$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft File: IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft (raw, json) Hash identifier: 1MAFb/a8AJ1jVhSi2dOXsVzy8XF8sTf16QHk35kElF8= Subject key identifier: F3:7D:80:3E:06:DF:5F:BC:BD:17:E4:B4:D5:B8:A2:2E:78:85:DF:A7 Authority key identifier: 22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 Certificate issuer: /CN=A91CFFCB/serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft Manifest number: 98 Signing time: Wed 25 Mar 2026 06:38:06 +0000 Manifest this update: Wed 25 Mar 2026 06:38:06 +0000 Manifest next update: Wed 01 Apr 2026 06:38:06 +0000 Files and hashes: 1: IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl (hash: xxg37l5z5pjXD5aqPApVoHMKpg+2uVjKTsHWDWlOwSA=) 2: BAEA3A3C497B11F096DCA14EC4F9AE02.roa (hash: b+mY57M99SmP6KZ5ZfpHKrC3YrkcKIFwFC4SLOMsH9I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Validity Not Before: Mar 25 06:38:06 2026 GMT Not After : Apr 1 06:38:06 2026 GMT Subject: CN=69c382ce-af92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:64:a8:9a:23:61:71:b2:28:ae:c9:08:35:a8: 89:28:fb:1e:6c:b3:40:3d:42:32:1e:e6:84:99:82: bf:58:af:7c:20:77:b4:6a:ee:c4:0b:f1:de:2c:3c: 79:f5:96:10:80:ff:94:0b:02:65:01:86:6d:5a:bc: 08:4f:11:a1:dd:e9:f1:81:58:11:8b:98:d9:35:e0: 4f:02:0f:c4:cb:ab:d9:1b:41:ee:c8:ba:15:eb:d8: 34:30:48:7b:a7:b6:8a:81:00:39:fd:e3:ef:eb:fa: 17:4b:cc:c6:45:d3:87:8d:53:28:b9:52:1b:c5:d8: 16:3c:d6:75:a0:6f:0f:c3:20:45:ce:3f:1c:6d:b4: 5d:0d:6d:34:9d:52:67:c5:80:6c:3e:a3:56:b0:a1: 16:62:c1:5e:e6:c6:66:d6:62:9c:03:c7:a7:dd:ba: f5:89:1a:cd:d1:28:50:73:10:53:1c:fd:49:3c:24: 9a:dd:23:62:28:46:c5:fd:57:13:6b:57:a6:d7:4d: 2c:63:1b:73:1d:c4:49:19:ee:5a:84:a9:ae:f5:b6: 40:3f:3e:9c:b9:6b:38:41:69:fb:9f:a0:c7:30:99: 41:02:b0:db:bc:41:63:cd:6a:3e:ac:89:33:2e:bb: 72:1c:70:8a:42:c3:79:95:b4:39:60:ac:b8:5b:f7: c9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:7D:80:3E:06:DF:5F:BC:BD:17:E4:B4:D5:B8:A2:2E:78:85:DF:A7 X509v3 Authority Key Identifier: keyid:22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:9e:df:e1:3c:5f:22:27:65:6d:05:6e:a2:e7:e2:fe:69:ee: b1:96:b7:1b:b0:cb:cf:5a:51:07:ed:51:f2:f4:9f:52:8b:18: 77:ee:b0:77:b6:0e:2a:cb:84:32:10:3d:16:dd:2f:11:eb:a2: 0f:68:be:fe:dd:b9:fa:1f:1f:65:a1:0e:77:ff:cf:f5:ed:34: 6f:73:25:00:f0:89:33:12:6e:04:10:4f:08:b3:67:73:3c:11: 03:a2:91:6a:71:8c:31:bd:6b:f3:65:36:71:65:ed:7d:3e:02: ee:3b:0b:37:90:05:60:f9:f4:1e:3e:09:a8:e5:e3:65:f7:1b: 78:19:d6:9a:db:28:d8:2f:12:dc:d8:1a:7e:ae:2d:db:09:e0: 09:53:15:a4:7e:3c:8e:14:cf:6f:f1:90:8e:ee:95:06:80:30: 40:a2:5e:f5:52:98:e4:95:d4:d3:ba:c7:02:d1:fa:fe:18:89: 7f:c6:64:8d:e0:c9:06:7c:f9:df:ec:7f:28:51:7e:d7:9d:45: 98:fb:28:b6:0c:55:e6:a9:9a:48:e0:9c:f3:78:ae:43:b6:c5: 8e:e2:23:08:a6:b0:41:be:1d:8e:fb:07:13:d2:80:d5:59:3f: 31:2a:5c:b1:84:a1:de:9f:00:c6:eb:45:e3:3c:8b:c9:89:86: cc:50:0f:74 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQ0IxMTAvBgNVBAUTKDIyMjQyOTQ0MTZCODQ2NTcwNjU1NEI1MkNCQzU2RjQ0 OUJDNDZDODkwHhcNMjYwMzI1MDYzODA2WhcNMjYwNDAxMDYzODA2WjAYMRYwFAYD VQQDEw02OWMzODJjZS1hZjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWSomiNhcbIorskINaiJKPsebLNAPUIyHuaEmYK/WK98IHe0au7EC/HeLDx5 9ZYQgP+UCwJlAYZtWrwITxGh3enxgVgRi5jZNeBPAg/Ey6vZG0HuyLoV69g0MEh7 p7aKgQA5/ePv6/oXS8zGRdOHjVMouVIbxdgWPNZ1oG8PwyBFzj8cbbRdDW00nVJn xYBsPqNWsKEWYsFe5sZm1mKcA8en3br1iRrN0ShQcxBTHP1JPCSa3SNiKEbF/VcT a1em100sYxtzHcRJGe5ahKmu9bZAPz6cuWs4QWn7n6DHMJlBArDbvEFjzWo+rIkz LrtyHHCKQsN5lbQ5YKy4W/fJMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPN9gD4G 31+8vRfktNW4oi54hd+nMB8GA1UdIwQYMBaAFCIkKUQWuEZXBlVLUsvFb0SbxGyJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZDQi9FRDBGMTFGNDQy MDUxMUYwQkY3QTg3MTFDNEY5QUUwMi9JaVFwUkJhNFJsY0dWVXRTeThWdlJKdkVi SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lpUXBSQmE0UmxjR1ZVdFN5OFZ2Ukp2RWJJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZDQi9FRDBGMTFGNDQyMDUxMUYwQkY3QTg3MTFDNEY5QUUwMi9JaVFwUkJhNFJs Y0dWVXRTeThWdlJKdkViSWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm57f4TxfIidlbQVuoufi/mnusZa3G7DLz1pRB+1R8vSfUosYd+6wd7YOKsuE MhA9Ft0vEeuiD2i+/t25+h8fZaEOd//P9e00b3MlAPCJMxJuBBBPCLNnczwRA6KR anGMMb1r82U2cWXtfT4C7jsLN5AFYPn0Hj4JqOXjZfcbeBnWmtso2C8S3Ngafq4t 2wngCVMVpH48jhTPb/GQju6VBoAwQKJe9VKY5JXU07rHAtH6/hiJf8ZkjeDJBnz5 3+x/KFF+151FmPsotgxV5qmaSOCc83iuQ7bFjuIjCKawQb4djvsHE9KA1Vk/MSpc sYSh3p8AxutF4zyLyYmGzFAPdA== -----END CERTIFICATE-----Generated at Thu Mar 26 15:41:16 2026 by rpki-client