$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.mft File: iXhNbZOLBcw7e2ZuXnrukiPeTXA.mft (raw, json) Hash identifier: GO2fHmhtZDJBR94rK7ayC6Jyorr8q9zYuWaqDkVHyEc= Subject key identifier: 0B:51:ED:69:EC:CE:DA:4A:A9:EC:EF:1D:4E:F1:F7:AB:E6:1E:C0:1F Authority key identifier: 89:78:4D:6D:93:8B:05:CC:3B:7B:66:6E:5E:7A:EE:92:23:DE:4D:70 Certificate issuer: /CN=A91D8185/serialNumber=89784D6D938B05CC3B7B666E5E7AEE9223DE4D70 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXhNbZOLBcw7e2ZuXnrukiPeTXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.mft Manifest number: 63 Signing time: Sun 01 Mar 2026 09:29:00 +0000 Manifest this update: Sun 01 Mar 2026 09:28:59 +0000 Manifest next update: Sun 08 Mar 2026 09:28:59 +0000 Files and hashes: 1: iXhNbZOLBcw7e2ZuXnrukiPeTXA.crl (hash: JI0mJwPhtlvUoxVWxIoN+wcJ3lzfTQ1sXAvdXoCQFlY=) 2: CC2C3CB684AC11F0B7B8977DC4F9AE02.roa (hash: WVKvdEi7kYbNoorvO+vXnFAGzIa+bxcA/kczPaL6kG4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.crl rsync://rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXhNbZOLBcw7e2ZuXnrukiPeTXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8185, serialNumber=89784D6D938B05CC3B7B666E5E7AEE9223DE4D70 Validity Not Before: Mar 1 09:28:59 2026 GMT Not After : Mar 8 09:28:59 2026 GMT Subject: CN=69a406dc-6537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:d5:ed:b1:a6:ae:45:d8:69:e1:7f:46:6c:3a: 24:20:e5:e3:2f:9f:03:4b:58:4d:6a:2e:d6:9d:5c: 2a:9e:ca:0c:cf:b8:7c:b9:7c:d8:6e:e4:18:5e:75: a0:90:a4:e7:52:7d:b2:0a:62:64:2a:3d:15:d8:d8: e9:12:da:d0:bc:f8:23:5f:6f:e0:c7:88:9c:e6:eb: 90:31:2b:a3:2d:1b:88:5d:c4:f8:6e:92:53:d2:af: 69:31:ae:c0:a7:dd:8e:b4:06:c2:a2:50:02:3f:28: 54:27:bb:73:f0:66:e5:15:0d:ee:f6:e6:0a:fa:e6: 34:30:59:a8:ab:ba:10:c7:50:9a:3d:ba:35:29:56: 43:45:db:53:e7:c4:16:b5:c3:52:3a:3f:b5:44:15: 51:fb:ec:02:bb:00:62:ce:d7:56:c0:57:9d:5e:52: 70:08:a4:7e:44:d1:30:bb:5d:cc:fc:28:91:de:9a: 36:d2:a9:4a:86:f6:e1:15:da:0b:0a:b3:21:49:ad: b0:4e:64:4f:72:bb:54:8e:10:80:e7:2a:d0:4d:76: cf:56:fa:48:19:d3:d8:a3:62:b0:72:9c:c3:28:60: c7:7c:3b:9f:e6:00:e2:cb:98:fe:6a:17:df:96:a7: 9f:fa:b3:12:d0:92:86:f1:4a:4a:03:10:9a:d6:86: 52:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:51:ED:69:EC:CE:DA:4A:A9:EC:EF:1D:4E:F1:F7:AB:E6:1E:C0:1F X509v3 Authority Key Identifier: keyid:89:78:4D:6D:93:8B:05:CC:3B:7B:66:6E:5E:7A:EE:92:23:DE:4D:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXhNbZOLBcw7e2ZuXnrukiPeTXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:32:24:d5:55:24:64:3c:91:03:ab:c8:c4:58:cc:c6:97:46: 