$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft File: 1icW92HxiNVvoRf53JS-QUEEpoE.mft (raw, json) Hash identifier: E0/l0DXJIFNqZOx+6apazroi9fHmfUFx+SJStVHoe1U= Subject key identifier: 8C:F0:47:C3:4E:10:D7:C3:92:38:BE:53:B1:64:00:5F:93:3B:55:B0 Authority key identifier: D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 Certificate issuer: /CN=A91C5D53/serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft Manifest number: FB Signing time: Wed 25 Mar 2026 05:27:18 +0000 Manifest this update: Wed 25 Mar 2026 05:27:18 +0000 Manifest next update: Wed 01 Apr 2026 05:27:18 +0000 Files and hashes: 1: 1icW92HxiNVvoRf53JS-QUEEpoE.crl (hash: NWWv+xY82w6Ey1yvEaoW8GHHePyfN7GPe6WsKCRuoYo=) 2: BB5954CE241111F094390A32C4F9AE02.roa (hash: ILuNQjwNhW0PKN+i94dgKZ8uTmGwmDnJT50xUUvXJAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5D53, serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Validity Not Before: Mar 25 05:27:18 2026 GMT Not After : Apr 1 05:27:18 2026 GMT Subject: CN=69c37236-2f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c9:20:72:62:c0:9f:7d:74:d9:4f:23:c1:9d: 90:f7:d7:3a:a3:87:70:a7:f8:32:e5:37:be:61:12: 31:b4:64:37:e1:86:73:e6:a2:67:d5:6a:79:20:6f: 67:73:25:6f:30:ef:ea:05:b0:78:f3:b5:d8:f4:a6: b7:a3:10:5f:97:fb:24:5e:e4:df:d0:a9:9e:30:3d: dc:16:95:67:85:16:23:bd:c4:e8:5f:df:e9:40:91: bc:85:02:e5:66:97:91:d1:37:23:e8:72:e3:89:bc: a7:8e:e0:d3:26:5c:4e:1f:29:39:b5:69:d1:c0:d0: e2:e4:11:e4:e1:36:a3:5a:66:f1:76:19:a5:2e:00: 32:5f:61:16:f4:5a:e4:bf:f8:44:1c:92:09:6a:1f: 11:6a:4f:dc:ae:9c:99:b9:eb:66:0f:85:ee:18:c1: 29:d3:4f:65:af:45:03:ae:af:99:6a:cb:35:c8:dc: db:52:ab:59:5b:b1:7a:62:f5:3b:56:2b:73:85:b8: cc:55:26:e0:92:b5:50:4e:91:b2:a7:1d:fb:79:be: 7a:39:7b:31:12:a0:e8:38:f5:62:9d:90:75:ff:2c: 89:56:5c:cb:b6:8e:49:13:26:a4:77:e1:3d:b2:f4: 7b:c9:70:33:f0:df:3c:e0:58:11:a4:fc:ee:7f:32: 75:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:F0:47:C3:4E:10:D7:C3:92:38:BE:53:B1:64:00:5F:93:3B:55:B0 X509v3 Authority Key Identifier: keyid:D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:b7:a0:f8:f7:e0:a6:14:46:2a:25:3a:4a:37:21:57:53:fc: 5d:b3:6c:c6:58:bf:b7:ad:27:80:1e:c4:fd:af:d0:d4:41:dc: 34:cb:a3:a0:e6:d8:f0:5c:6a:54:f6:22:ca:24:01:57:86:cb: 41:c5:5e:a9:3f:5e:4f:5a:f9:ef:ef:44:60:48:34:3c:16:3e: f5:74:1b:38:3a:32:d5:83:46:81:b4:28:06:eb:37:32:bc:67: 54:92:f5:c0:d6:bf:91:6b:73:48:f8:14:33:17:e0:fd:b9:d8: 35:e3:b2:2e:77:77:91:00:e4:90:32:47:57:d4:62:f0:d0:de: 41:4b:2a:ad:98:b3:89:75:37:7c:50:f6:e9:f7:d2:f9:d7:b8: aa:8b:9d:cc:c1:09:b1:71:6b:f9:ed:89:35:d4:f6:02:00:c2: 8a:8f:d2:5b:80:14:73:7d:02:45:f7:2c:68:0a:87:52:ba:a7: c3:4e:75:6a:30:91:40:d3:fa:b1:88:27:af:de:1f:ca:c0:87: 35:3f:59:06:ae:83:d0:34:b8:80:9d:8b:24:6d:5e:e2:f7:a5: 23:41:d9:fa:f7:99:e1:d6:0a:4d:85:f3:4f:94:cc:de:e0:5f: 06:50:e6:1b:f1:b0:90:9d:4a:2d:5f:84:75:ba:68:ad:b7:4b: 2f:7e:f9:f4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVENTMxMTAvBgNVBAUTKEQ2MjcxNkY3NjFGMTg4RDU2RkExMTdGOURDOTRCRTQx NDEwNEE2ODEwHhcNMjYwMzI1MDUyNzE4WhcNMjYwNDAxMDUyNzE4WjAYMRYwFAYD VQQDEw02OWMzNzIzNi0yZjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApckgcmLAn3102U8jwZ2Q99c6o4dwp/gy5Te+YRIxtGQ34YZz5qJn1Wp5IG9n cyVvMO/qBbB487XY9Ka3oxBfl/skXuTf0KmeMD3cFpVnhRYjvcToX9/pQJG8hQLl ZpeR0Tcj6HLjibynjuDTJlxOHyk5tWnRwNDi5BHk4TajWmbxdhmlLgAyX2EW9Frk v/hEHJIJah8Rak/crpyZuetmD4XuGMEp009lr0UDrq+Zass1yNzbUqtZW7F6YvU7 VitzhbjMVSbgkrVQTpGypx37eb56OXsxEqDoOPVinZB1/yyJVlzLto5JEyakd+E9 svR7yXAz8N884FgRpPzufzJ1WQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIzwR8NO ENfDkji+U7FkAF+TO1WwMB8GA1UdIwQYMBaAFNYnFvdh8YjVb6EX+dyUvkFBBKaB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUQ1My8wNUZGQzAwRUFD ODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlOVnZvUmY1M0pTLVFVRUVw b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpY1c5Mkh4aU5Wdm9SZjUzSlMtUVVFRXBvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUQ1My8wNUZGQzAwRUFDODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlO VnZvUmY1M0pTLVFVRUVwb0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQLeg+PfgphRGKiU6SjchV1P8XbNsxli/t60ngB7E/a/Q1EHcNMujoObY8Fxq VPYiyiQBV4bLQcVeqT9eT1r57+9EYEg0PBY+9XQbODoy1YNGgbQoBus3MrxnVJL1 wNa/kWtzSPgUMxfg/bnYNeOyLnd3kQDkkDJHV9Ri8NDeQUsqrZiziXU3fFD26ffS +de4qoudzMEJsXFr+e2JNdT2AgDCio/SW4AUc30CRfcsaAqHUrqnw051ajCRQNP6 sYgnr94fysCHNT9ZBq6D0DS4gJ2LJG1e4velI0HZ+veZ4dYKTYXzT5TM3uBfBlDm G/GwkJ1KLV+EdbporbdLL3759A== -----END CERTIFICATE-----Generated at Thu Mar 26 04:17:19 2026 by rpki-client