$ rpki-client -vvf rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft File: iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft (raw, json) Hash identifier: qQRXj84g1GiWHZYRM/L8RhbyJSKQNONo6e7m448Q9cQ= Subject key identifier: 2A:D4:9B:08:D3:B9:45:F8:DC:F9:79:6A:F1:58:0C:55:D6:95:56:E3 Authority key identifier: 88:6A:0E:E6:BC:7A:BD:C0:9F:A8:22:E1:14:DF:43:5F:0B:0E:86:5A Certificate issuer: /CN=A91376FB/serialNumber=886A0EE6BC7ABDC09FA822E114DF435F0B0E865A Certificate serial: 0471 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iGoO5rx6vcCfqCLhFN9DXwsOhlo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft Manifest number: 046A Signing time: Sun 01 Mar 2026 00:53:01 +0000 Manifest this update: Sun 01 Mar 2026 00:53:00 +0000 Manifest next update: Sun 08 Mar 2026 00:53:00 +0000 Files and hashes: 1: iGoO5rx6vcCfqCLhFN9DXwsOhlo.crl (hash: uRqy4jBSXtv/sdobOJkKC6E5HfNz4CzGjIyPCbVZjog=) 2: 25C61AECB7ED11ED9CF6A63EC4F9AE02.roa (hash: Yv9ClrwAFACGSqITuh9ooZXNuE+9WgMW5OezB268l+A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.crl rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iGoO5rx6vcCfqCLhFN9DXwsOhlo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1137 (0x471) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91376FB, serialNumber=886A0EE6BC7ABDC09FA822E114DF435F0B0E865A Validity Not Before: Mar 1 00:53:00 2026 GMT Not After : Mar 8 00:53:00 2026 GMT Subject: CN=69a38dec-e589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:44:f2:c1:e6:9c:41:6b:bc:97:11:5a:48:39: 22:c8:3b:e4:0e:70:8c:a3:ab:b2:c0:9c:87:ff:5d: 81:0a:9e:7a:7c:6f:5b:d9:7b:bd:f2:21:82:e3:29: e8:0d:02:34:5c:81:13:ae:3b:e1:bf:f2:8e:74:c0: 2f:a0:4a:09:e6:fe:a4:3b:82:02:9a:a5:16:8e:b9: 9f:d2:02:cb:eb:b2:37:02:b2:b6:d0:35:85:51:5d: 08:bd:d0:ca:2d:fe:c4:33:d8:25:80:79:7f:c4:5c: 82:df:f9:97:ec:72:8e:0b:a1:7f:40:d7:33:c1:e7: 88:21:7d:75:06:1a:c6:8b:5a:5f:d5:47:43:5e:f0: 63:ad:e1:51:2f:7d:ac:d3:cb:b0:c2:b5:e2:c3:66: 05:f6:5d:e9:b4:08:2c:87:cd:c3:cd:3d:48:de:36: cd:a2:57:4a:ae:cc:81:9d:28:c8:ae:57:4b:62:87: 24:d1:8a:25:d8:74:67:81:ed:f6:5a:96:0b:76:10: 31:17:80:8d:ac:4f:04:d2:b9:11:a5:91:4c:0f:de: 58:69:ec:b5:80:ca:dd:5b:2a:bf:b0:dd:28:7a:52: 59:07:32:76:b7:25:4f:61:e6:cb:ab:a2:c8:8c:ab: a8:26:c9:0b:86:36:5b:9a:7e:1f:fc:98:65:77:e2: 68:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D4:9B:08:D3:B9:45:F8:DC:F9:79:6A:F1:58:0C:55:D6:95:56:E3 X509v3 Authority Key Identifier: