$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft File: iruZJsMSoUFJxSMLpV-oz1uJquE.mft (raw, json) Hash identifier: uMqZ9GhDSTUniMdHiCsc2MmGwj1aoCknc6/aK2JPFYg= Subject key identifier: 43:7C:7F:1B:F6:7C:22:5D:1A:B7:23:E4:B9:7B:14:43:55:58:9E:83 Authority key identifier: 8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 Certificate issuer: /CN=A91E8C52/serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Certificate serial: 06DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft Manifest number: 06D7 Signing time: Tue 24 Mar 2026 21:55:25 +0000 Manifest this update: Tue 24 Mar 2026 21:55:25 +0000 Manifest next update: Tue 31 Mar 2026 21:55:25 +0000 Files and hashes: 1: iruZJsMSoUFJxSMLpV-oz1uJquE.crl (hash: 1KafqE8be4BafVX3ttXzpPw8dOjUAyHiQTjT2rtD3so=) 2: 09C9D20691BC11EB8C38801CC4F9AE02.roa (hash: VX88OE/wWbDicqUK9Ecwlc7eXNXa2V1ARfcCGVaZ16E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:55:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1758 (0x6de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C52, serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Validity Not Before: Mar 24 21:55:25 2026 GMT Not After : Mar 31 21:55:25 2026 GMT Subject: CN=69c3084d-43a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0a:95:b2:cf:e0:aa:ac:49:32:6c:af:8b:56: dd:44:c3:d8:8f:d9:b7:66:52:8e:b5:c5:c3:00:84: 8e:25:41:28:ba:e6:81:60:6a:ea:54:0a:80:c5:3e: 17:1d:5b:75:9a:8d:e5:21:15:d7:67:49:21:4a:a5: 3b:20:fe:a3:31:6a:15:28:0c:c4:f5:9d:d2:c2:b4: 4d:3e:12:58:5c:17:3f:d1:72:66:34:6e:db:a4:88: 9c:1d:dc:3e:e7:27:cb:91:38:f4:d0:28:92:84:66: 4c:4b:7a:60:b9:a5:b5:8a:b4:1a:51:04:8f:56:0f: b4:70:f2:21:45:e5:6d:50:f4:c5:34:bc:82:ec:70: 9b:86:aa:0d:2a:1f:3e:5e:52:af:39:f2:46:bd:71: b8:1c:df:67:ae:fa:e4:50:07:07:46:ee:b2:e0:f2: 27:40:e3:61:89:d2:6b:af:8d:cb:99:01:13:cb:57: 74:6e:3a:5b:a8:4d:dd:4c:c7:01:24:6d:a9:4e:20: e4:62:66:1b:f3:8e:4f:c6:9c:ab:64:12:d1:d5:40: 9b:46:aa:54:19:12:99:68:0f:20:a4:2b:04:21:da: 98:db:f8:4b:1d:bc:a3:25:b2:97:5c:77:a5:3b:53: 35:49:ba:92:16:58:42:cb:39:78:ca:f4:11:1c:ea: ff:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:7C:7F:1B:F6:7C:22:5D:1A:B7:23:E4:B9:7B:14:43:55:58:9E:83 X509v3 Authority Key Identifier: keyid:8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:5b:ce:16:6b:09:a4:f3:5b:05:2f:e6:94:16:d7:9f:c5:04: ab:7a:39:11:29:79:7a:01:ab:84:d0:82:65:c5:7d:29:de:a3: d9:43:6c:06:9c:44:53:d7:9e:be:27:66:68:e2:95:06:ee:eb: 66:88:2a:79:16:6e:04:50:6d:87:5e:04:21:43:05:5b:f5:5c: c0:31:fd:14:c3:0a:2a:f4:c9:75:39:b2:04:18:e8:e2:68:d7: 65:c8:f9:0e:a0:19:16:c7:49:93:e2:b6:c6:ac:65:16:14:c1: 4f:b2:ec:06:a5:7b:42:2f:fc:77:3a:b2:4d:45:71:a7:69:6c: 23:b8:42:c1:6c:11:e2:72:85:a8:b0:13:a3:31:53:83:03:5a: 96:dd:ba:9d:6d:16:3f:8a:a5:ee:76:9b:1d:44:15:37:f3:cf: 9c:b4:5a:03:88:fa:2e:a1:b4:22:24:31:4b:3d:64:32:2e:de: 4f:45:b6:18:02:04:0d:2d:61:1d:81:97:f2:56:1c:ea:c9:6f: fc:92:23:4e:c3:6f:6d:23:76:5d:90:3d:e4:1d:13:b9:35:6c: 4f:c3:a9:ff:23:9c:e5:f4:f1:d0:38:6f:30:c4:27:9e:0b:7d: 50:50:f4:cc:f3:bd:da:87:31:7d:a1:64:df:8e:b0:20:52:c0: 03:ca:8e:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDNTIxMTAvBgNVBAUTKDhBQkI5OTI2QzMxMkExNDE0OUM1MjMwQkE1NUZBOENG NUI4OUFBRTEwHhcNMjYwMzI0MjE1NTI1WhcNMjYwMzMxMjE1NTI1WjAYMRYwFAYD VQQDEw02OWMzMDg0ZC00M2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmwqVss/gqqxJMmyvi1bdRMPYj9m3ZlKOtcXDAISOJUEouuaBYGrqVAqAxT4X HVt1mo3lIRXXZ0khSqU7IP6jMWoVKAzE9Z3SwrRNPhJYXBc/0XJmNG7bpIicHdw+ 5yfLkTj00CiShGZMS3pguaW1irQaUQSPVg+0cPIhReVtUPTFNLyC7HCbhqoNKh8+ XlKvOfJGvXG4HN9nrvrkUAcHRu6y4PInQONhidJrr43LmQETy1d0bjpbqE3dTMcB JG2pTiDkYmYb845PxpyrZBLR1UCbRqpUGRKZaA8gpCsEIdqY2/hLHbyjJbKXXHel O1M1SbqSFlhCyzl4yvQRHOr/vQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEN8fxv2 fCJdGrcj5Ll7FENVWJ6DMB8GA1UdIwQYMBaAFIq7mSbDEqFBScUjC6VfqM9biarh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM1Mi9CNDZDRDc3RTkx QjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29VRkp4U01McFYtb3oxdUpx dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lydVpKc01Tb1VGSnhTTUxwVi1vejF1SnF1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEM1Mi9CNDZDRDc3RTkxQjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29V Rkp4U01McFYtb3oxdUpxdUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArlvOFmsJpPNbBS/mlBbXn8UEq3o5ESl5egGrhNCCZcV9Kd6j2UNsBpxEU9ee vidmaOKVBu7rZogqeRZuBFBth14EIUMFW/VcwDH9FMMKKvTJdTmyBBjo4mjXZcj5 DqAZFsdJk+K2xqxlFhTBT7LsBqV7Qi/8dzqyTUVxp2lsI7hCwWwR4nKFqLATozFT gwNalt26nW0WP4ql7nabHUQVN/PPnLRaA4j6LqG0IiQxSz1kMi7eT0W2GAIEDS1h HYGX8lYc6slv/JIjTsNvbSN2XZA95B0TuTVsT8Op/yOc5fTx0DhvMMQnngt9UFD0 zPO92ocxfaFk346wIFLAA8qO0w== -----END CERTIFICATE-----Generated at Thu Mar 26 17:26:56 2026 by rpki-client