$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft File: iH554lttHTfvHzG8WgIy-OdlFUU.mft (raw, json) Hash identifier: z5bwQMW/tYHr5oLoUs66wd1/g26zUGPqNc8a2ohSAGk= Subject key identifier: 68:F7:6F:55:8A:D9:62:11:BC:0F:81:D4:5A:1C:E6:73:D9:57:85:14 Authority key identifier: 88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 Certificate issuer: /CN=A91D9F5A/serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft Manifest number: 08A4 Signing time: Tue 24 Mar 2026 20:46:24 +0000 Manifest this update: Tue 24 Mar 2026 20:46:23 +0000 Manifest next update: Tue 31 Mar 2026 20:46:23 +0000 Files and hashes: 1: iH554lttHTfvHzG8WgIy-OdlFUU.crl (hash: JvyifS+66aIuuilSJsZvwzUM0YJ9JX7kX6IulJOI5z8=) 2: CEFEDAB26B3D11F0A0837D7FC4F9AE02.roa (hash: B8m2ePIUCgEMFkUqEdw865bj5KYfUZe6gW5FvbGFIPQ=) 3: CF6A89D86B3D11F0A0837D7FC4F9AE02.roa (hash: w4kX8b17fTC2s9BhESajxJlKj2QyQzvAORehV2EbPSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:46:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9F5A, serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Validity Not Before: Mar 24 20:46:23 2026 GMT Not After : Mar 31 20:46:23 2026 GMT Subject: CN=69c2f820-47b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:70:be:84:72:dd:05:4f:d6:28:c2:56:d0:00: c8:9f:52:6e:0c:3b:90:fb:5b:4a:55:de:3b:97:27: 03:57:14:88:f3:81:de:59:ba:5e:5f:a7:52:dd:89: 76:fa:da:0e:61:ec:c3:bb:ab:37:93:fe:65:72:8e: f0:48:87:af:ae:b9:3a:24:99:4e:4b:c0:2a:f6:73: 32:25:2c:b0:42:d9:28:e0:ac:6c:dd:b9:e8:ce:77: 18:88:89:57:a7:dd:27:54:37:a3:33:67:cc:e8:69: a2:d5:5c:62:52:fc:5d:22:a9:34:41:f4:39:53:0a: e1:25:c6:d9:10:fb:5f:46:5b:a6:4a:27:df:b1:03: ba:dd:47:09:0e:9e:89:cb:57:f3:e3:e6:d8:01:b8: 21:99:c7:f1:6b:e3:fa:e4:0a:cc:91:3d:4b:36:c9: 03:7a:15:9d:3e:80:a1:2b:ed:03:d9:62:12:a4:46: 4c:bd:9b:c5:70:5a:10:3b:8c:ac:cb:2b:96:68:a7: 53:01:ad:9f:ba:63:bd:c0:1a:54:f7:16:4c:b2:ce: 5e:85:b6:54:af:bf:70:99:0d:0d:0b:ac:53:54:7f: 85:45:06:0d:b2:26:49:f8:2f:1b:10:80:65:f6:c4: 18:fb:e1:59:0e:8f:22:ea:bb:d2:0f:c0:11:7f:c0: 5c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F7:6F:55:8A:D9:62:11:BC:0F:81:D4:5A:1C:E6:73:D9:57:85:14 X509v3 Authority Key Identifier: keyid:88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:aa:22:99:45:ba:e1:39:ae:40:43:0b:8c:97:57:57:61:38: 