$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft File: iZOTjIV1ACgOj15T3As-kweu1Kc.mft (raw, json) Hash identifier: hjhqdl4ZKeTxJ8ItSsSFkLYMoT0mD8p7aNUavQVQS/4= Subject key identifier: 84:FC:B3:2A:E8:3F:35:A1:FF:E1:13:F1:A5:AF:75:69:97:61:30:79 Authority key identifier: 89:93:93:8C:85:75:00:28:0E:8F:5E:53:DC:0B:3E:93:07:AE:D4:A7 Certificate issuer: /CN=A91BD3E1/serialNumber=8993938C857500280E8F5E53DC0B3E9307AED4A7 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft Manifest number: D2 Signing time: Fri 27 Mar 2026 06:17:54 +0000 Manifest this update: Fri 27 Mar 2026 06:17:54 +0000 Manifest next update: Fri 03 Apr 2026 06:17:54 +0000 Files and hashes: 1: iZOTjIV1ACgOj15T3As-kweu1Kc.crl (hash: xvosQwopJejNBLoR7cNoI1VNt9La7VlEQVuQsPW0b9A=) 2: 459FAF10EF4811EF8F4B9284C4F9AE02.roa (hash: wgm/K3czk438q8wY+F8Senpx6ebVl18VJSckLP4XIDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.crl rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 06:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD3E1, serialNumber=8993938C857500280E8F5E53DC0B3E9307AED4A7 Validity Not Before: Mar 27 06:17:54 2026 GMT Not After : Apr 3 06:17:54 2026 GMT Subject: CN=69c62112-2889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:60:8b:d6:ea:93:7a:78:78:dd:1d:67:91:18: 5a:49:3e:db:8d:f5:93:66:5a:4d:1e:f7:cc:a6:3f: 87:08:8f:89:02:6b:13:14:2d:28:31:30:6d:47:05: 5e:1e:a2:fd:63:97:ad:8b:8e:94:4f:8c:f0:c5:49: aa:13:0d:50:e9:f3:bb:0b:b5:5f:27:a4:08:55:0e: fd:37:10:2a:e9:fd:68:49:6f:81:ae:90:9c:df:5f: 7e:89:05:dc:be:ac:6a:50:21:46:81:1e:14:88:f9: 81:2e:27:64:43:b2:cc:b5:c9:fc:25:b4:f6:d6:aa: 49:4e:65:43:40:ee:70:d9:87:a2:f8:86:c3:a5:bd: a9:c8:df:d1:da:03:67:3c:55:8c:ee:c5:b3:95:ba: 64:f8:8e:3c:4e:de:46:a8:d4:a5:83:87:56:f5:f7: 92:7f:c8:7b:35:c9:8d:9c:d0:07:67:16:79:25:38: b2:a2:7a:5a:be:9d:c9:a8:4a:94:c8:2b:59:1e:de: 6f:d7:41:31:dd:90:d8:b4:f7:c4:ea:ff:af:86:66: f5:81:38:19:d7:84:09:78:ea:92:80:a1:58:77:74: 77:be:3b:32:33:2b:bf:43:0c:d3:2c:f8:29:7c:98: 8d:d8:6f:3c:a2:b6:79:76:51:69:3d:ff:e4:e3:56: 0f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:FC:B3:2A:E8:3F:35:A1:FF:E1:13:F1:A5:AF:75:69:97:61:30:79 X509v3 Authority Key Identifier: keyid:89:93:93:8C:85:75:00:28:0E:8F:5E:53:DC:0B:3E:93:07:AE:D4:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:7f:2d:ee:cc:7e:bd:73:e1:41:97:fe:e3:da:63:2c:78:7e: