$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft File: i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json) Hash identifier: 6Iz1S3mCDAFe84FxzlFM/r3B5iiwXshV9P59y9PZ0Yo= Subject key identifier: EB:30:62:5D:54:6C:AE:9A:E1:65:9C:88:D7:16:94:A3:B4:D9:68:C6 Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A Certificate issuer: /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft Manifest number: 0123 Signing time: Wed 25 Mar 2026 04:56:54 +0000 Manifest this update: Wed 25 Mar 2026 04:56:54 +0000 Manifest next update: Wed 01 Apr 2026 04:56:54 +0000 Files and hashes: 1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: YNNd9PaCmWfOEGel1D+TElBEnKuVhimeYkxJ6+B0Jm8=) 2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: /pgTpJCeELO0vx7ey0ylXFhJZdDNJrts1Zcttp5czrc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Validity Not Before: Mar 25 04:56:54 2026 GMT Not After : Apr 1 04:56:54 2026 GMT Subject: CN=69c36b16-db83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4d:e8:1a:4a:15:3e:62:36:3a:e8:68:6b:fe: 14:62:86:33:e8:5a:14:72:93:7a:ea:39:ad:e8:26: 05:9b:03:bc:80:9a:1e:9c:b0:8f:85:fb:5f:63:bb: 63:e8:f7:cc:ee:60:7e:5f:a1:86:eb:9a:0e:6d:4f: e5:72:64:dd:d1:8e:79:2c:75:e5:75:df:f4:a4:04: 40:0d:2e:85:26:7f:f0:ea:3d:47:c0:6e:2b:76:73: af:c8:28:99:06:ce:5c:54:ad:52:a0:4b:ab:fc:9d: 7e:b1:51:70:73:6e:b9:c8:47:89:26:86:7a:bd:be: 34:e9:25:71:af:7a:55:1b:d2:e8:9e:d2:01:cc:03: fa:4c:e2:ef:3b:b0:1f:65:3e:11:ab:c5:01:03:d5: db:d3:33:39:f2:7b:93:ad:48:f1:aa:ff:b2:3f:09: 17:5f:fd:c9:15:0a:46:0b:c5:50:7a:da:11:e2:64: 30:37:a0:9f:e3:a8:ac:a8:ee:8f:06:6c:4a:7d:3f: 34:ae:44:51:01:b1:18:bc:3d:a2:fc:5a:20:f8:48: d9:27:98:3a:77:76:d4:22:13:70:78:dc:6c:72:e0: 35:0c:12:13:84:ba:9b:7e:d5:75:9b:33:e9:78:d7: ee:97:ef:1b:59:7c:ec:d3:c5:af:f3:1b:ed:e8:a8: 00:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:30:62:5D:54:6C:AE:9A:E1:65:9C:88:D7:16:94:A3:B4:D9:68:C6 X509v3 Authority Key Identifier: keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:fc:dc:a1:fb:24:bd:d6:f5:c6:01:1c:e4:9a:20:62:ed:28: ae:70:81:a8:e3:d3:60:fd:9b:52:a6:f4:d3:38:c5:94:6b:ec: 2b:67:5c:e2:54:87:ae:e8:d0:3a:92:5a:6d:f6:02:ba:6d:e0: 93:16:07:d9:ea:fd:5a:7d:fd:6c:fc:76:61:f8:0f:83:b9:d6: 5f:17:03:83:ab:fc:07:b2:ad:65:45:0c:4c:28:1a:cc:66:6b: 9a:15:de:2d:b6:37:a2:2a:62:ac:3c:96:70:81:87:70:9c:25: b5:6b:77:e1:a6:09:3b:fe:b1:bd:82:46:9f:0b:10:69:d5:2d: 48:fe:dc:96:7c:27:a1:0d:22:c8:d8:e3:8d:e5:a0:78:be:82: 86:9b:27:7d:e2:b5:df:c2:24:29:bc:33:9e:47:39:62:e0:9c: 17:4f:42:22:97:a4:07:c4:ff:04:ad:75:1a:1b:34:3f:65:bd: 8f:5e:ee:90:e7:a3:49:8e:d2:9b:ce:c5:c6:19:14:8a:96:29: f6:41:a7:cb:78:cf:29:fa:c0:66:b9:5a:ad:f1:5b:7a:e6:aa: 05:9e:21:a3:be:66:c3:26:09:90:4e:8c:43:ad:c8:bb:4e:2e: bd:ec:df:89:5e:1c:c0:0a:79:6d:ef:93:72:05:31:73:1e:88: 63:98:fa:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKDhCNDg2QUNDQUYxMkE2N0E5NTY4OEU4RDExQkQ2NThD MDQxQzEyNUEwHhcNMjYwMzI1MDQ1NjU0WhcNMjYwNDAxMDQ1NjU0WjAYMRYwFAYD VQQDEw02OWMzNmIxNi1kYjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv03oGkoVPmI2Ouhoa/4UYoYz6FoUcpN66jmt6CYFmwO8gJoenLCPhftfY7tj 6PfM7mB+X6GG65oObU/lcmTd0Y55LHXldd/0pARADS6FJn/w6j1HwG4rdnOvyCiZ Bs5cVK1SoEur/J1+sVFwc265yEeJJoZ6vb406SVxr3pVG9LontIBzAP6TOLvO7Af ZT4Rq8UBA9Xb0zM58nuTrUjxqv+yPwkXX/3JFQpGC8VQetoR4mQwN6Cf46isqO6P BmxKfT80rkRRAbEYvD2i/Fog+EjZJ5g6d3bUIhNweNxscuA1DBIThLqbftV1mzPp eNful+8bWXzs08Wv8xvt6KgA/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOswYl1U bK6a4WWciNcWlKO02WjGMB8GA1UdIwQYMBaAFItIasyvEqZ6lWiOjRG9ZYwEHBJa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi80RDdDRTY2QTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3BucVZhSTZORWIxbGpBUWNF bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2kwaHF6SzhTcG5xVmFJNk5FYjFsakFRY0Vsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi80RDdDRTY2QTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3Bu cVZhSTZORWIxbGpBUWNFbG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvvzcofskvdb1xgEc5JogYu0ornCBqOPTYP2bUqb00zjFlGvsK2dc4lSHrujQ OpJabfYCum3gkxYH2er9Wn39bPx2YfgPg7nWXxcDg6v8B7KtZUUMTCgazGZrmhXe LbY3oipirDyWcIGHcJwltWt34aYJO/6xvYJGnwsQadUtSP7clnwnoQ0iyNjjjeWg eL6ChpsnfeK138IkKbwznkc5YuCcF09CIpekB8T/BK11Ghs0P2W9j17ukOejSY7S m87FxhkUipYp9kGny3jPKfrAZrlarfFbeuaqBZ4ho75mwyYJkE6MQ63Iu04uvezf iV4cwAp5be+TcgUxcx6IY5j6FQ== -----END CERTIFICATE-----Generated at Thu Mar 26 16:21:49 2026 by rpki-client