$ rpki-client -vvf rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft File: IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft (raw, json) Hash identifier: cEiPvCj19f+5i36eON0iMxmHanc7PArLkQXjCab1T9s= Subject key identifier: 73:1A:0E:6B:B1:35:1F:DE:34:7A:E6:29:69:EB:78:95:45:EC:6C:A8 Authority key identifier: 21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B Certificate issuer: /CN=A91E96D9/serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Certificate serial: 0921 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft Manifest number: 08C4 Signing time: Tue 24 Mar 2026 20:19:28 +0000 Manifest this update: Tue 24 Mar 2026 20:19:27 +0000 Manifest next update: Tue 31 Mar 2026 20:19:27 +0000 Files and hashes: 1: IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl (hash: 59dP7dJqsDHWGtGekWuEagqAkjCTV3h87OLCmjZY7Hc=) 2: 46D8E036BED211F093382E71C4F9AE02.roa (hash: gY7ktW7M2ychNUMmTz0Yp8V+96oZXWr94hCnEiAKvfs=) 3: 4A06FF10FF2711EAB7D5F235C4F9AE02.roa (hash: mg17sUTdYtMBrbbm2kbt75lKpJ892MbQTYVPcd6BdmU=) 4: 02BCB71ABF0411F097C9AB09C4F9AE02.roa (hash: YRs268il8jeL4kWOWO8b3QB1BLS7s3nyXufDu9/6sJo=) 5: BAEB4B28FBDF11EA8B73595BC4F9AE02.roa (hash: M1VJgF+x/Um3lhU3p8O1xPTE+txLupRts9yRpHKZudw=) 6: 94EC9E22BEF311F0A6F14E84C4F9AE02.roa (hash: jLSqDdcG0AQq/rzP9wArGf39t8AjysMfIb5LgZiEQeg=) 7: F8E5E56ABA3311F097F3633AC4F9AE02.roa (hash: HAqcjovZJYFVqZGaHRtS4+R51e9Xtry3aapf5JCY8eI=) 8: C8C64A4AED4D11EA895BC037C4F9AE02.roa (hash: LxOE3iZIwIwbWUQyl4az6q7pcoRLSjG1pe6jKOrSfF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:19:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2337 (0x921) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E96D9, serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Validity Not Before: Mar 24 20:19:27 2026 GMT Not After : Mar 31 20:19:27 2026 GMT Subject: CN=69c2f1cf-c04f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:85:b7:1c:d9:2b:f7:8a:ae:2e:df:ae:cb:1d: a6:ad:30:b0:19:6e:7d:7a:27:90:a0:0e:85:36:c2: d9:0b:bc:95:c2:7f:77:80:68:21:23:1b:4e:af:5e: 6f:31:ff:87:e2:41:93:fe:ed:00:59:aa:35:f1:47: 11:53:27:ae:b9:da:77:77:c2:cd:49:5f:b6:51:32: 8c:a8:49:4c:63:76:8b:ac:a3:3a:a0:0e:15:38:d6: 31:11:f7:8f:45:21:a4:ac:25:62:c6:01:12:87:b3: 7a:36:bf:39:2b:a6:06:19:c4:7c:c6:7e:2d:fc:f7: 23:6a:c2:a3:e7:34:d9:d1:e1:d8:44:c4:96:17:bd: 8e:d9:0d:70:ed:ad:c3:68:5f:ad:d1:e0:d4:7b:ea: cf:be:41:85:c2:20:cd:0d:52:29:59:a3:52:25:ca: 1f:3c:d0:11:d5:92:c5:a6:0d:e5:9a:50:87:ab:b4: 46:93:d1:75:a6:02:b0:7e:7a:92:16:aa:0b:11:94: c2:d2:b8:a7:d9:5e:e3:9b:ee:be:ff:8d:94:7a:5c: 44:df:ed:b7:9b:5e:75:5a:f1:6f:5f:6a:f1:49:b1: f0:f1:c9:89:5d:f9:b4:74:35:50:e2:82:42:13:f7: 