$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft File: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft (raw, json) Hash identifier: ejfXHZSZSXWCjmjIJ04hOGz9SWQtF4SCv32tbtWScTc= Subject key identifier: 15:01:1A:16:67:DD:8E:AC:93:46:BF:07:19:85:1F:D8:1F:9E:16:1C Authority key identifier: 89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 Certificate issuer: /CN=A91F2046/serialNumber=894809630956924382CC39D460FA4764B0175934 Certificate serial: 0CA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft Manifest number: 0C9B Signing time: Thu 16 Apr 2026 18:27:11 +0000 Manifest this update: Thu 16 Apr 2026 18:27:11 +0000 Manifest next update: Thu 23 Apr 2026 18:27:11 +0000 Files and hashes: 1: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl (hash: aXaQnXZsVN5sj4svBFQWHvA9QoNg7aff/mw5xy6mhSA=) 2: 0D2573FA173E11EA947B2976C4F9AE02.roa (hash: Sez/a2sgGSbWwvJeQPZUS5uIi1mmZfqNVL6dsISb/6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3237 (0xca5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2046, serialNumber=894809630956924382CC39D460FA4764B0175934 Validity Not Before: Apr 16 18:27:11 2026 GMT Not After : Apr 23 18:27:11 2026 GMT Subject: CN=69e129ff-659f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3a:e9:cc:ba:0e:fa:cb:29:95:1a:30:5e:1a: ae:17:d2:a5:b3:ba:47:f9:53:ac:44:bb:fb:b9:79: 8b:90:b1:a1:27:03:25:c6:68:6c:37:42:9b:56:8c: 22:98:3d:c1:6f:a3:96:03:a8:a5:74:cb:83:70:72: 41:c4:2b:52:83:f3:eb:43:f7:72:47:76:80:7c:8e: 0b:01:fb:5b:64:2d:53:84:9d:c2:8d:da:4d:96:34: ba:32:e9:58:c9:bc:49:49:7f:40:a8:3b:a6:6d:2e: 90:5f:fc:65:a8:96:d3:79:f2:96:f1:c9:95:c3:d7: 69:f2:b4:30:ad:4a:9b:8b:a9:16:d5:f9:1b:ac:70: 2f:50:45:1b:6a:ab:cb:e1:76:f0:f4:b8:41:3b:fa: 48:7e:94:6f:09:0e:ec:77:36:8c:53:e0:9c:6f:3c: 8a:3b:30:fc:fe:8f:17:9c:25:3d:90:e5:1f:f7:13: c2:30:03:ca:e4:89:95:35:6a:a0:4d:95:b2:9e:25: e0:ee:14:d1:73:69:0c:91:2f:b0:ad:66:07:2f:db: f1:cf:f0:45:2a:c5:53:b8:f1:c4:c2:c4:9a:5f:00: ca:35:fb:92:a0:4b:90:39:50:e9:4d:fc:c2:a7:9f: 04:f2:8b:5c:4b:81:cf:a6:11:0a:67:c3:b1:55:9e: 59:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:01:1A:16:67:DD:8E:AC:93:46:BF:07:19:85:1F:D8:1F:9E:16:1C X509v3 Authority Key Identifier: keyid:89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:8d:77:73:05:15:1a:a5:c7:73:37:b5:55:81:cf:21:39:64: a1:f3:a5:85:fa:45:ef:15:02:0b:f4:5e:d6:01:c6:93:46:50: d4:ae:1a:cf:c4:77:8b:8a:91:4f:18:e2:34:93:d8:2e:dc:95: 62:c8:8a:62:aa:d8:1f:be:79:8a:09:7d:6c:50:b0:0e:d3:2c: 19:d8:80:49:98:a8:86:8d:1d:fa:1e:34:ff:f8:8a:f0:b1:0d: 77:6a:a0:67:0c:8a:2a:21:68:f3:dc:59:a8:49:e8:d7:7d:c4: 5f:2d:04:da:0c:c9:25:c0:a2:0f:b5:ad:7e:24:30:e7:ee:9a: d6:94:7b:0b:c2:cc:50:15:c7:5c:c1:04:14:58:c4:37:c6:4c: 55:aa:a2:d3:de:aa:9d:ea:dd:80:2f:94:4e:6c:31:0a:d5:8f: ca:53:94:9c:24:1f:c7:22:c4:f9:a0:1f:a3:bc:80:54:db:9d: 6a:eb:a4:23:2c:c5:95:7d:95:57:ad:68:be:23:b0:7a:6e:39: a7:72:8e:42:17:3f:17:54:de:43:57:49:ce:33:2c:9f:e7:b7: 63:c3:9d:9f:52:c0:34:10:1a:a6:e0:41:5c:ce:6f:e2:97:39: 14:b2:52:b5:d4:6e:86:fd:80:90:65:6e:24:5c:2e:31:a1:de: 0c:13:50:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIwNDYxMTAvBgNVBAUTKDg5NDgwOTYzMDk1NjkyNDM4MkNDMzlENDYwRkE0NzY0 QjAxNzU5MzQwHhcNMjYwNDE2MTgyNzExWhcNMjYwNDIzMTgyNzExWjAYMRYwFAYD VQQDEw02OWUxMjlmZi02NTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDrpzLoO+ssplRowXhquF9Kls7pH+VOsRLv7uXmLkLGhJwMlxmhsN0KbVowi mD3Bb6OWA6ildMuDcHJBxCtSg/PrQ/dyR3aAfI4LAftbZC1ThJ3CjdpNljS6MulY ybxJSX9AqDumbS6QX/xlqJbTefKW8cmVw9dp8rQwrUqbi6kW1fkbrHAvUEUbaqvL 4Xbw9LhBO/pIfpRvCQ7sdzaMU+CcbzyKOzD8/o8XnCU9kOUf9xPCMAPK5ImVNWqg TZWyniXg7hTRc2kMkS+wrWYHL9vxz/BFKsVTuPHEwsSaXwDKNfuSoEuQOVDpTfzC p58E8otcS4HPphEKZ8OxVZ5ZQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBUBGhZn 3Y6sk0a/BxmFH9gfnhYcMB8GA1UdIwQYMBaAFIlICWMJVpJDgsw51GD6R2SwF1k0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjA0Ni8zRkIwMkFFMjE0 RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2trT0N6RG5VWVBwSFpMQVhX VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVZ0pZd2xXa2tPQ3pEblVZUHBIWkxBWFdUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjA0Ni8zRkIwMkFFMjE0RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2tr T0N6RG5VWVBwSFpMQVhXVFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs413cwUVGqXHcze1VYHPITlkofOlhfpF7xUCC/Re1gHGk0ZQ1K4az8R3i4qR TxjiNJPYLtyVYsiKYqrYH755igl9bFCwDtMsGdiASZioho0d+h40//iK8LENd2qg ZwyKKiFo89xZqEno133EXy0E2gzJJcCiD7WtfiQw5+6a1pR7C8LMUBXHXMEEFFjE N8ZMVaqi096qnerdgC+UTmwxCtWPylOUnCQfxyLE+aAfo7yAVNudauukIyzFlX2V V61oviOwem45p3KOQhc/F1TeQ1dJzjMsn+e3Y8Odn1LANBAapuBBXM5v4pc5FLJS tdRuhv2AkGVuJFwuMaHeDBNQzg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:28:41 2026 by rpki-client