$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft File: IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft (raw, json) Hash identifier: gyy3QQxfJnf1PV0yTw8qNvs+8ZSI4kFA2C4kP5ISJjk= Subject key identifier: 57:02:E4:34:6C:1D:D9:E3:87:FF:B2:C4:5E:B3:10:91:B1:E1:91:2D Authority key identifier: 21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA Certificate issuer: /CN=A91EA409/serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft Manifest number: 0109 Signing time: Wed 25 Mar 2026 05:17:58 +0000 Manifest this update: Wed 25 Mar 2026 05:17:58 +0000 Manifest next update: Wed 01 Apr 2026 05:17:58 +0000 Files and hashes: 1: IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl (hash: NaC5/+oy/dcwhzpBYlJLet6OPgTruqK0n32n8iJH3WA=) 2: E9F177B89D9C11EFA9526A6CC4F9AE02.roa (hash: aIh23/3y8xgm3k9QGKPnGbqB42NXH2OLUXREX9l30Z4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA409, serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Validity Not Before: Mar 25 05:17:58 2026 GMT Not After : Apr 1 05:17:58 2026 GMT Subject: CN=69c37006-ff04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9b:69:18:2c:f4:40:50:55:82:91:4d:5a:7c: 24:69:f3:be:94:ba:dc:14:42:88:24:af:c8:ae:b8: a2:40:d8:81:1c:c8:ed:68:6b:a9:2c:86:a9:0f:a4: a5:6f:bd:96:43:06:ea:ee:06:28:7e:7d:4e:4a:fa: 11:5a:f7:6b:61:75:17:69:86:2c:39:ec:6e:a3:dd: 0a:8b:1a:57:01:83:85:7c:ba:28:18:e7:0c:7e:1f: cd:52:58:6c:36:66:75:73:1f:14:0a:c2:06:e1:28: 4a:d2:9c:98:15:cd:49:22:b1:3b:b3:cc:88:00:06: 32:fb:0e:b3:31:a8:2b:75:09:2c:fe:43:72:5c:01: a3:f6:34:83:c6:6b:0c:0d:15:1d:82:f3:a5:d9:63: db:6d:57:dd:f9:4e:0b:0e:3c:91:d9:75:15:c0:a7: dd:a4:84:b5:5c:9a:7d:51:78:e2:ef:21:b7:d4:47: 5b:ec:64:0f:6a:53:fb:e1:45:72:a9:78:6a:c3:78: 51:f2:d0:d9:7f:25:40:26:f0:82:f7:48:68:c9:83: 6b:ea:21:c5:ef:7a:b2:f6:fa:5d:4b:c3:ea:ae:6d: 93:2d:c3:fa:31:21:74:85:50:8a:6b:59:1a:31:29: d4:7a:af:d3:db:79:87:0b:12:55:aa:6e:da:eb:75: 70:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:02:E4:34:6C:1D:D9:E3:87:FF:B2:C4:5E:B3:10:91:B1:E1:91:2D X509v3 Authority Key Identifier: keyid:21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:aa:5b:95:72:50:f9:ae:af:33:a5:39:9d:31:48:f2:8e:94: c1:e0:65:03:6c:7c:39:e9:0b:7d:57:7d:c0:2e:5b:ca:56:2a: b0:3d:8c:dc:98:12:0a:d6:99:82:11:86:a2:97:15:f2:c8:17: 88:a7:22:80:e1:ef:c1:18:64:a7:7c:73:e6:5e:1e:04:7c:58: 5a:1b:b7:e9:c2:ee:9e:f3:60:67:01:bf:fe:2b:0e:d5:ff:8e: 0e:bc:f7:ca:b1:cd:8e:21:60:37:56:16:35:c8:31:0b:50:e5: aa:64:03:46:61:47:73:4e:ac:28:39:b7:d0:9c:a5:58:e2:d8: e1:33:b7:b7:61:0d:fa:09:d5:91:3d:76:6e:06:1e:30:24:48: 94:3c:52:4d:e9:74:c4:76:63:6e:bc:23:e5:e0:ac:e4:b7:14: 14:f3:f5:40:0d:ef:b1:5a:e5:40:19:16:01:3e:83:92:18:f0: 7d:ce:35:45:cf:c2:2c:90:3f:8c:72:16:84:92:83:6c:83:65: f0:11:c7:ff:87:68:9c:a1:01:8e:4b:94:0d:6d:68:cf:53:e4: 0c:a7:56:22:82:78:f3:a2:24:e1:f6:eb:73:c0:c9:b9:d0:79: d3:5a:89:0f:29:78:cf:d6:b0:26:b2:26:8c:4d:b1:9a:07:91: 6f:05:9f:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0MDkxMTAvBgNVBAUTKDIxNjRERDU5QTYxNUQ1RjJFMzM5M0U3MjA5OEE3M0FE ODY4RTc4REEwHhcNMjYwMzI1MDUxNzU4WhcNMjYwNDAxMDUxNzU4WjAYMRYwFAYD VQQDEw02OWMzNzAwNi1mZjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuptpGCz0QFBVgpFNWnwkafO+lLrcFEKIJK/IrriiQNiBHMjtaGupLIapD6Sl b72WQwbq7gYofn1OSvoRWvdrYXUXaYYsOexuo90KixpXAYOFfLooGOcMfh/NUlhs NmZ1cx8UCsIG4ShK0pyYFc1JIrE7s8yIAAYy+w6zMagrdQks/kNyXAGj9jSDxmsM DRUdgvOl2WPbbVfd+U4LDjyR2XUVwKfdpIS1XJp9UXji7yG31Edb7GQPalP74UVy qXhqw3hR8tDZfyVAJvCC90hoyYNr6iHF73qy9vpdS8Pqrm2TLcP6MSF0hVCKa1ka MSnUeq/T23mHCxJVqm7a63VwhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFcC5DRs Hdnjh/+yxF6zEJGx4ZEtMB8GA1UdIwQYMBaAFCFk3VmmFdXy4zk+cgmKc62Gjnja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQwOS9GOTQ0RTNDQzlD QUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFmTGpPVDV5Q1lwenJZYU9l Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lXVGRXYVlWMWZMak9UNXlDWXB6cllhT2VOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQwOS9GOTQ0RTNDQzlDQUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFm TGpPVDV5Q1lwenJZYU9lTm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAV6pblXJQ+a6vM6U5nTFI8o6UweBlA2x8OekLfVd9wC5bylYqsD2M3JgSCtaZ ghGGopcV8sgXiKcigOHvwRhkp3xz5l4eBHxYWhu36cLunvNgZwG//isO1f+ODrz3 yrHNjiFgN1YWNcgxC1DlqmQDRmFHc06sKDm30JylWOLY4TO3t2EN+gnVkT12bgYe MCRIlDxSTel0xHZjbrwj5eCs5LcUFPP1QA3vsVrlQBkWAT6Dkhjwfc41Rc/CLJA/ jHIWhJKDbINl8BHH/4donKEBjkuUDW1oz1PkDKdWIoJ486Ik4fbrc8DJudB501qJ Dyl4z9awJrImjE2xmgeRbwWfsg== -----END CERTIFICATE-----Generated at Thu Mar 26 21:03:21 2026 by rpki-client