$ rpki-client -vvf rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft File: iifxtRRZ_TbLLIBghxxVOPnSPX4.mft (raw, json) Hash identifier: QJq4QLg/UiKhEKtZtnS5rHdLmI4FPHYN+mnpccFfZ+w= Subject key identifier: 21:F3:CA:C3:C0:48:E2:A9:2C:B7:FF:96:1D:5B:7F:56:CF:70:A8:6C Authority key identifier: 8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E Certificate issuer: /CN=A918AACD/serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft Manifest number: 0152 Signing time: Sun 01 Mar 2026 06:09:30 +0000 Manifest this update: Sun 01 Mar 2026 06:09:29 +0000 Manifest next update: Sun 08 Mar 2026 06:09:29 +0000 Files and hashes: 1: iifxtRRZ_TbLLIBghxxVOPnSPX4.crl (hash: oF8AyttjRFg+Q2GfjKrX1UXcsrVwBr4usj1uFBT4m+4=) 2: 7DA22F2C199D11EFB19DA380C4F9AE02.roa (hash: 7Ge+Ur1HNSgNTEqBJNH+Y2JY0m3BlGqRwSkervRpW04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AACD, serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Validity Not Before: Mar 1 06:09:29 2026 GMT Not After : Mar 8 06:09:29 2026 GMT Subject: CN=69a3d81a-de9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:df:74:db:26:75:59:76:9b:df:f2:69:9d:fb: 5c:6c:24:8f:d3:e3:a5:31:14:42:e1:83:5f:01:c2: 9a:28:15:d9:de:c1:b9:3c:a3:2e:ba:1f:1d:32:03: 9e:e8:79:cd:f7:c5:c0:f3:6c:66:64:13:db:8a:e4: 09:c2:6f:d0:84:15:b4:8c:2b:e9:66:db:eb:10:9a: 35:72:48:08:41:d9:12:44:8e:81:5c:3d:b6:91:20: c9:ec:49:b1:29:1d:1a:12:26:9f:d6:8b:79:f4:8d: 4a:c2:74:9c:7e:3d:c5:b2:04:e4:19:63:3c:02:55: 4f:76:4c:55:d1:b3:e7:a9:52:aa:70:d2:78:e7:12: 07:fa:e0:e9:4c:e9:44:f3:f9:ea:c8:9f:50:31:4f: 45:07:7d:ef:5f:78:a9:8c:8a:ec:d9:b0:f0:9d:fb: 9e:c7:fc:23:57:92:17:2d:61:29:e6:3c:57:dd:cf: 3d:2b:7a:b2:2a:cc:2d:1a:e5:1a:b8:1b:89:d0:6f: ee:92:d9:e8:b0:04:de:ee:52:a8:9e:c7:a5:d0:fe: 2a:1e:c1:47:b9:68:be:c1:be:60:ab:f7:0d:84:30: 26:43:b4:a0:3d:bc:43:80:4b:30:f7:d4:8f:a0:7f: a2:46:b7:33:50:b6:9b:58:02:52:e7:92:da:f9:dd: b0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:F3:CA:C3:C0:48:E2:A9:2C:B7:FF:96:1D:5B:7F:56:CF:70:A8:6C X509v3 Authority Key Identifier: keyid:8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:d5:08:62:0f:44:be:16:52:2b:8d:02:53:8b:40:16:92:03: 1a:c6:6e:91:5f:64:03:a0:69:2e:94:e7:a8:7e:7b:8e:3a:29: b5:41:df:9b:dc:0d:bc:47:66:7e:a5:49:0f:ab:1c:07:34:5b: 4f:6f:57:8d:77:18:1a:c2:6e:79:16:1c:c7:e9:48:ec:d6:99: cd:67:e3:f7:54:ca:6c:52:72:30:79:b4:47:5d:cf:61:e3:c1: a2:22:38:3b:32:7f:f7:e0:05:34:a3:7e:5e:18:a8:d6:f3:46: 84:6f:05:d3:31:d6:ba:1a:64:99:05:e6:fd:71:f6:f7:bd:16: 55:45:95:8b:be:65:a5:3f:ea:6e:45:c9:8a:fc:8d:fe:3f:e1: 30:c4:27:47:90:be:b2:65:34:03:06:1e:8e:d1:88:92:62:2c: 2c:4e:8c:94:61:43:f1:fc:20:61:d2:cd:8c:f4:36:42:15:be: 30:82:fc:30:09:6e:63:ca:a0:44:d7:30:09:46:50:77:a8:41: 2c:4a:3b:f8:1b:71:27:2b:54:9f:53:da:a5:43:52:fc:2f:ae: 87:75:7c:b0:c3:2f:cb:47:fb:e3:c5:e0:11:e4:71:ff:6a:cd: 23:5b:84:76:65:d1:ea:64:d1:00:b2:5a:cf:c7:5e:cb:c0:2f: 2c:94:78:3d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQ0QxMTAvBgNVBAUTKDhBMjdGMUI1MTQ1OUZEMzZDQjJDODA2MDg3MUM1NTM4 RjlEMjNEN0UwHhcNMjYwMzAxMDYwOTI5WhcNMjYwMzA4MDYwOTI5WjAYMRYwFAYD VQQDEw02OWEzZDgxYS1kZTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArt902yZ1WXab3/JpnftcbCSP0+OlMRRC4YNfAcKaKBXZ3sG5PKMuuh8dMgOe 6HnN98XA82xmZBPbiuQJwm/QhBW0jCvpZtvrEJo1ckgIQdkSRI6BXD22kSDJ7Emx KR0aEiaf1ot59I1KwnScfj3FsgTkGWM8AlVPdkxV0bPnqVKqcNJ45xIH+uDpTOlE 8/nqyJ9QMU9FB33vX3ipjIrs2bDwnfuex/wjV5IXLWEp5jxX3c89K3qyKswtGuUa uBuJ0G/uktnosATe7lKonsel0P4qHsFHuWi+wb5gq/cNhDAmQ7SgPbxDgEsw99SP oH+iRrczULabWAJS55La+d2wFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCHzysPA SOKpLLf/lh1bf1bPcKhsMB8GA1UdIwQYMBaAFIon8bUUWf02yyyAYIccVTj50j1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFDRC84RUExOUFBMjE5 OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9UYkxMSUJnaHh4Vk9QblNQ WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpZnh0UlJaX1RiTExJQmdoeHhWT1BuU1BYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFDRC84RUExOUFBMjE5OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9U YkxMSUJnaHh4Vk9QblNQWDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXtUIYg9EvhZSK40CU4tAFpIDGsZukV9kA6BpLpTnqH57jjoptUHfm9wNvEdm fqVJD6scBzRbT29XjXcYGsJueRYcx+lI7NaZzWfj91TKbFJyMHm0R13PYePBoiI4 OzJ/9+AFNKN+Xhio1vNGhG8F0zHWuhpkmQXm/XH2970WVUWVi75lpT/qbkXJivyN /j/hMMQnR5C+smU0AwYejtGIkmIsLE6MlGFD8fwgYdLNjPQ2QhW+MIL8MAluY8qg RNcwCUZQd6hBLEo7+BtxJytUn1PapUNS/C+uh3V8sMMvy0f748XgEeRx/2rNI1uE dmXR6mTRALJaz8dey8AvLJR4PQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:25:29 2026 by rpki-client