$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: wGwQfN/s7Fs9K8xZdPZ0PkJ6+HTo3U7N4OANEPqXtFQ= Subject key identifier: B2:EE:31:53:CE:23:68:F1:A3:75:75:97:9B:F4:4E:0C:B1:BD:23:73 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 0597 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 0589 Signing time: Tue 24 Mar 2026 22:58:24 +0000 Manifest this update: Tue 24 Mar 2026 22:58:23 +0000 Manifest next update: Tue 31 Mar 2026 22:58:23 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: uarczl6BO4076Eqx0bHyX2MEAS6K1jW9uYuCszrzSrE=) 2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: 0zuqIS8hbfV5A711MSih3uxG9p+AWNnca2aMV8NXs2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:58:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1431 (0x597) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Mar 24 22:58:23 2026 GMT Not After : Mar 31 22:58:23 2026 GMT Subject: CN=69c3170f-84bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:e1:f8:a0:a2:55:15:e1:d1:4e:ad:73:68:05: 58:dd:43:69:0b:e5:7f:3f:74:10:c0:12:45:fc:a9: c1:f6:de:60:0e:66:28:e5:6f:95:71:7f:87:33:35: 46:97:c2:1c:b8:36:9f:62:aa:2e:9c:96:85:e2:ec: 30:69:84:98:f5:b8:e2:8d:c6:33:6c:5d:55:79:69: 68:5b:31:d9:7c:47:f4:ad:67:34:06:68:1b:34:57: 56:75:e1:f0:1d:a0:56:40:c0:78:aa:10:2c:e4:52: 47:50:f8:2a:d3:4b:92:41:27:95:4f:92:3e:37:a6: 74:49:e0:5c:58:47:9e:6f:47:73:19:f2:20:14:9e: b5:08:75:75:8c:1f:da:8f:72:77:64:d5:90:0d:89: bb:f7:b0:d8:4e:98:20:26:3c:40:a9:12:57:1b:f2: 7c:0f:4a:bf:47:3f:e1:21:30:da:2c:45:ec:d5:12: f8:65:48:62:7c:5f:58:85:3b:7b:a2:45:43:8c:3b: ed:aa:b9:4d:30:6e:02:a3:da:85:99:d8:3d:93:33: 1c:48:74:26:23:00:68:75:3a:53:9f:1a:4b:7d:f4: 06:b2:72:21:3c:8c:ab:99:9e:67:3e:de:4f:43:96: bf:e2:e9:c0:94:57:c4:2f:0d:bf:4d:65:c9:8b:6d: e7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:EE:31:53:CE:23:68:F1:A3:75:75:97:9B:F4:4E:0C:B1:BD:23:73 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:ec:38:8c:2e:d3:80:a2:8f:47:f8:e1:4c:54:5a:90:2c:8a: 3f:dd:96:e2:14:4f:d3:4f:09:00:f8:e1:cf:54:f1:4f:d7:4c: be:55:f0:5a:a8:e2:f3:55:dc:0d:f4:63:56:9a:a4:31:92:7f: 6c:86:8e:54:2d:08:c0:21:c2:4c:0c:8e:c8:dd:bc:c5:cf:77: cc:24:e0:c8:0e:cc:f1:31:22:37:30:64:47:a6:ec:e2:3c:44: a9:f2:e5:81:f1:2c:64:14:76:b1:06:e5:75:d5:1a:e9:f6:0a: 01:8e:17:51:40:ac:2b:e9:ec:41:77:79:36:3e:ed:3c:d4:9f: ca:be:a5:8e:d9:ee:07:23:27:5e:86:ab:98:a4:6a:ed:16:6f: 99:3a:55:30:08:37:66:d7:ef:38:37:e2:e4:df:21:40:bd:e2: 4d:ab:6f:c4:48:f6:36:3c:c6:bc:92:94:79:7d:84:ee:4d:ee: 40:4f:27:92:7d:1b:dc:b8:ef:7b:c1:41:1d:7d:ec:de:02:b5: 71:f0:ac:dc:48:5d:4b:e9:e4:37:20:90:c2:7c:df:db:49:bc: 70:c1:61:28:cd:c0:3d:41:fa:67:48:bc:cf:2f:89:c6:c9:9b: 24:42:dd:88:1b:50:fe:c4:d9:13:2c:af:f4:c4:e5:a3:1b:24: 63:ee:8a:76 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwMzI0MjI1ODIzWhcNMjYwMzMxMjI1ODIzWjAYMRYwFAYD VQQDEw02OWMzMTcwZi04NGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkOH4oKJVFeHRTq1zaAVY3UNpC+V/P3QQwBJF/KnB9t5gDmYo5W+VcX+HMzVG l8IcuDafYqounJaF4uwwaYSY9bjijcYzbF1VeWloWzHZfEf0rWc0BmgbNFdWdeHw HaBWQMB4qhAs5FJHUPgq00uSQSeVT5I+N6Z0SeBcWEeeb0dzGfIgFJ61CHV1jB/a j3J3ZNWQDYm797DYTpggJjxAqRJXG/J8D0q/Rz/hITDaLEXs1RL4ZUhifF9YhTt7 okVDjDvtqrlNMG4Co9qFmdg9kzMcSHQmIwBodTpTnxpLffQGsnIhPIyrmZ5nPt5P Q5a/4unAlFfELw2/TWXJi23niQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLLuMVPO I2jxo3V1l5v0TgyxvSNzMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUOw4jC7TgKKPR/jhTFRakCyKP92W4hRP008JAPjhz1TxT9dMvlXwWqji81Xc DfRjVpqkMZJ/bIaOVC0IwCHCTAyOyN28xc93zCTgyA7M8TEiNzBkR6bs4jxEqfLl gfEsZBR2sQblddUa6fYKAY4XUUCsK+nsQXd5Nj7tPNSfyr6ljtnuByMnXoarmKRq 7RZvmTpVMAg3ZtfvODfi5N8hQL3iTatvxEj2NjzGvJKUeX2E7k3uQE8nkn0b3Ljv e8FBHX3s3gK1cfCs3EhdS+nkNyCQwnzf20m8cMFhKM3APUH6Z0i8zy+JxsmbJELd iBtQ/sTZEyyv9MTloxskY+6Kdg== -----END CERTIFICATE-----Generated at Thu Mar 26 12:53:47 2026 by rpki-client