$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft File: IaR__8gaEzNcB7kmBaLd_RgHoUw.mft (raw, json) Hash identifier: 0I6HIopusR7WL1JCxYPm84IUFvrf7yZstDs24uT0ELg= Subject key identifier: D1:BE:D9:C7:9C:55:87:F6:F0:70:A1:F7:E2:AE:88:DD:5C:F5:48:D1 Authority key identifier: 21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C Certificate issuer: /CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Certificate serial: 0B8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft Manifest number: 0B7C Signing time: Sat 28 Feb 2026 19:23:17 +0000 Manifest this update: Sat 28 Feb 2026 19:23:16 +0000 Manifest next update: Sat 07 Mar 2026 19:23:16 +0000 Files and hashes: 1: IaR__8gaEzNcB7kmBaLd_RgHoUw.crl (hash: ajVmdDdjtmh1Y22oe44LWDKMi5ocYXBCXjZ8mJ85f8c=) 2: A558194E801F11EFB86B2647C4F9AE02.roa (hash: t1djJUDPjHTQVkJ7LjmsSum5E/BaplarFtaDTzZh2+Y=) 3: CDEFCF14801F11EF99206C47C4F9AE02.roa (hash: yAC42o0GCentKPi1Q1E5pRFDa4P3oaEdwK2Wy0iE8M4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 19:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2956 (0xb8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF905, serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Validity Not Before: Feb 28 19:23:16 2026 GMT Not After : Mar 7 19:23:16 2026 GMT Subject: CN=69a340a5-b30e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4d:41:35:e9:4d:43:62:23:fc:61:31:bf:4b: c9:a4:03:d7:bf:27:ea:30:09:e7:bd:cb:4e:3f:3e: 57:b4:80:0d:e8:fd:af:07:18:60:a2:82:d9:88:3b: 46:17:a6:53:f8:4e:93:1d:09:ef:e1:46:37:6a:37: fb:6d:04:7d:6e:c4:ca:b5:88:37:d6:35:39:3c:bd: 06:a7:e4:14:72:5c:29:0f:0e:4e:0d:d7:c3:ed:88: 06:09:40:53:ce:c4:39:e5:ca:f7:05:d0:19:b9:7a: 7a:ef:a3:e6:73:de:96:85:6b:c0:c4:7b:fc:ae:a0: 9b:4f:a7:aa:12:04:7f:41:98:f7:60:d6:2d:01:57: 85:82:0a:ca:6d:58:d0:78:7f:07:ec:23:f7:a4:6c: 63:a0:55:51:0b:3a:73:5f:b4:e2:9c:a9:6e:a1:91: d1:7c:e8:0f:be:80:ad:b9:93:a3:9b:ac:32:29:28: 42:9a:c4:55:bc:f2:3e:77:48:78:e2:f0:3a:87:22: 02:bb:b6:db:dd:de:9b:54:c4:0b:4e:46:9d:c7:a6: 6e:90:a0:2e:3e:2b:a3:0f:81:23:71:73:e8:10:a8: 55:b9:13:b8:4f:19:a7:93:bc:3e:71:81:7f:93:fd: 4c:29:21:93:da:82:73:b6:87:1b:ed:27:41:a3:55: 00:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:BE:D9:C7:9C:55:87:F6:F0:70:A1:F7:E2:AE:88:DD:5C:F5:48:D1 X509v3 Authority Key Identifier: keyid:21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:d9:ae:cb:cd:69:30:b2:76:69:5e:b9:1f:51:d7:af:17:fc: e4:4c:d3:a8:a0:6b:1f:50:b2:d6:b3:be:fe:d6:9d:9c:71:bb: 0b:71:4d:8c:ae:13:dd:c8:c5:1b:ed:ed:4c:62:85:79:a6:f4: d1:85:55:53:a1:34:8a:a6:8b:65:22:77:f0:ec:29:45:49:1d: 2a:79:29:75:b5:f5:78:fe:88:03:34:a0:4a:03:24:4f:84:7f: 6d:a6:ca:9f:ea:3a:b5:45:0e:02:3a:d8:37:73:c8:aa:90:dd: bc:3f:14:06:94:5e:97:5d:3f:1b:88:29:8c:55:7c:a3:d1:d8: 6d:55:67:63:74:16:36:13:f1:15:68:85:2d:9d:af:a7:f1:86: 3a:bb:c0:89:c9:0e:8f:23:19:a5:f5:21:08:8e:c4:bb:5f:30: a7:c5:93:57:dc:6a:d9:d5:cb:8e:c8:ff:fb:ae:6e:55:9e:62: 4a:cc:b2:65:7c:63:95:03:c3:c6:06:e2:6b:0a:4c:e0:be:76: 84:1a:75:bf:52:7a:8c:84:6d:f2:18:c0:0e:32:50:a4:46:d1: eb:5c:df:fb:03:0c:2b:40:82:26:38:6d:26:e0:4a:6c:0c:36: 95:48:89:6d:99:ef:82:f1:96:ce:6a:8e:00:7c:08:01:09:f2: 0a:fe:3a:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY5MDUxMTAvBgNVBAUTKDIxQTQ3RkZGQzgxQTEzMzM1QzA3QjkyNjA1QTJEREZE MTgwN0ExNEMwHhcNMjYwMjI4MTkyMzE2WhcNMjYwMzA3MTkyMzE2WjAYMRYwFAYD VQQDDA02OWEzNDBhNS1iMzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw01BNelNQ2Ij/GExv0vJpAPXvyfqMAnnvctOPz5XtIAN6P2vBxhgooLZiDtG F6ZT+E6THQnv4UY3ajf7bQR9bsTKtYg31jU5PL0Gp+QUclwpDw5ODdfD7YgGCUBT zsQ55cr3BdAZuXp676Pmc96WhWvAxHv8rqCbT6eqEgR/QZj3YNYtAVeFggrKbVjQ eH8H7CP3pGxjoFVRCzpzX7TinKluoZHRfOgPvoCtuZOjm6wyKShCmsRVvPI+d0h4 4vA6hyICu7bb3d6bVMQLTkadx6ZukKAuPiujD4EjcXPoEKhVuRO4Txmnk7w+cYF/ k/1MKSGT2oJztocb7SdBo1UATwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNG+2cec VYf28HCh9+KuiN1c9UjRMB8GA1UdIwQYMBaAFCGkf//IGhMzXAe5JgWi3f0YB6FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjkwNS8xRkE3QzQ2QzQ4 RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6TmNCN2ttQmFMZF9SZ0hv VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhUl9fOGdhRXpOY0I3a21CYUxkX1JnSG9Vdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjkwNS8xRkE3QzQ2QzQ4RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6 TmNCN2ttQmFMZF9SZ0hvVXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhtmuy81pMLJ2aV65H1HXrxf85EzTqKBrH1Cy1rO+/tadnHG7C3FNjK4T3cjF G+3tTGKFeab00YVVU6E0iqaLZSJ38OwpRUkdKnkpdbX1eP6IAzSgSgMkT4R/babK n+o6tUUOAjrYN3PIqpDdvD8UBpRel10/G4gpjFV8o9HYbVVnY3QWNhPxFWiFLZ2v p/GGOrvAickOjyMZpfUhCI7Eu18wp8WTV9xq2dXLjsj/+65uVZ5iSsyyZXxjlQPD xgbiawpM4L52hBp1v1J6jIRt8hjADjJQpEbR61zf+wMMK0CCJjhtJuBKbAw2lUiJ bZnvgvGWzmqOAHwIAQnyCv46Vg== -----END CERTIFICATE-----Generated at Mon Mar 2 01:16:33 2026 by rpki-client