$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft File: IAAAWsWhdEBL07_CmUMyPpYGJbk.mft (raw, json) Hash identifier: A652Vy9wrmblL6FFnbn9DgmiVUiZJFc8w09nOsL+/ZE= Subject key identifier: 8A:92:5E:22:EE:90:FA:A2:7D:0A:BF:D3:54:E1:94:4C:B8:B4:60:78 Authority key identifier: 20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 Certificate issuer: /CN=A91DA590/serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Certificate serial: 03E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft Manifest number: 03DD Signing time: Wed 25 Mar 2026 00:13:03 +0000 Manifest this update: Wed 25 Mar 2026 00:13:02 +0000 Manifest next update: Wed 01 Apr 2026 00:13:02 +0000 Files and hashes: 1: IAAAWsWhdEBL07_CmUMyPpYGJbk.crl (hash: qc+k7ifIPGri1cXtlAshSg1BBqlDjAqILL0pJI8HxfI=) 2: 09E46A74C07F11ECB0707F18C4F9AE02.roa (hash: kBFUh+A5t0uG5ToonKBS8JyMqqztNI0BDIiwYVryoTc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1001 (0x3e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA590, serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Validity Not Before: Mar 25 00:13:02 2026 GMT Not After : Apr 1 00:13:02 2026 GMT Subject: CN=69c3288f-b3c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2d:a6:2a:12:33:92:e4:db:08:60:00:78:7b: 80:04:b2:4f:55:61:f8:6b:47:b0:ed:38:85:3b:ec: a7:06:4a:9b:62:38:9c:7d:39:93:8c:f8:21:2e:74: fc:a3:ab:9f:4b:3a:28:c8:dc:a8:16:00:00:a9:d2: 04:ab:48:3d:1f:e3:15:79:d7:f9:e9:6c:ff:1a:ba: 6b:00:f2:a5:eb:93:5d:35:50:a1:db:6f:1a:85:a1: ae:49:5a:b0:e0:5f:2d:cf:78:54:c6:eb:c0:ac:0b: 0b:71:73:14:ec:44:6a:fc:bb:52:de:d2:0b:1e:f9: 87:15:e9:4b:8e:24:a3:82:a8:4b:9e:68:e3:70:d7: 8a:08:9f:fd:d8:18:f4:db:8e:0f:74:93:e1:28:d8: 7f:ef:14:2b:cc:f1:1c:1b:03:4f:56:12:43:98:59: a9:1b:93:84:3b:b3:5b:d0:96:57:d7:6a:0d:8e:a1: af:57:77:f9:cb:3d:c7:79:66:70:af:9c:e1:3d:59: b6:f4:18:96:00:9d:96:dd:0c:b4:7a:a5:5c:66:ab: cd:24:2b:1a:f9:3b:c4:6b:50:0a:23:0b:a4:dc:68: 5a:18:f0:b7:b6:51:c6:1d:6c:fd:19:fb:b8:fd:1b: 1c:5e:93:63:5a:14:45:f4:56:42:70:5c:c8:98:52: d4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:92:5E:22:EE:90:FA:A2:7D:0A:BF:D3:54:E1:94:4C:B8:B4:60:78 X509v3 Authority Key Identifier: keyid:20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:cc:6e:3b:70:07:9b:21:a8:cc:fe:eb:92:bc:59:a0:55:78: 22:f2:fb:4f:8f:cb:15:9a:c7:f6:9d:a0:c1:c2:8e:3c:24:51: 6b:a2:5f:47:c7:5a:a2:f6:73:7b:df:25:d9:81:93:dc:ba:c0: 80:e0:39:0d:e2:e0:68:17:4e:8f:b4:69:79:87:90:44:cb:2a: 06:05:7c:51:d6:7f:9e:1e:bd:81:49:6b:86:47:45:62:07:b2: ad:8b:ee:47:02:3f:29:91:99:af:4d:44:07:2e:8a:70:f5:ce: ee:c2:3b:54:c7:bc:ab:81:9f:cb:ee:a9:2c:cf:01:97:c1:5c: e1:10:56:de:d2:98:46:6f:3e:7d:90:4a:0b:54:25:e0:b7:5b: 46:57:f1:01:cd:40:5b:88:68:c3:6a:95:c3:35:90:a7:11:d3: 51:66:0e:99:6a:84:62:53:9d:16:7d:cd:99:08:ac:be:2e:03: 57:30:c5:89:ae:c2:67:fc:38:44:00:d6:bb:89:1c:82:7b:dd: 0d:6f:d8:8e:c3:70:6b:6d:ee:1b:9e:24:61:95:9d:46:c7:32: d4:06:d4:4f:11:df:90:9f:b9:3c:3e:86:8e:6b:62:23:01:2e: 69:dd:7b:ef:f5:24:1f:3b:b0:6b:58:ac:c8:75:6f:fd:a4:89: 2d:a0:a7:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1OTAxMTAvBgNVBAUTKDIwMDAwMDVBQzVBMTc0NDA0QkQzQkZDMjk5NDMzMjNF OTYwNjI1QjkwHhcNMjYwMzI1MDAxMzAyWhcNMjYwNDAxMDAxMzAyWjAYMRYwFAYD VQQDEw02OWMzMjg4Zi1iM2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqC2mKhIzkuTbCGAAeHuABLJPVWH4a0ew7TiFO+ynBkqbYjicfTmTjPghLnT8 o6ufSzooyNyoFgAAqdIEq0g9H+MVedf56Wz/GrprAPKl65NdNVCh228ahaGuSVqw 4F8tz3hUxuvArAsLcXMU7ERq/LtS3tILHvmHFelLjiSjgqhLnmjjcNeKCJ/92Bj0 244PdJPhKNh/7xQrzPEcGwNPVhJDmFmpG5OEO7Nb0JZX12oNjqGvV3f5yz3HeWZw r5zhPVm29BiWAJ2W3Qy0eqVcZqvNJCsa+TvEa1AKIwuk3GhaGPC3tlHGHWz9Gfu4 /RscXpNjWhRF9FZCcFzImFLUDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIqSXiLu kPqifQq/01ThlEy4tGB4MB8GA1UdIwQYMBaAFCAAAFrFoXRAS9O/wplDMj6WBiW5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTU5MC85NTEwRTg2QUMw N0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRFQkwwN19DbVVNeVBwWUdK YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lBQUFXc1doZEVCTDA3X0NtVU15UHBZR0piay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTU5MC85NTEwRTg2QUMwN0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRF QkwwN19DbVVNeVBwWUdKYmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjMxuO3AHmyGozP7rkrxZoFV4IvL7T4/LFZrH9p2gwcKOPCRRa6JfR8daovZz e98l2YGT3LrAgOA5DeLgaBdOj7RpeYeQRMsqBgV8UdZ/nh69gUlrhkdFYgeyrYvu RwI/KZGZr01EBy6KcPXO7sI7VMe8q4Gfy+6pLM8Bl8Fc4RBW3tKYRm8+fZBKC1Ql 4LdbRlfxAc1AW4how2qVwzWQpxHTUWYOmWqEYlOdFn3NmQisvi4DVzDFia7CZ/w4 RADWu4kcgnvdDW/YjsNwa23uG54kYZWdRscy1AbUTxHfkJ+5PD6GjmtiIwEuad17 7/UkHzuwa1isyHVv/aSJLaCn5A== -----END CERTIFICATE-----Generated at Thu Mar 26 10:06:12 2026 by rpki-client