4f:da:1c:ee:1a:25:8e:5a:e1:97:8c:da:d1:8a:b3:05:0e:81: 58:db:fe:06:74:42:50:a7:e9:94:87:a2:af:61:8a:92:87:6a: 9f:81:72:c9:9f:52:22:f5:5d:4a:e4:70:84:fc:a7:f5:f6:9b: 2f:51:56:f3:68:2e:be:51:15:bf:9b:a3:9f:62:cd:8b:e9:b0: cb:f2:75:77:a8:bf:30:c7:a0:8a:25:92:2d:bb:d5:be:19:46: c4:f1:65:cb:85:d2:8e:8b:73:fa:de:1b:e7:5c:80:fa:b0:a6: bc:91:cb:00:43:c0:64:0b:80:58:ff:76:ac:81:f8:81:0e:64: 9d:5a:e1:bd:0a:ab:9b:4f:97:c1:ae:51:e8:12:43:d7:80:6e: 87:3b:79:8b:eb:b7:ee:6b:f8:2d:d4:31:53:ee:ea:42:c7:ec: cc:4f:b6:0a:ae:87:a0:f4:1a:d9:01:a4:ef:e3:d4:07:17:b4: f6:25:92:ca:80:23:f1:78:4d:37:90:78:d3:c2:64:9e:4a:7f: 74:e8:97:f1:20:ce:a2:20:b0:9b:27:7c:90:ad:be:07:9c:25: 95:98:89:f7:19:dd:74:0b:62:be:be:97:1e:82:48:d6:91:f4: ca:37:69:f4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlGNUExMTAvBgNVBAUTKDg4N0U3OUUyNUI2RDFEMzdFRjFGMzFCQzVBMDIzMkY4 RTc2NTE1NDUwHhcNMjYwMzI0MjA0NjIzWhcNMjYwMzMxMjA0NjIzWjAYMRYwFAYD VQQDEw02OWMyZjgyMC00N2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnXC+hHLdBU/WKMJW0ADIn1JuDDuQ+1tKVd47lycDVxSI84HeWbpeX6dS3Yl2 +toOYezDu6s3k/5lco7wSIevrrk6JJlOS8Aq9nMyJSywQtko4Kxs3bnozncYiIlX p90nVDejM2fM6Gmi1VxiUvxdIqk0QfQ5UwrhJcbZEPtfRlumSiffsQO63UcJDp6J y1fz4+bYAbghmcfxa+P65ArMkT1LNskDehWdPoChK+0D2WISpEZMvZvFcFoQO4ys yyuWaKdTAa2fumO9wBpU9xZMss5ehbZUr79wmQ0NC6xTVH+FRQYNsiZJ+C8bEIBl 9sQY++FZDo8i6rvSD8ARf8BclQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGj3b1WK 2WIRvA+B1Foc5nPZV4UUMB8GA1UdIwQYMBaAFIh+eeJbbR037x8xvFoCMvjnZRVF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUY1QS8wODk4QjIzQTEx QkExMUVCQkMxQTU4NENDNEY5QUUwMi9pSDU1NGx0dEhUZnZIekc4V2dJeS1PZGxG VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lINTU0bHR0SFRmdkh6RzhXZ0l5LU9kbEZVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUY1QS8wODk4QjIzQTExQkExMUVCQkMxQTU4NENDNEY5QUUwMi9pSDU1NGx0dEhU ZnZIekc4V2dJeS1PZGxGVVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG6oimUW64TmuQEMLjJdXV2E4T9oc7holjlrhl4za0YqzBQ6BWNv+BnRCUKfp lIeir2GKkodqn4FyyZ9SIvVdSuRwhPyn9fabL1FW82guvlEVv5ujn2LNi+mwy/J1 d6i/MMegiiWSLbvVvhlGxPFly4XSjotz+t4b51yA+rCmvJHLAEPAZAuAWP92rIH4 gQ5knVrhvQqrm0+Xwa5R6BJD14Buhzt5i+u37mv4LdQxU+7qQsfszE+2Cq6HoPQa 2QGk7+PUBxe09iWSyoAj8XhNN5B408Jknkp/dOiX8SDOoiCwmyd8kK2+B5wllZiJ 9xnddAtivr6XHoJI1pH0yjdp9A== -----END CERTIFICATE-----Generated at Thu Mar 26 16:54:00 2026 by rpki-client