$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: tsKIKYpCcxY8WFYGYcYhIC+gQO0v69E5/qNCWTaYtuQ= Subject key identifier: BD:BE:CB:C0:22:11:58:96:EB:DF:0A:63:F1:71:A3:43:57:65:98:54 Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 135E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 1345 Signing time: Mon 02 Mar 2026 00:00:16 +0000 Manifest this update: Mon 02 Mar 2026 00:00:14 +0000 Manifest next update: Mon 09 Mar 2026 00:00:14 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: EIY2mQ0dnUWQRQf5Hr2OGgQafkYG7+zZBUCB+Oo+BqY=) 2: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: k+p0xtu7l+Ym0EwSnutl9VlQ16P8ym/648o14VPC7t8=) 3: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: Y5k6Nh1K8NNS0hPh5WTEjL7DqnEuLThuhCaWRqICeaE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4958 (0x135e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Mar 2 00:00:14 2026 GMT Not After : Mar 9 00:00:14 2026 GMT Subject: CN=69a4d310-1f0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8b:80:d6:f2:d2:69:4f:5b:da:dc:cd:8c:01: f9:1e:63:1e:4e:d5:d8:1c:bc:2a:7e:a6:e3:e4:ac: 1a:9a:75:5e:66:24:b3:f1:5c:28:d6:27:7f:14:e4: 8b:41:85:3b:fa:87:ae:01:ff:aa:b2:b8:22:a3:30: a0:f2:a4:53:cb:5c:f1:43:f2:20:20:8a:aa:c9:02: 3e:cd:5e:94:da:fd:7e:f7:4a:5f:0c:15:ac:a1:c1: 7c:35:7e:8d:96:c6:78:49:95:e2:4a:25:f5:1e:6e: e7:69:b9:10:bd:1e:43:88:c4:cc:20:b9:f5:d7:1e: 0e:43:d0:a7:aa:75:52:89:16:da:2d:b9:83:21:b9: c9:95:60:6c:df:d8:1c:9f:4b:45:ca:7b:3c:63:44: f9:29:69:ca:08:59:23:3e:b4:cd:27:6f:b0:b5:7d: e2:73:6b:db:d3:b8:d3:d0:19:12:09:14:66:4f:17: 9e:41:b6:e1:fc:f4:7f:18:db:73:50:26:18:d2:b0: 66:0c:81:13:b0:e9:ef:28:6d:21:6f:0d:6b:3a:4a: 83:03:8a:84:fc:65:00:56:a0:fc:18:42:cd:95:61: e3:99:89:fb:12:f0:d4:22:7d:0b:40:89:66:be:c5: 3f:56:ed:3d:0a:e7:62:48:13:92:ea:69:a9:b7:da: f9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:BE:CB:C0:22:11:58:96:EB:DF:0A:63:F1:71:A3:43:57:65:98:54 X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:29:06:24:12:65:4d:9e:3d:d4:ad:59:e6:78:f2:6b:50:d3: d0:71:48:bf:77:33:00:42:eb:dd:60:5a:95:89:0c:0a:96:d7: 42:27:50:c1:2d:8e:52:0d:6c:a9:ae:3c:92:18:6f:49:fc:c7: a1:28:4b:4c:f4:f2:e5:a4:e8:17:82:43:6d:c4:35:e3:a4:33: 0b:00:2d:4e:ab:47:f8:32:91:ba:85:21:f1:cd:f1:6c:84:7d: aa:34:a7:4a:bb:ed:c5:32:85:a8:a3:b1:65:4d:03:6a:5b:54: 12:80:ca:8b:e2:f7:e0:f1:29:ce:ab:8d:e6:4f:61:b4:b8:07: 80:ca:31:cc:60:d6:49:f5:e3:43:15:40:48:9f:fc:cc:d6:a9: e5:c9:eb:5a:e7:7e:14:02:5c:21:d3:5a:7b:82:74:fe:7b:1f: 8e:15:13:e4:40:7c:fb:d4:f6:cf:81:99:66:11:17:b0:dd:80: 3a:b4:ff:10:e8:7b:f0:51:03:8b:21:e4:ce:4e:11:6a:5e:d4: ad:c5:6b:63:c7:68:5f:e1:a3:bd:2d:ef:58:2e:9c:34:46:15: 6c:0d:40:20:a7:83:31:f0:bf:59:02:63:65:4e:b4:e9:1b:d3: 01:74:57:17:52:aa:da:14:81:f9:f3:e6:29:55:b1:bc:ba:0b: dd:57:f7:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjYwMzAyMDAwMDE0WhcNMjYwMzA5MDAwMDE0WjAYMRYwFAYD VQQDEw02OWE0ZDMxMC0xZjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIuA1vLSaU9b2tzNjAH5HmMeTtXYHLwqfqbj5KwamnVeZiSz8Vwo1id/FOSL QYU7+oeuAf+qsrgiozCg8qRTy1zxQ/IgIIqqyQI+zV6U2v1+90pfDBWsocF8NX6N lsZ4SZXiSiX1Hm7nabkQvR5DiMTMILn11x4OQ9CnqnVSiRbaLbmDIbnJlWBs39gc n0tFyns8Y0T5KWnKCFkjPrTNJ2+wtX3ic2vb07jT0BkSCRRmTxeeQbbh/PR/GNtz UCYY0rBmDIETsOnvKG0hbw1rOkqDA4qE/GUAVqD8GELNlWHjmYn7EvDUIn0LQIlm vsU/Vu09CudiSBOS6mmpt9r5VwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL2+y8Ai EViW698KY/Fxo0NXZZhUMB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWykGJBJlTZ491K1Z5njya1DT0HFIv3czAELr3WBalYkMCpbXQidQwS2OUg1s qa48khhvSfzHoShLTPTy5aToF4JDbcQ146QzCwAtTqtH+DKRuoUh8c3xbIR9qjSn SrvtxTKFqKOxZU0DaltUEoDKi+L34PEpzquN5k9htLgHgMoxzGDWSfXjQxVASJ/8 zNap5cnrWud+FAJcIdNae4J0/nsfjhUT5EB8+9T2z4GZZhEXsN2AOrT/EOh78FED iyHkzk4Ral7UrcVrY8doX+GjvS3vWC6cNEYVbA1AIKeDMfC/WQJjZU606RvTAXRX F1Kq2hSB+fPmKVWxvLoL3Vf3iw== -----END CERTIFICATE-----Generated at Mon Mar 2 05:44:05 2026 by rpki-client