$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft File: IWrR11qT4DeulPbJGJbS1YLY_1Q.mft (raw, json) Hash identifier: 1EsElF6pD7hH3ocxRFxHbZQVPrlgsHqlPOa6GCV1io0= Subject key identifier: 1B:1D:D9:7F:C5:8B:D2:C3:08:E0:C0:C3:5C:23:D2:4F:29:EE:75:B4 Authority key identifier: 21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 Certificate issuer: /CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft Manifest number: 01F1 Signing time: Wed 25 Mar 2026 02:40:29 +0000 Manifest this update: Wed 25 Mar 2026 02:40:29 +0000 Manifest next update: Wed 01 Apr 2026 02:40:29 +0000 Files and hashes: 1: IWrR11qT4DeulPbJGJbS1YLY_1Q.crl (hash: 8d6/hS31CLfk5fDxpmwRoAXQFoP090++C8341IAUeJo=) 2: 27DB37683BD211EE8094355FC4F9AE02.roa (hash: jNN3fj+EEW25PsG0U4HYziuBqb6momTUfcic3hWWRvY=) 3: 838096CA3BD311EE84056461C4F9AE02.roa (hash: cQLsMYqSdIJcG0uBESraAoEm5/hK8Y0/eizzGvwT5QU=) 4: 82C54A1E3BD311EE84056461C4F9AE02.roa (hash: p66IPaewmPaRtnsQS2xZgpPBnKkLdaVzEfPus9nU9is=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDDD1, serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Validity Not Before: Mar 25 02:40:29 2026 GMT Not After : Apr 1 02:40:29 2026 GMT Subject: CN=69c34b1d-959e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f2:3a:0f:e2:40:55:6f:13:14:ef:3b:6d:62: 0f:21:e2:6e:35:34:d8:80:f0:9a:02:f0:c4:6c:24: f9:c6:30:34:1d:e3:67:d0:dc:80:58:60:b2:12:d7: 4c:d0:57:cd:d9:04:4e:dd:02:1b:17:ed:82:56:db: 92:2a:fa:e0:46:29:ec:9e:36:d8:84:c8:3c:70:8e: 47:53:fc:a9:28:fe:fe:a6:41:83:f4:25:23:7d:8d: 87:80:21:cd:68:10:86:a5:b0:9a:33:3d:2f:12:4f: 77:74:95:78:fd:a2:09:90:e7:0b:2a:8c:a0:1a:c9: c7:12:48:da:70:7d:4d:87:63:f1:a8:50:9a:51:06: 25:5f:a3:67:de:b5:d7:7f:fc:5e:b9:91:6e:ce:78: 8b:8d:6c:1e:51:d5:98:e1:15:97:1f:32:2f:e2:e7: 60:5b:0c:67:39:d4:38:91:a4:8d:26:46:96:bb:c1: 89:63:aa:9c:8a:5d:12:1a:28:ba:c7:f3:49:f9:b4: a9:b4:89:c2:12:20:1a:f6:ac:a9:a9:1e:be:e2:ce: 48:96:4c:d3:83:73:6c:f5:04:e3:a4:5a:c6:8f:18: 0c:16:16:2e:cd:72:82:37:4a:ce:69:57:4d:05:7e: 5f:c5:84:bc:0d:a1:ee:aa:af:65:7d:91:0f:01:20: 94:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:1D:D9:7F:C5:8B:D2:C3:08:E0:C0:C3:5C:23:D2:4F:29:EE:75:B4 X509v3 Authority Key Identifier: keyid:21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:c3:f4:0c:1d:4b:db:00:6d:f0:c2:57:a0:0d:2a:5e:f2:55: 