$ rpki-client -vvf rpki.apnic.net/member_repository/A918C2EB/89972512E53411F0912CFD566E6F56BC/IAPuQFIp2IyUi3bcGV1DC8Agrx4.mft File: IAPuQFIp2IyUi3bcGV1DC8Agrx4.mft (raw, json) Hash identifier: G/kFSTHwnytpZ0/YMj5w5JYJd+GTVh0a5rKTL5YnyPQ= Subject key identifier: C6:2E:75:B5:25:CE:7D:05:68:64:D6:C9:8D:97:13:0E:E7:49:67:41 Authority key identifier: 20:03:EE:40:52:29:D8:8C:94:8B:76:DC:19:5D:43:0B:C0:20:AF:1E Certificate issuer: /CN=A918C2EB/serialNumber=2003EE405229D88C948B76DC195D430BC020AF1E Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IAPuQFIp2IyUi3bcGV1DC8Agrx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C2EB/89972512E53411F0912CFD566E6F56BC/IAPuQFIp2IyUi3bcGV1DC8Agrx4.mft Manifest number: 25 Signing time: Sun 01 Mar 2026 23:04:58 +0000 Manifest this update: Sun 01 Mar 2026 23:04:57 +0000 Manifest next update: Sun 08 Mar 2026 23:04:57 +0000 Files and hashes: 1: IAPuQFIp2IyUi3bcGV1DC8Agrx4.crl (hash: TKoPq1zsKAK8NYqnWx5NBQfADSqylCOEs6/+0ulh9ac=) 2: 9B67FC6CE61511F0BA7CC46D6A6F56BC.roa (hash: kHK2laRL4zDNY/Ej1mLKEGPZW81NdbE5Yg/ARskhgEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C2EB/89972512E53411F0912CFD566E6F56BC/IAPuQFIp2IyUi3bcGV1DC8Agrx4.crl rsync://rpki.apnic.net/member_repository/A918C2EB/89972512E53411F0912CFD566E6F56BC/IAPuQFIp2IyUi3bcGV1DC8Agrx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IAPuQFIp2IyUi3bcGV1DC8Agrx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:04:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C2EB, serialNumber=2003EE405229D88C948B76DC195D430BC020AF1E Validity Not Before: Mar 1 23:04:57 2026 GMT Not After : Mar 8 23:04:57 2026 GMT Subject: CN=69a4c61a-8f1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:31:d5:a8:3d:0f:da:99:cf:51:50:11:e8:c9: ca:a2:9c:8c:2f:10:42:d7:96:3d:ac:59:7a:b3:3f: e2:63:94:2c:fe:e6:1d:c1:e9:15:92:5d:31:41:f7: e3:2d:fc:19:32:80:3c:57:b9:d8:79:3e:1e:4c:d7: ff:1b:58:dd:49:10:63:52:09:22:1d:45:98:35:c1: 80:3f:39:09:c2:1b:67:16:18:bb:b7:3a:0d:88:b9: 41:4f:4a:53:29:a0:84:f5:31:71:c8:b9:ee:88:15: 8a:6d:2b:38:b1:89:1c:2d:a2:5e:52:b0:1a:9b:0b: 74:7f:ec:0c:a3:a5:9c:c3:e2:f8:9c:a3:27:f8:fa: ac:d7:68:b8:0f:95:2a:d2:78:a2:ad:cf:b8:df:c0: d6:f7:f5:36:35:43:9f:5c:e1:c5:82:a6:5c:d9:17: 9d:0d:4b:a6:ff:bc:db:6a:b3:b7:23:9e:35:3e:6e: 6e:c1:18:7b:6b:1a:31:de:2e:77:77:92:a0:9d:7d: 58:67:90:c6:4a:25:a8:8e:5b:23:59:a0:9e:02:43: 0c:f4:c0:39:e1:07:75:94:c0:a4:a1:a5:e9:fe:5a: b5:4f:b4:cc:6a:4f:4f:52:bc:4e:ef:aa:11:c0:31: a0:41:02:b3:fe:8c:1b:79:38:e8:1c:51:3a:e9:da: 2b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:2E:75:B5:25:CE:7D:05:68:64:D6:C9:8D:97:13:0E:E7:49:67:41 X509v3 Authority Key Identifier: