$ rpki-client -vvf rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.mft File: IPxzgnJ0AC605K7oniD9DRc_soU.mft (raw, json) Hash identifier: sFhs97j5GvhL3BJkrb2Kj4lWiDPnvzmiwb6dvcHWv1o= Subject key identifier: B5:CD:36:6D:CF:FD:80:FE:ED:A8:F3:78:87:9F:3D:13:59:6D:3F:4B Authority key identifier: 20:FC:73:82:72:74:00:2E:B4:E4:AE:E8:9E:20:FD:0D:17:3F:B2:85 Certificate issuer: /CN=A91578DF/serialNumber=20FC73827274002EB4E4AEE89E20FD0D173FB285 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPxzgnJ0AC605K7oniD9DRc_soU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.mft Manifest number: 59 Signing time: Sun 01 Mar 2026 09:34:48 +0000 Manifest this update: Sun 01 Mar 2026 09:34:47 +0000 Manifest next update: Sun 08 Mar 2026 09:34:47 +0000 Files and hashes: 1: IPxzgnJ0AC605K7oniD9DRc_soU.crl (hash: iOQQ9xRx9CN2Zd2nSAjcES4+0y3V5MXcGTwlilLrgYk=) 2: 067CE6C895C811F09500A713C4F9AE02.roa (hash: DaXXWX4PSZTEEnKA/Wr/hB6+tz0WGbj29+yIsXyWSwM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.crl rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPxzgnJ0AC605K7oniD9DRc_soU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91578DF, serialNumber=20FC73827274002EB4E4AEE89E20FD0D173FB285 Validity Not Before: Mar 1 09:34:47 2026 GMT Not After : Mar 8 09:34:47 2026 GMT Subject: CN=69a40837-81b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e1:31:44:14:c7:bc:e0:3e:03:4a:59:08:16: d9:d1:bb:b1:56:af:2f:94:82:4b:ea:f1:23:71:b8: e1:16:c5:d6:8b:f8:42:03:d9:19:5b:ea:05:18:a9: a8:de:a7:10:68:eb:22:e6:d3:4f:5b:47:00:b0:82: 96:22:1d:99:a5:22:01:3f:06:f7:05:5c:b7:bd:32: b6:1d:fd:ed:00:29:34:1d:c7:bd:38:4b:ab:d9:4b: e2:27:87:39:ce:f9:25:23:12:d8:38:14:8b:b7:c7: 52:55:35:c6:a0:0b:aa:ab:b0:c9:0f:be:78:4c:9b: a5:36:87:b7:dc:af:a9:76:4c:f7:98:b7:e4:ff:3c: a0:26:5f:17:f0:e6:61:8d:56:06:d5:2d:82:34:0c: e7:60:a8:85:cb:c2:cc:6f:58:df:7d:f1:78:de:c2: df:25:be:d1:80:e2:c6:e5:4f:e2:98:5b:d2:1c:75: e0:21:00:dd:c6:84:c5:b2:e8:f8:67:47:7d:81:91: 7b:75:5f:73:90:6e:c3:48:50:c7:05:70:93:d3:88: 4a:98:08:f8:5b:93:21:e3:35:e6:54:05:23:16:21: 37:a0:0c:d5:29:04:b1:f5:29:8d:dd:94:90:0d:2c: 33:6f:90:64:43:48:a5:c6:0b:70:90:c4:3f:d5:16: af:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:CD:36:6D:CF:FD:80:FE:ED:A8:F3:78:87:9F:3D:13:59:6D:3F:4B X509v3 Authority Key Identifier: keyid:20:FC:73:82:72:74:00:2E:B4:E4:AE:E8:9E:20:FD:0D:17:3F:B2:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPxzgnJ0AC605K7oniD9DRc_soU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:bd:dc:a1:3d:2e:fd:81:06:67:6b:e6:08:93:7e:73:ea:48: 