$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft File: IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft (raw, json) Hash identifier: Q0EyG3kU1ZRBg7ktL6LVRhFIdhAcajxsdX2sEDdLOPg= Subject key identifier: B5:60:82:82:16:30:A6:E3:1E:EF:F6:5F:5C:F6:26:BF:BA:64:25:54 Authority key identifier: 21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA Certificate issuer: /CN=A91EA409/serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Certificate serial: 0102 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft Manifest number: FD Signing time: Mon 02 Mar 2026 01:28:32 +0000 Manifest this update: Mon 02 Mar 2026 01:28:29 +0000 Manifest next update: Mon 09 Mar 2026 01:28:29 +0000 Files and hashes: 1: IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl (hash: 99PmmZTJ4z16USEHpzKRwwYBm7g5MAuLsC9iWJClB5M=) 2: E9F177B89D9C11EFA9526A6CC4F9AE02.roa (hash: aIh23/3y8xgm3k9QGKPnGbqB42NXH2OLUXREX9l30Z4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA409, serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Validity Not Before: Mar 2 01:28:29 2026 GMT Not After : Mar 9 01:28:29 2026 GMT Subject: CN=69a4e7c0-a5c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e9:3b:e1:0c:bd:4c:98:1a:f0:f0:d8:99:fe: 3d:f8:f9:85:75:1e:eb:ab:80:59:57:d9:02:ae:7d: ae:6f:70:90:ee:5e:b1:d2:fe:b1:96:e5:0c:85:41: 63:58:4a:6c:47:dc:a2:d9:b8:dc:5d:96:bc:2c:8d: ce:9b:be:27:d5:cb:74:99:9c:2b:b7:fc:f9:7c:69: 4d:b5:fb:f9:df:b4:7b:aa:2c:e1:e7:2e:0d:fb:f8: 19:df:77:35:f0:19:21:54:27:e2:da:fe:67:f2:45: cd:fc:46:e1:ed:1f:0e:93:a4:5a:ad:e6:58:02:19: 95:58:74:de:51:0c:65:d3:da:32:a1:6b:66:f6:41: 03:a6:30:97:b7:7f:fb:cc:ff:f9:71:50:ad:5e:18: 8d:db:08:e9:25:cf:dd:3b:fa:7a:ae:d9:2b:ce:92: c9:68:10:5d:e2:e7:42:12:55:60:ab:2c:0e:c5:27: 07:62:ea:e3:aa:a5:76:7c:ab:c0:d2:ab:e8:9d:05: 56:aa:f2:aa:f5:07:e2:a8:ef:ba:4c:20:18:98:83: 00:fb:6d:b6:72:b4:8b:f6:4c:16:f2:cb:39:e1:22: 4c:b7:b0:2b:0b:af:e3:ef:55:c0:74:13:38:b0:b3: 7b:94:95:54:fd:82:a9:ac:2e:c8:2f:c9:97:f0:eb: 80:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:60:82:82:16:30:A6:E3:1E:EF:F6:5F:5C:F6:26:BF:BA:64:25:54 X509v3 Authority Key Identifier: keyid:21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:35:de:86:ce:12:af:81:5f:17:dc:72:98:80:d1:87:1e:32: 05:c6:b4:fd:f0:dc:26:7e:2c:50:e4:ee:9e:19:9f:52:d9:f5: f1:e6:55:18:0e:66:3a:90:2c:53:36:32:06:d9:f3:a0:69:53: c8:b1:82:17:73:87:29:a0:f3:e8:32:71:d5:b3:a9:f4:c8:65: 5c:50:eb:1c:2e:b3:42:82:d5:ab:42:a3:5a:6b:56:a0:87:a2: 80:42:17:4a:da:9d:ac:14:b9:e1:06:dc:a3:67:aa:ba:ca:e9: 7b:75:63:58:80:24:e8:e0:8a:24:56:17:c2:0a:ed:fb:76:da: 66:ef:db:86:3b:cd:cf:12:c7:ec:fd:2c:e7:2e:72:8f:52:30: 0e:ee:e3:dc:43:8f:87:dc:e9:60:d8:81:00:2f:31:47:fe:69: db:6a:a8:a5:81:33:f3:3a:28:01:6e:3a:ba:07:fe:b5:3e:fa: 95:fa:c0:75:a0:89:ac:82:9f:ca:45:b6:65:86:82:45:c3:59: 6d:2e:01:eb:27:4f:17:54:c2:2d:6b:f8:26:1d:51:c9:70:00: 42:b4:c4:df:f2:58:5c:ca:db:2c:c3:22:e9:a7:c1:bd:2b:13: 44:b1:1c:80:48:2c:95:4a:a1:b1:56:cf:d2:b1:02:eb:8b:c2: c6:94:4e:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0MDkxMTAvBgNVBAUTKDIxNjRERDU5QTYxNUQ1RjJFMzM5M0U3MjA5OEE3M0FE ODY4RTc4REEwHhcNMjYwMzAyMDEyODI5WhcNMjYwMzA5MDEyODI5WjAYMRYwFAYD VQQDEw02OWE0ZTdjMC1hNWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm+k74Qy9TJga8PDYmf49+PmFdR7rq4BZV9kCrn2ub3CQ7l6x0v6xluUMhUFj WEpsR9yi2bjcXZa8LI3Om74n1ct0mZwrt/z5fGlNtfv537R7qizh5y4N+/gZ33c1 8BkhVCfi2v5n8kXN/Ebh7R8Ok6RareZYAhmVWHTeUQxl09oyoWtm9kEDpjCXt3/7 zP/5cVCtXhiN2wjpJc/dO/p6rtkrzpLJaBBd4udCElVgqywOxScHYurjqqV2fKvA 0qvonQVWqvKq9QfiqO+6TCAYmIMA+222crSL9kwW8ss54SJMt7ArC6/j71XAdBM4 sLN7lJVU/YKprC7IL8mX8OuA3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLVggoIW MKbjHu/2X1z2Jr+6ZCVUMB8GA1UdIwQYMBaAFCFk3VmmFdXy4zk+cgmKc62Gjnja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQwOS9GOTQ0RTNDQzlD QUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFmTGpPVDV5Q1lwenJZYU9l Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lXVGRXYVlWMWZMak9UNXlDWXB6cllhT2VOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQwOS9GOTQ0RTNDQzlDQUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFm TGpPVDV5Q1lwenJZYU9lTm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATjXehs4Sr4FfF9xymIDRhx4yBca0/fDcJn4sUOTunhmfUtn18eZVGA5mOpAs UzYyBtnzoGlTyLGCF3OHKaDz6DJx1bOp9MhlXFDrHC6zQoLVq0KjWmtWoIeigEIX StqdrBS54Qbco2equsrpe3VjWIAk6OCKJFYXwgrt+3baZu/bhjvNzxLH7P0s5y5y j1IwDu7j3EOPh9zpYNiBAC8xR/5p22qopYEz8zooAW46ugf+tT76lfrAdaCJrIKf ykW2ZYaCRcNZbS4B6ydPF1TCLWv4Jh1RyXAAQrTE3/JYXMrbLMMi6afBvSsTRLEc gEgslUqhsVbP0rEC64vCxpROZg== -----END CERTIFICATE-----Generated at Mon Mar 2 14:33:05 2026 by rpki-client