$ rpki-client -vvf rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft File: -iKAHFKuKl_EkbfL6-aO_KLI0dk.mft (raw, json) Hash identifier: 018DaQ7+jzhXk/ep9QxOIzU9KCV634ALsQ8HPPnQxFY= Subject key identifier: 76:13:EF:0D:D1:2D:DB:FD:8B:96:79:C1:F1:3A:D9:D7:0C:4B:3F:19 Authority key identifier: FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 Certificate issuer: /CN=A91D837B/serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft Manifest number: F2 Signing time: Sat 21 Mar 2026 05:22:17 +0000 Manifest this update: Sat 21 Mar 2026 05:22:16 +0000 Manifest next update: Sat 28 Mar 2026 05:22:16 +0000 Files and hashes: 1: -iKAHFKuKl_EkbfL6-aO_KLI0dk.crl (hash: 7+7hOYBFhc1zrAB9jytGIY440ecV0txAQExDk8CuErE=) 2: 8F7DFE66C96E11EF98B64E15C4F9AE02.roa (hash: 0O2Y56VE28BDUyW/y7K+tvSZF089IWlNTSJ1ih9VrPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 05:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D837B, serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Validity Not Before: Mar 21 05:22:16 2026 GMT Not After : Mar 28 05:22:16 2026 GMT Subject: CN=69be2b09-8d08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:02:ec:aa:19:e4:80:b5:f8:df:ce:a8:96:b6: da:b9:b9:37:23:e8:c7:17:ab:20:3d:b5:8f:51:e1: c9:bc:70:4b:a6:9a:c9:62:3f:6a:65:ea:96:5b:5d: 84:40:c5:83:a6:e0:61:97:09:09:f6:e1:e2:f2:d6: 5b:c3:f9:89:40:de:0b:42:bc:fa:dc:ba:44:57:c7: 25:ba:3a:f0:50:38:c8:81:c8:8c:8b:c1:c5:85:55: 9b:bb:b2:84:64:c4:14:c0:2d:67:d5:ac:73:3b:2a: 0f:72:fa:55:bb:45:5c:0f:fa:a7:71:08:c1:b0:84: 23:03:ce:fb:67:aa:a5:b0:48:f6:10:8c:2a:4f:3e: 53:cd:9b:53:79:57:28:50:8a:19:89:3b:8e:49:96: 29:56:07:e0:9f:77:37:b5:03:17:64:85:bd:ad:6b: 81:81:0e:62:96:23:8a:a2:81:4b:74:57:4c:77:88: a3:af:9f:98:00:3c:ce:fb:72:90:a3:85:a3:d3:dc: 7f:6a:0d:fa:77:62:a2:af:d6:9a:84:51:5e:71:15: 2b:bd:25:8e:37:e6:0e:66:8f:9c:9c:ae:d7:2c:b1: 28:a3:e3:47:24:33:eb:18:73:9d:ea:80:12:3c:99: 4c:37:4c:0b:76:ca:29:ba:89:19:de:d1:4f:f9:07: 56:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:13:EF:0D:D1:2D:DB:FD:8B:96:79:C1:F1:3A:D9:D7:0C:4B:3F:19 X509v3 Authority Key Identifier: keyid:FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:6c:38:8b:cd:b9:03:f4:cc:4c:b1:6b:55:66:60:b6:82:a8: 51:d0:1b:94:bc:c6:6b:62:26:91:b5:f8:4c:5b:cb:8d:e5:3d: 9b:cc:d9:a0:5b:87:14:9f:46:39:d0:1f:57:4c:73:7b:95:61: 78:7f:b5:4d:b5:ce:83:dc:6e:87:91:e7:d6:d0:eb:4f:17:9b: 16:2f:69:52:bf:73:06:a9:58:f7:4a:ae:b8:b2:7d:eb:87:e9: 4b:08:ee:d4:56:40:b1:9b:8d:6d:07:cc:7a:d0:b3:72:cf:bb: 1c:68:38:51:7b:9c:8e:05:56:ad:90:e6:62:10:00:9f:0d:8c: 6d:51:04:fa:35:47:4d:4e:21:22:1c:73:f8:6a:b2:f1:5e:84: 95:6b:7a:7d:b5:5a:91:b1:92:86:50:4a:87:2e:45:96:ae:c9: e0:de:9e:01:d9:ec:75:1f:ac:47:d2:ce:ec:e9:8c:c6:f4:a2: b5:73:a0:36:33:5e:3a:65:2a:f4:da:19:f2:12:37:74:c2:b9: 64:ad:33:96:d1:33:c9:24:08:a0:3a:7c:80:82:4b:50:03:4b: 00:fc:8c:54:d3:30:65:da:b1:7f:37:a6:bd:1c:78:6c:a4:74: 22:63:2b:dc:ac:5d:a8:f4:ec:25:66:2d:f3:0f:19:6f:b0:e9: de:81:cc:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzN0IxMTAvBgNVBAUTKEZBMjI4MDFDNTJBRTJBNUZDNDkxQjdDQkVCRTY4RUZD QTJDOEQxRDkwHhcNMjYwMzIxMDUyMjE2WhcNMjYwMzI4MDUyMjE2WjAYMRYwFAYD VQQDEw02OWJlMmIwOS04ZDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ALsqhnkgLX4386olrbaubk3I+jHF6sgPbWPUeHJvHBLpprJYj9qZeqWW12E QMWDpuBhlwkJ9uHi8tZbw/mJQN4LQrz63LpEV8clujrwUDjIgciMi8HFhVWbu7KE ZMQUwC1n1axzOyoPcvpVu0VcD/qncQjBsIQjA877Z6qlsEj2EIwqTz5TzZtTeVco UIoZiTuOSZYpVgfgn3c3tQMXZIW9rWuBgQ5iliOKooFLdFdMd4ijr5+YADzO+3KQ o4Wj09x/ag36d2Kir9aahFFecRUrvSWON+YOZo+cnK7XLLEoo+NHJDPrGHOd6oAS PJlMN0wLdsopuokZ3tFP+QdWhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHYT7w3R Ldv9i5Z5wfE62dcMSz8ZMB8GA1UdIwQYMBaAFPoigBxSripfxJG3y+vmjvyiyNHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODM3Qi8xNThEN0YzQ0I5 OUMxMUVGOTYzOEY3NjlDNEY5QUUwMi8taUtBSEZLdUtsX0VrYmZMNi1hT19LTEkw ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1pS0FIRkt1S2xfRWtiZkw2LWFPX0tMSTBkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODM3Qi8xNThEN0YzQ0I5OUMxMUVGOTYzOEY3NjlDNEY5QUUwMi8taUtBSEZLdUts X0VrYmZMNi1hT19LTEkwZGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAe2w4i825A/TMTLFrVWZgtoKoUdAblLzGa2ImkbX4TFvLjeU9m8zZoFuHFJ9G OdAfV0xze5VheH+1TbXOg9xuh5Hn1tDrTxebFi9pUr9zBqlY90quuLJ964fpSwju 1FZAsZuNbQfMetCzcs+7HGg4UXucjgVWrZDmYhAAnw2MbVEE+jVHTU4hIhxz+Gqy 8V6ElWt6fbVakbGShlBKhy5Flq7J4N6eAdnsdR+sR9LO7OmMxvSitXOgNjNeOmUq 9NoZ8hI3dMK5ZK0zltEzySQIoDp8gIJLUANLAPyMVNMwZdqxfzemvRx4bKR0ImMr 3KxdqPTsJWYt8w8Zb7Dp3oHMkA== -----END CERTIFICATE-----Generated at Sun Mar 22 13:56:57 2026 by rpki-client