$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft File: 1icW92HxiNVvoRf53JS-QUEEpoE.mft (raw, json) Hash identifier: fZGrgxt8AB/q1VaPxMwwRUow+G4ndcpqevqadYIJiJg= Subject key identifier: 12:69:25:41:C2:EF:29:50:34:7B:78:F3:4D:D4:B1:B3:CE:23:19:D7 Authority key identifier: D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 Certificate issuer: /CN=A91C5D53/serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft Manifest number: ED Signing time: Sun 01 Mar 2026 07:29:58 +0000 Manifest this update: Sun 01 Mar 2026 07:29:57 +0000 Manifest next update: Sun 08 Mar 2026 07:29:57 +0000 Files and hashes: 1: 1icW92HxiNVvoRf53JS-QUEEpoE.crl (hash: UoKQ0T6FE6GlgTph50sHdL7bf4B4j7G1/p2GjIsTysI=) 2: BB5954CE241111F094390A32C4F9AE02.roa (hash: 6qd8Idl86oSAnUE2UErM8ktGLeOpsspXAgidR5hkRlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5D53, serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Validity Not Before: Mar 1 07:29:57 2026 GMT Not After : Mar 8 07:29:57 2026 GMT Subject: CN=69a3eaf6-84d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7c:3e:84:96:81:c0:f0:87:d2:a9:6e:6b:16: 70:7a:e0:e4:33:ed:cc:d2:3a:83:4b:bf:cb:49:18: 88:64:f5:bd:85:61:63:b7:bf:72:e5:44:05:1c:af: aa:a2:07:15:db:c9:5f:11:86:60:be:56:da:21:f3: a2:11:21:10:12:5a:05:cf:29:da:35:69:1f:8d:d5: 53:29:24:23:24:8d:04:cd:ae:37:cf:66:eb:31:e4: 8d:98:9b:ff:46:72:f0:e7:5f:1d:1c:02:68:dc:be: ee:23:e0:2a:92:e2:55:ae:03:b5:3e:ca:66:52:d8: a3:0a:c0:91:6c:a3:0f:8b:4e:8b:e3:2e:cf:71:a8: d8:47:f6:72:a7:e6:4c:e9:e1:f5:15:fa:56:09:86: f5:c3:c4:7c:30:8d:fa:79:3c:77:62:63:c7:7c:58: ca:05:2c:07:a7:ea:95:91:2e:c5:52:ff:d1:25:d8: 00:f1:49:92:54:e3:fc:1f:e0:fe:b0:a4:66:e3:f6: 56:8f:8e:28:97:92:8a:f3:29:ab:39:df:64:da:c7: 6d:d9:a8:fe:44:72:46:cf:e6:b7:65:07:8b:7b:67: 18:97:ac:42:b4:1b:22:25:d5:17:ec:3b:8e:58:57: ec:f7:1d:88:eb:ed:44:e0:55:17:c8:ea:00:68:3c: 44:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:69:25:41:C2:EF:29:50:34:7B:78:F3:4D:D4:B1:B3:CE:23:19:D7 X509v3 Authority Key Identifier: keyid:D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:9f:9c:f9:c7:5d:ba:8e:3a:91:09:6c:d1:58:9a:85:d5:f4: 10:e0:1e:ef:81:46:c9:31:d2:bc:ad:ad:d5:64:f8:12:53:b0: 89:de:1d:bb:8f:d5:e5:f9:af:dc:11:19:f2:45:f4:41:ec:6c: 90:58:69:4f:95:68:f0:a6:e7:9a:10:58:9d:9d:3b:51:1f:e9: a0:b7:07:2f:b8:9d:7c:89:2a:d1:f8:d4:4a:c9:6c:f1:af:16: 24:41:1b:5c:5a:2b:72:56:89:ab:cb:b0:27:67:ec:25:a3:11: c8:4f:10:4f:af:36:57:26:ca:8d:0b:41:31:cc:ff:04:19:1e: 4d:4c:b8:bc:b8:6b:e9:1f:f5:ec:97:c8:4d:fa:d0:cd:87:f5: 9f:f6:fe:de:98:5d:2b:b0:8b:7a:4d:6a:65:d1:53:09:f7:54: 2a:90:cd:b8:3a:c9:0c:aa:09:c4:05:16:a6:77:9c:8d:58:1b: 40:06:27:7b:f2:03:a8:cb:0d:72:cc:50:fa:d7:13:4e:0a:39: 6c:8a:27:0e:b7:0b:58:31:9c:45:c0:da:79:72:c4:1f:42:fd: 57:9a:0e:50:8e:37:92:48:97:36:a1:26:03:aa:e0:0a:5b:1c: cf:7f:34:ef:0d:72:6a:be:80:85:98:72:d6:86:ee:8a:f7:42: 3d:4c:cf:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVENTMxMTAvBgNVBAUTKEQ2MjcxNkY3NjFGMTg4RDU2RkExMTdGOURDOTRCRTQx NDEwNEE2ODEwHhcNMjYwMzAxMDcyOTU3WhcNMjYwMzA4MDcyOTU3WjAYMRYwFAYD VQQDEw02OWEzZWFmNi04NGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHw+hJaBwPCH0qluaxZweuDkM+3M0jqDS7/LSRiIZPW9hWFjt79y5UQFHK+q ogcV28lfEYZgvlbaIfOiESEQEloFzynaNWkfjdVTKSQjJI0Eza43z2brMeSNmJv/ RnLw518dHAJo3L7uI+AqkuJVrgO1PspmUtijCsCRbKMPi06L4y7PcajYR/Zyp+ZM 6eH1FfpWCYb1w8R8MI36eTx3YmPHfFjKBSwHp+qVkS7FUv/RJdgA8UmSVOP8H+D+ sKRm4/ZWj44ol5KK8ymrOd9k2sdt2aj+RHJGz+a3ZQeLe2cYl6xCtBsiJdUX7DuO WFfs9x2I6+1E4FUXyOoAaDxE+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBJpJUHC 7ylQNHt4803UsbPOIxnXMB8GA1UdIwQYMBaAFNYnFvdh8YjVb6EX+dyUvkFBBKaB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUQ1My8wNUZGQzAwRUFD ODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlOVnZvUmY1M0pTLVFVRUVw b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpY1c5Mkh4aU5Wdm9SZjUzSlMtUVVFRXBvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUQ1My8wNUZGQzAwRUFDODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlO VnZvUmY1M0pTLVFVRUVwb0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjp+c+cdduo46kQls0ViahdX0EOAe74FGyTHSvK2t1WT4ElOwid4du4/V5fmv 3BEZ8kX0QexskFhpT5Vo8KbnmhBYnZ07UR/poLcHL7idfIkq0fjUSsls8a8WJEEb XForclaJq8uwJ2fsJaMRyE8QT682VybKjQtBMcz/BBkeTUy4vLhr6R/17JfITfrQ zYf1n/b+3phdK7CLek1qZdFTCfdUKpDNuDrJDKoJxAUWpnecjVgbQAYne/IDqMsN csxQ+tcTTgo5bIonDrcLWDGcRcDaeXLEH0L9V5oOUI43kkiXNqEmA6rgClscz380 7w1yar6AhZhy1obuivdCPUzPjQ== -----END CERTIFICATE-----Generated at Mon Mar 2 09:20:49 2026 by rpki-client