$ rpki-client -vvf rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft File: IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft (raw, json) Hash identifier: UVT5CCfJtDqowR6erP/LTp4rMYFw6r5wBvbwiF2lFZg= Subject key identifier: 92:2C:DC:43:76:3E:0C:72:FA:48:2C:F6:1A:AB:8E:1A:80:B0:B4:3B Authority key identifier: 21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 Certificate issuer: /CN=A91C53FD/serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft Manifest number: 016A Signing time: Wed 25 Mar 2026 04:04:57 +0000 Manifest this update: Wed 25 Mar 2026 04:04:57 +0000 Manifest next update: Wed 01 Apr 2026 04:04:57 +0000 Files and hashes: 1: IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl (hash: BgDi7O8Ha2nvQb/ACqFrHB1eWiQXXdrITiZT3VxM4yc=) 2: B15E8BECFF3211EEA8607454C4F9AE02.roa (hash: Y5fEICLeeOhc+g47DjMlbbzmzMJMpxb31hRmWJOjwFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:04:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C53FD, serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Validity Not Before: Mar 25 04:04:57 2026 GMT Not After : Apr 1 04:04:57 2026 GMT Subject: CN=69c35ee9-27a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9e:e5:6d:2a:dd:f5:4b:e3:80:0c:d5:91:95: 3c:49:d9:04:eb:80:54:02:65:2d:b6:2f:35:37:4d: 29:b9:5c:5e:75:7d:4d:cb:88:ad:26:a0:0a:b6:76: c1:b6:6f:cd:2f:4a:0f:58:25:98:83:ca:ff:71:9c: 87:2a:e2:d1:0f:41:3c:de:2f:1b:4a:8e:b0:9d:80: 55:5e:f9:9f:6d:8b:4f:79:03:1d:5f:96:76:bc:d2: 97:1f:8c:26:a0:2c:ab:69:be:11:c0:81:a4:27:9f: 80:af:c0:41:cf:b3:79:b2:5a:55:ff:dd:d3:5d:a1: 36:70:ad:22:13:a0:41:a6:7a:e4:85:9c:36:21:53: 7e:0a:7f:a4:55:7f:04:fb:02:e7:a4:94:32:6f:0b: 39:e5:f4:62:a8:11:eb:44:d2:4e:a9:d0:f2:8a:84: 0c:8d:a3:61:ae:19:39:f5:a1:81:7d:24:6c:3d:f2: b9:59:3c:e4:d5:90:91:94:e4:bc:f7:9f:f8:d2:8f: fb:32:95:25:4d:57:0d:25:c1:3f:68:e5:ca:35:f5: e0:5c:75:2f:25:09:af:95:f8:08:39:16:5e:dc:cf: c5:e7:1f:19:04:7f:db:3e:8a:4f:30:84:f9:e5:fb: 1d:82:88:60:aa:0b:5c:6c:69:f9:72:86:b5:28:21: e6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:2C:DC:43:76:3E:0C:72:FA:48:2C:F6:1A:AB:8E:1A:80:B0:B4:3B X509v3 Authority Key Identifier: keyid:21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:fa:dc:2c:46:75:6f:e6:1e:b4:69:09:88:1c:bd:dd:08:e6: 21:42:da:d9:0f:6d:b3:4d:f3:b5:22:37:f9:e9:0c:fe:48:51: 1c:91:52:fb:2c:2c:79:43:4d:f3:b1:42:d5:de:e3:c4:9d:31: 03:a9:3c:ee:2e:11:7a:2a:c0:9c:ed:65:9f:f8:50:98:aa:6a: 8c:88:ab:02:87:61:c8:36:bc:01:25:51:ef:60:eb:54:96:57: a7:90:3e:d2:eb:48:c9:b7:f7:5e:e7:e0:aa:8b:2c:50:8b:5c: e8:44:29:e1:5b:84:e6:be:6e:a3:fe:8d:81:40:0d:d9:13:c2: 52:4f:80:2e:93:eb:3e:1a:ad:32:48:b1:38:24:b7:1a:16:41: 5c:4b:71:fc:be:d5:39:de:5a:76:f8:bc:f6:09:ca:bc:f6:ee: 31:92:9c:b1:ad:7e:03:70:e8:9e:41:d2:a6:08:8f:ad:30:9c: 7b:92:d7:01:19:f6:18:d5:7c:3b:14:d2:36:4b:25:c7:08:8d: a6:74:d2:6f:07:96:b1:77:28:de:cf:c3:e9:88:ef:a2:a5:ca: d4:18:7b:a2:71:dd:1e:f6:dd:14:9a:7f:7b:20:33:ff:28:7d: 12:07:c7:66:62:2f:05:4e:e6:a1:9c:b4:15:c5:6d:54:a4:88: 7c:16:04:ed -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzRkQxMTAvBgNVBAUTKDIxOTM0MTk4RTgzMzEwNjFEMjc1QjhDRkM3OTQ1OEQz MkZBQkQ2QzkwHhcNMjYwMzI1MDQwNDU3WhcNMjYwNDAxMDQwNDU3WjAYMRYwFAYD VQQDEw02OWMzNWVlOS0yN2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZ7lbSrd9UvjgAzVkZU8SdkE64BUAmUtti81N00puVxedX1Ny4itJqAKtnbB tm/NL0oPWCWYg8r/cZyHKuLRD0E83i8bSo6wnYBVXvmfbYtPeQMdX5Z2vNKXH4wm oCyrab4RwIGkJ5+Ar8BBz7N5slpV/93TXaE2cK0iE6BBpnrkhZw2IVN+Cn+kVX8E +wLnpJQybws55fRiqBHrRNJOqdDyioQMjaNhrhk59aGBfSRsPfK5WTzk1ZCRlOS8 95/40o/7MpUlTVcNJcE/aOXKNfXgXHUvJQmvlfgIORZe3M/F5x8ZBH/bPopPMIT5 5fsdgohgqgtcbGn5coa1KCHmowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJIs3EN2 Pgxy+kgs9hqrjhqAsLQ7MB8GA1UdIwQYMBaAFCGTQZjoMxBh0nW4z8eUWNMvq9bJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTNGRC82ODhFNTdFRUZG MzIxMUVFQTU1RDhFNTNDNEY5QUUwMi9JWk5CbU9nekVHSFNkYmpQeDVSWTB5LXIx c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laTkJtT2d6RUdIU2RialB4NVJZMHktcjFzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTNGRC82ODhFNTdFRUZGMzIxMUVFQTU1RDhFNTNDNEY5QUUwMi9JWk5CbU9nekVH SFNkYmpQeDVSWTB5LXIxc2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQfrcLEZ1b+YetGkJiBy93QjmIULa2Q9ts03ztSI3+ekM/khRHJFS+ywseUNN 87FC1d7jxJ0xA6k87i4ReirAnO1ln/hQmKpqjIirAodhyDa8ASVR72DrVJZXp5A+ 0utIybf3XufgqossUItc6EQp4VuE5r5uo/6NgUAN2RPCUk+ALpPrPhqtMkixOCS3 GhZBXEtx/L7VOd5advi89gnKvPbuMZKcsa1+A3DonkHSpgiPrTCce5LXARn2GNV8 OxTSNkslxwiNpnTSbweWsXco3s/D6YjvoqXK1Bh7onHdHvbdFJp/eyAz/yh9EgfH ZmIvBU7moZy0FcVtVKSIfBYE7Q== -----END CERTIFICATE-----Generated at Thu Mar 26 07:34:55 2026 by rpki-client