keyid:88:6A:0E:E6:BC:7A:BD:C0:9F:A8:22:E1:14:DF:43:5F:0B:0E:86:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iGoO5rx6vcCfqCLhFN9DXwsOhlo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:06:02:61:28:43:4b:b1:42:c4:2e:4e:94:cc:f2:ed:f6:f9: 00:5b:c4:5b:df:4f:ba:6a:91:3c:9d:8c:b5:fd:09:57:12:67: 21:31:97:b6:b9:7a:30:07:8a:5d:18:4b:29:77:6e:9b:62:6c: 39:62:c1:bc:67:47:12:8f:1e:29:5d:29:5c:e4:2f:db:84:ec: 4d:dc:44:35:22:50:64:20:27:ec:d4:36:d8:ff:b3:0c:91:6c: 2a:8c:bf:5b:75:ea:39:c3:2e:75:ac:7d:b5:c2:17:dc:9c:5a: 88:5e:58:82:86:26:4a:74:a3:91:b8:1f:d5:7a:3a:ea:41:59: 0b:cd:2c:05:3c:12:a1:b0:26:a4:12:61:f9:93:96:60:2f:b0: 7b:ad:c8:4b:07:46:5e:3a:23:0f:1b:c9:eb:25:45:10:8a:74: 6d:7d:ea:34:2b:2d:0b:54:4c:55:9c:44:f8:21:06:dd:9a:d4: 5d:b2:2b:09:98:b9:e3:01:fe:48:43:b4:a8:52:cc:0c:cf:73: a2:aa:2f:c3:1e:fe:bb:db:df:b3:92:eb:49:88:2d:d2:b0:8d: 08:cf:1f:96:ba:d2:ca:a1:12:8d:45:a9:b4:85:cd:f6:0b:f3: e4:65:fc:95:6c:1d:24:09:ae:80:f4:db:78:f0:94:2f:f7:7b: a4:78:84:c1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc2RkIxMTAvBgNVBAUTKDg4NkEwRUU2QkM3QUJEQzA5RkE4MjJFMTE0REY0MzVG MEIwRTg2NUEwHhcNMjYwMzAxMDA1MzAwWhcNMjYwMzA4MDA1MzAwWjAYMRYwFAYD VQQDDA02OWEzOGRlYy1lNTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyETyweacQWu8lxFaSDkiyDvkDnCMo6uywJyH/12BCp56fG9b2Xu98iGC4yno DQI0XIETrjvhv/KOdMAvoEoJ5v6kO4ICmqUWjrmf0gLL67I3ArK20DWFUV0IvdDK Lf7EM9glgHl/xFyC3/mX7HKOC6F/QNczweeIIX11BhrGi1pf1UdDXvBjreFRL32s 08uwwrXiw2YF9l3ptAgsh83DzT1I3jbNoldKrsyBnSjIrldLYock0Yol2HRnge32 WpYLdhAxF4CNrE8E0rkRpZFMD95Yaey1gMrdWyq/sN0oelJZBzJ2tyVPYebLq6LI jKuoJskLhjZbmn4f/Jhld+JozQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCrUmwjT uUX43Pl5avFYDFXWlVbjMB8GA1UdIwQYMBaAFIhqDua8er3An6gi4RTfQ18LDoZa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzZGQi85MkZCNzFBMDgz RjIxMUVDQkIyNTE5ODVDNEY5QUUwMi9pR29PNXJ4NnZjQ2ZxQ0xoRk45RFh3c09o bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lHb081cng2dmNDZnFDTGhGTjlEWHdzT2hsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzZGQi85MkZCNzFBMDgzRjIxMUVDQkIyNTE5ODVDNEY5QUUwMi9pR29PNXJ4NnZj Q2ZxQ0xoRk45RFh3c09obG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANAYCYShDS7FCxC5OlMzy7fb5AFvEW99PumqRPJ2Mtf0JVxJnITGXtrl6MAeK XRhLKXdum2JsOWLBvGdHEo8eKV0pXOQv24TsTdxENSJQZCAn7NQ22P+zDJFsKoy/ W3XqOcMudax9tcIX3JxaiF5YgoYmSnSjkbgf1Xo66kFZC80sBTwSobAmpBJh+ZOW YC+we63ISwdGXjojDxvJ6yVFEIp0bX3qNCstC1RMVZxE+CEG3ZrUXbIrCZi54wH+ SEO0qFLMDM9zoqovwx7+u9vfs5LrSYgt0rCNCM8flrrSyqESjUWptIXN9gvz5GX8 lWwdJAmugPTbePCUL/d7pHiEwQ== -----END CERTIFICATE-----Generated at Sun Mar 1 23:56:59 2026 by rpki-client