$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/iQJo_SXHeeNvu4cvYBPzBBX_ot0.mft File: iQJo_SXHeeNvu4cvYBPzBBX_ot0.mft (raw, json) Hash identifier: 1hUX3v34EGGv0YVXlfp8XokJh9ucI6i7JioKBJcAHiM= Subject key identifier: 1B:FD:33:11:C3:BF:42:EC:FC:16:09:83:DE:63:F0:AB:C6:1E:31:F1 Authority key identifier: 89:02:68:FD:25:C7:79:E3:6F:BB:87:2F:60:13:F3:04:15:FF:A2:DD Certificate issuer: /CN=A91D2B9A/serialNumber=890268FD25C779E36FBB872F6013F30415FFA2DD Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJo_SXHeeNvu4cvYBPzBBX_ot0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/iQJo_SXHeeNvu4cvYBPzBBX_ot0.mft Manifest number: 23 Signing time: Sat 07 Mar 2026 08:06:35 +0000 Manifest this update: Sat 07 Mar 2026 08:06:35 +0000 Manifest next update: Sat 14 Mar 2026 08:06:35 +0000 Files and hashes: 1: iQJo_SXHeeNvu4cvYBPzBBX_ot0.crl (hash: x0HJHW5OIj5WaEQ4IJZhexLeKIfPbh9W9NRDaKW9u38=) 2: 75431F44F12311F09E054F8D4F6F56BC.roa (hash: dSpl28NojgoPbGTH9IFDprulOgPwqOMWIzrfbBeiOaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/iQJo_SXHeeNvu4cvYBPzBBX_ot0.crl rsync://rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/iQJo_SXHeeNvu4cvYBPzBBX_ot0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJo_SXHeeNvu4cvYBPzBBX_ot0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 08:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B9A, serialNumber=890268FD25C779E36FBB872F6013F30415FFA2DD Validity Not Before: Mar 7 08:06:35 2026 GMT Not After : Mar 14 08:06:35 2026 GMT Subject: CN=69abdc8b-0516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:de:cf:d2:fb:ae:09:d8:79:4d:94:ed:d2:c3: 59:6e:4d:1e:bf:74:0d:14:d6:8d:de:0b:49:d9:45: 0a:d7:63:b1:ac:94:6b:10:2d:0f:23:09:0c:10:e3: d2:54:c1:a5:b1:6c:10:a1:5e:31:15:28:db:4c:5d: 0c:3b:55:0c:c9:9a:44:42:21:4e:aa:48:12:e1:f7: 7a:71:b6:b2:fe:68:a3:49:95:30:c1:0e:d7:95:28: d0:44:7e:fc:a6:e5:15:0b:fb:42:1f:9c:10:80:36: 31:88:c4:f1:b0:0e:2a:13:a9:4c:39:5e:12:ed:0e: 62:26:a9:96:f3:7e:a7:45:af:f3:1c:a4:47:82:f0: bb:0c:75:a7:e7:79:a2:08:1a:a7:bd:df:df:ba:6a: 04:97:fd:7c:d7:88:ff:11:e0:d3:ce:14:a1:6b:89: cc:5b:ce:c1:ab:07:9c:bf:d3:48:ae:5e:f7:50:d8: e1:1e:e7:45:72:e9:76:cb:b7:e6:25:94:66:c4:22: 63:56:fe:c5:59:4b:18:87:8b:b9:77:0a:89:c4:40: 86:2e:bc:e3:d5:07:87:ea:85:f7:17:87:75:1d:28: 39:9b:77:a8:62:01:38:76:6f:92:3c:c6:dd:a4:b4: 17:41:9a:85:49:cd:d4:1c:08:72:de:f7:13:18:54: 28:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:FD:33:11:C3:BF:42:EC:FC:16:09:83:DE:63:F0:AB:C6:1E:31:F1 X509v3 Authority Key Identifier: