$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: uMtWs38eI+Id1c+WY7zAzZJtdIp3p7DeRxFSITzq8Jw= Subject key identifier: 42:C3:C2:B9:1A:5E:EF:A9:59:96:2C:B0:5B:0A:11:D9:8B:7D:35:9E Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 0A6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 0A59 Signing time: Sat 28 Mar 2026 19:33:39 +0000 Manifest this update: Sat 28 Mar 2026 19:33:39 +0000 Manifest next update: Sat 04 Apr 2026 19:33:39 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: 0sgqdx2lleGcOtR+HAQ8vwVb+X/wh+UhAEa5rct0gjI=) 2: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: KvrhkQvnKnpFTYVGWnMJN98DGB3DYDNMGELyZhZWRGk=) 3: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: LPpHOK81C3pNsWyGa2Q2W3gfstRuGd26hh2KRKuaOPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 19:33:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2667 (0xa6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Mar 28 19:33:39 2026 GMT Not After : Apr 4 19:33:39 2026 GMT Subject: CN=69c82d13-8b4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:29:93:b9:32:7f:b4:2d:ad:25:19:5b:a9:b5: 58:1b:0d:32:32:7a:72:b6:f7:b2:a4:fa:27:08:c5: 8a:15:5c:9a:11:9c:b8:11:95:74:ea:5a:d0:ed:99: 59:34:dc:5a:22:9c:de:61:86:62:10:25:f0:cd:e8: f8:03:37:be:ea:0d:cf:da:80:82:db:3c:e1:01:3f: 71:21:0f:34:5b:d4:e3:7d:9a:b1:2e:93:fa:d0:7a: ff:b0:65:98:bc:82:39:60:fd:57:21:b6:dc:e9:e6: 1c:49:91:07:3b:80:7b:40:06:26:d2:56:82:77:f6: d1:05:90:48:de:54:c5:3c:20:4f:fd:53:32:13:09: 19:66:90:44:4d:14:a8:ff:29:9d:cb:12:83:b3:ae: 19:45:67:89:99:87:9a:6d:5f:fe:ab:25:a1:c7:b3: a8:7c:c9:3f:a1:f9:db:f2:c7:11:6d:6b:99:70:31: 61:19:c3:0e:c8:f4:c1:d1:67:79:b1:a8:57:05:90: 47:e6:d5:85:d2:f4:3b:cc:b1:66:18:ec:5b:fc:ac: aa:a6:07:74:20:e6:de:8d:0b:c3:85:b5:cd:53:0c: 65:36:07:b2:bb:e0:59:96:d6:28:28:86:cf:b8:73: 48:95:6b:7a:2e:2d:c2:dd:3d:12:da:9e:b8:64:25: 56:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:C3:C2:B9:1A:5E:EF:A9:59:96:2C:B0:5B:0A:11:D9:8B:7D:35:9E X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:71:ee:78:2c:e2:99:a5:4b:6d:58:72:00:95:ff:7d:9f:c0: 53:43:8a:80:6b:4b:e7:5b:4b:ff:ec:2e:7a:94:d5:04:c7:ab: 42:b5:64:57:d8:ae:a6:41:de:2e:c9:c1:2d:5a:ab:fa:52:17: c9:c1:3f:51:bb:04:35:14:de:ff:b6:0f:98:22:3c:28:b5:50: ba:3a:70:e4:e6:7e:91:b1:6f:65:4b:24:95:45:23:75:df:7c: 40:7a:e3:6d:fd:f6:35:a1:50:5c:4f:c9:46:da:03:82:c1:aa: 0c:aa:66:aa:43:da:43:2f:b7:d1:be:11:a3:14:c6:be:c8:07: f9:6b:95:41:3a:fb:de:aa:df:df:5a:87:52:e8:8f:9e:81:85: 24:5c:e8:51:9c:b1:09:ce:94:53:ef:80:f4:09:86:62:6d:55: a1:4b:37:24:0a:4c:7d:81:46:a1:d3:8b:19:cf:a0:aa:f8:d1: 14:45:44:af:fb:19:e5:7b:b3:d1:10:32:b3:74:d5:94:23:46: 7b:22:75:93:88:be:40:9b:1a:ee:8b:b1:87:d5:66:80:3c:8d: 42:26:46:fb:43:48:51:17:de:80:57:52:37:c9:32:53:34:d2: c8:dc:09:f4:39:e6:8d:15:2a:f7:03:ce:aa:0c:cf:d4:d1:a3: 29:c3:10:1d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjYwMzI4MTkzMzM5WhcNMjYwNDA0MTkzMzM5WjAYMRYwFAYD VQQDEw02OWM4MmQxMy04YjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuimTuTJ/tC2tJRlbqbVYGw0yMnpytveypPonCMWKFVyaEZy4EZV06lrQ7ZlZ NNxaIpzeYYZiECXwzej4Aze+6g3P2oCC2zzhAT9xIQ80W9TjfZqxLpP60Hr/sGWY vII5YP1XIbbc6eYcSZEHO4B7QAYm0laCd/bRBZBI3lTFPCBP/VMyEwkZZpBETRSo /ymdyxKDs64ZRWeJmYeabV/+qyWhx7OofMk/ofnb8scRbWuZcDFhGcMOyPTB0Wd5 sahXBZBH5tWF0vQ7zLFmGOxb/Kyqpgd0IObejQvDhbXNUwxlNgeyu+BZltYoKIbP uHNIlWt6Li3C3T0S2p64ZCVW0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFELDwrka Xu+pWZYssFsKEdmLfTWeMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzXHueCzimaVLbVhyAJX/fZ/AU0OKgGtL51tL/+wuepTVBMerQrVkV9iupkHe LsnBLVqr+lIXycE/UbsENRTe/7YPmCI8KLVQujpw5OZ+kbFvZUsklUUjdd98QHrj bf32NaFQXE/JRtoDgsGqDKpmqkPaQy+30b4RoxTGvsgH+WuVQTr73qrf31qHUuiP noGFJFzoUZyxCc6UU++A9AmGYm1VoUs3JApMfYFGodOLGc+gqvjRFEVEr/sZ5Xuz 0RAys3TVlCNGeyJ1k4i+QJsa7ouxh9VmgDyNQiZG+0NIURfegFdSN8kyUzTSyNwJ 9DnmjRUq9wPOqgzP1NGjKcMQHQ== -----END CERTIFICATE-----Generated at Sun Mar 29 22:21:52 2026 by rpki-client