$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft File: iPsdIcuIPJfCmst31NaIhLOnpgg.mft (raw, json) Hash identifier: oYUlr7KsxaKH29wrLyTK+Oof1UYivWms0OCJhnalQv0= Subject key identifier: F4:3A:9B:0D:45:08:87:E3:61:7E:DF:DE:C0:63:3D:53:E6:BA:2B:39 Authority key identifier: 88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 Certificate issuer: /CN=A91B6A04/serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft Manifest number: 37 Signing time: Tue 03 Mar 2026 08:14:55 +0000 Manifest this update: Tue 03 Mar 2026 08:14:54 +0000 Manifest next update: Tue 10 Mar 2026 08:14:54 +0000 Files and hashes: 1: iPsdIcuIPJfCmst31NaIhLOnpgg.crl (hash: D1duF3PgrdvQO8BY+w8VR+9ZtiW3dxby8u5lNPvi6N0=) 2: 74C3FC2413B911F1B7CEB625083D8C67.roa (hash: P4H5FeCoBASYrayJLn/hEkJQo4s7Z0+nN2dTkoyBEgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 08:14:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6A04, serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608 Validity Not Before: Mar 3 08:14:54 2026 GMT Not After : Mar 10 08:14:54 2026 GMT Subject: CN=69a6987e-4e2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0f:ef:ed:15:eb:1a:25:2b:b5:bc:a5:40:e6: 04:55:05:ea:f9:e8:4f:3a:b1:04:1c:09:7c:8f:c1: a5:ca:a2:3f:40:77:05:78:2e:38:ed:ff:c9:3a:eb: b2:1a:57:6f:ae:5d:cc:6c:6e:33:d5:f2:6f:95:dd: fc:61:49:55:b3:ce:b1:0c:f7:2d:a5:ed:9d:4d:29: d9:a8:74:a0:76:80:84:13:be:b9:ef:6d:37:b5:65: 51:6e:25:c2:c2:1d:7a:db:7e:06:76:47:98:dc:85: e3:6e:3e:42:27:bb:22:e1:26:1d:fc:00:7b:21:ab: 58:b6:6e:d5:14:0f:3c:bd:e9:40:af:35:7b:18:e5: 98:9e:90:6b:04:90:ea:96:ee:cc:d5:25:fc:b7:fa: 4a:ba:fb:df:9b:f1:db:28:4d:55:85:f4:5e:ba:70: 27:0d:4d:55:3e:54:0b:61:f6:76:c0:f4:c5:7a:9a: 63:b6:0b:3b:32:0a:02:99:50:bb:6f:12:04:7e:2e: b8:fb:55:45:e2:d8:cd:49:f5:31:74:86:1d:ef:fa: 01:a3:45:27:00:21:04:c5:c2:b4:32:6f:50:cd:34: 25:db:bb:06:ed:8c:b3:b2:6b:43:2e:de:04:99:af: ff:54:8a:f9:75:32:69:dc:66:77:9e:bf:f1:40:f9: 87:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:3A:9B:0D:45:08:87:E3:61:7E:DF:DE:C0:63:3D:53:E6:BA:2B:39 X509v3 Authority Key Identifier: keyid:88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:ee:db:12:02:63:02:38:5b:6c:c6:00:0e:ba:0d:88:49:27: 6e:ee:f6:58:46:3d:4c:e1:a7:31:e1:a1:cd:c0:02:a6:20:c8: 94:ea:fc:fd:af:84:e2:97:a3:ff:31:6b:3e:b7:18:cd:e5:e2: cb:48:44:95:01:f0:18:94:76:cd:2a:69:26:23:f1:86:d4:18: 4a:9a:6a:cd:ea:85:05:fa:c4:0d:37:23:da:35:07:76:80:88: d1:4b:7f:f2:a6:63:f7:7a:30:45:b5:d3:27:b5:40:c7:02:e1: 89:17:8f:15:0e:c2:2a:4d:3b:e2:2d:9e:d1:30:93:5b:23:0b: 74:e2:e4:fc:d2:dc:49:9d:7b:fe:8f:f9:6b:e8:ec:3a:3e:db: 72:bd:fd:81:5b:c3:e4:3a:50:82:57:52:42:9d:96:7e:8a:a6: 0d:9b:9f:d5:84:97:26:df:01:eb:65:5d:8e:47:70:ca:1e:08: 7c:7c:a7:a2:2f:e5:e8:02:35:88:e4:ef:a7:22:c7:e7:87:f4: 73:cd:85:0f:8f:e4:e4:30:c7:23:db:fc:ef:3a:28:57:4c:34: d2:db:b0:5e:45:92:60:2f:b9:a6:ec:5d:11:7d:bf:11:b1:7b: d5:21:95:95:2c:d6:cd:50:22:f8:13:39:d4:b2:3a:a8:75:bd: bb:88:5d:e6 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NkEwNDExMC8GA1UEBRMoODhGQjFEMjFDQjg4M0M5N0MyOUFDQjc3RDRENjg4ODRC M0E3QTYwODAeFw0yNjAzMDMwODE0NTRaFw0yNjAzMTAwODE0NTRaMBgxFjAUBgNV BAMTDTY5YTY5ODdlLTRlMmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiD+/tFesaJSu1vKVA5gRVBer56E86sQQcCXyPwaXKoj9AdwV4Ljjt/8k667Ia V2+uXcxsbjPV8m+V3fxhSVWzzrEM9y2l7Z1NKdmodKB2gIQTvrnvbTe1ZVFuJcLC HXrbfgZ2R5jcheNuPkInuyLhJh38AHshq1i2btUUDzy96UCvNXsY5ZiekGsEkOqW 7szVJfy3+kq6+9+b8dsoTVWF9F66cCcNTVU+VAth9nbA9MV6mmO2CzsyCgKZULtv EgR+Lrj7VUXi2M1J9TF0hh3v+gGjRScAIQTFwrQyb1DNNCXbuwbtjLOya0Mu3gSZ r/9Uivl1MmncZneev/FA+YejAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU9DqbDUUI h+Nhft/ewGM9U+a6KzkwHwYDVR0jBBgwFoAUiPsdIcuIPJfCmst31NaIhLOnpggw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2QTA0LzI1QzUyNzdFQzlB RTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpmQ21zdDMxTmFJaExPbnBn Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaVBzZEljdUlQSmZDbXN0MzFOYUloTE9ucGdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 QTA0LzI1QzUyNzdFQzlBRTExRjA5OEU5Mjc0NUM0RjlBRTAyL2lQc2RJY3VJUEpm Q21zdDMxTmFJaExPbnBnZy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBO7tsSAmMCOFtsxgAOug2ISSdu7vZYRj1M4acx4aHNwAKmIMiU6vz9r4Til6P/ MWs+txjN5eLLSESVAfAYlHbNKmkmI/GG1BhKmmrN6oUF+sQNNyPaNQd2gIjRS3/y pmP3ejBFtdMntUDHAuGJF48VDsIqTTviLZ7RMJNbIwt04uT80txJnXv+j/lr6Ow6 Pttyvf2BW8PkOlCCV1JCnZZ+iqYNm5/VhJcm3wHrZV2OR3DKHgh8fKeiL+XoAjWI 5O+nIsfnh/RzzYUPj+TkMMcj2/zvOihXTDTS27BeRZJgL7mm7F0Rfb8RsXvVIZWV LNbNUCL4EznUsjqodb27iF3m -----END CERTIFICATE-----Generated at Wed Mar 4 08:38:42 2026 by rpki-client