$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft File: IrGnF151_9hHOR8sLpZl5O7ht0I.mft (raw, json) Hash identifier: 3J5qWkli1EW4LikU2Ac9g4JG6/t09ZvZwCFw5PNYH1A= Subject key identifier: 59:A4:61:39:14:30:C4:13:E6:0F:22:03:59:35:69:36:62:77:63:24 Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 1202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft Manifest number: 11B3 Signing time: Tue 24 Mar 2026 17:06:26 +0000 Manifest this update: Tue 24 Mar 2026 17:06:25 +0000 Manifest next update: Tue 31 Mar 2026 17:06:25 +0000 Files and hashes: 1: IrGnF151_9hHOR8sLpZl5O7ht0I.crl (hash: pKiVVukHCJ8B4Qlvakm8Yih8/DuaDAuLuvRoNtsbVUM=) 2: 98A0F61840AD11F0BB332714C4F9AE02.roa (hash: IHS1dAGj9jKnE6X/SA4FOXKPpMTMBUd8S8gYvi2WOxw=) 3: D9BBFBDA4D3111F099A48033C4F9AE02.roa (hash: zcDK7W0PfXIMXqiY8vmJjJWJICMO82ktF8Fv0RCYF1s=) 4: 2E3A7CDCECB411F0B6919987656F56BC.roa (hash: 4utBjEApx20KJCzqd0eW5ajZ4NVkx31L9ZkE151uZUs=) 5: A9204F96917F11EDA5B26357C4F9AE02.roa (hash: IjpZ0jS6tnWw/4g4Tbl4x/ogYwx51M7WeePNdj2/uUg=) 6: D276D68CACDC11F093B6B95AC4F9AE02.roa (hash: gqE+x20QnU3Jprst8DEUKF8tGWKOyyNqVQpNtO3Q028=) 7: 69915526EA0711F0976467B16F6F56BC.roa (hash: SFd4usN35GeJVO8naPqajPmsGMgesiXpwAu3vfPbeK0=) 8: 16C96BAE18E311EFB8960668C4F9AE02.roa (hash: DKnxHCWGK4M87Ukt6UmTYzykQ/tHWegReXZDU7ZlYJ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:06:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4610 (0x1202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Mar 24 17:06:25 2026 GMT Not After : Mar 31 17:06:25 2026 GMT Subject: CN=69c2c491-4c10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:93:33:94:a7:87:2d:98:80:95:9e:1c:83:6e: 4a:f7:39:07:3b:fd:f5:82:85:7c:92:40:40:d3:c1: ae:3c:03:2b:92:ee:4f:e7:3b:73:e0:f3:92:99:38: c1:97:02:77:2d:0c:77:1f:0a:75:88:97:b1:2d:2b: 82:b4:cd:29:c7:e9:26:c2:e1:ef:4f:79:8d:80:e7: b6:aa:17:31:c2:4f:b8:fc:3a:17:70:36:b1:79:43: 17:6f:b8:74:9e:9f:1c:70:e4:e0:1e:27:61:46:62: d3:a9:fb:b8:93:1d:df:73:dd:3c:d7:06:3b:53:ca: b1:05:9a:b7:ce:59:c3:c5:a3:9a:2c:ea:3c:35:ef: 63:13:b9:81:ac:96:48:5b:7f:62:3f:43:d3:01:a4: 3e:63:d2:f0:52:ea:0b:1f:f0:3a:b1:5e:b9:c7:97: cb:a1:92:fa:f8:ec:2d:f8:0a:b1:cf:5d:11:8b:87: e5:72:5d:7e:cd:d3:50:05:2c:1d:ce:6b:56:00:af: 09:07:eb:4c:6a:88:85:1a:e0:28:d5:41:e5:51:c0: 35:99:e7:7f:95:f6:c8:54:23:e3:b0:94:47:08:ac: 