$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft File: Ikchh2oR4tOkuYshvIT3jmT-yEY.mft (raw, json) Hash identifier: GJq4XwF2rP++MTFdeXkC/NUcbF7FSCyYEjEsUNgDfA8= Subject key identifier: 4A:D8:D1:84:D5:E7:82:56:6B:08:17:53:C9:12:25:2F:2A:3A:A2:08 Authority key identifier: 22:47:21:87:6A:11:E2:D3:A4:B9:8B:21:BC:84:F7:8E:64:FE:C8:46 Certificate issuer: /CN=A91CEE6D/serialNumber=224721876A11E2D3A4B98B21BC84F78E64FEC846 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft Manifest number: 53 Signing time: Sun 01 Mar 2026 09:35:12 +0000 Manifest this update: Sun 01 Mar 2026 09:35:11 +0000 Manifest next update: Sun 08 Mar 2026 09:35:11 +0000 Files and hashes: 1: Ikchh2oR4tOkuYshvIT3jmT-yEY.crl (hash: qr0QWCtgu+VCXpMU/Axnn+c4H6+e8p44t5o15fXkWi0=) 2: 09F2A296A02E11F08BC71221C4F9AE02.roa (hash: 6x2cZtG1O8RYzD8OGoXsH+NShNfzIbk96k46lysq5xU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.crl rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:35:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE6D, serialNumber=224721876A11E2D3A4B98B21BC84F78E64FEC846 Validity Not Before: Mar 1 09:35:11 2026 GMT Not After : Mar 8 09:35:11 2026 GMT Subject: CN=69a40850-069a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a3:ee:8f:38:7a:3b:c7:94:78:7f:0f:ce:09: 65:f0:aa:46:72:df:32:1f:c4:88:eb:30:04:b3:8c: 2a:cf:16:fd:00:74:24:73:c4:fc:da:5c:ff:d1:94: 5f:36:c5:4a:93:a7:3f:29:f3:ac:a1:b1:0b:fa:66: 99:60:96:b9:b5:9f:e0:7a:ba:dd:a6:60:5a:4c:6d: 6f:3c:cd:51:1d:7f:34:e1:ce:da:33:5d:ef:2c:74: bd:ef:fd:c2:50:f0:64:bb:3a:62:01:31:6d:f8:f3: e8:23:2b:1d:f7:d7:ea:46:8d:a7:5d:c3:99:7c:b6: 27:7c:2d:25:44:2c:ad:41:7f:72:0d:07:84:08:e5: f8:46:e6:a3:0a:8c:9d:9a:df:bf:c4:d9:f7:4b:ed: 86:93:c4:2a:ac:d4:4d:d6:71:0e:b2:3c:3f:fd:ec: f3:be:50:9d:dd:3d:bd:a3:43:2c:9b:c2:8e:3d:4e: b1:00:9a:71:8b:92:25:96:3a:fc:ae:79:4f:8b:21: 95:0a:5f:24:65:c1:87:96:66:c4:a4:c4:b6:f2:fd: 96:05:3c:2c:a9:9f:e9:4b:0c:07:69:fc:ae:f2:e0: 51:33:eb:bb:e4:44:43:1e:ce:dc:7c:e1:a5:d1:4c: 05:91:e3:02:a6:8f:b9:7b:fb:c0:e9:c3:6d:3f:d6: 71:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D8:D1:84:D5:E7:82:56:6B:08:17:53:C9:12:25:2F:2A:3A:A2:08 X509v3 Authority Key Identifier: keyid:22:47:21:87:6A:11:E2:D3:A4:B9:8B:21:BC:84:F7:8E:64:FE:C8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:27:6b:cf:06:18:7a:79:b4:4a:be:3d:c7:fe:37:4c:b6:a2: