$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft File: iHgvgx82npb5eaJYXPJzyRbHtP0.mft (raw, json) Hash identifier: 8r7xRLvN1bERky7dCzzXCAxWAoYquo1sX3ycRPH8zd4= Subject key identifier: 1F:E6:6D:09:18:73:23:C6:33:D6:AA:6D:2A:1A:CE:A6:0C:92:69:2E Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Certificate serial: 0738 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft Manifest number: 071E Signing time: Tue 24 Mar 2026 21:36:17 +0000 Manifest this update: Tue 24 Mar 2026 21:36:17 +0000 Manifest next update: Tue 31 Mar 2026 21:36:17 +0000 Files and hashes: 1: iHgvgx82npb5eaJYXPJzyRbHtP0.crl (hash: lxKQP/yw2iaS0MC0EubpIqr8NJFeOm4LKFN/G6z5UUc=) 2: 2BC67A2A346711EF9EEB0F52C4F9AE02.roa (hash: QKYaxLpX/SQs5/c2F5OMS0OrA2VZBlIsKBf0LDbK85o=) 3: A0A96F80AD8511F08B0A1857C4F9AE02.roa (hash: E4mvIp0TY49n7Ku16oPaGsPeRK5kr/jdVq6qAjBUp9s=) 4: 0F425E96346711EFA663CD51C4F9AE02.roa (hash: W7HbZgiurIous/dkOII7Zs+KL83NW7eUE5Qjtxcpxno=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:36:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1848 (0x738) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65E6, serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Validity Not Before: Mar 24 21:36:17 2026 GMT Not After : Mar 31 21:36:17 2026 GMT Subject: CN=69c303d1-b107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c8:53:c6:55:c6:4a:af:82:70:9f:e6:8b:15: 6e:56:c4:94:84:bb:30:86:9c:09:93:c6:d4:f7:1c: 8c:5d:5b:14:8b:77:31:f4:21:50:10:42:74:9b:96: a1:33:af:f2:47:62:43:d0:4c:7f:70:4b:43:e5:56: e8:4f:6f:93:a8:59:f9:61:ff:f1:06:2a:e9:16:76: ab:cc:1b:74:fb:85:17:3b:4a:80:db:6f:d2:64:ad: 31:59:cd:b7:e0:7c:ad:00:e0:96:97:e8:8d:30:06: 04:67:fc:4f:08:9c:70:28:80:ee:ae:fb:73:a1:eb: 98:0e:0c:c6:37:0e:f1:19:05:ec:db:16:76:db:e3: 98:d1:00:b5:80:54:9c:51:94:06:17:ca:da:09:a9: be:73:09:25:7f:04:f6:a5:3c:2d:0e:32:15:ad:04: 53:f4:99:d8:25:70:08:5a:94:53:c7:7b:20:64:a3: b0:42:fd:1a:65:36:e5:00:d5:7c:cd:86:b1:15:82: 3e:ab:18:e8:da:62:97:56:f2:5b:ae:67:bf:40:16: 03:46:e9:d0:d6:f8:81:c1:f1:9a:cc:a1:74:78:30: 3a:e7:2e:0b:39:cf:c3:06:e7:26:d2:39:90:25:ed: 8f:00:d4:c1:ae:f3:01:69:f3:ab:a3:2c:35:e7:70: c4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:E6:6D:09:18:73:23:C6:33:D6:AA:6D:2A:1A:CE:A6:0C:92:69:2E X509v3 Authority Key Identifier: keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:e9:d1:5f:93:a8:21:23:33:c1:a4:e4:6f:3b:36:c9:a9:d9: 2e:db:85:60:bb:e5:90:45:44:eb:01:ed:de:f2:59:f6:24:f6: 91:9e:c1:19:7f:22:61:dc:ed:68:21:aa:73:73:28:a4:fa:92: 15:e7:73:f1:86:3b:e2:c5:89:bc:93:f6:4e:f8:b2:04:50:fa: 44:0b:b4:d7:af:31:0b:2e:64:17:e5:ce:d6:44:b6:54:a0:49: 1b:4b:24:0d:48:c2:b6:44:42:b4:f8:c5:55:7f:80:f0:ab:72: 07:b1:25:b6:1e:b1:b3:cc:a4:d6:77:71:96:a5:37:d7:c6:0f: af:ac:73:99:29:ad:b6:7a:46:9a:f5:0f:97:6c:cd:98:76:b1: e6:6f:ab:8e:4b:9a:5e:8a:e9:07:7f:3a:28:a9:92:97:b1:69: 49:49:f9:98:d3:0a:93:89:81:3b:ca:e5:b2:f9:57:d4:cf:62: 3d:04:68:71:74:5a:48:77:ab:4b:f9:c2:d3:2f:0a:34:d7:18: 97:ed:c0:fe:e3:67:50:90:b5:9f:c2:a7:0d:28:e5:93:5f:06: 2f:31:e2:70:cf:4b:93:75:57:2f:4b:41:16:c8:5a:a5:81:0b: a2:04:1f:58:b5:3d:98:f8:a4:08:ad:48:03:0d:13:f1:11:49: 16:0b:bd:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1RTYxMTAvBgNVBAUTKDg4NzgyRjgzMUYzNjlFOTZGOTc5QTI1ODVDRjI3M0M5 MTZDN0I0RkQwHhcNMjYwMzI0MjEzNjE3WhcNMjYwMzMxMjEzNjE3WjAYMRYwFAYD VQQDEw02OWMzMDNkMS1iMTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1chTxlXGSq+CcJ/mixVuVsSUhLswhpwJk8bU9xyMXVsUi3cx9CFQEEJ0m5ah M6/yR2JD0Ex/cEtD5VboT2+TqFn5Yf/xBirpFnarzBt0+4UXO0qA22/SZK0xWc23 4HytAOCWl+iNMAYEZ/xPCJxwKIDurvtzoeuYDgzGNw7xGQXs2xZ22+OY0QC1gFSc UZQGF8raCam+cwklfwT2pTwtDjIVrQRT9JnYJXAIWpRTx3sgZKOwQv0aZTblANV8 zYaxFYI+qxjo2mKXVvJbrme/QBYDRunQ1viBwfGazKF0eDA65y4LOc/DBucm0jmQ Je2PANTBrvMBafOroyw153DEFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB/mbQkY cyPGM9aqbSoazqYMkmkuMB8GA1UdIwQYMBaAFIh4L4MfNp6W+XmiWFzyc8kWx7T9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVFNi84N0QxRUQwNjdB ODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5wYjVlYUpZWFBKenlSYkh0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lIZ3ZneDgybnBiNWVhSllYUEp6eVJiSHRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVFNi84N0QxRUQwNjdBODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5w YjVlYUpZWFBKenlSYkh0UDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASunRX5OoISMzwaTkbzs2yanZLtuFYLvlkEVE6wHt3vJZ9iT2kZ7BGX8iYdzt aCGqc3MopPqSFedz8YY74sWJvJP2TviyBFD6RAu0168xCy5kF+XO1kS2VKBJG0sk DUjCtkRCtPjFVX+A8KtyB7Elth6xs8yk1ndxlqU318YPr6xzmSmttnpGmvUPl2zN mHax5m+rjkuaXorpB386KKmSl7FpSUn5mNMKk4mBO8rlsvlX1M9iPQRocXRaSHer S/nC0y8KNNcYl+3A/uNnUJC1n8KnDSjlk18GLzHicM9Lk3VXL0tBFshapYELogQf WLU9mPikCK1IAw0T8RFJFgu9yw== -----END CERTIFICATE-----Generated at Thu Mar 26 18:17:45 2026 by rpki-client