15:01:45:51:a2:29:1e:c4:94:f5:d5:8b:72:7f:b4: 46:7f:90:e0:51:44:0e:18:72:06:50:c5:b6:be:81: 98:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:A4:61:39:14:30:C4:13:E6:0F:22:03:59:35:69:36:62:77:63:24 X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:a4:5f:30:bd:c9:6c:6d:fb:12:53:78:51:fe:c5:cc:9b:35: 4b:ca:4b:b6:be:88:a1:f4:72:5f:a6:f5:82:51:4e:6d:a1:82: 75:3e:cb:0a:51:e2:16:a8:35:ae:d2:8a:c6:c4:4e:4f:a9:59: 41:5a:a5:00:1d:56:ae:a7:cd:f6:5c:45:b0:67:76:83:2e:36: 70:7b:36:5f:ed:8b:d7:0b:91:9b:ca:60:d9:4f:56:b4:f1:d4: 64:19:c2:da:3c:a5:7d:d4:e5:b9:8c:9d:49:b7:0d:79:a9:8e: 68:5e:6a:05:39:33:9f:8a:70:66:12:5d:2f:f6:d3:ba:00:f1: f7:c1:fc:d2:ae:07:b6:53:5c:e7:20:04:f1:67:94:7a:c6:15: 01:1a:61:90:a3:57:56:c6:05:0f:70:2e:c2:13:94:2c:d6:22: ae:64:cf:77:84:26:1f:29:31:bc:8f:8f:86:9c:41:a6:0b:5b: 73:9e:6d:85:b9:e1:a0:9c:f9:ed:9c:5f:30:ce:4b:17:fd:36: 6c:21:7c:35:7a:28:9e:6e:1a:27:6c:68:01:79:f0:86:ec:a9: ce:bc:11:8f:0b:92:73:4e:a1:14:bf:90:ec:61:9d:d9:a1:a9: 5c:27:a4:7c:61:a1:d8:c8:0c:10:16:09:d2:0c:56:ae:82:71: 77:76:2b:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjYwMzI0MTcwNjI1WhcNMjYwMzMxMTcwNjI1WjAYMRYwFAYD VQQDEw02OWMyYzQ5MS00YzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpMzlKeHLZiAlZ4cg25K9zkHO/31goV8kkBA08GuPAMrku5P5ztz4POSmTjB lwJ3LQx3Hwp1iJexLSuCtM0px+kmwuHvT3mNgOe2qhcxwk+4/DoXcDaxeUMXb7h0 np8ccOTgHidhRmLTqfu4kx3fc9081wY7U8qxBZq3zlnDxaOaLOo8Ne9jE7mBrJZI W39iP0PTAaQ+Y9LwUuoLH/A6sV65x5fLoZL6+Owt+Aqxz10Ri4flcl1+zdNQBSwd zmtWAK8JB+tMaoiFGuAo1UHlUcA1med/lfbIVCPjsJRHCKwVAUVRoikexJT11Yty f7RGf5DgUUQOGHIGUMW2voGYyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFmkYTkU MMQT5g8iA1k1aTZid2MkMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTdEQy8zNUY3OTg2NjFGMDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85 aEhPUjhzTHBabDVPN2h0MEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAaRfML3JbG37ElN4Uf7FzJs1S8pLtr6IofRyX6b1glFObaGCdT7LClHiFqg1 rtKKxsROT6lZQVqlAB1WrqfN9lxFsGd2gy42cHs2X+2L1wuRm8pg2U9WtPHUZBnC 2jylfdTluYydSbcNeamOaF5qBTkzn4pwZhJdL/bTugDx98H80q4HtlNc5yAE8WeU esYVARphkKNXVsYFD3AuwhOULNYirmTPd4QmHykxvI+PhpxBpgtbc55thbnhoJz5 7ZxfMM5LF/02bCF8NXoonm4aJ2xoAXnwhuypzrwRjwuSc06hFL+Q7GGd2aGpXCek fGGh2MgMEBYJ0gxWroJxd3YrKw== -----END CERTIFICATE-----Generated at Thu Mar 26 00:50:45 2026 by rpki-client