de:a7:cd:d2:5b:e6:3a:85:5d:2c:8c:d6:74:cb:c1:60:ec:ee: 4b:15:5d:b2:d5:ea:f8:d2:dd:d6:97:9e:ab:93:a8:aa:66:c4: ea:46:04:42:b0:f7:b7:d1:ad:e4:f0:10:cf:15:ee:04:5a:79: d5:2d:d9:0c:4d:dc:4e:e1:64:65:32:ed:be:9b:b4:d6:61:02: 86:dd:f6:5a:d9:1f:20:bf:3e:ed:cd:00:f5:cd:fe:f8:87:dd: 13:6f:89:14:a8:64:09:4d:17:88:1b:65:d1:ea:29:6e:54:c5: e9:3b:30:68:66:13:43:0f:db:6d:05:02:4d:4f:9c:37:c4:9f: 28:e7:3f:01:42:b3:18:9e:d3:92:95:0d:8c:b2:ee:ab:c4:88: c4:94:f9:ad:14:61:ee:40:f8:e0:27:ca:59:10:a8:30:e6:45: d0:f4:7f:b1:8b:87:5b:1e:03:78:88:ea:24:34:59:13:28:a0: 1e:02:5b:b1:ba:4b:62:97:02:b8:42:ca:cb:3a:86:5d:f2:18: 85:87:3a:aa:b1:b5:ad:a9:bf:42:b7:25:09:ca:b8:21:89:0c: 8f:c2:b3:bc:db:b7:fc:f2:ce:65:5f:41:90:9e:9b:e6:1d:64: 74:aa:22:41 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RUU2RDExMC8GA1UEBRMoMjI0NzIxODc2QTExRTJEM0E0Qjk4QjIxQkM4NEY3OEU2 NEZFQzg0NjAeFw0yNjAzMDEwOTM1MTFaFw0yNjAzMDgwOTM1MTFaMBgxFjAUBgNV BAMTDTY5YTQwODUwLTA2OWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCo+6POHo7x5R4fw/OCWXwqkZy3zIfxIjrMASzjCrPFv0AdCRzxPzaXP/RlF82 xUqTpz8p86yhsQv6Zplglrm1n+B6ut2mYFpMbW88zVEdfzThztozXe8sdL3v/cJQ 8GS7OmIBMW348+gjKx331+pGjaddw5l8tid8LSVELK1Bf3INB4QI5fhG5qMKjJ2a 37/E2fdL7YaTxCqs1E3WcQ6yPD/97PO+UJ3dPb2jQyybwo49TrEAmnGLkiWWOvyu eU+LIZUKXyRlwYeWZsSkxLby/ZYFPCypn+lLDAdp/K7y4FEz67vkREMeztx84aXR TAWR4wKmj7l7+8Dpw20/1nEXAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUStjRhNXn glZrCBdTyRIlLyo6oggwHwYDVR0jBBgwFoAUIkchh2oR4tOkuYshvIT3jmT+yEYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFRTZELzUxMTEwQUZFOTc2 NTExRjA5MjNBNjcwQ0M0RjlBRTAyL0lrY2hoMm9SNHRPa3VZc2h2SVQzam1ULXlF WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSWtjaGgyb1I0dE9rdVlzaHZJVDNqbVQteUVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF RTZELzUxMTEwQUZFOTc2NTExRjA5MjNBNjcwQ0M0RjlBRTAyL0lrY2hoMm9SNHRP a3VZc2h2SVQzam1ULXlFWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQB6J2vPBhh6ebRKvj3H/jdMtqLep83SW+Y6hV0sjNZ0y8Fg7O5LFV2y1er40t3W l56rk6iqZsTqRgRCsPe30a3k8BDPFe4EWnnVLdkMTdxO4WRlMu2+m7TWYQKG3fZa 2R8gvz7tzQD1zf74h90Tb4kUqGQJTReIG2XR6iluVMXpOzBoZhNDD9ttBQJNT5w3 xJ8o5z8BQrMYntOSlQ2Msu6rxIjElPmtFGHuQPjgJ8pZEKgw5kXQ9H+xi4dbHgN4 iOokNFkTKKAeAluxuktilwK4QsrLOoZd8hiFhzqqsbWtqb9CtyUJyrghiQyPwrO8 27f88s5lX0GQnpvmHWR0qiJB -----END CERTIFICATE-----Generated at Mon Mar 2 00:30:59 2026 by rpki-client