$ rpki-client -vvf rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft File: Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft (raw, json) Hash identifier: riWzHI2FbVic+Ee4cA6DSlbNlhvDKQ190Kx5Fyq8OU0= Subject key identifier: E8:96:45:BB:94:35:CC:09:BA:E2:30:06:CD:E8:99:58:B9:29:72:C5 Authority key identifier: 22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A Certificate issuer: /CN=A91F83DC/serialNumber=224E668F405601CADC3391383FCA96DF9468D95A Certificate serial: 015D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft Manifest number: 0155 Signing time: Wed 25 Mar 2026 04:20:51 +0000 Manifest this update: Wed 25 Mar 2026 04:20:50 +0000 Manifest next update: Wed 01 Apr 2026 04:20:50 +0000 Files and hashes: 1: Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl (hash: INtjPOmy3sbUFu7YZOf0Wc/aQTKHMB/3wDyCWFvS03E=) 2: 097951DC271E11EFA1884C2EC4F9AE02.roa (hash: wfWPCJF64COMQ4+GFRDWNSHHIcvg9J+oSNDdFL1r5Eg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F83DC, serialNumber=224E668F405601CADC3391383FCA96DF9468D95A Validity Not Before: Mar 25 04:20:50 2026 GMT Not After : Apr 1 04:20:50 2026 GMT Subject: CN=69c362a3-ccd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:aa:a3:a0:b4:b8:bf:c9:99:ed:8d:57:11:10: 90:e7:f8:44:50:d2:d3:b1:5f:dd:53:13:72:d7:dd: bf:f5:ee:31:88:f5:5f:8d:fb:3d:d4:51:b1:7b:ad: ca:14:9a:a1:11:8a:ca:ab:43:82:c8:5d:6a:13:7f: 6e:5a:ab:1a:54:95:43:97:d7:21:03:09:93:0b:6c: 6d:f4:c0:02:82:a8:6e:d6:42:d2:91:73:36:e6:0c: 38:ac:27:25:7b:e7:ba:b1:0f:06:c0:20:6f:c9:72: ad:cd:c3:94:fb:92:00:73:70:0e:ea:d0:e7:35:9e: a5:4d:f8:13:66:8b:f8:0c:3a:93:c5:75:55:38:bd: 77:3d:c6:0f:cd:cc:1b:99:92:68:de:fc:77:d9:11: 54:49:74:41:ae:f8:07:3d:9d:de:50:d4:3f:40:4c: 98:07:49:7d:bd:3c:16:ff:d7:18:b0:6a:75:75:24: 58:e2:0e:82:51:64:c6:bc:88:f5:59:b1:12:f4:66: 16:6f:d5:d8:97:6b:dc:2d:b5:27:60:f9:e7:42:39: 68:65:c0:20:ad:fd:c5:c2:56:e4:63:33:04:27:fe: 80:79:3a:f3:0d:22:7f:8f:63:d4:9f:10:53:20:05: a3:53:fd:f6:cb:31:c2:08:c7:ba:47:5b:ad:0f:bd: bf:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:96:45:BB:94:35:CC:09:BA:E2:30:06:CD:E8:99:58:B9:29:72:C5 X509v3 Authority Key Identifier: keyid:22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:c8:f7:6f:16:a3:49:1c:7e:a4:f3:f3:c7:40:ea:9d:04:dd: 76:ea:6a:34:d6:09:06:53:7d:86:28:ab:b1:3d:28:b2:3f:67: 32:ca:59:76:b5:45:fd:99:98:1f:d9:e0:e7:f3:6e:e5:96:2d: 23:08:e3:b5:37:e5:59:74:d0:f5:f1:57:65:cd:38:12:99:8b: 81:2b:a7:80:aa:89:a5:85:bd:79:af:04:31:83:a0:dd:c1:00: c6:9b:27:49:75:29:d3:ff:67:b4:eb:bf:0e:39:4c:ca:6b:d9: 37:46:c2:a4:d9:9e:23:b5:fa:2b:6b:c0:d6:02:81:63:ca:3c: 57:81:29:84:59:b2:80:75:26:d1:6b:62:bc:eb:e7:e5:cc:5a: 90:3a:83:67:65:b0:ea:dd:65:41:ce:f6:0e:c0:2a:42:c8:1b: 1e:99:e8:f7:94:5a:be:d6:ac:26:e6:14:e6:e1:68:69:ee:65: d4:aa:1d:dc:41:86:31:40:0c:49:90:70:28:0f:65:70:64:69: 60:1e:73:d0:a6:90:52:7e:9f:b0:10:fc:b4:3e:38:b3:c0:9b: 33:2a:3b:a8:14:6d:3e:56:3f:9d:f9:f1:a9:80:61:bc:68:d5: 81:ea:b7:03:42:c8:c7:57:66:c8:33:2f:9f:3d:00:e9:95:be: c5:fb:36:6c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzREMxMTAvBgNVBAUTKDIyNEU2NjhGNDA1NjAxQ0FEQzMzOTEzODNGQ0E5NkRG OTQ2OEQ5NUEwHhcNMjYwMzI1MDQyMDUwWhcNMjYwNDAxMDQyMDUwWjAYMRYwFAYD VQQDEw02OWMzNjJhMy1jY2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qqjoLS4v8mZ7Y1XERCQ5/hEUNLTsV/dUxNy192/9e4xiPVfjfs91FGxe63K FJqhEYrKq0OCyF1qE39uWqsaVJVDl9chAwmTC2xt9MACgqhu1kLSkXM25gw4rCcl e+e6sQ8GwCBvyXKtzcOU+5IAc3AO6tDnNZ6lTfgTZov4DDqTxXVVOL13PcYPzcwb mZJo3vx32RFUSXRBrvgHPZ3eUNQ/QEyYB0l9vTwW/9cYsGp1dSRY4g6CUWTGvIj1 WbES9GYWb9XYl2vcLbUnYPnnQjloZcAgrf3FwlbkYzMEJ/6AeTrzDSJ/j2PUnxBT IAWjU/32yzHCCMe6R1utD72/ywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOiWRbuU NcwJuuIwBs3omVi5KXLFMB8GA1UdIwQYMBaAFCJOZo9AVgHK3DOROD/Klt+UaNla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODNEQy85OUM3NDg4ODI2 RUQxMUVGQjRDOUJBMjhDNEY5QUUwMi9JazVtajBCV0FjcmNNNUU0UDhxVzM1Um8y Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrNW1qMEJXQWNyY001RTRQOHFXMzVSbzJWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODNEQy85OUM3NDg4ODI2RUQxMUVGQjRDOUJBMjhDNEY5QUUwMi9JazVtajBCV0Fj cmNNNUU0UDhxVzM1Um8yVm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATsj3bxajSRx+pPPzx0DqnQTddupqNNYJBlN9hiirsT0osj9nMspZdrVF/ZmY H9ng5/Nu5ZYtIwjjtTflWXTQ9fFXZc04EpmLgSungKqJpYW9ea8EMYOg3cEAxpsn SXUp0/9ntOu/DjlMymvZN0bCpNmeI7X6K2vA1gKBY8o8V4EphFmygHUm0WtivOvn 5cxakDqDZ2Ww6t1lQc72DsAqQsgbHpno95RavtasJuYU5uFoae5l1Kod3EGGMUAM SZBwKA9lcGRpYB5z0KaQUn6fsBD8tD44s8CbMyo7qBRtPlY/nfnxqYBhvGjVgeq3 A0LIx1dmyDMvnz0A6ZW+xfs2bA== -----END CERTIFICATE-----Generated at Thu Mar 26 11:19:08 2026 by rpki-client