$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft File: iWZCPuKkFWMfevMU5NiEAHqEaLY.mft (raw, json) Hash identifier: Huuz87Ebsn82gD8schDc4w1lrztZxL5ug41QmhegZRk= Subject key identifier: 1F:C2:FB:DF:9B:F3:AA:E8:0A:FE:F3:E4:38:6C:5F:73:E4:3A:B7:7E Authority key identifier: 89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 Certificate issuer: /CN=A91A91CB/serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft Manifest number: C7 Signing time: Mon 02 Mar 2026 00:22:13 +0000 Manifest this update: Mon 02 Mar 2026 00:22:09 +0000 Manifest next update: Mon 09 Mar 2026 00:22:09 +0000 Files and hashes: 1: iWZCPuKkFWMfevMU5NiEAHqEaLY.crl (hash: G1uEaBdIDbLN963d/kV1RV5oGtS0yAa/Cpwn8x6u4gg=) 2: 0EB302DCEA5B11EFABB07C6DC4F9AE02.roa (hash: yxcEwj+JBBXiVTX+aFQc5ddxq/vEi232S7B1rwDfWO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Validity Not Before: Mar 2 00:22:09 2026 GMT Not After : Mar 9 00:22:09 2026 GMT Subject: CN=69a4d834-2249 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:fb:9e:67:85:ad:6c:68:cc:1e:58:94:cc:19: 51:f0:30:22:75:ef:9d:f2:ef:18:e9:15:d1:9a:e1: 38:11:bb:7f:0e:39:03:2c:7e:bc:c9:8d:66:c2:00: 04:5e:1e:3f:31:ce:78:3e:fa:b6:ec:b4:9c:54:87: e0:1c:27:a0:bf:93:09:58:63:ee:62:b2:e8:a3:f7: 66:fe:69:7d:cd:b2:99:82:b6:c0:7c:03:1c:14:96: d5:46:bf:2e:16:bf:d8:16:21:b8:a1:8a:21:cf:08: 18:c6:c8:85:7f:f5:1f:ee:27:ac:bb:4b:41:f7:1e: 7c:ad:f8:ac:f5:7c:ec:e5:9e:e1:73:eb:30:d8:43: c1:0a:d7:9e:45:7d:6f:65:66:c9:7f:0f:3c:4e:27: 68:79:0a:3a:19:ca:a8:d8:cf:53:d2:01:e9:f5:84: ca:25:16:18:69:60:c6:d5:10:e6:c7:06:6e:66:ca: d6:4f:6e:64:02:1d:23:4c:54:43:aa:fe:0c:a9:dc: 66:1c:37:03:e8:5d:85:2b:6e:8d:f6:82:8b:53:7f: fa:fc:fb:a9:5b:e2:32:61:c4:2e:d4:d0:00:5d:e0: 43:62:40:d8:ac:8f:ee:be:63:10:d7:63:5f:c6:aa: a8:d7:e5:ab:e9:05:bc:99:c7:da:d4:d9:61:30:c6: f1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C2:FB:DF:9B:F3:AA:E8:0A:FE:F3:E4:38:6C:5F:73:E4:3A:B7:7E X509v3 Authority Key Identifier: keyid:89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:b4:26:9b:2b:57:35:dd:fc:51:14:ca:6f:88:44:a4:3c:af: 0c:59:69:c1:e6:f5:9c:b3:fe:e1:74:5c:26:67:01:49:d9:51: 18:11:06:5c:41:da:12:87:fc:39:d8:6b:18:fa:f5:f4:14:3c: 28:29:3d:3f:b0:49:a3:8c:2f:e5:eb:14:3c:64:a2:95:63:2d: b0:aa:62:d4:ec:58:9d:4f:8f:d4:a2:77:71:bc:a7:eb:67:1f: 05:fd:38:7d:95:dd:52:91:cc:64:86:10:5d:3e:16:04:cf:8b: 1b:16:20:f6:33:ff:15:97:4d:3f:c1:d1:e3:4e:aa:bc:46:1a: 55:ca:89:f0:88:e1:9c:48:8e:41:4a:80:84:6c:c4:15:77:61: 15:8e:64:80:c4:a4:d4:5c:cf:b7:ef:c7:80:2b:96:d6:d2:ef: 47:5c:4a:52:92:80:8a:6b:5c:22:14:68:ca:0c:15:0c:52:c0: 24:bb:1e:00:98:d0:f3:0c:2c:97:0c:51:ee:02:d5:5a:5e:c5: 5c:99:45:d9:66:ae:c9:21:ee:22:e2:5f:80:4b:1d:2b:c6:91: 83:b0:45:32:a5:b9:e8:89:2f:ec:59:d3:b3:e7:0e:b7:31:c4: c8:10:72:70:85:be:1c:b4:f0:1b:5a:5d:d2:d5:67:b4:2b:94: e1:4e:94:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxQ0IxMTAvBgNVBAUTKDg5NjY0MjNFRTJBNDE1NjMxRjdBRjMxNEU0RDg4NDAw N0E4NDY4QjYwHhcNMjYwMzAyMDAyMjA5WhcNMjYwMzA5MDAyMjA5WjAYMRYwFAYD VQQDEw02OWE0ZDgzNC0yMjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9vueZ4WtbGjMHliUzBlR8DAide+d8u8Y6RXRmuE4Ebt/DjkDLH68yY1mwgAE Xh4/Mc54Pvq27LScVIfgHCegv5MJWGPuYrLoo/dm/ml9zbKZgrbAfAMcFJbVRr8u Fr/YFiG4oYohzwgYxsiFf/Uf7iesu0tB9x58rfis9Xzs5Z7hc+sw2EPBCteeRX1v ZWbJfw88TidoeQo6Gcqo2M9T0gHp9YTKJRYYaWDG1RDmxwZuZsrWT25kAh0jTFRD qv4MqdxmHDcD6F2FK26N9oKLU3/6/PupW+IyYcQu1NAAXeBDYkDYrI/uvmMQ12Nf xqqo1+Wr6QW8mcfa1NlhMMbx9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB/C+9+b 86roCv7z5DhsX3PkOrd+MB8GA1UdIwQYMBaAFIlmQj7ipBVjH3rzFOTYhAB6hGi2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFDQi82NTBFNjAwQUVB NUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZXTWZldk1VNU5pRUFIcUVh TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lXWkNQdUtrRldNZmV2TVU1TmlFQUhxRWFMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTFDQi82NTBFNjAwQUVBNUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZX TWZldk1VNU5pRUFIcUVhTFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXLQmmytXNd38URTKb4hEpDyvDFlpweb1nLP+4XRcJmcBSdlRGBEGXEHaEof8 OdhrGPr19BQ8KCk9P7BJo4wv5esUPGSilWMtsKpi1OxYnU+P1KJ3cbyn62cfBf04 fZXdUpHMZIYQXT4WBM+LGxYg9jP/FZdNP8HR406qvEYaVcqJ8IjhnEiOQUqAhGzE FXdhFY5kgMSk1FzPt+/HgCuW1tLvR1xKUpKAimtcIhRoygwVDFLAJLseAJjQ8wws lwxR7gLVWl7FXJlF2WauySHuIuJfgEsdK8aRg7BFMqW56Ikv7FnTs+cOtzHEyBBy cIW+HLTwG1pd0tVntCuU4U6UEg== -----END CERTIFICATE-----Generated at Mon Mar 2 09:06:32 2026 by rpki-client