$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft File: IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft (raw, json) Hash identifier: dwLxFe3MD0i9FXtzeKcE8NQnNd8Et8sNbgjHbQAJDF4= Subject key identifier: C8:2C:E6:85:E2:8D:E7:B6:ED:DB:85:45:14:D5:5C:CC:16:EC:90:F0 Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Certificate serial: 1D84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft Manifest number: 1D66 Signing time: Thu 26 Mar 2026 16:06:56 +0000 Manifest this update: Thu 26 Mar 2026 16:06:56 +0000 Manifest next update: Thu 02 Apr 2026 16:06:56 +0000 Files and hashes: 1: IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl (hash: +OyR1Z2j7seYlS85pFySIQyDuXCUD2DYu3ySkprCvKA=) 2: 402AE4B4685111F0A688505EC4F9AE02.roa (hash: uLWtAzm0T2XZ8XrHmk3i4Qv1rCDDVOMUdZgDRK+R9AY=) 3: 40EAC2C0685111F0A688505EC4F9AE02.roa (hash: SMMdB5FfbHvQ8XxRMRHHqZDp8nFnCc1tqnhGm5C6OOg=) 4: E8FF9A526FDE11E9AF945067C4F9AE02.roa (hash: 8mj54azzqhjHXfOWyNFC53u9e3MBttuOm97GXb6TaYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7556 (0x1d84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE26E, serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Validity Not Before: Mar 26 16:06:56 2026 GMT Not After : Apr 2 16:06:56 2026 GMT Subject: CN=69c559a0-62f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:04:2a:0e:0a:b4:ae:7a:31:2d:de:02:ce:54: f0:61:54:fd:85:92:09:1b:51:89:5c:9c:82:bc:24: d6:43:39:3e:86:ab:a7:8e:50:ed:6a:c9:2d:88:d1: 54:f4:5b:ac:f8:15:31:9f:bf:18:72:74:ae:04:ec: 61:83:1d:be:80:bd:1e:18:66:67:99:98:3b:18:5b: 16:8f:0a:8a:68:46:f1:4d:55:ca:e0:21:fe:c6:3c: 42:e7:e8:7f:8e:6c:e5:e4:3a:39:4d:0b:bb:46:f1: a0:f8:f1:f5:18:4e:8d:7c:30:18:55:84:1d:9c:1e: d0:ad:c7:05:b6:ff:e7:05:c6:08:15:36:02:73:53: 30:e1:c0:7f:05:12:b6:de:d5:8e:fd:62:54:93:93: a6:33:ac:fd:99:aa:17:17:9d:e4:b8:b6:21:26:c2: b0:84:b1:10:56:08:da:f7:2f:ff:c0:56:14:cd:b7: db:e9:59:c1:6e:d5:41:a5:ed:52:71:ed:5d:c2:a0: 63:2c:3a:0d:45:39:7a:21:7d:10:95:3c:48:15:c2: 17:b2:75:b8:bd:0c:4a:43:44:f1:f0:03:46:72:ae: 05:d0:23:3e:7c:91:88:69:c4:ea:be:99:54:c4:4f: 8c:b0:b9:06:7d:5b:20:bc:62:7f:6d:be:ee:4f:94: 3a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:2C:E6:85:E2:8D:E7:B6:ED:DB:85:45:14:D5:5C:CC:16:EC:90:F0 X509v3 Authority Key Identifier: keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:08:88:e3:4b:da:c2:f4:e4:c2:ce:13:b1:23:39:02:42:fa: 9a:78:04:4e:6d:41:d2:a5:5b:90:7f:0b:a9:ba:ad:11:64:8f: 70:76:d2:84:f9:b1:cf:3a:66:08:13:c9:4d:0f:af:3c:b8:fb: 16:10:8d:42:9d:60:1e:77:37:01:e7:5d:2e:e9:24:12:4b:30: f2:bf:f7:35:34:a2:5c:db:d3:ac:ca:55:b1:3c:bc:f4:74:96: df:eb:16:20:31:46:63:fa:98:3f:fd:fd:c0:a0:ae:1f:3e:d1: fa:05:aa:c8:93:69:6a:09:7e:79:51:94:6b:1c:5a:d6:9d:9f: 7b:a6:3e:c8:5b:23:04:3a:17:c9:cb:a2:26:90:44:da:8b:c4: 6c:c2:aa:7f:94:08:92:00:1d:57:f2:03:ae:58:22:bb:32:1e: 31:98:41:6d:a5:21:58:78:20:f3:53:17:bf:21:66:52:ba:8a: f0:09:f9:c8:28:d0:f4:5e:ad:d4:b8:a0:19:de:f1:b6:be:41: 56:d6:67:68:0e:49:0f:9e:34:7e:3a:af:7e:98:67:d2:e5:0d: cb:28:2a:79:20:af:9e:87:2d:d3:3e:4e:f3:f5:ef:4b:72:60: 19:60:4c:71:71:b5:20:f0:79:13:3a:2a:67:57:2c:1d:03:86: 90:fd:c5:10 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3 MzQyRDY2MUYwHhcNMjYwMzI2MTYwNjU2WhcNMjYwNDAyMTYwNjU2WjAYMRYwFAYD VQQDEw02OWM1NTlhMC02MmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAQqDgq0rnoxLd4CzlTwYVT9hZIJG1GJXJyCvCTWQzk+hqunjlDtasktiNFU 9Fus+BUxn78YcnSuBOxhgx2+gL0eGGZnmZg7GFsWjwqKaEbxTVXK4CH+xjxC5+h/ jmzl5Do5TQu7RvGg+PH1GE6NfDAYVYQdnB7QrccFtv/nBcYIFTYCc1Mw4cB/BRK2 3tWO/WJUk5OmM6z9maoXF53kuLYhJsKwhLEQVgja9y//wFYUzbfb6VnBbtVBpe1S ce1dwqBjLDoNRTl6IX0QlTxIFcIXsnW4vQxKQ0Tx8ANGcq4F0CM+fJGIacTqvplU xE+MsLkGfVsgvGJ/bb7uT5Q6DwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMgs5oXi jee27duFRRTVXMwW7JDwMB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4 NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTI2RS84N0I1Q0Q1MEM4NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhC cTRMbHZyY052aTV6UXRaaDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3giI40vawvTkws4TsSM5AkL6mngETm1B0qVbkH8LqbqtEWSPcHbShPmxzzpm CBPJTQ+vPLj7FhCNQp1gHnc3AeddLukkEksw8r/3NTSiXNvTrMpVsTy89HSW3+sW IDFGY/qYP/39wKCuHz7R+gWqyJNpagl+eVGUaxxa1p2fe6Y+yFsjBDoXycuiJpBE 2ovEbMKqf5QIkgAdV/IDrlgiuzIeMZhBbaUhWHgg81MXvyFmUrqK8An5yCjQ9F6t 1LigGd7xtr5BVtZnaA5JD540fjqvfphn0uUNyygqeSCvnoct0z5O8/XvS3JgGWBM cXG1IPB5EzoqZ1csHQOGkP3FEA== -----END CERTIFICATE-----Generated at Thu Mar 26 23:52:21 2026 by rpki-client