$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft File: Ikchh2oR4tOkuYshvIT3jmT-yEY.mft (raw, json) Hash identifier: uQDF8SI2dVVx7AEvf4DtEkX6ANWAfTcCLa4U6Coz5/c= Subject key identifier: 9E:5F:29:42:A0:52:64:A5:34:67:35:CF:D3:20:25:93:E9:C7:23:D2 Authority key identifier: 22:47:21:87:6A:11:E2:D3:A4:B9:8B:21:BC:84:F7:8E:64:FE:C8:46 Certificate issuer: /CN=A91CEE6D/serialNumber=224721876A11E2D3A4B98B21BC84F78E64FEC846 Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft Manifest number: 60 Signing time: Wed 25 Mar 2026 07:13:31 +0000 Manifest this update: Wed 25 Mar 2026 07:13:30 +0000 Manifest next update: Wed 01 Apr 2026 07:13:30 +0000 Files and hashes: 1: Ikchh2oR4tOkuYshvIT3jmT-yEY.crl (hash: tC61IVq2uB6hK1dljKAF8o6e7ml9XbAXKlLrfKHgGzY=) 2: 09F2A296A02E11F08BC71221C4F9AE02.roa (hash: SOUc2IXOvl/L1pMPWSJBgclEArQVhHSL8F26Jssjy60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.crl rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:13:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE6D, serialNumber=224721876A11E2D3A4B98B21BC84F78E64FEC846 Validity Not Before: Mar 25 07:13:30 2026 GMT Not After : Apr 1 07:13:30 2026 GMT Subject: CN=69c38b1b-c4ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:63:22:57:c2:c6:55:38:c8:60:8a:d2:83:2c: d5:da:dd:de:76:19:3f:f3:cc:de:fd:31:e4:5f:c3: 67:c3:b1:f2:c7:c5:57:85:4e:23:c7:9f:3a:e8:6a: 55:ee:20:67:fe:b1:69:22:81:6a:34:43:96:7f:49: 11:db:8a:15:b8:f6:73:4a:97:18:40:48:48:d0:18: 1c:d6:2d:ce:20:2e:26:a0:61:06:5c:a2:a1:c8:38: 73:ac:d7:da:55:9d:a7:36:8c:ea:01:ff:dd:22:d6: 8c:a4:79:86:72:0d:e6:00:b8:a6:87:11:c4:19:60: 6a:38:e1:80:9d:76:69:f7:e1:9e:b5:95:74:a2:f4: d9:6d:fc:13:ec:95:6c:e8:57:01:5e:f1:1b:54:5f: 26:5e:1a:97:90:e9:8e:45:97:1c:75:66:ca:49:76: 33:ef:1b:bd:63:ac:65:11:48:e4:8d:dd:5a:45:7a: ea:ff:74:43:1e:7f:1a:b5:92:a9:79:f1:07:24:1a: aa:13:df:d9:a0:7e:eb:5a:f8:d8:f0:0f:aa:be:8a: 63:b5:56:16:4f:fb:81:77:e3:d4:e4:22:37:65:5e: d6:92:cb:35:b5:2b:27:b7:af:a6:86:bb:7c:ed:08: 84:94:fc:f8:56:3a:de:9f:ff:e2:f4:6e:02:48:b0: ee:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:5F:29:42:A0:52:64:A5:34:67:35:CF:D3:20:25:93:E9:C7:23:D2 X509v3 Authority Key Identifier: keyid:22:47:21:87:6A:11:E2:D3:A4:B9:8B:21:BC:84:F7:8E:64:FE:C8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:bc:6a:0c:92:fe:97:34:6c:3b:c5:dc:4e:a8:3f:c0:f8:7b: 