db:85:9b:3e:1b:ea:4d:80:59:51:ce:84:4c:f0:b4:95:3b:08: eb:61:a8:46:9e:58:86:68:25:3f:e1:2e:f4:c5:28:a8:79:0a: 8d:a9:85:72:f9:4b:e2:d8:72:b5:fb:a0:2b:68:27:0e:55:ea: 4e:ee:8f:a6:34:3f:ec:d7:26:02:7e:17:dd:81:9e:f2:e4:f9: f9:55:4d:70:3d:fc:c8:31:48:db:09:ca:d2:d2:66:d0:d6:70: dc:85:3e:07:bb:40:e5:a0:e4:54:df:48:cf:f4:28:35:3a:5f: 1a:9f:5a:2f:09:2c:03:5a:ab:ba:5c:17:5d:af:cb:94:fd:a8: 0a:d3:3e:ab:1c:33:9d:c3:e5:c7:63:32:fb:b9:d7:2c:80:90: f2:9a:3d:5b:c7:20:f5:a1:64:b2:d3:9a:ab:39:d2:d4:08:b9: 4b:02:56:7c:ef:99:eb:93:f1:df:14:3a:d4:de:68:65:87:c6: ab:7a:cb:f7:25:4d:32:fb:b0:96:ae:05:0d:92:66:38:b2:82: 24:e0:6d:f4:d8:19:6b:b0:8d:1b:40:49:28:6b:8c:fd:f9:66: 91:d5:39:38:ca:35:cd:71:a2:94:4c:70:c6:ad:94:5b:35:1a: 36:ee:7a:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQzRTExMTAvBgNVBAUTKDg5OTM5MzhDODU3NTAwMjgwRThGNUU1M0RDMEIzRTkz MDdBRUQ0QTcwHhcNMjYwMzI3MDYxNzU0WhcNMjYwNDAzMDYxNzU0WjAYMRYwFAYD VQQDEw02OWM2MjExMi0yODg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGCL1uqTenh43R1nkRhaST7bjfWTZlpNHvfMpj+HCI+JAmsTFC0oMTBtRwVe HqL9Y5eti46UT4zwxUmqEw1Q6fO7C7VfJ6QIVQ79NxAq6f1oSW+BrpCc319+iQXc vqxqUCFGgR4UiPmBLidkQ7LMtcn8JbT21qpJTmVDQO5w2Yei+IbDpb2pyN/R2gNn PFWM7sWzlbpk+I48Tt5GqNSlg4dW9feSf8h7NcmNnNAHZxZ5JTiyonpavp3JqEqU yCtZHt5v10Ex3ZDYtPfE6v+vhmb1gTgZ14QJeOqSgKFYd3R3vjsyMyu/QwzTLPgp fJiN2G88orZ5dlFpPf/k41YPFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIT8syro PzWh/+ET8aWvdWmXYTB5MB8GA1UdIwQYMBaAFImTk4yFdQAoDo9eU9wLPpMHrtSn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDNFMS83Q0YwN0JDNkVG NDcxMUVGQUY0QzQ5NjhDNEY5QUUwMi9pWk9UaklWMUFDZ09qMTVUM0FzLWt3ZXUx S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2laT1RqSVYxQUNnT2oxNVQzQXMta3dldTFLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDNFMS83Q0YwN0JDNkVGNDcxMUVGQUY0QzQ5NjhDNEY5QUUwMi9pWk9UaklWMUFD Z09qMTVUM0FzLWt3ZXUxS2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjX8t7sx+vXPhQZf+49pjLHh+24WbPhvqTYBZUc6ETPC0lTsI62GoRp5Yhmgl P+Eu9MUoqHkKjamFcvlL4thytfugK2gnDlXqTu6PpjQ/7NcmAn4X3YGe8uT5+VVN cD38yDFI2wnK0tJm0NZw3IU+B7tA5aDkVN9Iz/QoNTpfGp9aLwksA1qrulwXXa/L lP2oCtM+qxwzncPlx2My+7nXLICQ8po9W8cg9aFkstOaqznS1Ai5SwJWfO+Z65Px 3xQ61N5oZYfGq3rL9yVNMvuwlq4FDZJmOLKCJOBt9NgZa7CNG0BJKGuM/flmkdU5 OMo1zXGilExwxq2UWzUaNu56kA== -----END CERTIFICATE-----Generated at Sat Mar 28 12:20:36 2026 by rpki-client