$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft (raw, json) Hash identifier: n38Oqmp0CFxR6qt72MkHgWkb9dbhSY4nE1sEgVSbEsA= Subject key identifier: 5C:A8:2F:00:9E:05:A7:BD:75:43:55:0B:01:89:27:0B:DC:8C:B9:3C Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 01E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft Manifest number: 01E3 Signing time: Mon 02 Mar 2026 02:30:57 +0000 Manifest this update: Mon 02 Mar 2026 02:30:53 +0000 Manifest next update: Mon 09 Mar 2026 02:30:53 +0000 Files and hashes: 1: iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl (hash: Ru1lPRzY95EBNBJIlye9bYc8YhR1Q4x6Gt++tq40nu0=) 2: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (hash: rbEk2KoFtT0uaq48+jo8FPtXO3/HKOrBaUxyg4fgBYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:30:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Mar 2 02:30:53 2026 GMT Not After : Mar 9 02:30:53 2026 GMT Subject: CN=69a4f660-ff4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4c:b8:66:90:77:d7:b0:e6:12:85:58:97:f8: 2b:1e:c5:3b:dc:f6:4c:67:c4:0f:89:2d:a3:b3:92: 89:72:05:02:af:98:ea:61:a3:93:b4:c8:81:4d:c3: be:58:71:85:56:ee:a5:ce:26:2d:6f:81:f4:07:e3: f7:b2:b0:da:65:fc:9e:54:a0:f3:c0:5c:3f:33:bf: 43:76:ea:0a:73:42:2d:4d:6f:a9:a8:15:af:2d:07: 3c:e0:ad:22:9a:32:e2:94:2e:e1:31:96:9d:26:ec: 35:c8:e4:ff:ba:10:bc:d5:ea:7d:c8:63:d0:b2:57: 76:1e:4f:ab:a1:00:bf:86:e6:70:a9:fb:ec:d0:d2: c9:2f:a8:e3:e3:ff:22:ba:ea:a3:09:71:d4:68:bf: d8:d4:fb:26:43:64:00:c5:2c:6c:24:ba:2a:54:8c: cc:00:ec:0c:3e:5c:20:e2:d5:82:a1:11:26:cb:85: ac:7f:4a:10:ce:e8:7d:d8:ed:22:dd:5c:ac:47:29: dd:83:ee:c3:cf:9f:a0:57:0c:71:e1:41:0d:a1:72: 31:0e:12:6c:6c:5b:db:ac:03:21:3f:92:f5:89:22: bf:1d:fb:88:2a:96:15:c4:6a:38:c4:e8:f6:03:51: 61:f1:37:f8:1d:05:4d:e4:63:f5:cd:be:f7:45:4c: f4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:A8:2F:00:9E:05:A7:BD:75:43:55:0B:01:89:27:0B:DC:8C:B9:3C X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:c4:bd:4e:7d:74:b4:aa:fb:3e:91:cc:b2:36:bd:85:2a:0a: 8e:21:92:3c:7c:21:a5:40:80:20:f2:ea:e9:80:59:72:5c:71: 15:b7:7c:cb:6a:af:8b:aa:4a:fd:a5:74:11:c9:bc:40:be:8e: 2d:ea:32:2c:51:17:9b:1f:33:80:7e:30:98:45:ba:16:81:1e: d4:bc:11:73:c9:f6:56:fe:be:30:91:51:52:cf:14:88:28:a2: 45:dd:f6:74:15:0a:f5:5e:17:e7:2e:05:4b:50:92:72:b0:d7: c5:0f:7c:0b:d3:49:fc:c7:6f:0c:c6:c8:bb:0e:4e:1a:9f:e4: 7e:df:3d:25:a8:05:48:31:f0:62:08:be:fb:d8:ec:8b:ae:39: be:16:02:4e:71:98:ce:a2:6b:52:3c:a2:12:2b:95:3c:92:fa: 5c:aa:67:07:2d:fe:c4:fd:5c:0e:d2:91:f0:bd:c5:04:8f:09: a2:8c:13:d9:33:a4:d5:f2:1d:c8:9e:3e:89:da:1f:6d:66:0e: 3f:9b:6d:87:ba:67:ff:d6:b4:10:76:bd:44:18:00:3c:9b:b0: 0a:ea:6e:ce:9b:e1:ce:4f:05:b7:86:ba:56:e4:b3:4e:c1:38: 9c:e8:2e:8d:2d:38:bf:d8:33:8f:88:ce:23:62:73:39:a6:96: ad:56:f3:b6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjYwMzAyMDIzMDUzWhcNMjYwMzA5MDIzMDUzWjAYMRYwFAYD VQQDEw02OWE0ZjY2MC1mZjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEy4ZpB317DmEoVYl/grHsU73PZMZ8QPiS2js5KJcgUCr5jqYaOTtMiBTcO+ WHGFVu6lziYtb4H0B+P3srDaZfyeVKDzwFw/M79DduoKc0ItTW+pqBWvLQc84K0i mjLilC7hMZadJuw1yOT/uhC81ep9yGPQsld2Hk+roQC/huZwqfvs0NLJL6jj4/8i uuqjCXHUaL/Y1PsmQ2QAxSxsJLoqVIzMAOwMPlwg4tWCoREmy4Wsf0oQzuh92O0i 3VysRyndg+7Dz5+gVwxx4UENoXIxDhJsbFvbrAMhP5L1iSK/HfuIKpYVxGo4xOj2 A1Fh8Tf4HQVN5GP1zb73RUz05QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFyoLwCe Bae9dUNVCwGJJwvcjLk8MB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0U2Mi8yMUQ1Q0NERTM0MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhX STcxT1E1aHVpQTlxc1RoSlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApcS9Tn10tKr7PpHMsja9hSoKjiGSPHwhpUCAIPLq6YBZclxxFbd8y2qvi6pK /aV0Ecm8QL6OLeoyLFEXmx8zgH4wmEW6FoEe1LwRc8n2Vv6+MJFRUs8UiCiiRd32 dBUK9V4X5y4FS1CScrDXxQ98C9NJ/MdvDMbIuw5OGp/kft89JagFSDHwYgi++9js i645vhYCTnGYzqJrUjyiEiuVPJL6XKpnBy3+xP1cDtKR8L3FBI8JoowT2TOk1fId yJ4+idofbWYOP5tth7pn/9a0EHa9RBgAPJuwCupuzpvhzk8Ft4a6VuSzTsE4nOgu jS04v9gzj4jOI2JzOaaWrVbztg== -----END CERTIFICATE-----Generated at Mon Mar 2 07:40:26 2026 by rpki-client