$ rpki-client -vvf rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft File: iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft (raw, json) Hash identifier: 2xHRA+HFa66cnJ84TM5GYNN5GxgffoqFU//KPFfTwWs= Subject key identifier: C4:5E:D5:B5:F6:C9:20:77:97:C6:84:43:F0:72:3E:7C:32:17:F2:71 Authority key identifier: 89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE Certificate issuer: /CN=A91F40E0/serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft Manifest number: 7B Signing time: Wed 25 Mar 2026 07:02:19 +0000 Manifest this update: Wed 25 Mar 2026 07:02:18 +0000 Manifest next update: Wed 01 Apr 2026 07:02:18 +0000 Files and hashes: 1: iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl (hash: j2jRoM4d4nwYC4xYYlcdSqoH6yYD0JGqlLOXA9zbt1w=) 2: 399480C4ACD011F08828DD7BC4F9AE02.roa (hash: faAWxuL02WBDF7lhFM/mV+aG3ZsWz2hDnEoq4EKfApA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F40E0, serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Validity Not Before: Mar 25 07:02:18 2026 GMT Not After : Apr 1 07:02:18 2026 GMT Subject: CN=69c3887b-e209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c7:e8:6d:c2:5a:5d:ff:45:13:81:03:43:4d: 73:b0:40:4c:9f:ee:10:17:e5:3d:96:d7:e9:91:89: 76:6d:08:86:ed:ba:24:69:d2:ec:be:a2:60:a0:1f: 17:ac:08:40:cb:10:9b:aa:2a:7d:f0:2c:9e:f1:c2: f9:32:eb:f1:bf:53:dd:82:1c:99:47:2a:c0:76:61: f8:9e:05:e7:66:b4:9a:21:0f:f3:4e:ca:d1:aa:8b: 57:9b:d5:4c:29:90:5e:5d:cc:a2:37:9e:da:c9:6a: ad:35:f0:72:35:db:3a:62:89:3d:1c:39:3d:98:6d: 84:e7:72:14:70:dc:f2:f3:61:40:b2:c0:94:6f:2a: c6:d0:92:55:bc:0e:11:f7:c9:06:16:7a:d3:a2:7a: 23:41:5e:16:b6:07:24:77:8f:79:49:b2:ed:42:ed: 3d:dd:b3:78:72:90:8b:97:4b:25:8a:cc:53:15:3c: 68:f2:7e:b1:1c:b2:ce:1c:84:12:ee:9e:d5:8a:c6: 0f:05:5b:c0:e8:db:4b:9a:30:39:4c:75:6c:b5:21: 90:2f:50:3e:af:a3:a2:e4:81:dd:0d:01:cb:2c:76: 36:67:5b:fc:17:72:fa:43:5f:11:b0:70:8d:dc:fa: 87:7f:32:91:c0:82:43:32:6d:75:37:0d:ef:ac:7f: 68:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:5E:D5:B5:F6:C9:20:77:97:C6:84:43:F0:72:3E:7C:32:17:F2:71 X509v3 Authority Key Identifier: keyid:89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:e1:61:3d:21:01:9d:cc:7c:df:96:00:14:d4:d8:f8:05:c5: cc:0b:45:2c:24:9d:94:c0:12:40:e5:89:68:e0:4d:4d:3e:53: 89:90:29:a7:03:82:06:f5:26:1b:05:81:dd:40:75:54:a7:c4: 07:7d:d7:1f:41:37:b4:1a:a4:af:2e:56:d5:36:e3:d5:5d:b3: 45:7a:bf:4d:e1:8e:91:d6:ba:a5:4b:a1:cc:d3:cd:a8:02:1c: da:81:f3:f9:f4:5d:65:bd:ce:fe:25:47:3d:7d:f5:ca:0b:96: 2a:fb:e9:9c:bc:69:46:a5:c1:77:b1:af:52:69:2a:6a:0a:bf: f2:a6:b2:08:43:17:8f:b3:6b:27:3d:f2:4c:73:fa:c1:6b:ab: e6:03:02:7f:17:aa:2d:42:88:97:d9:4c:ba:1f:9a:a7:87:aa: ce:0f:32:dd:51:31:2c:94:b6:9e:fb:84:67:03:cf:2e:b7:2f: 03:b9:7f:fc:bf:9d:16:8f:f8:20:6d:b4:6e:32:2e:e4:04:dc: 79:00:41:bf:c8:1f:11:bc:c6:79:d4:4a:19:b3:54:6e:5a:9e: e2:92:d5:61:90:02:5a:c3:6d:d3:76:05:7a:fa:34:0c:21:c1: a0:90:80:13:6f:46:46:71:7a:c9:a7:3b:fb:a9:e0:b7:e8:09: df:35:2a:d8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQwRTAxMTAvBgNVBAUTKDg5NzA3N0I3MUYyQzVBRURERTZDMURENDk1NDdEQ0M5 OTUyQ0RBQkUwHhcNMjYwMzI1MDcwMjE4WhcNMjYwNDAxMDcwMjE4WjAYMRYwFAYD VQQDEw02OWMzODg3Yi1lMjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48fobcJaXf9FE4EDQ01zsEBMn+4QF+U9ltfpkYl2bQiG7bokadLsvqJgoB8X rAhAyxCbqip98Cye8cL5Muvxv1PdghyZRyrAdmH4ngXnZrSaIQ/zTsrRqotXm9VM KZBeXcyiN57ayWqtNfByNds6Yok9HDk9mG2E53IUcNzy82FAssCUbyrG0JJVvA4R 98kGFnrTonojQV4Wtgckd495SbLtQu093bN4cpCLl0slisxTFTxo8n6xHLLOHIQS 7p7VisYPBVvA6NtLmjA5THVstSGQL1A+r6Oi5IHdDQHLLHY2Z1v8F3L6Q18RsHCN 3PqHfzKRwIJDMm11Nw3vrH9o/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMRe1bX2 ySB3l8aEQ/ByPnwyF/JxMB8GA1UdIwQYMBaAFIlwd7cfLFrt3mwd1JVH3MmVLNq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDBFMC8zRkJCNUUwNDdC NTMxMUYwOUI1NDg0NUZDNEY5QUUwMi9pWEIzdHg4c1d1M2ViQjNVbFVmY3laVXMy cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYQjN0eDhzV3UzZWJCM1VsVWZjeVpVczJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDBFMC8zRkJCNUUwNDdCNTMxMUYwOUI1NDg0NUZDNEY5QUUwMi9pWEIzdHg4c1d1 M2ViQjNVbFVmY3laVXMycjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOeFhPSEBncx835YAFNTY+AXFzAtFLCSdlMASQOWJaOBNTT5TiZAppwOCBvUm GwWB3UB1VKfEB33XH0E3tBqkry5W1Tbj1V2zRXq/TeGOkda6pUuhzNPNqAIc2oHz +fRdZb3O/iVHPX31yguWKvvpnLxpRqXBd7GvUmkqagq/8qayCEMXj7NrJz3yTHP6 wWur5gMCfxeqLUKIl9lMuh+ap4eqzg8y3VExLJS2nvuEZwPPLrcvA7l//L+dFo/4 IG20bjIu5ATceQBBv8gfEbzGedRKGbNUblqe4pLVYZACWsNt03YFevo0DCHBoJCA E29GRnF6yac7+6ngt+gJ3zUq2A== -----END CERTIFICATE-----Generated at Thu Mar 26 02:36:08 2026 by rpki-client