$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft File: iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft (raw, json) Hash identifier: r5V/siFMEDPHHA7lzEzJ7zEsg1MwFO9WK9D+FQDTfj8= Subject key identifier: E2:E2:D4:C1:90:25:D3:B6:7E:0C:9D:CA:5B:53:EA:6A:61:79:AA:C9 Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft Manifest number: 01A0 Signing time: Wed 11 Mar 2026 03:21:28 +0000 Manifest this update: Wed 11 Mar 2026 03:21:28 +0000 Manifest next update: Wed 18 Mar 2026 03:21:28 +0000 Files and hashes: 1: iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl (hash: xHvBbVenJzJeg5ErCsCRZk1kzl9i+zXlTz7fOg68IGg=) 2: D7FEF354562111EFA7B3F00AC4F9AE02.roa (hash: zRLwbdLjJcZ9xIvEJX9pjeEu223B0K+u9rS591OrK1I=) 3: F406C3F26AE311EF82D7860FC4F9AE02.roa (hash: e+A9R6047fz/CtRSSMnfQGJqOvNAoPOsGN6eczRG5bA=) 4: 87662556555511EF88D9F680C4F9AE02.roa (hash: gXURQ3TI01OPFheyWVk20K8W06Uu/H87clLm9KAplj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 03:21:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B, serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Validity Not Before: Mar 11 03:21:28 2026 GMT Not After : Mar 18 03:21:28 2026 GMT Subject: CN=69b0dfb8-7bbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:36:3a:32:5b:57:66:e7:a9:97:31:f6:2a:81: 6b:97:ec:49:06:95:6a:d8:bb:79:09:40:e0:41:82: 9a:ac:2c:ae:dd:05:ee:66:5c:a3:e7:aa:aa:c5:2f: 60:6b:54:5f:5e:53:64:c0:b0:bf:d1:ba:a8:3f:ef: cb:f7:86:ee:5f:45:54:29:b3:a3:9d:37:91:19:b1: 74:a8:96:5c:9c:66:c8:2f:01:11:ab:b7:cc:9e:f4: 27:33:89:a6:f3:ed:0a:b4:9b:1c:a3:12:68:55:c5: cf:7e:26:0c:89:3f:7c:c9:94:d6:eb:fd:09:7d:cf: 7f:6d:06:e9:31:3f:3d:c3:40:02:99:0d:c0:7a:39: 77:97:ce:c0:47:a1:a3:9e:44:22:75:4b:07:2f:c6: 1d:04:05:83:6d:cb:95:73:82:e5:0b:60:5b:4b:de: 48:a1:d4:28:b7:58:0a:9e:07:f8:99:4e:b3:e9:b0: 69:e4:7b:5c:43:62:78:09:d3:f1:8f:e6:b7:25:aa: a6:a8:c4:bd:da:a6:54:70:bd:01:17:f9:9b:8a:2c: d0:98:60:26:62:e1:59:94:e1:2c:55:34:42:13:86: 54:1f:cc:5c:0e:11:35:36:dc:92:28:6f:a3:01:1d: 48:12:d3:0d:cd:bb:1b:d3:5c:7a:fc:93:4d:de:49: ad:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E2:D4:C1:90:25:D3:B6:7E:0C:9D:CA:5B:53:EA:6A:61:79:AA:C9 X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:e0:4b:16:c1:f6:c9:05:c5:aa:c6:f3:f7:ea:1a:b3:76:c0: 8c:dd:db:c7:91:97:46:09:40:86:1c:34:01:f0:8c:a4:f7:cb: aa:cc:5a:5d:1a:a3:5e:f4:d6:80:90:4b:4c:5b:a1:22:a6:e2: 33:01:8e:6f:d1:a9:27:bc:02:af:c2:0d:10:20:59:25:96:be: 75:19:ab:0a:de:95:88:e7:a9:6f:e0:2e:67:e5:f5:4f:98:6c: 2e:36:84:62:d4:21:d5:8e:77:96:b6:57:58:f4:09:3b:5e:88: 5e:5a:89:87:7c:d5:dd:3a:2e:4f:a8:34:78:6f:ff:6a:81:7e: 24:1a:80:a9:e0:cc:7f:81:e0:17:72:d1:ed:77:ed:4d:9e:b5: ac:38:74:86:6e:26:27:30:aa:f5:36:ed:b9:91:56:ca:cc:04: 72:99:ac:b8:f0:2a:f1:9c:f9:4e:94:2a:f8:d0:9d:c7:08:3d: 57:18:60:74:a6:16:48:63:69:15:65:92:5b:c4:fa:63:59:c4: d5:ac:0a:fa:d9:c4:8e:02:87:a9:40:0c:97:da:e9:f1:d1:ff: f3:e6:7e:4c:35:55:66:5d:79:83:52:bb:05:d6:fb:79:d2:bf: 5e:da:d6:04:2c:0f:a5:b1:15:50:1d:ab:49:07:95:cb:a2:a3: c0:f1:08:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGN0IxMTAvBgNVBAUTKDg5MEIxREVGRTg4RDU5MTk2QkNDN0I2NTI2OEM2MkU4 NkU1NEQ0NkQwHhcNMjYwMzExMDMyMTI4WhcNMjYwMzE4MDMyMTI4WjAYMRYwFAYD VQQDEw02OWIwZGZiOC03YmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDY6MltXZueplzH2KoFrl+xJBpVq2Lt5CUDgQYKarCyu3QXuZlyj56qqxS9g a1RfXlNkwLC/0bqoP+/L94buX0VUKbOjnTeRGbF0qJZcnGbILwERq7fMnvQnM4mm 8+0KtJscoxJoVcXPfiYMiT98yZTW6/0Jfc9/bQbpMT89w0ACmQ3Aejl3l87AR6Gj nkQidUsHL8YdBAWDbcuVc4LlC2BbS95IodQot1gKngf4mU6z6bBp5HtcQ2J4CdPx j+a3JaqmqMS92qZUcL0BF/mbiizQmGAmYuFZlOEsVTRCE4ZUH8xcDhE1NtySKG+j AR1IEtMNzbsb01x6/JNN3kmtvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOLi1MGQ JdO2fgydyltT6mphearJMB8GA1UdIwQYMBaAFIkLHe/ojVkZa8x7ZSaMYuhuVNRt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY3Qi9BMTMxQjM5NEJC MzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldSbHJ6SHRsSm94aTZHNVUx RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY3Qi9BMTMxQjM5NEJCMzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldS bHJ6SHRsSm94aTZHNVUxRzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnOBLFsH2yQXFqsbz9+oas3bAjN3bx5GXRglAhhw0AfCMpPfLqsxaXRqjXvTW gJBLTFuhIqbiMwGOb9GpJ7wCr8INECBZJZa+dRmrCt6ViOepb+AuZ+X1T5hsLjaE YtQh1Y53lrZXWPQJO16IXlqJh3zV3TouT6g0eG//aoF+JBqAqeDMf4HgF3LR7Xft TZ61rDh0hm4mJzCq9TbtuZFWyswEcpmsuPAq8Zz5TpQq+NCdxwg9VxhgdKYWSGNp FWWSW8T6Y1nE1awK+tnEjgKHqUAMl9rp8dH/8+Z+TDVVZl15g1K7Bdb7edK/XtrW BCwPpbEVUB2rSQeVy6KjwPEIbw== -----END CERTIFICATE-----Generated at Fri Mar 13 02:42:47 2026 by rpki-client