$ rpki-client -vvf rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft File: i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft (raw, json) Hash identifier: rusUz/MZ3DBlktTvJ81FaDizLhEWHdE8LD73EZaDOog= Subject key identifier: B1:CF:B3:ED:C0:F7:A8:B2:8C:74:71:2B:6C:E9:21:0B:77:00:E7:32 Authority key identifier: 8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D Certificate issuer: /CN=A91D37E4/serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Certificate serial: 080C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft Manifest number: 07FD Signing time: Tue 24 Mar 2026 20:55:18 +0000 Manifest this update: Tue 24 Mar 2026 20:55:17 +0000 Manifest next update: Tue 31 Mar 2026 20:55:17 +0000 Files and hashes: 1: i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl (hash: jo4W5+I8Qftc98//xKhj5mnmjUxICWE9itHafqq+TyE=) 2: BD764EAE1D5B11EBAB008D19C4F9AE02.roa (hash: JZqHXQRGfZxF3NgJ2VE0gwCg4J3Ofdou+/uDHMJJLwg=) 3: D933655E23B511EBA7BDD50FC4F9AE02.roa (hash: D8eauO5Ji5HlCRuIfjUIlmK4L86PjKaAnDzrks9sonQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2060 (0x80c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D37E4, serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Validity Not Before: Mar 24 20:55:17 2026 GMT Not After : Mar 31 20:55:17 2026 GMT Subject: CN=69c2fa36-751c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:19:88:d2:f3:d5:83:03:3c:a4:d4:39:43:b4: 52:fe:55:4e:0a:5f:ba:88:ed:18:16:c5:01:be:38: de:c9:b7:7a:24:6a:6f:a1:d6:b4:cd:53:a9:a3:f7: 8c:d2:12:7f:70:c1:9c:fa:75:af:fb:86:01:23:38: 07:b8:35:a2:b0:58:00:a3:c9:3a:a5:8e:79:2a:60: 83:23:f5:93:25:0d:0a:18:d9:03:6a:e1:6c:33:63: 9c:ca:62:ec:b3:b9:0e:8c:4a:40:2b:4e:9e:55:d6: d5:e0:f0:0b:20:df:95:0f:61:10:39:31:e6:6f:01: a7:60:f0:d6:e8:d9:3d:46:f0:73:68:fe:76:b5:dc: 4e:ef:0b:76:1e:e8:6e:21:63:5d:d3:24:11:fb:6a: 27:08:13:e6:d0:4f:98:f9:e5:fd:f5:58:c9:66:af: ec:33:87:e2:9b:9d:1b:fb:68:0e:fc:9d:4e:9a:7f: dc:f8:af:6d:4a:eb:17:08:e5:ac:b7:d0:5d:26:0b: b2:88:b5:86:0c:8f:ba:09:7c:15:2e:41:75:70:61: 30:9d:d2:cd:24:1c:ad:1a:b6:e4:3e:b9:d5:f8:8f: c3:aa:c1:15:0b:f0:12:2d:be:bb:95:48:cd:93:0f: 0c:b3:5b:72:9f:da:b4:d2:4b:08:fb:89:a1:10:e8: ee:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:CF:B3:ED:C0:F7:A8:B2:8C:74:71:2B:6C:E9:21:0B:77:00:E7:32 X509v3 Authority Key Identifier: keyid:8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:a3:b3:97:1b:27:77:7d:7b:5e:20:06:b1:3e:d3:c0:98:d3: a1:db:69:89:4f:c8:ae:90:de:e6:1e:ac:0b:ac:05:bf:2e:98: ab:75:f3:31:a2:e4:15:6a:1e:be:25:ed:2b:c3:f9:cb:27:d8: df:e7:4d:da:ed:e1:46:66:a6:1b:4a:7b:a1:b0:3d:c7:2e:7a: 40:ba:e0:d6:17:d1:0a:4f:52:33:65:b8:46:9b:97:fb:ce:fa: d5:b2:21:65:66:08:80:7a:f7:d8:9a:fa:c0:b8:f5:7d:6f:58: fa:90:36:a2:70:a6:5d:f2:b7:43:b1:44:12:e5:fc:be:15:92: 39:06:f3:35:bf:c4:c2:49:64:3a:e7:36:bf:bd:f5:93:eb:10: 1b:c8:65:65:d9:3c:33:f1:f4:36:75:34:60:8f:00:b1:65:92: 7a:50:c0:fb:13:77:c7:5c:8b:71:d8:5e:34:5c:26:51:8f:5f: 6a:2e:a7:6a:17:19:b7:f3:24:7b:92:d9:f3:82:68:ba:60:6f: c2:34:47:79:b6:e9:a1:e5:5d:85:31:be:27:c9:e6:e1:02:2e: 7e:73:76:71:1a:2f:3e:23:83:d7:28:33:a6:ee:27:35:ef:39: e6:77:4e:d5:7a:a7:d7:8c:63:f1:a9:d6:a6:96:8c:23:95:5f: f7:39:52:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM3RTQxMTAvBgNVBAUTKDhCREE4QTFGRTA3QjQ2QzMzMDYzMDQ2QTcyNUVBQjg1 NjQyQjlDMkQwHhcNMjYwMzI0MjA1NTE3WhcNMjYwMzMxMjA1NTE3WjAYMRYwFAYD VQQDEw02OWMyZmEzNi03NTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhmI0vPVgwM8pNQ5Q7RS/lVOCl+6iO0YFsUBvjjeybd6JGpvoda0zVOpo/eM 0hJ/cMGc+nWv+4YBIzgHuDWisFgAo8k6pY55KmCDI/WTJQ0KGNkDauFsM2OcymLs s7kOjEpAK06eVdbV4PALIN+VD2EQOTHmbwGnYPDW6Nk9RvBzaP52tdxO7wt2Huhu IWNd0yQR+2onCBPm0E+Y+eX99VjJZq/sM4fim50b+2gO/J1Omn/c+K9tSusXCOWs t9BdJguyiLWGDI+6CXwVLkF1cGEwndLNJBytGrbkPrnV+I/DqsEVC/ASLb67lUjN kw8Ms1tyn9q00ksI+4mhEOjuhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLHPs+3A 96iyjHRxK2zpIQt3AOcyMB8GA1UdIwQYMBaAFIvaih/ge0bDMGMEanJeq4VkK5wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzdFNC8zNkZCMTE0NDFE NUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1JzTXdZd1JxY2w2cmhXUXJu QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5cUtILUI3UnNNd1l3UnFjbDZyaFdRcm5DMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzdFNC8zNkZCMTE0NDFENUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1Jz TXdZd1JxY2w2cmhXUXJuQzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAg6Ozlxsnd317XiAGsT7TwJjTodtpiU/IrpDe5h6sC6wFvy6Yq3XzMaLkFWoe viXtK8P5yyfY3+dN2u3hRmamG0p7obA9xy56QLrg1hfRCk9SM2W4RpuX+8761bIh ZWYIgHr32Jr6wLj1fW9Y+pA2onCmXfK3Q7FEEuX8vhWSOQbzNb/EwklkOuc2v731 k+sQG8hlZdk8M/H0NnU0YI8AsWWSelDA+xN3x1yLcdheNFwmUY9fai6nahcZt/Mk e5LZ84JoumBvwjRHebbpoeVdhTG+J8nm4QIufnN2cRovPiOD1ygzpu4nNe855ndO 1Xqn14xj8anWppaMI5Vf9zlSHg== -----END CERTIFICATE-----Generated at Thu Mar 26 19:16:09 2026 by rpki-client