35:06:cb:8c:a1:78:6e:7e:be:ff:ad:43:01:70:0d:f5:89:c6: 39:ef:bd:1f:c3:61:56:e8:6d:32:73:bc:64:65:be:29:a0:56: ab:df:04:44:9f:45:7f:91:0f:2d:d4:f9:a6:95:23:ca:76:80: a5:d5:94:e8:81:91:ce:a2:e1:45:c9:04:73:1b:c6:e9:a9:eb: d6:cf:0c:7b:f9:7a:a8:82:bf:b5:30:63:e7:a0:46:4d:5d:f2: 3a:f1:58:0e:f3:27:cd:7d:a2:9f:e2:44:80:04:e6:af:b5:82: 36:09:81:62:3c:4b:d1:19:b9:7e:3a:04:8c:84:1b:8f:bb:e9: 96:c6:19:c9:15:bf:74:65:45:5d:d4:3f:3e:ec:7b:6e:1f:13: 49:bc:c9:46:82:02:eb:c6:4f:20:1c:e9:54:da:e3:89:bd:c4: 1f:a7:01:38:9b:c9:41:8d:5c:76:1f:1e:3e:26:ae:c2:80:7e: 3f:cf:c5:99:30:ad:a1:1a:48:52:04:92:ff:89:a1:74:91:03: be:d3:27:08:27:35:23:0e:94:eb:a6:8c:a8:5c:74:eb:3f:d3: 43:09:d2:ed:36:ba:af:f7:3f:17:af:0e:c2:9a:27:60:41:b8: f7:83:e2:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRERDExMTAvBgNVBAUTKDIxNkFEMUQ3NUE5M0UwMzdBRTk0RjZDOTE4OTZEMkQ1 ODJEOEZGNTQwHhcNMjYwMzI1MDI0MDI5WhcNMjYwNDAxMDI0MDI5WjAYMRYwFAYD VQQDEw02OWMzNGIxZC05NTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/I6D+JAVW8TFO87bWIPIeJuNTTYgPCaAvDEbCT5xjA0HeNn0NyAWGCyEtdM 0FfN2QRO3QIbF+2CVtuSKvrgRinsnjbYhMg8cI5HU/ypKP7+pkGD9CUjfY2HgCHN aBCGpbCaMz0vEk93dJV4/aIJkOcLKoygGsnHEkjacH1Nh2PxqFCaUQYlX6Nn3rXX f/xeuZFuzniLjWweUdWY4RWXHzIv4udgWwxnOdQ4kaSNJkaWu8GJY6qcil0SGii6 x/NJ+bSptInCEiAa9qypqR6+4s5IlkzTg3Ns9QTjpFrGjxgMFhYuzXKCN0rOaVdN BX5fxYS8DaHuqq9lfZEPASCUBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBsd2X/F i9LDCODAw1wj0k8p7nW0MB8GA1UdIwQYMBaAFCFq0ddak+A3rpT2yRiW0tWC2P9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREREMS82OEMxRDQ5NjNC RDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDREZXVsUGJKR0piUzFZTFlf MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXclIxMXFUNERldWxQYkpHSmJTMVlMWV8xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REREMS82OEMxRDQ5NjNCRDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDRE ZXVsUGJKR0piUzFZTFlfMVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP8P0DB1L2wBt8MJXoA0qXvJVNQbLjKF4bn6+/61DAXAN9YnGOe+9H8NhVuht MnO8ZGW+KaBWq98ERJ9Ff5EPLdT5ppUjynaApdWU6IGRzqLhRckEcxvG6anr1s8M e/l6qIK/tTBj56BGTV3yOvFYDvMnzX2in+JEgATmr7WCNgmBYjxL0Rm5fjoEjIQb j7vplsYZyRW/dGVFXdQ/Pux7bh8TSbzJRoIC68ZPIBzpVNrjib3EH6cBOJvJQY1c dh8ePiauwoB+P8/FmTCtoRpIUgSS/4mhdJEDvtMnCCc1Iw6U66aMqFx06z/TQwnS 7Ta6r/c/F68OwponYEG494Pijg== -----END CERTIFICATE-----Generated at Thu Mar 26 04:44:47 2026 by rpki-client