keyid:20:03:EE:40:52:29:D8:8C:94:8B:76:DC:19:5D:43:0B:C0:20:AF:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C2EB/89972512E53411F0912CFD566E6F56BC/IAPuQFIp2IyUi3bcGV1DC8Agrx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IAPuQFIp2IyUi3bcGV1DC8Agrx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C2EB/89972512E53411F0912CFD566E6F56BC/IAPuQFIp2IyUi3bcGV1DC8Agrx4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:a8:bb:54:89:4a:45:63:25:be:30:f7:c7:1b:06:68:01:24: 37:12:22:1e:99:a7:85:ce:a7:a2:b7:2d:b0:ea:a0:3d:20:1e: bb:94:2d:4e:b5:81:28:e8:b0:ce:30:49:6a:18:79:57:b1:43: 6d:e3:10:4f:87:99:d5:bd:e9:fc:ea:20:f4:d7:16:2b:48:ca: 81:3b:0f:19:a3:a4:e1:07:81:f3:8a:57:21:8e:6d:42:7b:31: 5c:e2:f6:47:7a:09:2c:ac:20:a1:2b:dd:d2:23:d5:1c:a7:91: 70:f9:91:db:a7:85:f8:9f:43:b1:46:3f:4c:db:f2:52:63:51: e5:cf:fc:97:6c:b0:39:6b:3a:bf:ea:ae:83:e6:90:68:f9:2a: 51:43:e0:af:e0:4e:2c:9b:9e:4d:23:0a:d3:b9:b8:1f:ef:f9: a6:25:fb:b0:ae:ee:c0:ec:27:c7:44:a0:2a:b2:0b:6a:16:43: 0d:4a:c4:0c:3f:03:b3:17:2c:c9:36:50:8e:fe:4d:87:f1:56: 35:b3:c2:29:02:3f:d6:62:98:b9:36:72:14:84:59:28:3f:7b: 08:ca:01:a8:f1:7f:ef:81:2d:89:1c:ac:99:28:68:5c:f7:f8: 3e:89:e4:80:62:df:1e:ec:70:08:c4:92:2e:46:b5:aa:3a:56: 8c:bb:0c:77 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QzJFQjExMC8GA1UEBRMoMjAwM0VFNDA1MjI5RDg4Qzk0OEI3NkRDMTk1RDQzMEJD MDIwQUYxRTAeFw0yNjAzMDEyMzA0NTdaFw0yNjAzMDgyMzA0NTdaMBgxFjAUBgNV BAMTDTY5YTRjNjFhLThmMWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRMdWoPQ/amc9RUBHoycqinIwvEELXlj2sWXqzP+JjlCz+5h3B6RWSXTFB9+Mt /BkygDxXudh5Ph5M1/8bWN1JEGNSCSIdRZg1wYA/OQnCG2cWGLu3Og2IuUFPSlMp oIT1MXHIue6IFYptKzixiRwtol5SsBqbC3R/7AyjpZzD4vicoyf4+qzXaLgPlSrS eKKtz7jfwNb39TY1Q59c4cWCplzZF50NS6b/vNtqs7cjnjU+bm7BGHtrGjHeLnd3 kqCdfVhnkMZKJaiOWyNZoJ4CQwz0wDnhB3WUwKShpen+WrVPtMxqT09SvE7vqhHA MaBBArP+jBt5OOgcUTrp2itZAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUxi51tSXO fQVoZNbJjZcTDudJZ0EwHwYDVR0jBBgwFoAUIAPuQFIp2IyUi3bcGV1DC8Agrx4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDMkVCLzg5OTcyNTEyRTUz NDExRjA5MTJDRkQ1NjZFNkY1NkJDL0lBUHVRRklwMkl5VWkzYmNHVjFEQzhBZ3J4 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSUFQdVFGSXAySXlVaTNiY0dWMURDOEFncng0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThD MkVCLzg5OTcyNTEyRTUzNDExRjA5MTJDRkQ1NjZFNkY1NkJDL0lBUHVRRklwMkl5 VWkzYmNHVjFEQzhBZ3J4NC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBVqLtUiUpFYyW+MPfHGwZoASQ3EiIemaeFzqeity2w6qA9IB67lC1OtYEo6LDO MElqGHlXsUNt4xBPh5nVven86iD01xYrSMqBOw8Zo6ThB4Hzilchjm1CezFc4vZH egksrCChK93SI9Ucp5Fw+ZHbp4X4n0OxRj9M2/JSY1Hlz/yXbLA5azq/6q6D5pBo +SpRQ+Cv4E4sm55NIwrTubgf7/mmJfuwru7A7CfHRKAqsgtqFkMNSsQMPwOzFyzJ NlCO/k2H8VY1s8IpAj/WYpi5NnIUhFkoP3sIygGo8X/vgS2JHKyZKGhc9/g+ieSA Yt8e7HAIxJIuRrWqOlaMuwx3 -----END CERTIFICATE-----Generated at Mon Mar 2 11:30:41 2026 by rpki-client