89:69:6e:73:7a:c5:b2:36:86:d7:3b:84:1f:ef:1a:ae:1f:11: 65:e1:68:2f:ff:e6:39:ac:75:7f:a7:ac:f0:04:2f:ac:d8:1b: 58:c8:12:80:fd:c0:24:d2:ad:09:35:92:99:a7:df:bb:b9:27: 3a:f5:f0:18:c8:d8:d3:44:51:db:bd:1a:95:93:9d:29:c9:32: 5b:73:a4:c8:53:ba:ee:88:f7:a4:36:11:c5:68:8e:54:cd:40: f8:50:22:ab:a4:56:f8:91:4a:49:26:f9:68:5a:ee:ec:6e:69: 19:5a:92:4d:e2:11:e9:36:d5:3e:d3:69:75:9e:58:73:9d:b8: f2:9b:a7:5b:ec:2f:49:41:5b:40:cc:f2:ed:cd:93:3d:21:5d: 58:06:98:ab:7d:03:78:d4:de:86:88:c4:24:66:2f:60:f0:2a: 2a:4f:9e:cc:10:45:4a:18:a8:3d:c0:8e:0c:d2:9c:9a:c2:38: ac:81:31:de:1a:41:4f:a2:92:31:5e:3d:87:c1:ef:6a:80:7a: a8:bf:82:a0:6e:1b:5e:05:9a:18:26:e6:27:cb:ce:94:60:13: 55:80:cd:49:09:0c:09:aa:50:f5:16:eb:62:80:94:f0:57:5a: e5:0f:fb:1b -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RUU2RDExMC8GA1UEBRMoMjI0NzIxODc2QTExRTJEM0E0Qjk4QjIxQkM4NEY3OEU2 NEZFQzg0NjAeFw0yNjAzMjUwNzEzMzBaFw0yNjA0MDEwNzEzMzBaMBgxFjAUBgNV BAMTDTY5YzM4YjFiLWM0ZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFYyJXwsZVOMhgitKDLNXa3d52GT/zzN79MeRfw2fDsfLHxVeFTiPHnzroalXu IGf+sWkigWo0Q5Z/SRHbihW49nNKlxhASEjQGBzWLc4gLiagYQZcoqHIOHOs19pV nac2jOoB/90i1oykeYZyDeYAuKaHEcQZYGo44YCddmn34Z61lXSi9Nlt/BPslWzo VwFe8RtUXyZeGpeQ6Y5Flxx1ZspJdjPvG71jrGURSOSN3VpFeur/dEMefxq1kql5 8QckGqoT39mgfuta+NjwD6q+imO1VhZP+4F349TkIjdlXtaSyzW1Kye3r6aGu3zt CISU/PhWOt6f/+L0bgJIsO63AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUnl8pQqBS ZKU0ZzXP0yAlk+nHI9IwHwYDVR0jBBgwFoAUIkchh2oR4tOkuYshvIT3jmT+yEYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFRTZELzUxMTEwQUZFOTc2 NTExRjA5MjNBNjcwQ0M0RjlBRTAyL0lrY2hoMm9SNHRPa3VZc2h2SVQzam1ULXlF WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSWtjaGgyb1I0dE9rdVlzaHZJVDNqbVQteUVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF RTZELzUxMTEwQUZFOTc2NTExRjA5MjNBNjcwQ0M0RjlBRTAyL0lrY2hoMm9SNHRP a3VZc2h2SVQzam1ULXlFWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQACvGoMkv6XNGw7xdxOqD/A+HuJaW5zesWyNobXO4Qf7xquHxFl4Wgv/+Y5rHV/ p6zwBC+s2BtYyBKA/cAk0q0JNZKZp9+7uSc69fAYyNjTRFHbvRqVk50pyTJbc6TI U7ruiPekNhHFaI5UzUD4UCKrpFb4kUpJJvloWu7sbmkZWpJN4hHpNtU+02l1nlhz nbjym6db7C9JQVtAzPLtzZM9IV1YBpirfQN41N6GiMQkZi9g8CoqT57MEEVKGKg9 wI4M0pyawjisgTHeGkFPopIxXj2Hwe9qgHqov4KgbhteBZoYJuYny86UYBNVgM1J CQwJqlD1FutigJTwV1rlD/sb -----END CERTIFICATE-----Generated at Thu Mar 26 19:07:25 2026 by rpki-client