$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft File: I1WemnFX565_YExCiDcpLeAzCaA.mft (raw, json) Hash identifier: 7pnURDSrXhg23wykgkHuIt2Cwj7s+Mf61ixjF2uijnM= Subject key identifier: 82:CC:02:87:E9:DF:EA:27:3C:63:7B:86:1F:F7:11:95:53:C7:D0:3E Authority key identifier: 23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 Certificate issuer: /CN=A91BEA2A/serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Certificate serial: 032D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft Manifest number: 0325 Signing time: Sun 01 Mar 2026 01:56:14 +0000 Manifest this update: Sun 01 Mar 2026 01:56:14 +0000 Manifest next update: Sun 08 Mar 2026 01:56:14 +0000 Files and hashes: 1: I1WemnFX565_YExCiDcpLeAzCaA.crl (hash: osIbNV92KWTtCoa29cM8g++dV+QrFwcYza5QlY4fDzs=) 2: CFF0FDEC025911EDA0A85765C4F9AE02.roa (hash: LoYEejNqn6llhBwJ7xFsIlEEw1I815MKrVHi2CZC9n0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 813 (0x32d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA2A, serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Validity Not Before: Mar 1 01:56:14 2026 GMT Not After : Mar 8 01:56:14 2026 GMT Subject: CN=69a39cbe-f14e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:50:6b:98:98:ad:91:b2:13:24:27:9c:ea:a9: 7b:47:73:02:0d:cf:b8:0e:30:ba:f2:d3:9c:0c:ec: 58:f5:9c:18:11:a4:1d:ea:c2:f9:b1:9a:73:c4:66: af:3e:e8:6f:74:ac:1e:78:ae:0f:b9:eb:aa:d0:d2: ec:58:cb:3a:74:04:15:c8:f2:a9:fb:18:00:41:b7: ab:1d:d6:5a:b1:55:91:aa:4b:75:8c:e0:5d:66:5d: 4a:a7:23:fc:29:22:2e:37:2e:37:71:0d:be:ea:b6: 21:69:6a:07:98:ac:f2:2b:a0:9c:99:92:db:3f:f7: 92:9a:9a:8f:15:27:4a:3c:47:30:34:2b:1a:cf:37: d6:cb:1d:f9:12:a6:a3:90:21:23:b7:69:e1:f3:dd: 8e:da:0e:0a:4b:d3:fb:03:09:30:03:e1:ad:ae:f7: c8:49:77:64:e0:98:34:07:f6:a9:c3:76:78:e5:df: 2a:cd:69:e6:6b:4e:03:30:f6:ef:b4:a5:26:8a:3e: 1a:3e:4b:ec:ed:71:21:4b:6a:7d:2c:4f:f0:c7:9a: 2e:fb:1c:c9:f8:0b:43:84:d8:92:b8:01:f9:a5:ad: c1:24:fd:a4:33:30:9e:58:c2:96:8a:20:ed:d0:7e: 92:02:79:42:85:01:2f:d1:68:b1:15:03:ec:aa:f4: 79:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:CC:02:87:E9:DF:EA:27:3C:63:7B:86:1F:F7:11:95:53:C7:D0:3E X509v3 Authority Key Identifier: keyid:23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:48:9c:af:cd:fe:87:d4:b8:b6:4d:9d:c7:1f:98:ed:55:d7: 25:03:31:6a:0d:bf:08:77:b4:58:7b:65:5c:75:f4:e9:4f:59: dd:8b:95:ca:db:8b:4f:da:48:f2:3d:f9:ab:b1:1f:3b:7e:d1: e0:a2:9e:94:b9:74:ed:b9:39:93:1f:62:9b:03:5e:1f:ed:fc: eb:08:74:33:db:c8:06:42:7d:07:25:22:41:4a:7f:ef:f4:e2: 7a:ba:b1:4b:2a:2f:70:da:8f:10:cc:57:38:d4:2b:06:02:62: 20:9e:da:91:e7:b5:97:d0:2d:7e:a1:19:3c:3c:00:a4:9b:a3: bf:19:98:a6:a9:04:30:45:74:ba:af:b3:48:08:29:08:ef:d9: b4:88:9a:fe:92:e5:4b:54:09:6a:94:b8:ef:53:a1:f5:63:cc: 7c:9a:14:7f:0e:30:ab:2e:0c:2c:5b:e5:ef:d8:ca:60:a8:5f: a4:79:1f:56:d1:a4:61:a4:5d:21:f0:27:79:28:5a:01:b6:8a: 66:dd:56:60:ac:98:07:ed:07:9d:58:d9:4a:49:a9:62:07:80: 6e:df:1c:8d:86:97:6f:a1:cd:93:53:fb:b0:3a:7b:52:6c:af: b4:17:4b:ee:75:dc:5a:45:29:83:f4:a4:ae:74:9a:6c:8e:69: 8d:54:1a:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVBMkExMTAvBgNVBAUTKDIzNTU5RTlBNzE1N0U3QUU3RjYwNEM0Mjg4MzcyOTJE RTAzMzA5QTAwHhcNMjYwMzAxMDE1NjE0WhcNMjYwMzA4MDE1NjE0WjAYMRYwFAYD VQQDDA02OWEzOWNiZS1mMTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmVBrmJitkbITJCec6ql7R3MCDc+4DjC68tOcDOxY9ZwYEaQd6sL5sZpzxGav PuhvdKweeK4Pueuq0NLsWMs6dAQVyPKp+xgAQberHdZasVWRqkt1jOBdZl1KpyP8 KSIuNy43cQ2+6rYhaWoHmKzyK6CcmZLbP/eSmpqPFSdKPEcwNCsazzfWyx35Eqaj kCEjt2nh892O2g4KS9P7AwkwA+GtrvfISXdk4Jg0B/apw3Z45d8qzWnma04DMPbv tKUmij4aPkvs7XEhS2p9LE/wx5ou+xzJ+AtDhNiSuAH5pa3BJP2kMzCeWMKWiiDt 0H6SAnlChQEv0WixFQPsqvR5BQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFILMAofp 3+onPGN7hh/3EZVTx9A+MB8GA1UdIwQYMBaAFCNVnppxV+euf2BMQog3KS3gMwmg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUEyQS8zRDM1MEZEMjAy NTYxMUVEQTEzMjJENURDNEY5QUUwMi9JMVdlbW5GWDU2NV9ZRXhDaURjcExlQXpD YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kxV2VtbkZYNTY1X1lFeENpRGNwTGVBekNhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUEyQS8zRDM1MEZEMjAyNTYxMUVEQTEzMjJENURDNEY5QUUwMi9JMVdlbW5GWDU2 NV9ZRXhDaURjcExlQXpDYUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAj0icr83+h9S4tk2dxx+Y7VXXJQMxag2/CHe0WHtlXHX06U9Z3YuVytuLT9pI 8j35q7EfO37R4KKelLl07bk5kx9imwNeH+386wh0M9vIBkJ9ByUiQUp/7/Tierqx SyovcNqPEMxXONQrBgJiIJ7akee1l9AtfqEZPDwApJujvxmYpqkEMEV0uq+zSAgp CO/ZtIia/pLlS1QJapS471Oh9WPMfJoUfw4wqy4MLFvl79jKYKhfpHkfVtGkYaRd IfAneShaAbaKZt1WYKyYB+0HnVjZSkmpYgeAbt8cjYaXb6HNk1P7sDp7UmyvtBdL 7nXcWkUpg/SkrnSabI5pjVQapw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:44 2026 by rpki-client