$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft (raw, json) Hash identifier: Fn+l9dP5IMuQuUgHBaOH/M8R9Qp+V1kBh8wHprj+5Bk= Subject key identifier: E0:A8:38:8A:A0:5A:16:A1:50:41:18:FA:0D:8E:3F:74:C6:88:26:9E Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft Manifest number: 01E2 Signing time: Sun 01 Mar 2026 04:10:47 +0000 Manifest this update: Sun 01 Mar 2026 04:10:47 +0000 Manifest next update: Sun 08 Mar 2026 04:10:47 +0000 Files and hashes: 1: iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl (hash: sj0DyMc+/kA7Cf31byqUObaQ3jNSeOp9qVDD49IlvkU=) 2: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (hash: rbEk2KoFtT0uaq48+jo8FPtXO3/HKOrBaUxyg4fgBYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:10:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Mar 1 04:10:47 2026 GMT Not After : Mar 8 04:10:47 2026 GMT Subject: CN=69a3bc47-eb94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:db:bb:ca:19:d2:5e:97:b8:88:0a:62:31:06: 6b:de:44:b6:01:9f:97:c2:d7:1a:05:2d:23:4c:6c: 98:e0:ac:dd:f6:b5:b7:44:85:50:57:5a:1e:2f:43: 1b:c2:a2:ae:9a:f7:7d:cd:46:e7:54:67:a9:17:9e: 81:9c:3e:a6:b3:9c:39:d3:89:c2:95:e8:37:dd:56: 5b:5f:f9:aa:cd:5f:ad:dc:8e:29:98:53:75:e7:7e: 5e:aa:52:7b:60:d5:69:2f:c1:fc:98:cd:38:f7:e7: 64:db:f9:c5:8b:cb:02:eb:27:94:ed:0c:d8:e6:35: 0c:c8:31:93:a7:ff:41:47:07:ff:97:64:ef:a1:c5: 7b:51:e8:2f:8c:5d:92:03:85:cd:c6:18:dd:04:87: 08:1f:78:54:f8:4e:90:79:3b:82:a0:b4:13:87:c8: 3f:91:89:d9:d0:48:e9:fd:16:8e:ef:53:90:9a:43: 18:43:62:29:c6:ac:0a:21:95:8c:5f:d1:3b:d6:75: 92:5d:34:f9:0e:c8:81:a1:5f:b9:a6:26:1b:09:b0: 3a:25:f3:76:88:1c:5b:af:81:95:6c:d1:df:68:fe: 69:56:a0:f5:fa:71:68:4c:87:ff:41:ee:5e:65:43: 89:c9:fd:9c:a9:25:48:4c:71:8c:33:85:21:61:8f: 8a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:A8:38:8A:A0:5A:16:A1:50:41:18:FA:0D:8E:3F:74:C6:88:26:9E X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:9f:7f:75:86:16:04:6e:69:b8:ad:a1:8a:ca:bc:b8:27:52: d2:ce:79:d1:4f:b4:26:e4:0a:87:3f:eb:11:bc:83:26:8c:47: e2:2e:52:bb:ce:1c:0e:28:0f:15:33:66:f3:e0:44:19:11:5d: 53:1c:b1:15:67:cd:7a:b0:57:a6:d6:24:4e:b2:12:c1:3c:07: e5:dc:c1:d7:81:6d:04:b1:20:98:cc:bb:b5:60:7b:7e:2a:cf: 5f:69:e4:8e:59:74:0e:07:90:4c:7f:29:99:3e:f5:f1:e4:dd: a6:8e:d1:3e:ed:bd:40:ef:ec:cb:9a:c3:46:3a:a1:34:c0:a9: 2f:b1:b7:7b:66:36:fe:7e:fe:e2:ad:d0:45:d5:57:23:4f:a8: 0c:fb:2d:92:09:d9:18:7a:04:9e:2b:33:17:ee:12:b4:f8:df: 9c:82:72:92:d3:8f:42:35:d3:fe:53:86:cc:7f:ef:1b:a9:41: 4d:02:c1:ea:bc:13:d9:45:5a:a2:a8:64:5c:08:2f:46:01:7a: dc:d7:f6:1f:1c:30:87:b7:08:9b:fb:17:42:7f:9a:dd:71:48: 84:f9:5d:a0:ac:b5:e4:dc:a0:f0:fe:1d:3f:d2:d7:20:fd:a5: d8:39:8f:95:af:46:62:85:1a:db:b0:4f:a0:2e:5d:73:bc:c9: 9e:8d:6c:46 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjYwMzAxMDQxMDQ3WhcNMjYwMzA4MDQxMDQ3WjAYMRYwFAYD VQQDDA02OWEzYmM0Ny1lYjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9u7yhnSXpe4iApiMQZr3kS2AZ+XwtcaBS0jTGyY4Kzd9rW3RIVQV1oeL0Mb wqKumvd9zUbnVGepF56BnD6ms5w504nCleg33VZbX/mqzV+t3I4pmFN1535eqlJ7 YNVpL8H8mM049+dk2/nFi8sC6yeU7QzY5jUMyDGTp/9BRwf/l2TvocV7UegvjF2S A4XNxhjdBIcIH3hU+E6QeTuCoLQTh8g/kYnZ0Ejp/RaO71OQmkMYQ2IpxqwKIZWM X9E71nWSXTT5DsiBoV+5piYbCbA6JfN2iBxbr4GVbNHfaP5pVqD1+nFoTIf/Qe5e ZUOJyf2cqSVITHGMM4UhYY+K+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOCoOIqg WhahUEEY+g2OP3TGiCaeMB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0U2Mi8yMUQ1Q0NERTM0MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhX STcxT1E1aHVpQTlxc1RoSlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApZ9/dYYWBG5puK2hisq8uCdS0s550U+0JuQKhz/rEbyDJoxH4i5Su84cDigP FTNm8+BEGRFdUxyxFWfNerBXptYkTrISwTwH5dzB14FtBLEgmMy7tWB7firPX2nk jll0DgeQTH8pmT718eTdpo7RPu29QO/sy5rDRjqhNMCpL7G3e2Y2/n7+4q3QRdVX I0+oDPstkgnZGHoEniszF+4StPjfnIJyktOPQjXT/lOGzH/vG6lBTQLB6rwT2UVa oqhkXAgvRgF63Nf2Hxwwh7cIm/sXQn+a3XFIhPldoKy15Nyg8P4dP9LXIP2l2DmP la9GYoUa27BPoC5dc7zJno1sRg== -----END CERTIFICATE-----Generated at Mon Mar 2 04:07:57 2026 by rpki-client