67:e9:53:5a:6f:8a:15:90:5d:c2:2a:98:af:95:f3:fa:ef:b0: 3c:75:50:bf:73:fb:d9:38:83:c1:63:7a:18:4d:50:32:1f:d8: 87:7a:43:ec:a9:57:f2:a5:91:17:2f:0e:02:dd:4b:5f:9e:02: 07:e7:01:bc:e5:ed:fb:ee:52:43:4d:83:fd:fa:16:75:a8:d4: 9d:00:78:91:6c:76:84:af:b7:71:b4:d5:32:b0:25:33:c3:c7: c3:cc:e7:d5:87:86:ab:9f:49:3b:7b:74:97:ef:45:20:49:0d: 24:6c:19:70:f1:4c:a6:1f:22:7c:d7:5e:f7:46:bc:98:8a:cf: e5:67:5e:04:ca:6c:40:0f:d8:d3:ef:d9:fa:4a:fd:f0:4b:2e: 23:ce:c6:83:1f:75:13:11:5a:af:83:65:90:34:fc:90:c3:a0: 17:33:26:0e:8e:0a:b7:64:45:25:e3:19:e4:61:38:b0:ac:72: e5:39:d3:49:43:da:87:aa:47:cd:c8:44:69:dd:32:17:d5:2e: 40:0d:40:8c:60:1e:b8:03:28:f7:b4:79:d7:72:46:a0:59:a6: ab:e2:e9:f7:58:1e:45:54:87:51:b2:af:92:5a:af:e3:d6:53: 47:0c:89:21 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODE4NTExMC8GA1UEBRMoODk3ODRENkQ5MzhCMDVDQzNCN0I2NjZFNUU3QUVFOTIy M0RFNEQ3MDAeFw0yNjAzMDEwOTI4NTlaFw0yNjAzMDgwOTI4NTlaMBgxFjAUBgNV BAMTDTY5YTQwNmRjLTY1MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCK1e2xpq5F2Gnhf0ZsOiQg5eMvnwNLWE1qLtadXCqeygzPuHy5fNhu5BhedaCQ pOdSfbIKYmQqPRXY2OkS2tC8+CNfb+DHiJzm65AxK6MtG4hdxPhuklPSr2kxrsCn 3Y60BsKiUAI/KFQnu3PwZuUVDe725gr65jQwWairuhDHUJo9ujUpVkNF21PnxBa1 w1I6P7VEFVH77AK7AGLO11bAV51eUnAIpH5E0TC7Xcz8KJHemjbSqUqG9uEV2gsK syFJrbBOZE9yu1SOEIDnKtBNds9W+kgZ09ijYrBynMMoYMd8O5/mAOLLmP5qF9+W p5/6sxLQkobxSkoDEJrWhlI9AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUC1HtaezO 2kqp7O8dTvH3q+YewB8wHwYDVR0jBBgwFoAUiXhNbZOLBcw7e2ZuXnrukiPeTXAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MTg1Lzg1MDExNTMyODRB QzExRjA4RDNBQjk3OUM0RjlBRTAyL2lYaE5iWk9MQmN3N2UyWnVYbnJ1a2lQZVRY QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVhoTmJaT0xCY3c3ZTJadVhucnVraVBlVFhBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 MTg1Lzg1MDExNTMyODRBQzExRjA4RDNBQjk3OUM0RjlBRTAyL2lYaE5iWk9MQmN3 N2UyWnVYbnJ1a2lQZVRYQS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAlMiTVVSRkPJEDq8jEWMzGl0Zn6VNab4oVkF3CKpivlfP677A8dVC/c/vZOIPB Y3oYTVAyH9iHekPsqVfypZEXLw4C3UtfngIH5wG85e377lJDTYP9+hZ1qNSdAHiR bHaEr7dxtNUysCUzw8fDzOfVh4arn0k7e3SX70UgSQ0kbBlw8UymHyJ81173RryY is/lZ14EymxAD9jT79n6Sv3wSy4jzsaDH3UTEVqvg2WQNPyQw6AXMyYOjgq3ZEUl 4xnkYTiwrHLlOdNJQ9qHqkfNyERp3TIX1S5ADUCMYB64Ayj3tHnXckagWaar4un3 WB5FVIdRsq+SWq/j1lNHDIkh -----END CERTIFICATE-----Generated at Sun Mar 1 23:02:03 2026 by rpki-client