIcUVhTFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAyYzMxjClqBggTlvD2CYeprROr6lhawhwH2gjK8/aCwLp1jvdNn7NOU3Vi4Zu K+BKvQLhwGqe6X+4miJ8QFoGQsxA/i6KPdGgkb0mGpFW6xFTAI+JPR0t+q5eP2mj Z2U40BSmCA6dwWz+9KegXSUAu/UhB9n0fBdJ32xlXgptaMJajhrSVP1GnqBIlNEn WTzprLuA6Yd+SHkekqDyqV/ffZnNyIlaOj/guVrjK+SWIkd9O2eHE/GO0WGVmfcR Esd7P11Qc3WPhc1oMYYMzo352BIpHGHJNIpLLTZh/NAq2RKNNX7pKacPF5GFAW52 FdcvWyQDOn/f+QhoqD0YPqsBbw== -----END CERTIFICATE-----Generated at Sat Mar 28 10:42:20 2026 by rpki-client