$ rpki-client -vvf rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft File: IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft (raw, json) Hash identifier: +dly9NPSCQXXSnIqiVossGW+ZLNSZdSKvLIQopbfwYk= Subject key identifier: 03:8B:5A:AB:BF:52:23:EC:A5:58:EF:F6:83:0A:0C:5A:10:DB:0B:DF Authority key identifier: 21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 Certificate issuer: /CN=A9170BBF/serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Certificate serial: 054D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft Manifest number: 053D Signing time: Sun 01 Mar 2026 23:23:40 +0000 Manifest this update: Sun 01 Mar 2026 23:23:38 +0000 Manifest next update: Sun 08 Mar 2026 23:23:38 +0000 Files and hashes: 1: IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl (hash: Yt4v/d5rM6Y3Hi+sJ1Ae+D9evGCMtib8xogLvHBYvfs=) 2: 0628D74630C211ECBB5A4116C4F9AE02.roa (hash: IekuGWz95qJq1RkERKwpFfkq5YP338H+OPjlC3vFHYE=) 3: 06CAA9C230C211ECBB5A4116C4F9AE02.roa (hash: mMzlkdBS5l7zH1NqOtcSGsyrLWVpyJgkzBlaJ0LOo5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1357 (0x54d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170BBF, serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Validity Not Before: Mar 1 23:23:38 2026 GMT Not After : Mar 8 23:23:38 2026 GMT Subject: CN=69a4ca7c-453d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3e:c8:65:ea:41:aa:ac:53:5f:7f:f0:5d:5e: 69:92:2d:74:22:2c:e6:c6:f9:36:64:16:11:5c:f0: dc:64:59:43:44:bd:09:08:06:47:e0:c1:dd:2b:26: 8f:67:aa:22:8b:a0:99:28:cf:33:ab:f8:12:ac:48: bf:9d:93:3e:dc:cc:4a:5b:8c:b3:d4:c4:da:8a:8f: 77:46:65:06:11:c9:a9:26:b1:a7:ab:98:77:d1:7c: e1:b2:d2:4a:d0:ec:8c:8f:3f:cf:f6:fa:e3:22:5c: 69:00:52:9d:27:89:92:f3:16:9b:0f:1b:ef:66:0e: dc:0c:5f:3e:47:46:bf:48:4a:b1:d5:13:53:fb:0e: 67:1e:2d:93:f2:55:2c:27:08:95:ca:16:11:9c:79: 47:4e:eb:b6:43:01:0d:79:01:5e:fc:15:bc:0d:dd: b2:fd:c9:90:7f:8d:e7:7d:5b:29:3b:a7:91:32:16: cb:cb:80:e6:00:97:2e:fe:42:52:18:92:ef:1b:c4: 52:46:54:12:1f:21:52:ac:35:4b:92:34:26:b3:6c: 87:2e:1e:35:53:ba:18:a7:66:41:d1:c9:37:3e:ac: ae:63:db:29:25:43:c4:b2:ac:ea:d8:0f:63:94:5d: bf:b4:e9:5d:62:c1:12:ad:cf:0f:b2:a5:8e:9f:28: a7:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:8B:5A:AB:BF:52:23:EC:A5:58:EF:F6:83:0A:0C:5A:10:DB:0B:DF X509v3 Authority Key Identifier: keyid:21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:94:ad:34:58:98:5f:00:f5:57:7e:f8:b4:b9:1e:53:91:2a: d1:e0:69:2d:b1:f6:6f:83:00:81:e3:e9:da:05:15:54:6e:4a: ef:63:c9:e4:38:54:ae:92:64:e0:78:cb:ed:06:3c:3a:3c:03: ed:9d:69:7b:b0:55:47:d8:ec:fc:bc:2d:1e:88:75:8d:77:35: 9f:5e:58:d6:93:a5:d7:c3:ea:07:db:2d:b1:42:e2:24:04:7f: e1:b4:ac:25:16:dd:de:d7:fd:2a:0c:0f:3a:b7:7a:35:68:e3: 95:bb:e2:83:34:1c:dc:64:86:b8:bb:87:61:17:52:a8:32:fe: cd:96:54:f1:c1:46:92:9c:74:1e:a7:0a:69:7b:aa:d7:3a:5e: cd:c9:da:e7:8d:71:18:c5:97:ab:a0:de:d4:ca:ba:88:18:5e: 94:1e:93:21:eb:8e:6f:a0:e5:c2:b0:43:e4:35:6e:44:93:a5: f2:41:00:d4:cc:86:74:a9:e4:db:42:21:2c:b7:3d:58:f3:c1: a7:f3:ad:19:3d:5a:91:bc:80:c1:60:4b:cc:82:d2:fa:c7:3e: 56:48:e1:1f:06:c3:29:3b:f9:c2:04:62:10:90:da:48:c2:09: cc:b1:8c:d9:a0:34:77:87:63:20:f0:91:6f:ee:9c:bc:59:96: 9e:32:a5:0c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBCQkYxMTAvBgNVBAUTKDIxMEZGMTY2NjhERjk2M0JFMEZDQTkwNjkzMzkxN0ZG RURFRDlGOTUwHhcNMjYwMzAxMjMyMzM4WhcNMjYwMzA4MjMyMzM4WjAYMRYwFAYD VQQDEw02OWE0Y2E3Yy00NTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqj7IZepBqqxTX3/wXV5pki10Iizmxvk2ZBYRXPDcZFlDRL0JCAZH4MHdKyaP Z6oii6CZKM8zq/gSrEi/nZM+3MxKW4yz1MTaio93RmUGEcmpJrGnq5h30XzhstJK 0OyMjz/P9vrjIlxpAFKdJ4mS8xabDxvvZg7cDF8+R0a/SEqx1RNT+w5nHi2T8lUs JwiVyhYRnHlHTuu2QwENeQFe/BW8Dd2y/cmQf43nfVspO6eRMhbLy4DmAJcu/kJS GJLvG8RSRlQSHyFSrDVLkjQms2yHLh41U7oYp2ZB0ck3PqyuY9spJUPEsqzq2A9j lF2/tOldYsESrc8PsqWOnyinIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAOLWqu/ UiPspVjv9oMKDFoQ2wvfMB8GA1UdIwQYMBaAFCEP8WZo35Y74PypBpM5F//t7Z+V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEJCRi9FNDkxMTIzQTMw QkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxqdmdfS2tHa3prWF8tM3Ru NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRX3habWpmbGp2Z19La0dremtYXy0zdG41VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEJCRi9FNDkxMTIzQTMwQkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxq dmdfS2tHa3prWF8tM3RuNVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXpStNFiYXwD1V374tLkeU5Eq0eBpLbH2b4MAgePp2gUVVG5K72PJ5DhUrpJk 4HjL7QY8OjwD7Z1pe7BVR9js/LwtHoh1jXc1n15Y1pOl18PqB9stsULiJAR/4bSs JRbd3tf9KgwPOrd6NWjjlbvigzQc3GSGuLuHYRdSqDL+zZZU8cFGkpx0HqcKaXuq 1zpezcna541xGMWXq6De1Mq6iBhelB6TIeuOb6DlwrBD5DVuRJOl8kEA1MyGdKnk 20IhLLc9WPPBp/OtGT1akbyAwWBLzILS+sc+VkjhHwbDKTv5wgRiEJDaSMIJzLGM 2aA0d4djIPCRb+6cvFmWnjKlDA== -----END CERTIFICATE-----Generated at Mon Mar 2 14:31:31 2026 by rpki-client