81:59:4d:05:57:6b:ba:63:5a:a5:b9:f0:d2:94:9b: 0f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:1A:0E:6B:B1:35:1F:DE:34:7A:E6:29:69:EB:78:95:45:EC:6C:A8 X509v3 Authority Key Identifier: keyid:21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:a4:16:2e:b4:ba:69:0c:6f:b3:cd:4f:a7:4d:47:37:ca:f6: 48:08:a7:02:74:c9:a9:fb:bd:45:ac:29:74:82:01:90:ff:99: 8d:52:4d:5e:47:d8:47:ab:6d:fa:58:8c:c1:29:e6:d4:0a:0c: af:12:0d:0c:52:40:3e:dd:65:90:8a:71:d9:38:3b:38:51:f9: e5:79:2f:e5:9b:35:34:00:82:aa:59:61:68:04:6e:fd:14:cd: ff:7e:9b:ac:98:db:29:00:d0:fc:75:83:6b:77:25:8f:ce:cd: d5:d6:32:8a:61:a0:72:35:f8:94:94:8b:1f:d5:ed:59:69:13: 95:86:4d:42:d9:ad:4a:52:88:b6:c3:72:7c:ad:1a:d8:73:67: d3:c5:fc:c7:a5:2d:e7:95:24:34:f0:85:d3:e7:48:da:29:a6: 64:30:8d:fd:cf:3e:f6:0d:49:e4:8d:24:1a:d4:30:2c:06:19: f7:d3:1b:53:ab:41:c8:13:bb:44:4d:31:84:72:6a:3c:38:05: ef:19:d5:98:6d:12:4f:71:d7:a8:4f:68:18:55:12:f0:67:d3: b3:90:b8:ba:1f:7c:31:b1:99:a5:a2:c8:a6:80:2f:77:6e:e0: f8:8e:81:d6:24:18:a4:45:77:51:b1:c9:0d:ca:13:76:ec:7f: d9:9f:26:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2RDkxMTAvBgNVBAUTKDIxOUVBNjNDNkFDOTY2RERCMjg1ODg2QkQ3MTFDNzhB MTRERjUxMkIwHhcNMjYwMzI0MjAxOTI3WhcNMjYwMzMxMjAxOTI3WjAYMRYwFAYD VQQDEw02OWMyZjFjZi1jMDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4W3HNkr94quLt+uyx2mrTCwGW59eieQoA6FNsLZC7yVwn93gGghIxtOr15v Mf+H4kGT/u0AWao18UcRUyeuudp3d8LNSV+2UTKMqElMY3aLrKM6oA4VONYxEfeP RSGkrCVixgESh7N6Nr85K6YGGcR8xn4t/PcjasKj5zTZ0eHYRMSWF72O2Q1w7a3D aF+t0eDUe+rPvkGFwiDNDVIpWaNSJcofPNAR1ZLFpg3lmlCHq7RGk9F1pgKwfnqS FqoLEZTC0rin2V7jm+6+/42UelxE3+23m151WvFvX2rxSbHw8cmJXfm0dDVQ4oJC E/eBWU0FV2u6Y1qlufDSlJsPYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHMaDmux NR/eNHrmKWnreJVF7GyoMB8GA1UdIwQYMBaAFCGepjxqyWbdsoWIa9cRx4oU31Er MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTZEOS84MERGREVDMEU1 REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0MnloWWhyMXhISGloVGZV U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laNm1QR3JKWnQyeWhZaHIxeEhIaWhUZlVTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTZEOS84MERGREVDMEU1REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0 MnloWWhyMXhISGloVGZVU3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmKQWLrS6aQxvs81Pp01HN8r2SAinAnTJqfu9RawpdIIBkP+ZjVJNXkfYR6tt +liMwSnm1AoMrxINDFJAPt1lkIpx2Tg7OFH55Xkv5Zs1NACCqllhaARu/RTN/36b rJjbKQDQ/HWDa3clj87N1dYyimGgcjX4lJSLH9XtWWkTlYZNQtmtSlKItsNyfK0a 2HNn08X8x6Ut55UkNPCF0+dI2immZDCN/c8+9g1J5I0kGtQwLAYZ99MbU6tByBO7 RE0xhHJqPDgF7xnVmG0ST3HXqE9oGFUS8GfTs5C4uh98MbGZpaLIpoAvd27g+I6B 1iQYpEV3UbHJDcoTdux/2Z8mIQ== -----END CERTIFICATE-----Generated at Thu Mar 26 04:10:24 2026 by rpki-client