3c:1b:c2:5a:e3:6c:eb:eb:db:ca:46:c4:d6:c8:1a:1a:08:b5: a7:ba:cc:4b:bd:7d:88:32:df:ca:09:f9:10:d5:38:39:64:11: fd:74:21:b8:5e:33:60:de:e2:68:a6:42:63:89:c2:60:ba:a9: 87:f4:6f:d1:2e:6c:90:e7:41:db:a4:8f:cc:32:5c:ae:5c:45: ce:fc:57:17:e3:2b:47:77:ae:16:62:b4:af:b7:a9:9a:2b:99: c8:2d:a2:cf:84:af:a7:65:60:fe:24:41:75:a9:cf:6a:1b:72: 48:3d:e3:d7:42:92:90:51:8f:1e:0d:13:e5:3b:00:dc:c8:01: a9:12:a4:70:86:98:dc:83:c4:20:71:68:4d:77:9e:e7:ab:a2: b7:b8:c3:64:43:06:31:aa:01:b4:a6:34:d1:3a:a6:dc:ed:63: 4a:67:c7:4d:9f:86:ff:00:64:b2:b3:f3:d9:ef:e5:e7:fc:0e: 08:ba:0b:a7:32:65:8c:10:e3:53:d9:fc:7c:b5:83:aa:7f:16: 2d:44:3c:82:b3:c5:4f:4b:be:11:1f:df:ef:f7:3e:1b:e4:9a: b3:c7:0d:62:e6:fe:3e:61:e8:be:ef:d4:ef:04:a9:97:82:f6: 34:ac:1b:d3 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NzhERjExMC8GA1UEBRMoMjBGQzczODI3Mjc0MDAyRUI0RTRBRUU4OUUyMEZEMEQx NzNGQjI4NTAeFw0yNjAzMDEwOTM0NDdaFw0yNjAzMDgwOTM0NDdaMBgxFjAUBgNV BAMTDTY5YTQwODM3LTgxYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCx4TFEFMe84D4DSlkIFtnRu7FWry+Ugkvq8SNxuOEWxdaL+EID2Rlb6gUYqaje pxBo6yLm009bRwCwgpYiHZmlIgE/BvcFXLe9MrYd/e0AKTQdx704S6vZS+InhznO +SUjEtg4FIu3x1JVNcagC6qrsMkPvnhMm6U2h7fcr6l2TPeYt+T/PKAmXxfw5mGN VgbVLYI0DOdgqIXLwsxvWN998Xjewt8lvtGA4sblT+KYW9IcdeAhAN3GhMWy6Phn R32BkXt1X3OQbsNIUMcFcJPTiEqYCPhbkyHjNeZUBSMWITegDNUpBLH1KY3dlJAN LDNvkGRDSKXGC3CQxD/VFq9hAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUtc02bc/9 gP7tqPN4h589E1ltP0swHwYDVR0jBBgwFoAUIPxzgnJ0AC605K7oniD9DRc/soUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3OERGLzA1MUNGMUQ0OTVD NzExRjBBQkUyRkQ1RkM0RjlBRTAyL0lQeHpnbkowQUM2MDVLN29uaUQ5RFJjX3Nv VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVB4emduSjBBQzYwNUs3b25pRDlEUmNfc29VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 OERGLzA1MUNGMUQ0OTVDNzExRjBBQkUyRkQ1RkM0RjlBRTAyL0lQeHpnbkowQUM2 MDVLN29uaUQ5RFJjX3NvVS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCgvdyhPS79gQZna+YIk35z6kg8G8Ja42zr69vKRsTWyBoaCLWnusxLvX2IMt/K CfkQ1Tg5ZBH9dCG4XjNg3uJopkJjicJguqmH9G/RLmyQ50HbpI/MMlyuXEXO/FcX 4ytHd64WYrSvt6maK5nILaLPhK+nZWD+JEF1qc9qG3JIPePXQpKQUY8eDRPlOwDc yAGpEqRwhpjcg8QgcWhNd57nq6K3uMNkQwYxqgG0pjTROqbc7WNKZ8dNn4b/AGSy s/PZ7+Xn/A4IugunMmWMEONT2fx8tYOqfxYtRDyCs8VPS74RH9/v9z4b5Jqzxw1i 5v4+Yei+79TvBKmXgvY0rBvT -----END CERTIFICATE-----Generated at Sun Mar 1 22:18:00 2026 by rpki-client