$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft File: iUKJrUDufmJvXNgvzsVAbbkeHnE.mft (raw, json) Hash identifier: w8LjgehqvHDwGeSl9kohvunJAU9l9iMYocE9D8f/ApI= Subject key identifier: 2B:23:1E:E7:61:E0:4C:8D:3F:EC:CD:C0:38:DC:22:C8:63:EA:45:42 Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft Manifest number: 0137 Signing time: Wed 25 Mar 2026 04:43:16 +0000 Manifest this update: Wed 25 Mar 2026 04:43:16 +0000 Manifest next update: Wed 01 Apr 2026 04:43:16 +0000 Files and hashes: 1: iUKJrUDufmJvXNgvzsVAbbkeHnE.crl (hash: wHdIEsTtReyXqSvePJfFZZZX8mX2GfPUnF8U9iGTebk=) 2: 9EC3DA0CABC311F0B5C5583DC4F9AE02.roa (hash: oQRja5kNE1xgzFCqir1541pX0ir8ZOqbUXiW5IO5uBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790, serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Mar 25 04:43:16 2026 GMT Not After : Apr 1 04:43:16 2026 GMT Subject: CN=69c367e4-884d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c0:f7:ab:43:79:c0:71:36:06:97:5f:a6:59: 2f:34:89:2d:71:cc:86:98:78:0f:0a:02:f2:72:4e: ed:51:2f:19:66:fc:99:6b:8f:87:71:db:cb:40:ec: 7b:c8:1f:14:5c:32:1e:b2:4d:e9:c5:74:28:a6:63: 57:29:64:3d:4c:d0:25:34:61:04:99:56:bd:56:ef: b5:82:b4:77:85:b2:85:dd:9c:b1:f3:19:67:aa:ba: ab:76:ff:ad:a8:b2:35:60:15:84:e5:c0:fb:3d:93: 5b:3a:f5:2b:96:2c:ac:64:3b:dd:01:03:c6:08:8e: a6:06:40:1b:77:43:14:6f:b9:1a:66:c1:e7:13:9d: 5e:e5:44:df:0b:b2:46:9b:ba:85:57:1c:73:56:2c: 60:50:12:04:cd:ec:bb:22:41:e7:3a:47:dc:2e:3f: 54:f5:1d:6b:61:c3:d4:c6:b4:d1:de:a0:ca:4d:4b: 08:1e:6a:70:83:58:13:c7:36:0e:fc:85:08:1c:04: 64:5b:61:58:ae:46:0f:12:fe:18:65:f0:d0:28:aa: 62:7f:4c:5f:76:cb:68:19:38:2d:aa:7f:76:4d:6b: 12:0c:18:4c:76:06:32:19:75:cb:75:94:34:55:46: 79:64:8b:04:27:32:3b:63:a6:ab:57:89:f8:9b:7e: e8:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:23:1E:E7:61:E0:4C:8D:3F:EC:CD:C0:38:DC:22:C8:63:EA:45:42 X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:c2:8e:89:71:eb:e1:ef:07:45:9b:25:6d:e0:9a:cc:38:75: 6a:40:bd:a5:cb:ad:5b:dc:08:53:cc:f3:a4:9f:c4:59:10:ba: 4c:dc:6f:94:38:83:f6:48:8c:c9:3e:bd:e3:ce:1a:bc:6b:80: 5c:9b:5d:b5:ab:e5:bd:29:21:1f:63:21:2d:ea:14:de:fb:5c: fb:bf:6f:9a:30:65:3b:01:43:18:49:b1:ef:6c:12:48:e7:d0: b8:dc:44:9c:4d:63:a4:26:2f:bb:9b:30:fa:4a:05:60:25:c3: 96:54:0b:14:b9:44:b2:a4:78:af:1e:52:45:2b:74:25:d5:ec: 3e:3b:0f:a9:e7:4a:cf:a0:60:af:da:25:77:c9:1b:d8:ef:bf: f2:05:8b:fc:9c:62:65:d8:8c:c0:cd:ff:09:32:c4:d9:c7:a0: dd:2d:c7:ac:5b:3c:82:18:50:28:4c:12:2f:1c:39:d5:fb:36: 6b:db:fb:18:6f:ba:be:a6:6f:80:78:e1:3c:b7:5e:60:35:b5: 47:e9:c1:3d:6e:45:f5:e7:4a:36:f2:93:6c:77:a6:db:f3:55: 70:20:59:81:b7:11:23:a6:f7:21:6f:05:ee:f8:ab:dd:da:ec: 6b:21:a4:5e:fa:99:d5:c4:68:51:9c:78:69:ff:39:b2:96:dd: 27:6c:1c:c0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OTAxMTAvBgNVBAUTKDg5NDI4OUFENDBFRTdFNjI2RjVDRDgyRkNFQzU0MDZE QjkxRTFFNzEwHhcNMjYwMzI1MDQ0MzE2WhcNMjYwNDAxMDQ0MzE2WjAYMRYwFAYD VQQDEw02OWMzNjdlNC04ODRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMD3q0N5wHE2BpdfplkvNIktccyGmHgPCgLyck7tUS8ZZvyZa4+HcdvLQOx7 yB8UXDIesk3pxXQopmNXKWQ9TNAlNGEEmVa9Vu+1grR3hbKF3Zyx8xlnqrqrdv+t qLI1YBWE5cD7PZNbOvUrliysZDvdAQPGCI6mBkAbd0MUb7kaZsHnE51e5UTfC7JG m7qFVxxzVixgUBIEzey7IkHnOkfcLj9U9R1rYcPUxrTR3qDKTUsIHmpwg1gTxzYO /IUIHARkW2FYrkYPEv4YZfDQKKpif0xfdstoGTgtqn92TWsSDBhMdgYyGXXLdZQ0 VUZ5ZIsEJzI7Y6arV4n4m37o9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCsjHudh 4EyNP+zNwDjcIshj6kVCMB8GA1UdIwQYMBaAFIlCia1A7n5ib1zYL87FQG25Hh5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc5MC83MTgwNUJBQzVB RTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZtSnZYTmd2enNWQWJia2VI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc5MC83MTgwNUJBQzVBRTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZt SnZYTmd2enNWQWJia2VIbkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi8KOiXHr4e8HRZslbeCazDh1akC9pcutW9wIU8zzpJ/EWRC6TNxvlDiD9kiM yT69484avGuAXJtdtavlvSkhH2MhLeoU3vtc+79vmjBlOwFDGEmx72wSSOfQuNxE nE1jpCYvu5sw+koFYCXDllQLFLlEsqR4rx5SRSt0JdXsPjsPqedKz6Bgr9old8kb 2O+/8gWL/JxiZdiMwM3/CTLE2ceg3S3HrFs8ghhQKEwSLxw51fs2a9v7GG+6vqZv gHjhPLdeYDW1R+nBPW5F9edKNvKTbHem2/NVcCBZgbcRI6b3IW8F7vir3drsayGk XvqZ1cRoUZx4af85spbdJ2wcwA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:31:01 2026 by rpki-client