$ rpki-client -vvf rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft File: IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft (raw, json) Hash identifier: hYV3hIG2RF3lRcXL3tApRd78aJNl/wflMemMgCdKmNA= Subject key identifier: 58:24:EA:3E:CC:A5:B2:E6:CD:6B:EC:37:10:01:D8:A4:70:99:B5:7A Authority key identifier: 21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 Certificate issuer: /CN=A91C53FD/serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft Manifest number: 0170 Signing time: Sun 05 Apr 2026 04:12:06 +0000 Manifest this update: Sun 05 Apr 2026 04:12:06 +0000 Manifest next update: Sun 12 Apr 2026 04:12:06 +0000 Files and hashes: 1: IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl (hash: KJ9AU/mur/Tk7CM9VA2T5R3icNIhbE1k+Oy6cOCIlac=) 2: B15E8BECFF3211EEA8607454C4F9AE02.roa (hash: Y5fEICLeeOhc+g47DjMlbbzmzMJMpxb31hRmWJOjwFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:12:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C53FD, serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Validity Not Before: Apr 5 04:12:06 2026 GMT Not After : Apr 12 04:12:06 2026 GMT Subject: CN=69d1e116-6ab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:86:83:35:38:09:bd:09:5d:4d:1c:56:d5:6a: 7b:81:c6:a7:a0:70:ca:c5:8c:f0:ff:86:e0:ff:1c: 90:3a:51:72:e7:52:1d:2a:3d:ab:a9:d6:23:5b:57: 48:c0:f7:5d:d7:65:3a:47:00:24:7e:72:ab:74:29: 47:95:4b:94:1d:bd:b2:26:6a:f4:6d:17:82:99:a9: e5:5d:a0:78:35:f1:60:4b:a0:e2:c4:9f:32:f3:e6: 64:84:09:ed:38:a3:9b:16:fc:44:e2:94:c0:dd:b9: a5:06:2c:bd:09:95:6b:a5:b5:cd:08:15:d0:0c:d2: 62:54:2e:90:72:6d:70:ff:1d:a3:c0:9a:ff:93:d8: dd:d0:13:69:b4:d4:ee:95:5e:fb:7c:97:14:fa:05: 82:de:c8:04:4b:4c:24:2e:9f:4d:c8:19:29:a7:20: 19:78:ef:0b:78:8d:6f:50:9f:64:ac:e2:de:2c:8e: 5b:e8:40:2d:be:bc:12:b6:c8:3b:22:e7:4e:2e:65: be:83:9f:2a:3c:22:98:2b:15:a0:6d:27:85:15:13: 16:aa:a5:bd:4b:d8:c1:4a:b0:56:47:6a:d8:e7:bb: 9d:1e:7d:47:cf:cc:95:7e:c5:1e:db:1b:51:f7:3b: d5:d8:08:9c:15:06:19:3d:35:7b:a5:63:c5:36:b9: fb:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:24:EA:3E:CC:A5:B2:E6:CD:6B:EC:37:10:01:D8:A4:70:99:B5:7A X509v3 Authority Key Identifier: keyid:21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:ac:c1:0f:1f:bb:35:f7:28:c8:12:d3:c4:e1:03:da:c2:54: ab:28:9c:21:90:57:17:ca:4a:e2:05:da:b8:26:eb:69:22:a8: 17:81:71:89:45:e5:c2:85:45:96:a6:ca:4b:2a:7e:d0:23:51: 8a:18:76:e8:a2:7b:08:21:06:1b:47:5c:0e:42:e6:74:ae:fe: 81:02:47:e4:3c:b4:59:e7:c8:26:a7:93:59:d0:62:e1:5a:23: e7:6d:1e:73:06:7f:cd:13:fc:03:1c:3e:5e:58:97:2b:76:bf: 9f:e7:f8:b9:ba:52:f7:0b:11:d7:45:e1:a9:32:29:1b:4b:07: c7:bf:27:8c:46:61:42:a4:8e:7b:6d:a5:94:e9:c4:65:83:1d: 0c:de:3c:7f:6c:09:f7:30:7b:68:a2:2e:53:bb:9d:c0:7c:5d: e3:57:d5:3c:00:a7:22:d9:3c:6d:f3:69:52:d4:d6:10:ce:5f: 3e:ba:52:de:ee:0d:db:e2:37:06:d4:76:98:d2:86:e0:09:c1: cc:4a:84:c8:4d:d2:f4:24:07:5d:a0:a8:c8:d6:34:1d:11:6b: e6:ee:5d:ec:70:92:0a:33:b9:4d:23:7b:8f:53:05:e1:b5:de: 4f:b9:5e:c4:54:30:a2:8e:a1:58:e3:3a:d6:9a:d1:97:59:85: 61:de:4b:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzRkQxMTAvBgNVBAUTKDIxOTM0MTk4RTgzMzEwNjFEMjc1QjhDRkM3OTQ1OEQz MkZBQkQ2QzkwHhcNMjYwNDA1MDQxMjA2WhcNMjYwNDEyMDQxMjA2WjAYMRYwFAYD VQQDEw02OWQxZTExNi02YWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4aDNTgJvQldTRxW1Wp7gcanoHDKxYzw/4bg/xyQOlFy51IdKj2rqdYjW1dI wPdd12U6RwAkfnKrdClHlUuUHb2yJmr0bReCmanlXaB4NfFgS6DixJ8y8+ZkhAnt OKObFvxE4pTA3bmlBiy9CZVrpbXNCBXQDNJiVC6Qcm1w/x2jwJr/k9jd0BNptNTu lV77fJcU+gWC3sgES0wkLp9NyBkppyAZeO8LeI1vUJ9krOLeLI5b6EAtvrwStsg7 IudOLmW+g58qPCKYKxWgbSeFFRMWqqW9S9jBSrBWR2rY57udHn1Hz8yVfsUe2xtR 9zvV2AicFQYZPTV7pWPFNrn7mQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFgk6j7M pbLmzWvsNxAB2KRwmbV6MB8GA1UdIwQYMBaAFCGTQZjoMxBh0nW4z8eUWNMvq9bJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTNGRC82ODhFNTdFRUZG MzIxMUVFQTU1RDhFNTNDNEY5QUUwMi9JWk5CbU9nekVHSFNkYmpQeDVSWTB5LXIx c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laTkJtT2d6RUdIU2RialB4NVJZMHktcjFzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTNGRC82ODhFNTdFRUZGMzIxMUVFQTU1RDhFNTNDNEY5QUUwMi9JWk5CbU9nekVH SFNkYmpQeDVSWTB5LXIxc2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc6zBDx+7NfcoyBLTxOED2sJUqyicIZBXF8pK4gXauCbraSKoF4FxiUXlwoVF lqbKSyp+0CNRihh26KJ7CCEGG0dcDkLmdK7+gQJH5Dy0WefIJqeTWdBi4Voj520e cwZ/zRP8Axw+XliXK3a/n+f4ubpS9wsR10XhqTIpG0sHx78njEZhQqSOe22llOnE ZYMdDN48f2wJ9zB7aKIuU7udwHxd41fVPACnItk8bfNpUtTWEM5fPrpS3u4N2+I3 BtR2mNKG4AnBzEqEyE3S9CQHXaCoyNY0HRFr5u5d7HCSCjO5TSN7j1MF4bXeT7le xFQwoo6hWOM61prRl1mFYd5LCA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:31:49 2026 by rpki-client