$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: ZoPNw+tgh+F/cIawcv90PWWiAZt9/uNJC8W8QFsHsV8= Subject key identifier: 42:F7:C3:2F:35:6A:4E:7E:91:4B:0A:77:10:BB:52:23:0C:D5:E1:B5 Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 0A5D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 0A4B Signing time: Mon 02 Mar 2026 00:55:21 +0000 Manifest this update: Mon 02 Mar 2026 00:55:17 +0000 Manifest next update: Mon 09 Mar 2026 00:55:17 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: bC/louPIO3UU7bVpZWoXOFSQSQLXWozZ2KDq2/r1wpk=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: LPpHOK81C3pNsWyGa2Q2W3gfstRuGd26hh2KRKuaOPE=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: KvrhkQvnKnpFTYVGWnMJN98DGB3DYDNMGELyZhZWRGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:55:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2653 (0xa5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Mar 2 00:55:17 2026 GMT Not After : Mar 9 00:55:17 2026 GMT Subject: CN=69a4dff8-497c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ec:0b:1e:9c:4a:e9:b6:c7:55:68:5a:5b:ca: e4:f7:9b:ac:4f:17:e2:66:65:d5:95:e6:ad:4b:eb: 5c:05:fd:26:da:57:43:44:b7:b4:21:7d:5b:5f:bd: 52:be:fd:5b:d6:ce:43:d3:9a:df:f7:c5:12:d3:fc: c6:1b:d5:a4:7f:97:06:15:39:f2:9d:dc:3b:4c:94: 94:ed:18:5c:46:41:e1:db:ac:82:fa:86:84:ae:e8: fa:54:76:7c:33:61:e3:e3:b2:6a:2b:dd:45:63:74: 57:54:28:7d:07:0e:5c:c5:86:3e:ee:36:dc:c0:62: 59:4d:ad:57:29:bd:77:6d:06:bd:50:5d:75:26:77: 2b:0e:cf:84:f1:ae:52:0e:31:fb:5e:c3:2e:67:a3: 66:87:e0:8a:f7:cf:27:a6:68:46:bd:38:87:8b:ce: 5c:24:38:8b:e5:f9:d8:96:a4:19:2f:93:1d:d3:e0: e7:a2:01:1a:95:8e:ab:ab:1f:cd:7c:f7:4e:f7:d6: 63:ea:05:ca:64:1a:b2:69:f6:5b:b9:1f:97:36:d9: 40:bb:3f:d9:34:0f:16:5c:3f:16:f0:c4:3b:4e:ba: a1:b5:52:64:5e:3e:c0:8c:3c:54:96:1a:61:2d:99: b7:da:bb:2f:4b:fe:45:c1:10:44:38:ae:65:ee:dc: 83:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:F7:C3:2F:35:6A:4E:7E:91:4B:0A:77:10:BB:52:23:0C:D5:E1:B5 X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:30:8f:5e:35:3a:42:16:b1:ab:a5:93:0e:35:94:1f:a0:79: a8:25:28:a7:95:d5:6c:a6:22:bc:c6:f1:ab:12:66:cb:6a:8c: c0:e1:65:a0:ab:45:c8:3f:3a:72:81:fd:d2:5b:61:93:71:5a: 8e:53:88:5d:35:15:b0:bd:2a:eb:d1:db:14:f3:f0:59:ef:75: fa:6e:57:4e:4e:54:39:f1:83:3a:fe:40:91:ec:c2:c2:4a:3d: 7f:62:a2:92:79:0d:28:6f:12:12:99:31:c7:f3:3c:8c:35:3d: 14:45:ad:3e:b0:e9:fa:c4:36:6f:b0:91:0d:c6:ee:4f:84:6b: 2f:3b:35:9d:bd:e0:7e:1f:ba:61:10:90:47:f8:2e:26:cb:ce: 3f:8e:9a:e0:ab:2f:2d:2c:02:9d:7a:c7:fd:19:38:e0:b7:75: 88:94:92:8e:57:15:8a:5c:a7:5c:f5:97:e8:3b:13:c8:77:79: 45:17:a7:e9:3e:46:43:2f:82:22:a7:db:57:cb:c3:92:cf:cd: 8d:fe:5b:59:59:d9:59:31:fe:da:fd:a4:da:05:0d:7e:86:98: 5b:ef:b1:5c:67:14:ff:6e:df:2c:d2:43:3a:6e:ff:93:a3:3a: e9:73:3b:88:ba:c1:17:47:fd:7e:41:f4:5d:fe:13:99:63:54: 63:3a:9b:83 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjYwMzAyMDA1NTE3WhcNMjYwMzA5MDA1NTE3WjAYMRYwFAYD VQQDEw02OWE0ZGZmOC00OTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm+wLHpxK6bbHVWhaW8rk95usTxfiZmXVleatS+tcBf0m2ldDRLe0IX1bX71S vv1b1s5D05rf98US0/zGG9Wkf5cGFTnyndw7TJSU7RhcRkHh26yC+oaEruj6VHZ8 M2Hj47JqK91FY3RXVCh9Bw5cxYY+7jbcwGJZTa1XKb13bQa9UF11JncrDs+E8a5S DjH7XsMuZ6Nmh+CK988npmhGvTiHi85cJDiL5fnYlqQZL5Md0+DnogEalY6rqx/N fPdO99Zj6gXKZBqyafZbuR+XNtlAuz/ZNA8WXD8W8MQ7TrqhtVJkXj7AjDxUlhph LZm32rsvS/5FwRBEOK5l7tyDywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEL3wy81 ak5+kUsKdxC7UiMM1eG1MB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWjCPXjU6Qhaxq6WTDjWUH6B5qCUop5XVbKYivMbxqxJmy2qMwOFloKtFyD86 coH90lthk3FajlOIXTUVsL0q69HbFPPwWe91+m5XTk5UOfGDOv5AkezCwko9f2Ki knkNKG8SEpkxx/M8jDU9FEWtPrDp+sQ2b7CRDcbuT4RrLzs1nb3gfh+6YRCQR/gu JsvOP46a4KsvLSwCnXrH/Rk44Ld1iJSSjlcVilynXPWX6DsTyHd5RRen6T5GQy+C IqfbV8vDks/Njf5bWVnZWTH+2v2k2gUNfoaYW++xXGcU/27fLNJDOm7/k6M66XM7 iLrBF0f9fkH0Xf4TmWNUYzqbgw== -----END CERTIFICATE-----Generated at Mon Mar 2 18:33:39 2026 by rpki-client