$ rpki-client -vvf rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft File: _IholOLXDjUuTxaAUsUbBasFrMU.mft (raw, json) Hash identifier: 232ciG+l5v5ekUE75ojDu4AzPOtjGoCLOA8jearH/jg= Subject key identifier: 81:45:B5:D5:07:8B:34:FC:58:A1:84:F5:E7:FA:DF:A9:B6:10:3F:05 Authority key identifier: FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 Certificate issuer: /CN=A91CABF0/serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Certificate serial: 019E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft Manifest number: 0195 Signing time: Sun 29 Mar 2026 04:00:10 +0000 Manifest this update: Sun 29 Mar 2026 04:00:10 +0000 Manifest next update: Sun 05 Apr 2026 04:00:10 +0000 Files and hashes: 1: _IholOLXDjUuTxaAUsUbBasFrMU.crl (hash: +1dDoNoEJcOKFH5qNurBTHS2MK+luhD5Sad/2cK0F90=) 2: 740B66A6C09A11EE9839DC42C4F9AE02.roa (hash: fXqbBRWZeBNZ3fZzOgA4a+7wMB/4xdAxxRaA5d6gc6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 04:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CABF0, serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Validity Not Before: Mar 29 04:00:10 2026 GMT Not After : Apr 5 04:00:10 2026 GMT Subject: CN=69c8a3ca-0566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:17:0b:0e:f4:a0:e0:c0:63:d9:c0:59:4f:cb: 3f:8a:42:b4:e2:0b:7c:eb:eb:ef:0d:d6:d5:67:65: ae:00:05:7c:ee:47:6d:2a:fa:cb:1a:a7:4e:f6:81: 44:a8:e9:33:b1:70:c6:40:27:4f:ec:91:3f:23:ef: 72:88:d0:04:ca:d4:f2:73:3e:9e:ed:f3:8f:63:fa: b5:4a:7e:87:6d:2f:41:8e:24:fa:d2:22:5d:ef:df: f9:06:c8:53:8e:f8:79:d7:5b:9a:77:5f:db:ae:60: 66:f8:c8:cf:76:34:e3:85:e3:bb:4b:f6:4a:0d:88: f1:c2:f3:27:6f:d5:b2:da:ec:eb:4c:6a:4f:cb:fc: 42:fc:e9:75:75:96:28:36:9b:b1:09:61:3e:ab:25: 99:b7:4a:f6:01:89:72:12:dc:16:64:ba:20:03:1b: 17:5e:b7:1f:22:9d:1f:d5:6b:41:d9:14:06:43:ba: 6e:c4:44:bf:73:8d:31:39:0f:e3:62:d9:6b:48:8e: 43:71:5c:04:28:f6:fe:d3:aa:21:01:8f:18:0b:bf: 9e:29:d8:72:5e:87:ee:44:9e:ae:49:5d:95:98:34: 32:8e:76:fd:e1:b2:c4:a8:91:ea:38:d3:8e:f5:98: 61:25:11:0c:7a:67:14:cc:46:ec:e7:22:28:2e:99: 1c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:45:B5:D5:07:8B:34:FC:58:A1:84:F5:E7:FA:DF:A9:B6:10:3F:05 X509v3 Authority Key Identifier: keyid:FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:9d:c1:46:9f:c5:95:01:45:d5:d5:fc:be:7b:45:e6:a5:b9: 53:b9:ff:1d:c1:68:de:79:b1:f8:8e:97:54:39:00:ea:4e:47: d1:72:20:ba:0c:78:4d:c2:59:48:bb:d1:a4:f5:56:92:c1:18: b6:5e:c1:28:65:f9:c4:00:3d:5b:73:87:ca:74:89:a2:be:1f: 9a:27:51:d3:2e:d8:f4:39:bf:30:a1:5b:02:45:05:4c:17:04: e9:14:a6:78:fc:f3:33:ca:2c:28:43:dc:99:7b:d8:6e:b8:f8: d1:a8:bb:1f:55:36:5f:85:cc:3c:b7:a4:b5:82:45:9b:6e:e7: 09:4c:d7:21:54:7c:22:c9:51:38:64:82:87:95:2c:50:1d:b3: 8f:34:d5:68:18:ed:d8:de:0d:53:1d:eb:3e:10:cb:97:59:f9: 17:50:23:18:b7:13:8e:7f:73:f4:dc:48:f2:d4:59:4c:df:76: b4:f9:a6:dc:d6:82:31:28:4e:b0:f0:76:69:80:aa:1e:04:0a: 47:23:0c:e1:3e:31:50:a0:c8:fa:31:cb:09:dc:77:2e:08:dd: 97:e7:9e:f5:02:5f:37:74:f2:16:5f:95:a4:bc:f3:51:b9:c0: a5:bc:3d:25:0e:01:34:35:b6:70:4a:7c:14:0c:52:67:0d:fa: 43:db:57:07 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FCRjAxMTAvBgNVBAUTKEZDODg2ODk0RTJENzBFMzUyRTRGMTY4MDUyQzUxQjA1 QUIwNUFDQzUwHhcNMjYwMzI5MDQwMDEwWhcNMjYwNDA1MDQwMDEwWjAYMRYwFAYD VQQDEw02OWM4YTNjYS0wNTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RcLDvSg4MBj2cBZT8s/ikK04gt86+vvDdbVZ2WuAAV87kdtKvrLGqdO9oFE qOkzsXDGQCdP7JE/I+9yiNAEytTycz6e7fOPY/q1Sn6HbS9BjiT60iJd79/5BshT jvh511uad1/brmBm+MjPdjTjheO7S/ZKDYjxwvMnb9Wy2uzrTGpPy/xC/Ol1dZYo NpuxCWE+qyWZt0r2AYlyEtwWZLogAxsXXrcfIp0f1WtB2RQGQ7puxES/c40xOQ/j YtlrSI5DcVwEKPb+06ohAY8YC7+eKdhyXofuRJ6uSV2VmDQyjnb94bLEqJHqONOO 9ZhhJREMemcUzEbs5yIoLpkcJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIFFtdUH izT8WKGE9ef636m2ED8FMB8GA1UdIwQYMBaAFPyIaJTi1w41Lk8WgFLFGwWrBazF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUJGMC9EOTZCQTY2MEMw OTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERqVXVUeGFBVXNVYkJhc0Zy TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19JaG9sT0xYRGpVdVR4YUFVc1ViQmFzRnJNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUJGMC9EOTZCQTY2MEMwOTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERq VXVUeGFBVXNVYkJhc0ZyTVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUJ3BRp/FlQFF1dX8vntF5qW5U7n/HcFo3nmx+I6XVDkA6k5H0XIgugx4TcJZ SLvRpPVWksEYtl7BKGX5xAA9W3OHynSJor4fmidR0y7Y9Dm/MKFbAkUFTBcE6RSm ePzzM8osKEPcmXvYbrj40ai7H1U2X4XMPLektYJFm27nCUzXIVR8IslROGSCh5Us UB2zjzTVaBjt2N4NUx3rPhDLl1n5F1AjGLcTjn9z9NxI8tRZTN92tPmm3NaCMShO sPB2aYCqHgQKRyMM4T4xUKDI+jHLCdx3Lgjdl+ee9QJfN3TyFl+VpLzzUbnApbw9 JQ4BNDW2cEp8FAxSZw36Q9tXBw== -----END CERTIFICATE-----Generated at Mon Mar 30 08:53:28 2026 by rpki-client