$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: P2ZnWThfn19CzpOwIxNCaGKFuGpSObIeGpLpE03LGH4= Subject key identifier: 55:3C:D8:53:B2:DC:11:9C:A7:32:4D:6F:7B:A6:66:6C:1F:4E:CE:BA Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 1007 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0FCA Signing time: Sat 04 Apr 2026 17:25:14 +0000 Manifest this update: Sat 04 Apr 2026 17:25:14 +0000 Manifest next update: Sat 11 Apr 2026 17:25:14 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: S+8RMO4Pt6E/CcbnujGKhBpG1mTuSns0QACiCZCMg90=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: thWs/wjgTce2OH8uRbqin2U/9yRfT0t37bg0yz1umNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:25:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4103 (0x1007) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: Apr 4 17:25:14 2026 GMT Not After : Apr 11 17:25:14 2026 GMT Subject: CN=69d1497a-ac80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:f4:62:02:be:86:11:3f:c4:1e:11:26:97:cd: 2e:6c:62:35:52:f0:59:9b:15:88:a8:89:ee:4c:d0: 7c:66:20:cb:2c:5d:46:87:96:2f:d4:fd:ee:af:14: 65:05:4e:52:51:6f:ee:83:cb:56:5d:81:2b:f3:4c: ac:c0:2f:be:42:6e:8f:47:36:7a:1c:3a:4d:73:8c: 22:db:d9:2f:a7:ea:6e:6a:9c:5f:d3:9b:79:8d:26: 8a:cd:c3:d1:d6:47:68:bd:6d:18:04:cd:0d:d6:2f: fa:5e:11:bf:02:fc:3e:c2:93:34:d5:f6:13:c9:4f: 5d:94:23:9a:4e:a3:75:b0:34:9f:d0:75:f2:e7:7d: 9f:f9:aa:de:61:02:41:b4:9c:7a:5e:87:11:60:06: fa:70:55:55:c7:d8:b0:b2:d3:35:5b:eb:d8:7b:10: 17:94:f1:c0:3b:59:dc:c6:20:8c:48:66:c7:c2:cd: 0b:e2:00:2d:32:93:fe:27:38:18:db:7b:9f:28:bd: cd:91:05:18:12:82:81:96:45:63:06:47:74:17:ab: a4:a1:6a:a3:da:e1:5b:e2:92:ef:41:77:86:42:14: dc:05:c2:e3:50:e1:09:f5:bf:8f:ba:9e:62:3a:a4: 20:66:80:b1:80:73:95:6b:c1:49:a3:af:99:e6:c4: 96:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:3C:D8:53:B2:DC:11:9C:A7:32:4D:6F:7B:A6:66:6C:1F:4E:CE:BA X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:4f:6a:c7:b8:93:59:f9:d5:9a:ce:05:f1:34:a2:0c:66:6d: 91:0c:7a:40:02:9d:94:f6:02:10:1d:2d:52:f3:e1:6d:10:ed: cc:70:86:6d:c7:44:bd:31:a7:10:b7:3d:97:68:21:9a:bb:41: 02:e6:a3:d8:cc:5c:bb:f8:16:83:9b:2c:f1:10:d0:e7:de:6f: e9:a7:50:c6:70:a4:93:34:b1:6f:11:af:a6:d6:c6:cd:6f:cf: 27:e7:f3:83:49:e6:60:95:04:b6:dc:30:b8:f6:51:c9:84:8e: c7:ea:66:a8:f8:73:85:c4:72:15:6a:82:5e:7b:40:29:b6:e5: 28:12:58:af:3b:e0:fa:74:0d:da:15:b2:ad:5f:3e:92:7f:e5: 06:61:4a:d2:47:31:99:50:51:8c:95:60:7e:4d:37:b4:63:72: ca:da:2e:6b:25:47:74:41:b1:c2:08:b9:d0:4f:c3:87:f7:2e: 53:ad:c4:85:3a:a1:1a:d6:27:94:b6:3d:54:68:0a:80:46:c4: 73:e1:e7:d7:36:2c:0e:e5:ca:3a:6a:85:ab:f9:34:26:21:1b: 8a:ae:28:d3:8c:3b:7f:c2:55:58:e0:b1:62:e3:c6:3e:bc:fe: ad:58:51:95:6b:ed:28:2c:6e:94:32:08:53:a8:c6:db:71:86: ef:3f:5c:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjYwNDA0MTcyNTE0WhcNMjYwNDExMTcyNTE0WjAYMRYwFAYD VQQDEw02OWQxNDk3YS1hYzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhvRiAr6GET/EHhEml80ubGI1UvBZmxWIqInuTNB8ZiDLLF1Gh5Yv1P3urxRl BU5SUW/ug8tWXYEr80yswC++Qm6PRzZ6HDpNc4wi29kvp+puapxf05t5jSaKzcPR 1kdovW0YBM0N1i/6XhG/Avw+wpM01fYTyU9dlCOaTqN1sDSf0HXy532f+areYQJB tJx6XocRYAb6cFVVx9iwstM1W+vYexAXlPHAO1ncxiCMSGbHws0L4gAtMpP+JzgY 23ufKL3NkQUYEoKBlkVjBkd0F6ukoWqj2uFb4pLvQXeGQhTcBcLjUOEJ9b+Pup5i OqQgZoCxgHOVa8FJo6+Z5sSWkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFU82FOy 3BGcpzJNb3umZmwfTs66MB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHE9qx7iTWfnVms4F8TSiDGZtkQx6QAKdlPYCEB0tUvPhbRDtzHCGbcdEvTGn ELc9l2ghmrtBAuaj2Mxcu/gWg5ss8RDQ595v6adQxnCkkzSxbxGvptbGzW/PJ+fz g0nmYJUEttwwuPZRyYSOx+pmqPhzhcRyFWqCXntAKbblKBJYrzvg+nQN2hWyrV8+ kn/lBmFK0kcxmVBRjJVgfk03tGNyytouayVHdEGxwgi50E/Dh/cuU63EhTqhGtYn lLY9VGgKgEbEc+Hn1zYsDuXKOmqFq/k0JiEbiq4o04w7f8JVWOCxYuPGPrz+rVhR lWvtKCxulDIIU6jG23GG7z9c0A== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:10 2026 by rpki-client