$ rpki-client -vvf rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft File: cIW1tFSazbW2wnBMhbp4h2D4iic.mft (raw, json) Hash identifier: iQDyLK4kyvyH9HmqSCIadxcP6CsU/tmowkmUwJFNZqA= Subject key identifier: 07:94:D2:AD:64:E4:CC:F5:C4:7E:DB:D8:BD:D5:CD:AF:F1:8F:64:00 Authority key identifier: 70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 Certificate issuer: /CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Certificate serial: 0C2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft Manifest number: 0C21 Signing time: Sat 04 Apr 2026 18:37:43 +0000 Manifest this update: Sat 04 Apr 2026 18:37:42 +0000 Manifest next update: Sat 11 Apr 2026 18:37:42 +0000 Files and hashes: 1: cIW1tFSazbW2wnBMhbp4h2D4iic.crl (hash: zXno2pIns38tKK471p6BWXVceoBWCt9s9aCGgy2ejQQ=) 2: 002DDDC22B9D11EA92F3094CC4F9AE02.roa (hash: bcFMpQtRC/rqeGP9esVeD25xYCU2sXQbGEoW2r6Fpqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:37:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3115 (0xc2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722A3, serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Validity Not Before: Apr 4 18:37:42 2026 GMT Not After : Apr 11 18:37:42 2026 GMT Subject: CN=69d15a77-c7ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d0:93:8a:e5:f7:ab:1b:17:43:1c:e1:7c:2e: cf:8e:d4:c7:c9:88:08:d3:ab:9a:e4:f8:ee:9d:13: 70:86:87:f9:60:4a:0d:14:ee:49:52:69:84:b8:e8: 90:18:4c:fe:ef:2c:a5:04:95:6e:ab:63:0d:c1:78: cf:48:37:cc:b9:61:a1:bc:45:92:3c:78:72:a2:c4: 05:8c:62:75:47:e4:7a:f8:7f:67:9e:c1:d1:7d:6a: c8:10:e6:69:6a:b3:7a:ae:73:48:fa:0c:07:31:d9: 0b:0c:00:08:b0:c5:80:26:1a:aa:79:6a:3b:08:a0: e5:78:b1:bb:96:52:d6:e9:e8:e5:d5:f7:4b:cc:78: 15:9f:d3:7e:12:b8:d0:3f:79:93:96:ef:fd:6a:cb: 67:39:9b:02:59:31:78:19:4d:cd:f2:ef:2e:e2:bf: 44:4c:2b:98:34:7b:fe:7e:8b:3f:29:46:71:94:7d: 36:a3:73:c0:ad:43:94:5c:8e:5d:2d:e3:a6:b5:66: 8a:ef:3a:fe:5e:c2:ca:ff:31:5e:f9:47:98:bc:73: 11:cf:b8:b4:a1:66:9b:22:b7:87:e6:de:75:7d:f5: 11:85:4f:d0:aa:eb:b0:16:b2:91:51:df:77:71:42: 4d:60:42:97:b1:39:ac:f5:af:85:47:71:0e:61:8f: 36:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:94:D2:AD:64:E4:CC:F5:C4:7E:DB:D8:BD:D5:CD:AF:F1:8F:64:00 X509v3 Authority Key Identifier: keyid:70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:7b:51:eb:69:a1:f0:8b:99:61:33:05:1a:24:70:9c:2e:9f: f4:12:cb:d5:37:6c:6f:9f:29:32:88:bd:90:f2:5e:2f:dd:a2: 30:46:0e:41:95:ba:08:26:f3:70:d4:72:d3:cf:f2:a6:6d:d3: 47:55:3d:e2:5c:3a:75:27:13:d4:20:9f:6e:3f:03:66:05:a0: 1e:9f:34:e8:ea:83:10:d1:4d:a5:0d:03:5a:90:43:90:49:5f: b7:df:40:bb:ea:44:b5:f5:e7:d2:39:03:bb:bf:89:51:3f:ed: 49:f4:78:28:1a:24:c7:ad:4b:7d:6a:96:87:37:bd:86:27:21: 2c:ea:f3:07:41:b8:06:57:6c:15:f2:e5:4f:fe:f7:87:c9:2b: b9:eb:22:1d:b7:21:d4:fd:91:4c:7e:1a:d1:fb:30:6b:32:93: 81:c3:31:13:ad:1f:dc:01:56:20:10:82:85:ba:4b:f5:37:a7: a6:23:1a:28:ea:66:1a:db:ee:59:4e:a0:6c:a5:4a:a1:f6:49: 27:d7:90:c3:04:01:ff:7e:9b:78:47:a9:e0:d3:5f:ed:09:09: c3:88:2c:ea:f7:0b:a7:d4:91:1a:d7:f6:32:09:4a:51:9a:c1: 1e:49:1c:33:a1:c9:e9:5b:9b:68:43:52:62:b1:55:3c:28:70: be:d7:0e:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQTMxMTAvBgNVBAUTKDcwODVCNUI0NTQ5QUNEQjVCNkMyNzA0Qzg1QkE3ODg3 NjBGODhBMjcwHhcNMjYwNDA0MTgzNzQyWhcNMjYwNDExMTgzNzQyWjAYMRYwFAYD VQQDEw02OWQxNWE3Ny1jN2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdCTiuX3qxsXQxzhfC7PjtTHyYgI06ua5PjunRNwhof5YEoNFO5JUmmEuOiQ GEz+7yylBJVuq2MNwXjPSDfMuWGhvEWSPHhyosQFjGJ1R+R6+H9nnsHRfWrIEOZp arN6rnNI+gwHMdkLDAAIsMWAJhqqeWo7CKDleLG7llLW6ejl1fdLzHgVn9N+ErjQ P3mTlu/9astnOZsCWTF4GU3N8u8u4r9ETCuYNHv+fos/KUZxlH02o3PArUOUXI5d LeOmtWaK7zr+XsLK/zFe+UeYvHMRz7i0oWabIreH5t51ffURhU/QquuwFrKRUd93 cUJNYEKXsTms9a+FR3EOYY82iwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAeU0q1k 5Mz1xH7b2L3Vza/xj2QAMB8GA1UdIwQYMBaAFHCFtbRUms21tsJwTIW6eIdg+Ion MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJBMy9DMDJEODVERTJC OUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpiVzJ3bkJNaGJwNGgyRDRp aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NJVzF0RlNhemJXMnduQk1oYnA0aDJENGlpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjJBMy9DMDJEODVERTJCOUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpi VzJ3bkJNaGJwNGgyRDRpaWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAy3tR62mh8IuZYTMFGiRwnC6f9BLL1Tdsb58pMoi9kPJeL92iMEYOQZW6CCbz cNRy08/ypm3TR1U94lw6dScT1CCfbj8DZgWgHp806OqDENFNpQ0DWpBDkElft99A u+pEtfXn0jkDu7+JUT/tSfR4KBokx61LfWqWhze9hichLOrzB0G4BldsFfLlT/73 h8kruesiHbch1P2RTH4a0fswazKTgcMxE60f3AFWIBCChbpL9TenpiMaKOpmGtvu WU6gbKVKofZJJ9eQwwQB/36beEep4NNf7QkJw4gs6vcLp9SRGtf2MglKUZrBHkkc M6HJ6VubaENSYrFVPChwvtcOIA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:44:09 2026 by rpki-client