$ rpki-client -vvf rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft File: RIvZcaMGqwNjmecW3CIcozj1i1k.mft (raw, json) Hash identifier: Nig5CGZFwPQVJjOKcYIZaL2fyC8U6jbdA2w3izQ3W+s= Subject key identifier: 74:D2:48:59:2F:33:10:37:05:00:70:A0:FB:CE:A1:80:E5:E8:01:ED Authority key identifier: 44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 Certificate issuer: /CN=A91301D5/serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Certificate serial: 15C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft Manifest number: 156A Signing time: Wed 18 Mar 2026 16:39:53 +0000 Manifest this update: Wed 18 Mar 2026 16:39:52 +0000 Manifest next update: Wed 25 Mar 2026 16:39:52 +0000 Files and hashes: 1: RIvZcaMGqwNjmecW3CIcozj1i1k.crl (hash: vRpIK4h2BB2PrnGxB7r82PzLGnNmgxdFvb4xn415x3g=) 2: 7338235CC06011EE882BC34AC4F9AE02.roa (hash: uunzcGKaSPqYnL/UQi/ljisWrhQUZt40iwsEWEtnXRI=) 3: 743770A0C06011EE882BC34AC4F9AE02.roa (hash: GXMJ3iSV7mMNI938z3e/TfdeTTGCTZ/1gTTNfE5Mcdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Mar 2026 16:39:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5568 (0x15c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91301D5, serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Validity Not Before: Mar 18 16:39:52 2026 GMT Not After : Mar 25 16:39:52 2026 GMT Subject: CN=69bad558-9925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5b:f1:f5:f6:a3:ac:91:c0:f7:9d:d0:74:a9: 76:2e:bf:fd:53:6c:7d:dd:c5:d9:37:ab:c1:0a:d0: 1f:4d:27:57:29:95:88:12:6e:78:61:e8:86:97:6f: e7:d4:d6:aa:f3:7f:ec:48:23:b6:df:1f:20:b6:61: 98:8b:8b:e7:cd:49:19:38:5a:c0:87:29:58:fc:58: 90:3b:97:8c:ed:d8:7c:7b:59:64:11:1f:db:75:b3: a4:f2:59:49:79:05:e3:a4:ca:9c:6a:2a:44:6c:3c: 79:68:81:37:d0:be:74:28:13:f6:30:66:59:a6:ac: 31:d3:de:c7:38:5c:31:9f:32:af:45:98:2c:a9:74: 1c:43:df:7b:a5:95:d2:59:1f:f4:79:d3:14:9a:35: 44:e2:79:fe:43:1c:03:3b:5a:4e:33:ab:26:72:a2: 76:78:fe:f0:58:ba:bd:fd:34:d3:06:01:8c:09:5b: bb:49:64:82:36:0c:60:4b:90:00:76:6d:92:67:24: 37:f6:64:79:68:0e:32:70:27:4a:67:05:b5:52:e1: ef:2a:6e:f3:77:de:bb:00:67:b5:b0:83:7d:2a:4f: d9:f9:21:c0:c2:62:62:f8:bd:d9:13:75:39:3c:cc: f3:72:f7:e5:69:29:51:0d:07:a5:f0:ad:6c:bd:85: d5:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:D2:48:59:2F:33:10:37:05:00:70:A0:FB:CE:A1:80:E5:E8:01:ED X509v3 Authority Key Identifier: keyid:44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:13:14:16:f6:67:bc:76:be:c0:2b:6d:54:a2:8d:08:86:df: c4:fd:7e:63:cd:cc:39:f6:88:a6:8e:d4:c7:74:ac:83:c9:01: b1:49:0c:7c:07:ab:11:93:69:76:f9:65:53:15:43:60:98:91: 19:f5:0d:67:5e:4f:8d:c6:77:4d:29:b7:c2:15:9c:33:40:7f: 2b:3d:52:aa:9b:8b:bf:ea:44:8c:b3:6f:6d:4d:3a:8f:e4:cb: 97:66:28:41:62:66:c1:e5:a8:fc:55:71:68:c1:23:72:bc:1d: 09:8e:83:b0:5e:54:1a:0e:57:cb:59:f2:6e:22:17:8d:28:ff: 11:95:98:a8:c7:f8:f3:f8:a7:21:de:09:fa:d3:d6:93:e4:df: e9:79:dd:f8:9a:12:8d:a3:35:57:3e:af:3e:93:3c:54:49:99: da:fb:bf:ff:a2:8f:ab:70:31:9d:54:41:bd:05:e2:3e:13:cc: d7:7c:59:50:a2:83:ab:a2:66:e1:79:e9:9b:f8:7c:10:22:7b: 22:62:d5:16:b4:36:b1:b9:d3:e5:ae:d4:31:00:88:0b:e3:bc: 1d:89:97:ec:64:18:62:97:7e:08:1b:2e:04:2b:7d:3c:db:59: 51:07:e6:7a:d4:e1:08:cb:87:fd:b6:98:d2:19:01:8c:0e:a3: 36:80:fb:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxRDUxMTAvBgNVBAUTKDQ0OEJEOTcxQTMwNkFCMDM2Mzk5RTcxNkRDMjIxQ0Ez MzhGNThCNTkwHhcNMjYwMzE4MTYzOTUyWhcNMjYwMzI1MTYzOTUyWjAYMRYwFAYD VQQDEw02OWJhZDU1OC05OTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFvx9fajrJHA953QdKl2Lr/9U2x93cXZN6vBCtAfTSdXKZWIEm54YeiGl2/n 1Naq83/sSCO23x8gtmGYi4vnzUkZOFrAhylY/FiQO5eM7dh8e1lkER/bdbOk8llJ eQXjpMqcaipEbDx5aIE30L50KBP2MGZZpqwx097HOFwxnzKvRZgsqXQcQ997pZXS WR/0edMUmjVE4nn+QxwDO1pOM6smcqJ2eP7wWLq9/TTTBgGMCVu7SWSCNgxgS5AA dm2SZyQ39mR5aA4ycCdKZwW1UuHvKm7zd967AGe1sIN9Kk/Z+SHAwmJi+L3ZE3U5 PMzzcvflaSlRDQel8K1svYXVpwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHTSSFkv MxA3BQBwoPvOoYDl6AHtMB8GA1UdIwQYMBaAFESL2XGjBqsDY5nnFtwiHKM49YtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDFENS9ENEJFMDBENDYz RTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3TmptZWNXM0NJY296ajFp MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JJdlpjYU1HcXdOam1lY1czQ0ljb3pqMWkxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDFENS9ENEJFMDBENDYzRTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3 TmptZWNXM0NJY296ajFpMWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3hMUFvZnvHa+wCttVKKNCIbfxP1+Y83MOfaIpo7Ux3Ssg8kBsUkMfAerEZNp dvllUxVDYJiRGfUNZ15PjcZ3TSm3whWcM0B/Kz1SqpuLv+pEjLNvbU06j+TLl2Yo QWJmweWo/FVxaMEjcrwdCY6DsF5UGg5Xy1nybiIXjSj/EZWYqMf48/inId4J+tPW k+Tf6Xnd+JoSjaM1Vz6vPpM8VEmZ2vu//6KPq3AxnVRBvQXiPhPM13xZUKKDq6Jm 4Xnpm/h8ECJ7ImLVFrQ2sbnT5a7UMQCIC+O8HYmX7GQYYpd+CBsuBCt9PNtZUQfm etThCMuH/baY0hkBjA6jNoD7qg== -----END CERTIFICATE-----Generated at Thu Mar 19 15:48:04 2026 by rpki-client