$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft File: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft (raw, json) Hash identifier: bfOzY3AK+Lu77VqLOryGLfhXgnDOoyubB0lzdStfSok= Subject key identifier: 1B:19:57:FC:EC:4E:A0:1A:23:8D:18:4F:5D:8B:B3:90:5B:FA:5E:52 Authority key identifier: 8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E Certificate issuer: /CN=A91D4413/serialNumber=8AA8786526852346839372631DFB09984BC3005E Certificate serial: 0B32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft Manifest number: 2C82 Signing time: Tue 24 Mar 2026 15:51:24 +0000 Manifest this update: Tue 24 Mar 2026 15:51:23 +0000 Manifest next update: Tue 31 Mar 2026 15:51:23 +0000 Files and hashes: 1: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl (hash: xa8tALLou81zNkiorleWYmCajI1XgXNLVy01QJnhA5E=) 2: DD7FC172E17D11EFAC0A7E29C4F9AE02.roa (hash: 57YOScYyW25SbkRe4gLEfeAEyJokYAolQdn+dblWiFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2866 (0xb32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4413, serialNumber=8AA8786526852346839372631DFB09984BC3005E Validity Not Before: Mar 24 15:51:23 2026 GMT Not After : Mar 31 15:51:23 2026 GMT Subject: CN=69c2b2fb-5bc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:ec:4c:f2:a7:9d:cf:c8:b2:3a:17:2d:2e:fa: c8:0e:22:03:b0:84:95:2d:1b:b6:25:31:91:23:d2: bb:d1:f8:b1:ff:f3:a7:2c:fb:1e:10:6a:d2:c4:84: 4a:db:4c:e7:b6:d9:54:26:73:13:58:50:5a:f2:20: c3:84:53:b3:f7:4c:c2:cf:bc:09:5f:90:a7:c1:a4: a0:84:5e:32:72:45:2a:38:c4:f1:33:95:e1:98:1a: 37:6d:37:62:91:0d:6c:a6:69:a9:a2:4a:67:80:67: 79:3e:b4:3e:08:e9:d6:6b:c7:d4:eb:4e:19:b7:04: bd:ed:5c:51:92:86:46:24:1d:85:fa:30:89:04:f7: cc:48:d5:38:e6:8c:8a:7b:29:7f:7f:56:89:5d:84: 90:4b:ed:9f:68:42:0f:81:52:6a:92:0f:7f:33:ec: 6f:80:45:f6:db:4e:b4:05:29:d4:b0:85:b5:70:15: 18:da:cc:b7:5d:1c:11:72:20:ca:14:c3:cb:76:5e: 68:6d:de:45:3a:8e:c7:f9:88:97:99:d3:1b:27:b7: df:a2:e3:58:84:63:04:b0:9a:0a:8d:a5:3a:2c:3d: ed:7c:14:6c:1a:94:6a:a2:7c:e9:d8:11:d6:62:83: f9:dc:44:bc:16:b0:85:1c:c2:97:d7:03:0d:c0:3a: 43:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:19:57:FC:EC:4E:A0:1A:23:8D:18:4F:5D:8B:B3:90:5B:FA:5E:52 X509v3 Authority Key Identifier: keyid:8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:68:f5:ab:4b:ff:ab:97:d0:d9:62:ae:24:5d:8d:dd:d2:92: e6:1b:80:c6:d5:82:7e:3c:7d:a2:48:80:ab:9e:ea:9f:c6:51: 52:2d:cc:8b:e8:d4:a2:88:d6:70:7f:38:bf:16:fd:60:03:76: 3b:ad:3c:40:c2:90:e8:43:66:f6:eb:30:1d:5d:da:e6:c1:20: 0a:d2:fd:76:b3:7b:9a:72:72:ef:3d:41:57:e1:84:96:68:45: 1b:80:20:cc:64:50:54:bc:4a:af:3a:da:2f:0f:83:74:ea:62: af:f5:4f:a9:b2:61:3f:89:22:c3:ff:54:0c:5e:93:6d:d8:fe: 24:cc:e9:ca:58:0e:57:eb:13:e6:f0:79:2c:d8:fa:18:c1:4a: 4a:30:54:83:f8:f4:5e:fd:7d:21:30:28:24:d9:ae:bf:8a:d0: c6:a0:1a:d0:d3:ec:ea:6d:89:b6:5d:39:f6:92:89:26:b1:2d: 93:43:f4:61:d9:09:b0:b1:a0:1d:eb:4c:1d:80:0a:65:3e:e7: 16:d0:6c:cb:c4:c7:48:37:bf:41:94:95:6b:d9:21:ed:37:cb: 2a:af:2f:31:72:eb:a3:66:bf:d6:5c:73:2c:f6:9d:20:f7:cc: f0:2c:2d:37:9e:ad:80:bc:6e:79:29:14:41:30:4d:99:82:f4: 17:01:0e:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0MTMxMTAvBgNVBAUTKDhBQTg3ODY1MjY4NTIzNDY4MzkzNzI2MzFERkIwOTk4 NEJDMzAwNUUwHhcNMjYwMzI0MTU1MTIzWhcNMjYwMzMxMTU1MTIzWjAYMRYwFAYD VQQDEw02OWMyYjJmYi01YmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAluxM8qedz8iyOhctLvrIDiIDsISVLRu2JTGRI9K70fix//OnLPseEGrSxIRK 20znttlUJnMTWFBa8iDDhFOz90zCz7wJX5CnwaSghF4yckUqOMTxM5XhmBo3bTdi kQ1spmmpokpngGd5PrQ+COnWa8fU604ZtwS97VxRkoZGJB2F+jCJBPfMSNU45oyK eyl/f1aJXYSQS+2faEIPgVJqkg9/M+xvgEX22060BSnUsIW1cBUY2sy3XRwRciDK FMPLdl5obd5FOo7H+YiXmdMbJ7ffouNYhGMEsJoKjaU6LD3tfBRsGpRqonzp2BHW YoP53ES8FrCFHMKX1wMNwDpDjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBsZV/zs TqAaI40YT12Ls5Bb+l5SMB8GA1UdIwQYMBaAFIqoeGUmhSNGg5NyYx37CZhLwwBe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDQxMy8wODE2RTc1NEZG QjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkwYURrM0pqSGZzSm1FdkRB RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lxaDRaU2FGSTBhRGszSmpIZnNKbUV2REFGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDQxMy8wODE2RTc1NEZGQjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkw YURrM0pqSGZzSm1FdkRBRjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMWj1q0v/q5fQ2WKuJF2N3dKS5huAxtWCfjx9okiAq57qn8ZRUi3Mi+jUoojW cH84vxb9YAN2O608QMKQ6ENm9uswHV3a5sEgCtL9drN7mnJy7z1BV+GElmhFG4Ag zGRQVLxKrzraLw+DdOpir/VPqbJhP4kiw/9UDF6Tbdj+JMzpylgOV+sT5vB5LNj6 GMFKSjBUg/j0Xv19ITAoJNmuv4rQxqAa0NPs6m2Jtl059pKJJrEtk0P0YdkJsLGg HetMHYAKZT7nFtBsy8THSDe/QZSVa9kh7TfLKq8vMXLro2a/1lxzLPadIPfM8Cwt N56tgLxueSkUQTBNmYL0FwEOsw== -----END CERTIFICATE-----Generated at Thu Mar 26 13:38:41 2026 by rpki-client