$ rpki-client -vvf rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft File: IJOpiw2lSMwNHF-8o9clFG9ETXI.mft (raw, json) Hash identifier: b8DAaYfcrGpiLKqxbbzlRBNuQwWaA88oI6QR10HWBp4= Subject key identifier: 1E:6B:E9:87:7D:C7:92:A0:DE:1D:FA:AF:E2:A1:31:EC:48:04:FF:78 Authority key identifier: 20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 Certificate issuer: /CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Certificate serial: 3564 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft Manifest number: 3531 Signing time: Mon 02 Mar 2026 00:00:01 +0000 Manifest this update: Sun 01 Mar 2026 23:59:59 +0000 Manifest next update: Sun 08 Mar 2026 23:59:59 +0000 Files and hashes: 1: IJOpiw2lSMwNHF-8o9clFG9ETXI.crl (hash: T+riIAA3gq8pWb3pxNl5Uf3ETkn0dhU7Dw8eLKwhA4o=) 2: E93EEAFCB0F811E595E0F761C4F9AE02.roa (hash: t1FUONQlvo1z1vAcNEflgs9l4NJNKngDzGvyUzZvKfw=) 3: EF9395EA6A1511E9808D417CC4F9AE02.roa (hash: 2V0xaBVMH3qwSFGGeVHjMLvkAdaeXJP/NN3OOPBpG2A=) 4: 32509B68EDAE11E595DF6C28C4F9AE02.roa (hash: htjWNsJYRCHi02awtSfLaI7Ni5BaFwbvL87PQ+0VPg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:59:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13668 (0x3564) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154657, serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Validity Not Before: Mar 1 23:59:59 2026 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: CN=69a4d301-cd79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:c2:52:2a:a8:21:55:a5:99:12:17:94:10:d4: 26:68:00:af:6e:41:e4:c1:90:e8:e9:f2:1f:2b:7c: 36:d2:de:f8:17:c6:20:f2:df:fc:99:d8:51:01:8e: 90:21:15:24:d6:24:ab:31:d2:7c:6f:74:73:56:aa: 5f:39:82:46:b2:dc:c3:a2:bd:29:c6:82:82:c0:65: c6:4d:77:46:a0:9c:4c:a3:1a:ee:df:ee:39:71:00: 06:2e:8a:e4:66:8d:2c:91:81:e8:8a:69:6e:bb:b8: e7:c4:6c:65:d7:1d:0e:dc:a7:05:8a:fe:a8:7b:ad: 6e:63:93:78:01:00:72:88:b7:bf:fb:ee:99:88:3a: 93:8b:4e:80:07:f3:4e:07:21:be:6f:65:1e:80:37: 7b:ca:df:93:61:a2:73:fd:03:46:14:a5:b7:08:6f: a5:28:82:74:5e:3a:d0:a7:c7:16:1f:47:62:cf:88: 9d:24:70:e2:98:d6:ed:02:04:e6:67:a4:15:a9:75: 81:fd:ae:9d:77:fd:37:e3:b0:d1:ca:a9:3a:59:25: 45:80:b7:91:09:85:59:1c:74:11:68:7d:e9:6f:a4: 2d:e2:88:f8:3d:b1:33:e7:51:43:48:48:73:ca:e6: c6:cb:3e:3f:ab:3a:a7:d9:eb:26:b6:6c:94:8f:c7: 8c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:6B:E9:87:7D:C7:92:A0:DE:1D:FA:AF:E2:A1:31:EC:48:04:FF:78 X509v3 Authority Key Identifier: