$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft File: IAAAWsWhdEBL07_CmUMyPpYGJbk.mft (raw, json) Hash identifier: jo1zgi2LwSPpoXKo9EDIPelIwBZJiw9Ph/0YoHce1sk= Subject key identifier: 69:06:05:2C:15:6E:80:7F:E5:C3:0E:69:C4:82:91:B9:B9:4E:E1:C2 Authority key identifier: 20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 Certificate issuer: /CN=A91DA590/serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Certificate serial: 03EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft Manifest number: 03E3 Signing time: Sun 05 Apr 2026 00:18:52 +0000 Manifest this update: Sun 05 Apr 2026 00:18:51 +0000 Manifest next update: Sun 12 Apr 2026 00:18:51 +0000 Files and hashes: 1: IAAAWsWhdEBL07_CmUMyPpYGJbk.crl (hash: A1JzzAfFy49RjRcLjvC6Y+ciZorfsRiXvrKZQwgaRW0=) 2: 09E46A74C07F11ECB0707F18C4F9AE02.roa (hash: kBFUh+A5t0uG5ToonKBS8JyMqqztNI0BDIiwYVryoTc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:18:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1007 (0x3ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA590, serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Validity Not Before: Apr 5 00:18:51 2026 GMT Not After : Apr 12 00:18:51 2026 GMT Subject: CN=69d1aa6c-04d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:79:19:8b:d2:84:f2:50:26:5e:8e:2b:2a:07: 14:03:ef:3f:70:75:16:71:eb:f3:61:0e:f5:df:b4: 5d:7f:fa:ef:9c:56:e9:be:dd:4a:40:99:9e:59:2d: de:75:4c:34:06:33:df:a8:87:bc:98:9e:ef:45:bc: 23:ce:fd:28:e4:94:45:c2:ab:4e:a2:36:91:07:ba: 0c:82:97:4a:91:9a:d3:fd:48:07:ad:63:6d:be:95: 5c:79:6d:a4:56:3e:12:bd:fb:08:1c:fb:94:17:72: 2d:81:c9:c2:d8:a3:30:88:3f:9e:77:d4:e3:06:31: 8c:e1:97:12:0a:ac:50:ff:05:dc:45:df:c8:71:cf: 0b:23:b7:28:dd:96:e1:49:f7:dc:4a:5c:a0:b0:a8: 57:cb:26:c3:61:be:14:5d:bd:af:50:b5:5c:90:87: 5b:58:44:fb:e9:4c:99:ca:11:53:e3:b8:e6:c9:eb: d0:1e:dc:bd:84:55:e8:a2:03:7d:8e:d1:86:e5:96: dd:90:89:db:0d:25:fb:7b:16:86:8f:b7:e7:0d:19: b6:2c:7d:9b:3d:cd:8a:74:bf:61:19:81:e4:d3:1b: 6b:6f:3e:63:48:0f:a9:82:19:70:84:41:5d:7b:dc: b7:70:8b:96:f6:50:cb:a5:15:84:a3:89:5c:c7:8b: 4f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:06:05:2C:15:6E:80:7F:E5:C3:0E:69:C4:82:91:B9:B9:4E:E1:C2 X509v3 Authority Key Identifier: keyid:20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:db:6c:2e:51:bc:e7:97:a7:e2:88:08:fb:12:a1:69:f2:23: 6a:ce:a2:9d:a8:92:6c:50:95:69:c0:e8:7b:6c:a8:36:b5:16: d1:6f:49:d0:5f:f6:f1:83:0c:43:e5:cf:13:05:e4:be:ee:a4: 35:74:ea:06:16:5a:5a:0d:0a:16:53:64:5e:cb:b4:96:24:08: 36:78:42:d2:23:b3:bc:af:0f:cf:eb:f7:37:5f:75:13:c9:f6: 00:41:53:35:25:ff:e2:bd:69:bd:a2:eb:37:7c:0f:1f:f7:c7: de:62:01:2f:46:b8:56:be:e0:4b:aa:5f:49:34:ad:f9:be:b1: fb:01:af:ef:40:15:bf:5a:52:97:bd:af:e5:fe:6d:2f:d8:20: 5a:f6:3c:57:53:35:cb:57:89:02:96:ed:c8:16:e0:0b:c0:b2: ef:dc:07:9f:a9:17:22:64:b7:29:33:e0:e7:cb:a8:b8:5e:0c: 1b:6f:87:aa:be:d1:7a:f3:66:75:66:40:b7:a1:51:41:5f:d4: 0c:9d:bc:b6:87:33:88:39:68:e7:a0:4f:cb:b5:23:d5:f4:c9: 9e:c1:fc:36:81:ab:bd:78:80:67:9a:ba:a5:e7:fa:06:92:8a: 41:24:58:cc:f2:d1:51:4b:2a:23:39:1a:76:53:c3:24:8c:0e: 0a:1f:a9:a5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1OTAxMTAvBgNVBAUTKDIwMDAwMDVBQzVBMTc0NDA0QkQzQkZDMjk5NDMzMjNF OTYwNjI1QjkwHhcNMjYwNDA1MDAxODUxWhcNMjYwNDEyMDAxODUxWjAYMRYwFAYD VQQDEw02OWQxYWE2Yy0wNGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03kZi9KE8lAmXo4rKgcUA+8/cHUWcevzYQ7137Rdf/rvnFbpvt1KQJmeWS3e dUw0BjPfqIe8mJ7vRbwjzv0o5JRFwqtOojaRB7oMgpdKkZrT/UgHrWNtvpVceW2k Vj4SvfsIHPuUF3ItgcnC2KMwiD+ed9TjBjGM4ZcSCqxQ/wXcRd/Icc8LI7co3Zbh SffcSlygsKhXyybDYb4UXb2vULVckIdbWET76UyZyhFT47jmyevQHty9hFXoogN9 jtGG5ZbdkInbDSX7exaGj7fnDRm2LH2bPc2KdL9hGYHk0xtrbz5jSA+pghlwhEFd e9y3cIuW9lDLpRWEo4lcx4tPqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGkGBSwV boB/5cMOacSCkbm5TuHCMB8GA1UdIwQYMBaAFCAAAFrFoXRAS9O/wplDMj6WBiW5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTU5MC85NTEwRTg2QUMw N0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRFQkwwN19DbVVNeVBwWUdK YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lBQUFXc1doZEVCTDA3X0NtVU15UHBZR0piay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTU5MC85NTEwRTg2QUMwN0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRF QkwwN19DbVVNeVBwWUdKYmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAE9tsLlG855en4ogI+xKhafIjas6inaiSbFCVacDoe2yoNrUW0W9J0F/28YMM Q+XPEwXkvu6kNXTqBhZaWg0KFlNkXsu0liQINnhC0iOzvK8Pz+v3N191E8n2AEFT NSX/4r1pvaLrN3wPH/fH3mIBL0a4Vr7gS6pfSTSt+b6x+wGv70AVv1pSl72v5f5t L9ggWvY8V1M1y1eJApbtyBbgC8Cy79wHn6kXImS3KTPg58uouF4MG2+Hqr7RevNm dWZAt6FRQV/UDJ28tocziDlo56BPy7Uj1fTJnsH8NoGrvXiAZ5q6pef6BpKKQSRY zPLRUUsqIzkadlPDJIwOCh+ppQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:48:32 2026 by rpki-client