$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft File: IO0KqyB1C4snqG35iadUv1cm3X4.mft (raw, json) Hash identifier: rdiEE3QYMqdm7a9wM4ik5ePPgi9ZeMVrcK8DC5nZo4k= Subject key identifier: 93:4C:7D:52:78:3A:ED:1C:7A:60:2E:87:C5:19:D4:6E:D8:D0:5F:9A Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 0247 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft Manifest number: 0672 Signing time: Sun 01 Mar 2026 01:22:15 +0000 Manifest this update: Sun 01 Mar 2026 01:22:15 +0000 Manifest next update: Sun 08 Mar 2026 01:22:15 +0000 Files and hashes: 1: IO0KqyB1C4snqG35iadUv1cm3X4.crl (hash: 2RTTFrVMXHQaHTaPGf7NI/tWDGqbynMh2fE3j+KI26Q=) 2: D9FDBEA0FB5D11F0A7F971C0496F56BC.roa (hash: Zz3KztihldwlF82j02xkvtCVhnzh6f8cL+omTASENRM=) 3: C7492CAEFB5D11F0B51531C0496F56BC.roa (hash: l0cSlLaSQ8UgVTRDldRWIHhkWZKZ6RopQMVSA4dHNds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:22:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 583 (0x247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64, serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: Mar 1 01:22:15 2026 GMT Not After : Mar 8 01:22:15 2026 GMT Subject: CN=69a394c7-ddc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:42:8e:6e:af:6b:93:01:79:fc:82:7f:d9:da: 74:67:40:a3:00:26:be:c0:c1:f8:9c:dc:48:20:9c: 28:3d:f2:a4:1c:5a:b7:e8:e9:de:2a:19:5d:25:82: ff:7c:91:66:8a:ad:d8:5b:07:ac:55:31:df:9a:1b: 4f:76:59:1d:b0:ef:17:61:a3:0c:51:7d:28:65:71: b3:4b:c2:93:0f:13:6f:8d:2c:1d:3e:42:6a:9f:e7: 73:c1:65:a9:87:1e:65:58:63:97:c4:eb:3d:08:13: 53:ea:88:a9:86:6e:2e:67:6f:8e:cf:52:aa:90:5d: 2c:e4:e4:96:aa:a7:cb:fc:19:d9:53:d8:3d:88:67: 7f:73:74:15:c3:2d:18:20:6f:fd:7c:f0:58:bd:67: 8d:0b:b4:df:02:5c:db:2c:9b:ce:78:f4:21:9e:a7: b8:f3:71:25:44:0c:15:ce:6d:bf:c1:67:62:a0:65: d0:bc:e6:11:98:db:c1:94:b3:58:6d:15:31:f6:2a: dd:96:f1:2e:62:2e:72:86:4c:91:ea:6b:3a:d9:9a: a9:31:15:f3:1a:6c:16:3e:29:8c:da:83:0e:bd:f8: 7c:21:43:53:5e:4d:57:c8:7c:20:ca:43:c0:3b:55: ba:0a:94:fd:c8:fc:51:ea:9c:1b:cd:bf:92:62:ee: 25:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:4C:7D:52:78:3A:ED:1C:7A:60:2E:87:C5:19:D4:6E:D8:D0:5F:9A X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:8a:22:be:00:e4:ce:ab:8e:2f:fb:90:72:0c:aa:2d:03:7c: f2:92:98:bf:ac:ca:10:60:64:aa:e2:6c:b3:bf:d2:4b:a7:13: a5:a3:8a:c8:5a:d8:14:ef:71:0f:45:74:ce:e9:2b:f0:6f:85: 8a:24:c6:4d:29:fa:d9:86:e3:d2:21:79:cd:e2:f3:f6:2f:4d: 69:86:c1:28:7f:54:06:e4:ac:f7:fe:92:8e:28:84:cf:09:54: 12:dd:b8:2f:1c:ff:3a:00:62:83:81:a7:5a:93:f1:55:fb:a6: 04:4d:92:6e:1c:3e:48:f5:5e:7f:83:10:30:41:8a:c8:53:7d: 3f:c1:b8:94:4e:22:0b:a2:32:7f:e7:c5:cd:78:10:80:ad:cf: 4a:bc:bf:4c:4b:f2:c6:70:c1:8f:67:a6:a5:f4:f2:1b:f5:0c: 89:e6:11:f1:44:81:9a:0f:0b:00:bb:11:c8:66:ee:b9:97:e7: 95:87:fa:3b:e4:69:8c:24:2f:bf:24:36:15:1d:e9:70:09:7d: 40:1a:f8:9c:20:7f:b9:13:75:21:f6:80:e0:32:7f:43:cc:94: 4f:b3:f0:5b:68:df:a8:ba:68:0b:59:92:7c:59:89:df:8a:fa: 59:7a:18:20:87:3e:f9:69:eb:88:8b:28:89:67:b1:2d:fa:10: 8d:2a:a2:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjYwMzAxMDEyMjE1WhcNMjYwMzA4MDEyMjE1WjAYMRYwFAYD VQQDDA02OWEzOTRjNy1kZGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1EKObq9rkwF5/IJ/2dp0Z0CjACa+wMH4nNxIIJwoPfKkHFq36OneKhldJYL/ fJFmiq3YWwesVTHfmhtPdlkdsO8XYaMMUX0oZXGzS8KTDxNvjSwdPkJqn+dzwWWp hx5lWGOXxOs9CBNT6oiphm4uZ2+Oz1KqkF0s5OSWqqfL/BnZU9g9iGd/c3QVwy0Y IG/9fPBYvWeNC7TfAlzbLJvOePQhnqe483ElRAwVzm2/wWdioGXQvOYRmNvBlLNY bRUx9irdlvEuYi5yhkyR6ms62ZqpMRXzGmwWPimM2oMOvfh8IUNTXk1XyHwgykPA O1W6CpT9yPxR6pwbzb+SYu4lHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJNMfVJ4 Ou0cemAuh8UZ1G7Y0F+aMB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUI2NC85QjQ0RUI3NDhGMjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0 c25xRzM1aWFkVXYxY20zWDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsYoivgDkzquOL/uQcgyqLQN88pKYv6zKEGBkquJss7/SS6cTpaOKyFrYFO9x D0V0zukr8G+FiiTGTSn62Ybj0iF5zeLz9i9NaYbBKH9UBuSs9/6SjiiEzwlUEt24 Lxz/OgBig4GnWpPxVfumBE2Sbhw+SPVef4MQMEGKyFN9P8G4lE4iC6Iyf+fFzXgQ gK3PSry/TEvyxnDBj2empfTyG/UMieYR8USBmg8LALsRyGbuuZfnlYf6O+RpjCQv vyQ2FR3pcAl9QBr4nCB/uRN1IfaA4DJ/Q8yUT7PwW2jfqLpoC1mSfFmJ34r6WXoY IIc++WnriIsoiWexLfoQjSqiUA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:26:24 2026 by rpki-client