keyid:20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:62:8a:0e:18:55:f5:af:a0:37:1b:a2:5d:d8:23:54:22:e5: f1:51:68:c4:fe:14:9a:48:36:a8:d8:8b:85:d6:14:bc:5d:eb: b0:c5:71:90:5a:ff:12:3e:10:99:93:73:c3:b7:68:9f:72:ea: 64:1d:81:e2:71:e0:83:8a:5c:ec:29:ca:41:0b:c2:82:ad:53: f0:17:ae:77:1c:50:86:d6:94:e2:2d:b0:5f:7f:2c:b9:94:a4: 0f:8b:ac:a8:7c:6c:ca:ee:9c:63:b9:34:19:f1:65:84:e2:98: 16:55:58:0b:94:25:75:4f:26:0e:b3:42:22:f2:2d:e0:a1:07: 41:03:bb:07:1d:4f:52:08:66:21:a1:9d:db:35:98:ea:69:52: b7:df:a5:37:1e:6f:c3:2c:13:f1:5e:06:56:0f:09:2c:9d:e7: b7:23:0f:a6:9a:68:be:20:73:db:bf:aa:2b:d7:88:2b:69:21: cb:7b:57:bb:3f:08:67:87:15:ef:fa:21:93:f9:d3:cc:68:35: 8f:18:5d:19:f0:a7:58:bd:7b:02:3f:e5:78:bf:e9:9d:3c:df: 46:21:31:41:95:52:fd:6a:80:d0:d1:45:25:50:0a:3c:e7:3b: ed:a5:5a:d4:cb:ea:6f:d0:6b:4c:42:dd:5c:cf:80:8e:4e:0b: 01:74:d6:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NTcxMTAvBgNVBAUTKDIwOTNBOThCMERBNTQ4Q0MwRDFDNUZCQ0EzRDcyNTE0 NkY0NDRENzIwHhcNMjYwMzAxMjM1OTU5WhcNMjYwMzA4MjM1OTU5WjAYMRYwFAYD VQQDEw02OWE0ZDMwMS1jZDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5MJSKqghVaWZEheUENQmaACvbkHkwZDo6fIfK3w20t74F8Yg8t/8mdhRAY6Q IRUk1iSrMdJ8b3RzVqpfOYJGstzDor0pxoKCwGXGTXdGoJxMoxru3+45cQAGLork Zo0skYHoimluu7jnxGxl1x0O3KcFiv6oe61uY5N4AQByiLe/++6ZiDqTi06AB/NO ByG+b2UegDd7yt+TYaJz/QNGFKW3CG+lKIJ0XjrQp8cWH0diz4idJHDimNbtAgTm Z6QVqXWB/a6dd/0347DRyqk6WSVFgLeRCYVZHHQRaH3pb6Qt4oj4PbEz51FDSEhz yubGyz4/qzqn2esmtmyUj8eMDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB5r6Yd9 x5Kg3h36r+KhMexIBP94MB8GA1UdIwQYMBaAFCCTqYsNpUjMDRxfvKPXJRRvRE1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1Ny83MTVGMzMzNDFE NzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNNd05IRi04bzljbEZHOUVU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lKT3BpdzJsU013TkhGLThvOWNsRkc5RVRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDY1Ny83MTVGMzMzNDFENzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNN d05IRi04bzljbEZHOUVUWEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdGKKDhhV9a+gNxuiXdgjVCLl8VFoxP4Umkg2qNiLhdYUvF3rsMVxkFr/Ej4Q mZNzw7don3LqZB2B4nHgg4pc7CnKQQvCgq1T8BeudxxQhtaU4i2wX38suZSkD4us qHxsyu6cY7k0GfFlhOKYFlVYC5QldU8mDrNCIvIt4KEHQQO7Bx1PUghmIaGd2zWY 6mlSt9+lNx5vwywT8V4GVg8JLJ3ntyMPpppoviBz27+qK9eIK2khy3tXuz8IZ4cV 7/ohk/nTzGg1jxhdGfCnWL17Aj/leL/pnTzfRiExQZVS/WqA0NFFJVAKPOc77aVa 1Mvqb9BrTELdXM+Ajk4LAXTWbQ== -----END CERTIFICATE-----Generated at Mon Mar 2 03:56:47 2026 by rpki-client