$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft File: IaR__8gaEzNcB7kmBaLd_RgHoUw.mft (raw, json) Hash identifier: eTXxrLKkdyRw2aiqhVtqWw3CQJpG+q3Pj1IqHH+peuc= Subject key identifier: 86:AA:5D:C3:90:3D:A3:63:41:CC:BB:AF:94:AD:6F:44:DD:75:BA:3A Authority key identifier: 21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C Certificate issuer: /CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Certificate serial: 0BA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft Manifest number: 0B90 Signing time: Sat 04 Apr 2026 18:56:41 +0000 Manifest this update: Sat 04 Apr 2026 18:56:40 +0000 Manifest next update: Sat 11 Apr 2026 18:56:40 +0000 Files and hashes: 1: IaR__8gaEzNcB7kmBaLd_RgHoUw.crl (hash: 5QQs5eLW37gnZXf1q+yWHE/mwZcYr3nthABmPqTh07Y=) 2: A558194E801F11EFB86B2647C4F9AE02.roa (hash: t9NapK/6qJjRf58S65SJlIEwaZxa09mw/H0Mw5wLnc0=) 3: CDEFCF14801F11EF99206C47C4F9AE02.roa (hash: KbTYxfFy1GT8pB5c2e56lPcyBgZokB9iBVqKo/PqazE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:56:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2980 (0xba4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF905, serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Validity Not Before: Apr 4 18:56:40 2026 GMT Not After : Apr 11 18:56:40 2026 GMT Subject: CN=69d15ee8-279b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d6:bb:f0:ad:04:70:85:aa:cc:d3:dc:79:cd: 52:3a:40:4a:cd:eb:e1:9f:04:20:e9:6d:00:9c:70: bb:33:6a:0b:e5:9f:56:34:74:dd:e2:0a:3b:51:4d: 56:a8:cb:12:a2:b9:72:32:4c:e6:20:26:0e:06:05: 58:7e:44:1b:0a:e9:8b:bb:04:c9:1d:74:e9:47:b9: ab:52:e8:57:aa:15:ac:be:6a:fc:1b:5a:f7:50:3a: 04:49:2b:7f:10:05:c5:e5:83:e4:ab:30:ef:15:23: 16:ca:09:2d:52:78:bd:8a:74:03:6d:75:98:51:59: d2:59:80:2d:b7:bd:33:32:ef:04:29:8f:1b:4c:8a: 81:b7:6e:0d:f3:ac:c7:62:29:c0:d8:99:e0:40:99: cd:65:18:3f:e6:db:d9:53:28:23:fc:1f:82:40:72: a2:13:8b:0b:d9:97:85:1b:11:ce:02:f9:72:ab:68: 0e:c3:0a:37:6d:9b:fe:4a:2d:a4:aa:a0:76:ef:d0: 85:76:a4:56:35:97:4f:6b:21:b5:19:6b:e0:ec:46: 6f:ec:8a:ec:ba:b5:36:cb:e5:14:6a:e7:6a:f0:e9: f7:ca:ba:53:34:00:0c:f9:a9:cf:07:54:22:e9:b4: ae:f4:b3:36:ad:97:38:bd:ad:f5:e4:1a:74:fc:56: c2:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:AA:5D:C3:90:3D:A3:63:41:CC:BB:AF:94:AD:6F:44:DD:75:BA:3A X509v3 Authority Key Identifier: keyid:21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:1d:97:97:8d:32:da:d9:5b:14:42:92:70:89:17:02:66:e9: f1:e4:c1:82:0f:3c:f3:75:12:96:db:1c:cb:71:94:72:66:16: 4c:28:9e:97:27:0d:ce:58:04:8f:1e:b3:63:8a:cb:da:8e:b4: 2f:2a:3f:f4:83:e2:f0:63:d9:5a:0f:fe:6e:0f:46:42:b5:35: dd:95:94:5d:a3:7c:ab:9b:c7:02:7e:88:80:b2:2d:6a:1c:37: 4d:e8:2d:f3:c6:9a:37:9e:ca:60:f4:30:3b:e1:ad:d7:97:5d: bd:57:2e:c3:e1:60:fa:9b:96:dd:ae:9d:f5:5a:ab:32:01:4b: 2d:bc:73:ca:ca:b2:3d:60:f4:1e:38:68:8f:ca:96:52:98:ed: ba:c7:1c:40:6f:57:d4:1f:b6:74:59:9c:a0:ed:56:56:e3:3d: f7:44:4c:e8:ed:b0:8d:7e:c9:7d:7b:2a:e6:1b:6a:4e:64:b2: 97:f0:0b:ec:75:74:6d:26:cc:78:63:4f:10:5a:54:1a:f8:28: 86:bf:f1:85:90:84:b9:7a:d6:0c:6a:c8:8f:eb:96:53:b5:44: 96:96:46:c2:13:ac:fb:1d:91:aa:42:fc:4e:6c:3e:3b:02:a4: b8:4e:ad:ab:29:0f:a9:cb:67:94:78:94:6f:aa:1a:96:ff:80: 2e:8f:04:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY5MDUxMTAvBgNVBAUTKDIxQTQ3RkZGQzgxQTEzMzM1QzA3QjkyNjA1QTJEREZE MTgwN0ExNEMwHhcNMjYwNDA0MTg1NjQwWhcNMjYwNDExMTg1NjQwWjAYMRYwFAYD VQQDEw02OWQxNWVlOC0yNzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ta78K0EcIWqzNPcec1SOkBKzevhnwQg6W0AnHC7M2oL5Z9WNHTd4go7UU1W qMsSorlyMkzmICYOBgVYfkQbCumLuwTJHXTpR7mrUuhXqhWsvmr8G1r3UDoESSt/ EAXF5YPkqzDvFSMWygktUni9inQDbXWYUVnSWYAtt70zMu8EKY8bTIqBt24N86zH YinA2JngQJnNZRg/5tvZUygj/B+CQHKiE4sL2ZeFGxHOAvlyq2gOwwo3bZv+Si2k qqB279CFdqRWNZdPayG1GWvg7EZv7IrsurU2y+UUaudq8On3yrpTNAAM+anPB1Qi 6bSu9LM2rZc4va315Bp0/FbC9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIaqXcOQ PaNjQcy7r5Stb0Tddbo6MB8GA1UdIwQYMBaAFCGkf//IGhMzXAe5JgWi3f0YB6FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjkwNS8xRkE3QzQ2QzQ4 RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6TmNCN2ttQmFMZF9SZ0hv VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhUl9fOGdhRXpOY0I3a21CYUxkX1JnSG9Vdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjkwNS8xRkE3QzQ2QzQ4RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6 TmNCN2ttQmFMZF9SZ0hvVXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZR2Xl40y2tlbFEKScIkXAmbp8eTBgg8883USltscy3GUcmYWTCielycNzlgE jx6zY4rL2o60Lyo/9IPi8GPZWg/+bg9GQrU13ZWUXaN8q5vHAn6IgLItahw3Tegt 88aaN57KYPQwO+Gt15ddvVcuw+Fg+puW3a6d9VqrMgFLLbxzysqyPWD0Hjhoj8qW UpjtusccQG9X1B+2dFmcoO1WVuM990RM6O2wjX7JfXsq5htqTmSyl/AL7HV0bSbM eGNPEFpUGvgohr/xhZCEuXrWDGrIj+uWU7VElpZGwhOs+x2RqkL8Tmw+OwKkuE6t qykPqctnlHiUb6oalv+ALo8EaQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:32:04 2026 by rpki-client