$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft File: iUKJrUDufmJvXNgvzsVAbbkeHnE.mft (raw, json) Hash identifier: z/vme3Khhngvef1fYf2HXyu5NEaOUUWoXrjRrdxqWco= Subject key identifier: C0:99:1F:41:AE:4B:D5:1D:33:70:20:B6:A0:61:97:32:35:90:33:65 Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft Manifest number: 0129 Signing time: Sun 01 Mar 2026 06:41:17 +0000 Manifest this update: Sun 01 Mar 2026 06:41:17 +0000 Manifest next update: Sun 08 Mar 2026 06:41:17 +0000 Files and hashes: 1: iUKJrUDufmJvXNgvzsVAbbkeHnE.crl (hash: KdowAIhCst/pOMcWgFi0ddozn9985H2OeFzJ5opmg0k=) 2: 9EC3DA0CABC311F0B5C5583DC4F9AE02.roa (hash: 2zozSPDx04yxBo1WhaEzc27J/w3MqI9UcdjsXWDV7UQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:41:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790, serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Mar 1 06:41:17 2026 GMT Not After : Mar 8 06:41:17 2026 GMT Subject: CN=69a3df8d-cd1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c2:9b:22:8f:81:3b:84:c6:77:2b:26:54:43: 91:ae:a8:fe:cd:e9:13:6e:26:73:95:2b:ea:e6:51: 7f:00:77:a2:a7:3e:20:ff:c7:f7:01:53:0d:e0:4c: 07:4e:0a:dd:5d:a4:14:63:b7:9c:01:27:18:fb:d4: 29:33:9d:28:16:1b:3c:f4:5a:4c:dc:22:e3:a8:19: 69:f3:83:55:dd:0b:49:aa:ae:ce:df:4c:7a:e5:36: c3:4c:68:65:35:2f:85:0d:25:fa:c5:9c:e0:1d:c4: 90:f6:0e:b5:fd:b9:72:84:9d:be:44:d1:e3:e5:a2: 60:80:2e:5a:eb:04:c4:c5:80:36:4c:0b:33:ea:5c: e7:ab:4c:13:2c:a9:a4:7d:e2:2f:ef:65:b7:e0:2b: 5c:7a:6e:48:f1:70:5f:b5:11:bd:3d:e8:7f:60:e5: 9c:4b:77:fc:df:d3:b9:ad:b0:c3:53:b4:3a:6e:45: 18:15:89:65:83:5a:a9:5e:a2:e0:0f:8f:c4:c1:e2: ad:be:a7:df:29:b7:a4:4d:5b:6c:3d:5e:b1:ef:35: d4:43:ce:20:18:7e:63:fe:68:93:ae:82:98:aa:db: 11:d2:ab:a9:48:93:9e:80:ee:08:f9:0e:cf:6b:cd: b1:c3:0d:db:3c:a5:cd:9f:76:25:5e:06:bb:95:a9: 00:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:99:1F:41:AE:4B:D5:1D:33:70:20:B6:A0:61:97:32:35:90:33:65 X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:bd:a6:04:c2:fa:46:f1:8d:37:93:f8:0e:69:71:61:85:6b: 26:95:a8:47:44:a1:13:ca:f5:5e:a7:59:7b:ec:71:82:37:81: 06:58:6b:4e:6e:ef:36:19:c0:00:14:4e:15:d0:2f:71:d6:0b: b4:22:94:97:f9:85:dc:37:c1:ac:05:12:14:7e:ac:91:dc:68: 32:ad:81:87:68:6b:40:ac:a9:b4:c4:7d:c6:92:17:b6:9c:1f: 88:b9:28:47:5c:85:8b:ba:61:ad:e8:73:f7:e1:fe:3c:20:b2: b3:62:f9:97:4d:66:ef:45:c6:88:43:22:8e:2a:05:bc:1f:28: 68:5e:20:d4:e6:37:6b:3f:40:51:a1:d4:36:89:ff:19:f7:18: 05:51:44:1c:da:50:98:39:bc:18:c6:37:58:03:59:af:9a:c3: 55:82:e1:8b:e2:55:32:ec:d0:f0:1f:cd:8b:f2:fa:20:27:2b: 86:59:ab:35:93:fb:cd:9e:14:c5:64:09:cc:27:8d:70:52:2a: 5e:2e:79:fb:f5:be:b8:32:4c:ca:ab:f4:b6:56:22:94:d7:a4: 71:bb:31:16:f4:c1:47:7a:1a:c8:cc:b7:08:7b:c3:d3:87:6b: c1:93:56:f1:bd:ea:23:cd:b6:db:40:6b:7f:24:5d:c4:75:e1: 81:52:ac:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OTAxMTAvBgNVBAUTKDg5NDI4OUFENDBFRTdFNjI2RjVDRDgyRkNFQzU0MDZE QjkxRTFFNzEwHhcNMjYwMzAxMDY0MTE3WhcNMjYwMzA4MDY0MTE3WjAYMRYwFAYD VQQDEw02OWEzZGY4ZC1jZDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8KbIo+BO4TGdysmVEORrqj+zekTbiZzlSvq5lF/AHeipz4g/8f3AVMN4EwH TgrdXaQUY7ecAScY+9QpM50oFhs89FpM3CLjqBlp84NV3QtJqq7O30x65TbDTGhl NS+FDSX6xZzgHcSQ9g61/blyhJ2+RNHj5aJggC5a6wTExYA2TAsz6lznq0wTLKmk feIv72W34Ctcem5I8XBftRG9Peh/YOWcS3f839O5rbDDU7Q6bkUYFYllg1qpXqLg D4/EweKtvqffKbekTVtsPV6x7zXUQ84gGH5j/miTroKYqtsR0qupSJOegO4I+Q7P a82xww3bPKXNn3YlXga7lakAHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMCZH0Gu S9UdM3AgtqBhlzI1kDNlMB8GA1UdIwQYMBaAFIlCia1A7n5ib1zYL87FQG25Hh5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc5MC83MTgwNUJBQzVB RTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZtSnZYTmd2enNWQWJia2VI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc5MC83MTgwNUJBQzVBRTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZt SnZYTmd2enNWQWJia2VIbkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKb2mBML6RvGNN5P4DmlxYYVrJpWoR0ShE8r1XqdZe+xxgjeBBlhrTm7vNhnA ABROFdAvcdYLtCKUl/mF3DfBrAUSFH6skdxoMq2Bh2hrQKyptMR9xpIXtpwfiLko R1yFi7phrehz9+H+PCCys2L5l01m70XGiEMijioFvB8oaF4g1OY3az9AUaHUNon/ GfcYBVFEHNpQmDm8GMY3WANZr5rDVYLhi+JVMuzQ8B/Ni/L6ICcrhlmrNZP7zZ4U xWQJzCeNcFIqXi55+/W+uDJMyqv0tlYilNekcbsxFvTBR3oayMy3CHvD04drwZNW 8b3qI82220BrfyRdxHXhgVKsgg== -----END CERTIFICATE-----Generated at Sun Mar 1 21:08:30 2026 by rpki-client