keyid:89:02:68:FD:25:C7:79:E3:6F:BB:87:2F:60:13:F3:04:15:FF:A2:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/iQJo_SXHeeNvu4cvYBPzBBX_ot0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJo_SXHeeNvu4cvYBPzBBX_ot0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/iQJo_SXHeeNvu4cvYBPzBBX_ot0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:dc:9f:95:05:b8:02:dc:31:d1:b4:14:87:ef:1d:26:19:18: 6f:3c:8a:bc:f0:90:32:75:af:51:82:6f:af:48:0b:c8:d5:ed: e8:b8:4c:65:e0:b0:52:81:a8:98:d6:cf:2a:ba:b6:1d:2f:30: fd:21:2f:76:85:d7:15:37:4d:57:2b:d7:b5:31:b4:ca:74:43: 21:75:0e:2d:ce:dc:b2:86:41:0a:80:7a:25:a4:76:31:52:11: 2e:b7:a4:df:a2:5f:07:2c:22:40:c0:44:ba:75:0a:a2:a3:42: 8a:01:c4:b5:b5:26:65:ea:77:68:11:da:5c:a9:48:55:a1:25: b1:c8:8e:6f:a2:d7:29:16:78:4f:c5:de:d6:c0:fc:7e:a0:6b: aa:8e:51:dc:8a:8a:76:20:cb:51:b4:92:07:48:55:0b:4d:f2: 74:96:f8:b0:16:f5:f9:c7:58:3c:67:aa:2f:20:77:f9:a6:e0: 9e:76:de:e1:96:72:24:4f:e1:88:58:c2:49:a0:2f:5d:98:94: 1c:43:4d:b9:23:55:61:ea:5e:6f:78:37:49:68:be:1c:37:81: 11:10:8d:1f:b4:95:3a:47:ac:fc:43:8a:0f:6d:b7:79:a7:e6: be:65:67:ad:2c:be:d9:4f:a4:f6:7e:2b:de:b1:ec:d5:ac:39: 12:32:f1:bf -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkI5QTExMC8GA1UEBRMoODkwMjY4RkQyNUM3NzlFMzZGQkI4NzJGNjAxM0YzMDQx NUZGQTJERDAeFw0yNjAzMDcwODA2MzVaFw0yNjAzMTQwODA2MzVaMBgxFjAUBgNV BAMTDTY5YWJkYzhiLTA1MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC53s/S+64J2HlNlO3Sw1luTR6/dA0U1o3eC0nZRQrXY7GslGsQLQ8jCQwQ49JU waWxbBChXjEVKNtMXQw7VQzJmkRCIU6qSBLh93pxtrL+aKNJlTDBDteVKNBEfvym 5RUL+0IfnBCANjGIxPGwDioTqUw5XhLtDmImqZbzfqdFr/McpEeC8LsMdafneaII Gqe939+6agSX/XzXiP8R4NPOFKFricxbzsGrB5y/00iuXvdQ2OEe50Vy6XbLt+Yl lGbEImNW/sVZSxiHi7l3ConEQIYuvOPVB4fqhfcXh3UdKDmbd6hiATh2b5I8xt2k tBdBmoVJzdQcCHLe9xMYVCiDAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUG/0zEcO/ Quz8FgmD3mPwq8YeMfEwHwYDVR0jBBgwFoAUiQJo/SXHeeNvu4cvYBPzBBX/ot0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQjlBLzVFQTM0NjJBRjEy MjExRjBBQzVDREE3RTRFNkY1NkJDL2lRSm9fU1hIZWVOdnU0Y3ZZQlB6QkJYX290 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVFKb19TWEhlZU52dTRjdllCUHpCQlhfb3QwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQy QjlBLzVFQTM0NjJBRjEyMjExRjBBQzVDREE3RTRFNkY1NkJDL2lRSm9fU1hIZWVO dnU0Y3ZZQlB6QkJYX290MC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCB3J+VBbgC3DHRtBSH7x0mGRhvPIq88JAyda9Rgm+vSAvI1e3ouExl4LBSgaiY 1s8qurYdLzD9IS92hdcVN01XK9e1MbTKdEMhdQ4tztyyhkEKgHolpHYxUhEut6Tf ol8HLCJAwES6dQqio0KKAcS1tSZl6ndoEdpcqUhVoSWxyI5votcpFnhPxd7WwPx+ oGuqjlHciop2IMtRtJIHSFULTfJ0lviwFvX5x1g8Z6ovIHf5puCedt7hlnIkT+GI WMJJoC9dmJQcQ025I1Vh6l5veDdJaL4cN4EREI0ftJU6R6z8Q4oPbbd5p+a+ZWet LL7ZT6T2fivesezVrDkSMvG/ -----END CERTIFICATE-----Generated at Sat Mar 7 21:06:39 2026 by rpki-client