$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: YG0CKqyt6KY2dAw6AbrN4v9il5oV50ueo3/eUgX7GRA= Subject key identifier: 88:69:CB:54:73:D9:DD:F2:70:06:89:86:43:9E:6E:9C:7A:8B:F9:B3 Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 1001 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0FC4 Signing time: Tue 24 Mar 2026 17:25:10 +0000 Manifest this update: Tue 24 Mar 2026 17:25:09 +0000 Manifest next update: Tue 31 Mar 2026 17:25:09 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: 2kzZ+/bZBc8+ySioZEpOMw3y6+fyjvTk0/HSxajvT/0=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: thWs/wjgTce2OH8uRbqin2U/9yRfT0t37bg0yz1umNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4097 (0x1001) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: Mar 24 17:25:09 2026 GMT Not After : Mar 31 17:25:09 2026 GMT Subject: CN=69c2c8f6-11a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6b:da:9e:dc:81:bd:39:70:32:70:64:d8:f2: 22:cd:5f:78:9d:01:01:26:9a:1c:44:f8:bf:50:0a: c3:a2:37:3a:9c:41:38:6c:8f:6d:ea:11:16:75:e9: 3d:5d:2a:c8:5c:0c:cd:a4:33:40:3a:31:9e:41:35: 40:4c:19:8f:22:fd:dc:95:d3:d2:03:91:db:52:03: 92:4f:01:01:25:b4:dd:c0:85:14:a6:2b:e4:27:79: 12:76:06:49:b2:fd:3d:c2:93:be:f0:90:9b:8a:e7: 11:62:f0:2f:cc:f2:4e:53:c3:b4:77:c3:03:79:c8: f7:b6:10:b7:91:2f:18:55:2d:f7:3b:c0:4a:e9:c1: 4a:29:2d:ee:41:58:ea:31:2c:34:9a:2e:e4:f3:46: 7b:d8:b0:67:f1:f8:0c:c8:e1:bf:02:e6:8a:91:59: 38:b8:0b:1d:1a:43:a8:3f:73:52:42:68:4d:ec:3b: 60:be:bf:50:05:4f:bd:d2:53:d3:d4:c4:db:db:fa: bf:7c:be:ca:98:41:a6:d8:94:aa:6b:4e:70:d9:87: c7:c2:58:98:80:c3:7f:98:7a:08:39:84:42:fd:4b: 0f:05:94:8e:5c:df:95:d9:24:89:23:32:fe:db:68: 90:34:02:f2:36:1f:2a:a0:eb:59:32:75:dd:0b:2b: 2e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:69:CB:54:73:D9:DD:F2:70:06:89:86:43:9E:6E:9C:7A:8B:F9:B3 X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:4b:6d:81:19:db:d2:d8:d6:0c:89:9d:5b:19:06:cf:40:98: 6e:2e:20:1b:41:aa:d7:08:57:19:23:9d:d0:d4:2d:ed:3c:f8: 7c:c0:d5:e9:9c:e7:13:ab:d0:72:94:68:b8:d8:e3:8d:83:11: e4:05:c9:29:8c:12:a0:e6:b4:3b:bb:c5:85:fd:80:37:53:1b: 31:ef:9c:c5:b0:3c:de:d3:e8:86:21:b1:15:2a:44:8b:eb:94: 07:11:47:63:90:fd:95:fc:39:5f:4c:73:94:16:70:fb:28:2c: 33:3d:56:94:35:65:bb:b1:41:b1:d2:44:2f:0e:87:1b:39:e8: 08:e7:fb:03:f3:8a:60:ec:63:61:b1:97:e3:e7:b5:da:3e:ec: a3:3e:ce:16:79:61:8a:db:d0:51:f2:ca:2d:58:71:16:12:f8: a0:18:df:18:fd:64:dd:9e:9e:53:cd:be:44:4a:31:c1:fe:dc: 58:68:db:39:7b:5d:57:ac:fc:6a:c4:84:7a:7a:3d:d0:bf:c3: c1:a5:e9:4d:43:eb:94:38:dc:b9:df:0a:f8:8a:4a:21:70:79: aa:c4:47:2b:68:19:62:58:9c:fc:ad:7a:c1:af:b2:e0:b7:b0: 6c:15:c9:01:ca:cf:0e:c2:13:17:e0:a6:23:ca:8b:b8:18:67: 51:43:ce:f5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEAEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjYwMzI0MTcyNTA5WhcNMjYwMzMxMTcyNTA5WjAYMRYwFAYD VQQDEw02OWMyYzhmNi0xMWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2WvantyBvTlwMnBk2PIizV94nQEBJpocRPi/UArDojc6nEE4bI9t6hEWdek9 XSrIXAzNpDNAOjGeQTVATBmPIv3cldPSA5HbUgOSTwEBJbTdwIUUpivkJ3kSdgZJ sv09wpO+8JCbiucRYvAvzPJOU8O0d8MDecj3thC3kS8YVS33O8BK6cFKKS3uQVjq MSw0mi7k80Z72LBn8fgMyOG/AuaKkVk4uAsdGkOoP3NSQmhN7Dtgvr9QBU+90lPT 1MTb2/q/fL7KmEGm2JSqa05w2YfHwliYgMN/mHoIOYRC/UsPBZSOXN+V2SSJIzL+ 22iQNALyNh8qoOtZMnXdCysuJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIhpy1Rz 2d3ycAaJhkOebpx6i/mzMB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC0ttgRnb0tjWDImdWxkGz0CYbi4gG0Gq1whXGSOd0NQt7Tz4fMDV6ZznE6vQ cpRouNjjjYMR5AXJKYwSoOa0O7vFhf2AN1MbMe+cxbA83tPohiGxFSpEi+uUBxFH Y5D9lfw5X0xzlBZw+ygsMz1WlDVlu7FBsdJELw6HGznoCOf7A/OKYOxjYbGX4+e1 2j7soz7OFnlhitvQUfLKLVhxFhL4oBjfGP1k3Z6eU82+REoxwf7cWGjbOXtdV6z8 asSEeno90L/DwaXpTUPrlDjcud8K+IpKIXB5qsRHK2gZYlic/K16wa+y4LewbBXJ AcrPDsITF+CmI8qLuBhnUUPO9Q== -----END CERTIFICATE-----Generated at Thu Mar 26 19:27:55 2026 by rpki-client