$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft File: iPsdIcuIPJfCmst31NaIhLOnpgg.mft (raw, json) Hash identifier: IfwsbOMK9Sb/ATygGPgi16d0feYTcho0wuQ/vS2haF0= Subject key identifier: BD:7B:51:E3:5E:75:BE:8F:82:B1:1E:B0:AD:7E:F5:7D:1F:51:4F:E0 Authority key identifier: 88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 Certificate issuer: /CN=A91B6A04/serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft Manifest number: 43 Signing time: Wed 25 Mar 2026 07:38:17 +0000 Manifest this update: Wed 25 Mar 2026 07:38:17 +0000 Manifest next update: Wed 01 Apr 2026 07:38:17 +0000 Files and hashes: 1: iPsdIcuIPJfCmst31NaIhLOnpgg.crl (hash: rk/Zz7ybkloa/4p6KVHlyZhiG4rq5Lmuj5tcrIHBydE=) 2: 74C3FC2413B911F1B7CEB625083D8C67.roa (hash: P4H5FeCoBASYrayJLn/hEkJQo4s7Z0+nN2dTkoyBEgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6A04, serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Validity Not Before: Mar 25 07:38:17 2026 GMT Not After : Apr 1 07:38:17 2026 GMT Subject: CN=69c390e9-278d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:2a:f1:d2:d8:e5:8a:c5:1c:4b:bb:5e:5c:6c: 8c:dd:c5:d3:3e:17:40:26:90:a8:f4:ee:dd:af:11: 99:b7:6d:57:06:57:be:0a:bf:a6:8a:8c:f3:dc:e0: cd:22:bc:8b:6f:bc:37:c7:de:c0:01:e3:ad:20:85: 91:f6:8b:05:d5:a9:b5:a0:de:83:af:57:ea:ca:13: d6:26:d9:09:47:50:4f:5a:4f:df:24:4d:b4:06:0d: 7f:52:52:f3:e4:15:a2:80:53:4a:d8:2b:3a:e3:a0: 36:a2:5a:22:a5:6a:61:be:21:e5:50:17:b6:69:fd: 24:2c:cd:6a:d5:7a:f3:b2:f5:c1:cb:2e:38:80:f8: be:b8:a4:3b:35:b6:08:f1:17:06:9e:2d:f0:41:c6: 8a:4e:6b:fc:cd:60:47:a7:35:7b:e6:87:f5:40:05: 5d:8c:0a:dd:7c:f9:47:33:6e:93:23:4f:a8:d4:8b: 5c:ff:24:76:b1:17:7f:1e:98:b9:23:42:6a:33:68: 3d:c4:02:3a:46:79:92:21:29:4d:f3:e4:3b:1a:f2: 0f:29:66:8e:22:09:45:98:50:9e:c0:77:71:27:9b: 21:17:ec:37:e8:50:84:d7:29:5b:36:74:13:0f:d8: 33:c8:dc:7d:df:a9:27:8b:b3:69:7f:32:b1:8b:4f: ba:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:7B:51:E3:5E:75:BE:8F:82:B1:1E:B0:AD:7E:F5:7D:1F:51:4F:E0 X509v3 Authority Key Identifier: keyid:88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:e1:50:0b:be:31:fc:3c:ed:ad:af:5b:22:7c:2e:78:76:64: 1d:f3:e9:02:66:77:32:9b:9e:f2:7a:53:ab:c1:1b:81:75:8b: 53:87:a2:5e:04:64:14:e8:69:95:2e:e4:67:b4:e2:7c:c0:18: 95:39:88:48:36:90:45:73:93:f2:2e:3f:c0:05:5c:83:85:b6: e0:3b:54:0c:e8:27:a5:38:65:d8:6b:1c:ff:4d:87:7e:c9:51: e2:46:46:5e:3d:9a:3f:80:31:b6:88:7d:a9:ed:f0:95:1b:de: 85:4f:bc:26:1d:4d:3f:5b:53:29:cf:d4:d5:9c:58:a9:a8:1a: ff:c6:77:f2:b9:bb:2d:b2:81:07:1d:db:96:d4:3a:7a:d7:1c: e8:ef:08:c3:5c:c1:8e:27:8d:a7:42:e2:5a:5f:61:41:f5:b8: 9d:fe:cc:1e:00:e4:b8:f1:86:87:22:b5:54:56:34:f1:59:58: 3c:29:62:b3:c8:5c:bd:3a:57:e8:c2:1c:44:67:3b:4f:fe:50: 88:3f:57:7e:69:d6:51:10:85:ba:e0:f3:38:5e:ec:88:4e:62: 97:a7:f9:66:0a:09:12:ca:18:74:5d:f5:2f:bc:1a:0d:c9:dd: 77:fc:04:fb:d8:c7:77:96:22:79:de:eb:12:a4:a4:a8:53:59: 64:0a:e4:3a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NkEwNDExMC8GA1UEBRMoODhGQjFEMjFDQjg4M0M5N0MyOUFDQjc3RDRENjg4ODRC M0E3QTYwODAeFw0yNjAzMjUwNzM4MTdaFw0yNjA0MDEwNzM4MTdaMBgxFjAUBgNV BAMTDTY5YzM5MGU5LTI3OGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfKvHS2OWKxRxLu15cbIzdxdM+F0AmkKj07t2vEZm3bVcGV74Kv6aKjPPc4M0i vItvvDfH3sAB460ghZH2iwXVqbWg3oOvV+rKE9Ym2QlHUE9aT98kTbQGDX9SUvPk FaKAU0rYKzrjoDaiWiKlamG+IeVQF7Zp/SQszWrVevOy9cHLLjiA+L64pDs1tgjx FwaeLfBBxopOa/zNYEenNXvmh/VABV2MCt18+UczbpMjT6jUi1z/JHaxF38emLkj QmozaD3EAjpGeZIhKU3z5Dsa8g8pZo4iCUWYUJ7Ad3EnmyEX7DfoUITXKVs2dBMP 2DPI3H3fqSeLs2l/MrGLT7pVAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUvXtR4151 vo+CsR6wrX71fR9RT+AwHwYDVR0jBBgwFoAUiPsdIcuIPJfCmst31NaIhLOnpggw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2QTA0LzI1QzUyNzdFQzlB RTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpmQ21zdDMxTmFJaExPbnBn Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaVBzZEljdUlQSmZDbXN0MzFOYUloTE9ucGdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 QTA0LzI1QzUyNzdFQzlBRTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpm Q21zdDMxTmFJaExPbnBnZy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAe4VALvjH8PO2tr1sifC54dmQd8+kCZncym57yelOrwRuBdYtTh6JeBGQU6GmV LuRntOJ8wBiVOYhINpBFc5PyLj/ABVyDhbbgO1QM6CelOGXYaxz/TYd+yVHiRkZe PZo/gDG2iH2p7fCVG96FT7wmHU0/W1Mpz9TVnFipqBr/xnfyubstsoEHHduW1Dp6 1xzo7wjDXMGOJ42nQuJaX2FB9bid/sweAOS48YaHIrVUVjTxWVg8KWKzyFy9Olfo whxEZztP/lCIP1d+adZREIW64PM4XuyITmKXp/lmCgkSyhh0XfUvvBoNyd13/AT7 2Md3liJ53usSpKSoU1lkCuQ6 -----END CERTIFICATE-----Generated at Thu Mar 26 11:17:47 2026 by rpki-client