$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft File: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft (raw, json) Hash identifier: 04Xi5zb7gi82SlQBfJ8W951TcZXKWyAqgOuZFTPsl4o= Subject key identifier: 20:FF:77:37:66:67:3C:F1:35:97:01:A1:EF:4D:91:BB:3C:9C:DE:33 Authority key identifier: 89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 Certificate issuer: /CN=A91F2046/serialNumber=894809630956924382CC39D460FA4764B0175934 Certificate serial: 0C8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft Manifest number: 0C83 Signing time: Mon 02 Mar 2026 00:03:35 +0000 Manifest this update: Mon 02 Mar 2026 00:03:33 +0000 Manifest next update: Mon 09 Mar 2026 00:03:33 +0000 Files and hashes: 1: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl (hash: lAcj7o7e/MuADVQaBlbdtBh3DVhsr5DfUan/zL8Z67k=) 2: 0D2573FA173E11EA947B2976C4F9AE02.roa (hash: Sez/a2sgGSbWwvJeQPZUS5uIi1mmZfqNVL6dsISb/6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:03:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3213 (0xc8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2046, serialNumber=894809630956924382CC39D460FA4764B0175934 Validity Not Before: Mar 2 00:03:33 2026 GMT Not After : Mar 9 00:03:33 2026 GMT Subject: CN=69a4d3d7-3240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f1:c5:df:00:c3:2b:bf:8f:4e:f9:b4:60:be: 7d:7f:29:f2:92:e4:63:81:5c:4d:0b:e1:8f:11:1a: 40:7f:2d:60:5d:bd:6d:33:e5:34:5c:fe:72:7a:86: 34:7c:94:1e:ba:6e:64:a3:b9:bf:dd:84:14:f0:af: e1:cb:7b:df:05:35:44:e5:cc:ab:09:85:99:a8:78: e9:28:12:f3:b3:a3:20:40:90:c4:34:6e:b0:1f:c3: 68:62:2f:20:12:57:a7:4c:48:95:25:c6:ea:02:5f: fd:41:dd:a9:3f:30:ec:59:4f:25:34:fb:1d:a0:ce: cc:0f:75:ba:25:73:aa:62:76:a2:5f:d4:d8:c6:fe: be:b6:2c:9d:cd:7c:56:9d:64:c8:2f:97:2d:07:db: 21:4e:c6:a3:7a:5d:c9:2c:b1:d5:24:06:38:d3:ff: ef:31:7b:d4:0b:83:4f:e1:0a:dc:fe:33:e1:21:f6: 4d:ba:9a:2f:9e:9d:e1:db:40:95:12:12:01:53:f8: 6e:8a:5f:8f:fa:f1:0c:83:d4:e9:d6:f6:ba:7b:b8: 80:aa:6b:a3:5c:5a:65:71:b0:07:f8:68:19:e3:e3: 3d:c2:43:04:e3:fb:4f:ab:dc:5f:14:4e:a0:99:0c: 3a:9c:b6:39:35:5c:4b:6c:c7:78:ba:df:c7:4b:a8: ae:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:FF:77:37:66:67:3C:F1:35:97:01:A1:EF:4D:91:BB:3C:9C:DE:33 X509v3 Authority Key Identifier: keyid:89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:38:94:7e:bd:69:0d:55:9d:66:f8:10:25:6c:fb:05:bc:b8: 24:da:af:d6:74:ac:d1:c9:39:78:19:49:3e:1f:b5:d3:3f:ff: d9:fd:7e:90:18:db:43:07:bb:bc:15:21:2b:84:18:9b:8e:da: 7f:86:89:f3:6a:28:a6:47:db:46:0e:b4:a2:6b:cd:58:fb:ff: 10:f3:ad:89:46:08:57:65:5c:6b:6d:32:05:de:58:71:6c:7d: a8:a5:26:47:94:db:1e:d8:3e:2d:a4:02:8f:3f:d7:3e:4e:07: 50:4d:cd:88:13:8a:df:18:98:4d:e9:d0:a4:56:c6:9b:6d:71: 4e:7c:f4:90:0e:6a:b5:8a:5f:0d:93:54:15:4f:38:f5:bb:b0: 73:e0:19:c4:21:5b:95:e2:b4:43:02:3b:10:b7:7f:0d:2f:06: f8:27:95:d4:d7:fb:65:52:60:ef:1c:99:07:f7:12:09:da:1e: e0:29:36:29:64:6f:7e:25:db:26:7e:a7:02:6f:a9:4e:a3:cc: 43:00:81:46:39:ad:3b:1f:b2:fd:f9:73:fd:75:88:6c:f3:f9: 34:ce:49:0d:32:e4:65:fc:32:7b:d9:2d:a3:f8:62:72:78:be: 9f:e2:fd:a3:9f:b5:28:66:7f:43:c5:c5:ae:79:49:74:cf:a4: 0e:d3:59:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIwNDYxMTAvBgNVBAUTKDg5NDgwOTYzMDk1NjkyNDM4MkNDMzlENDYwRkE0NzY0 QjAxNzU5MzQwHhcNMjYwMzAyMDAwMzMzWhcNMjYwMzA5MDAwMzMzWjAYMRYwFAYD VQQDEw02OWE0ZDNkNy0zMjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfHF3wDDK7+PTvm0YL59fynykuRjgVxNC+GPERpAfy1gXb1tM+U0XP5yeoY0 fJQeum5ko7m/3YQU8K/hy3vfBTVE5cyrCYWZqHjpKBLzs6MgQJDENG6wH8NoYi8g ElenTEiVJcbqAl/9Qd2pPzDsWU8lNPsdoM7MD3W6JXOqYnaiX9TYxv6+tiydzXxW nWTIL5ctB9shTsajel3JLLHVJAY40//vMXvUC4NP4Qrc/jPhIfZNupovnp3h20CV EhIBU/huil+P+vEMg9Tp1va6e7iAqmujXFplcbAH+GgZ4+M9wkME4/tPq9xfFE6g mQw6nLY5NVxLbMd4ut/HS6iuvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCD/dzdm ZzzxNZcBoe9Nkbs8nN4zMB8GA1UdIwQYMBaAFIlICWMJVpJDgsw51GD6R2SwF1k0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjA0Ni8zRkIwMkFFMjE0 RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2trT0N6RG5VWVBwSFpMQVhX VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVZ0pZd2xXa2tPQ3pEblVZUHBIWkxBWFdUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjA0Ni8zRkIwMkFFMjE0RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2tr T0N6RG5VWVBwSFpMQVhXVFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAODiUfr1pDVWdZvgQJWz7Bby4JNqv1nSs0ck5eBlJPh+10z//2f1+kBjbQwe7 vBUhK4QYm47af4aJ82oopkfbRg60omvNWPv/EPOtiUYIV2Vca20yBd5YcWx9qKUm R5TbHtg+LaQCjz/XPk4HUE3NiBOK3xiYTenQpFbGm21xTnz0kA5qtYpfDZNUFU84 9buwc+AZxCFbleK0QwI7ELd/DS8G+CeV1Nf7ZVJg7xyZB/cSCdoe4Ck2KWRvfiXb Jn6nAm+pTqPMQwCBRjmtOx+y/flz/XWIbPP5NM5JDTLkZfwye9kto/hicni+n+L9 o5+1KGZ/Q8XFrnlJdM+kDtNZkw== -----END CERTIFICATE-----Generated at Mon Mar 2 11:40:11 2026 by rpki-client