$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft File: iQoeXMwexsfOHqcfSRKRH1mShrI.mft (raw, json) Hash identifier: 2mHLIlxSOophnxwX9s4QTbeUGJ/zQoIgK+LSfADjDnw= Subject key identifier: C0:EC:7B:CE:7B:62:57:A8:52:C3:A4:EE:8E:E4:77:D1:75:8B:1B:88 Authority key identifier: 89:0A:1E:5C:CC:1E:C6:C7:CE:1E:A7:1F:49:12:91:1F:59:92:86:B2 Certificate issuer: /CN=A91E2234/serialNumber=890A1E5CCC1EC6C7CE1EA71F4912911F599286B2 Certificate serial: 3523 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQoeXMwexsfOHqcfSRKRH1mShrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft Manifest number: 3523 Signing time: Sat 04 Apr 2026 14:49:14 +0000 Manifest this update: Sat 04 Apr 2026 14:49:13 +0000 Manifest next update: Sat 11 Apr 2026 14:49:13 +0000 Files and hashes: 1: iQoeXMwexsfOHqcfSRKRH1mShrI.crl (hash: DfUJSWzfjpmi75D3jmYPEYsdTAT5RERTZu9ezmb5hRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.crl rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQoeXMwexsfOHqcfSRKRH1mShrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13603 (0x3523) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2234, serialNumber=890A1E5CCC1EC6C7CE1EA71F4912911F599286B2 Validity Not Before: Apr 4 14:49:13 2026 GMT Not After : Apr 11 14:49:13 2026 GMT Subject: CN=69d124ea-3a02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9a:75:61:34:9d:33:37:a8:19:00:15:cb:66: 3f:e7:ed:0b:89:c1:4e:c4:40:2a:fe:fa:65:24:ae: e0:05:cd:67:1e:2d:b1:ff:77:83:f2:2e:bb:ac:5f: 12:6c:59:18:4e:47:36:23:4a:f7:84:7a:43:34:1d: 5d:a5:07:0c:b9:20:3d:37:84:7d:3e:2e:38:86:a8: 24:80:d6:ed:b0:25:20:ae:da:f9:b2:5b:55:ec:3d: e2:ba:92:66:e7:7d:cc:10:be:db:70:fc:db:50:72: 97:69:2c:27:db:6a:4b:36:54:cb:97:1c:e0:5e:5b: 4a:5d:50:7d:5d:b0:c7:e6:a0:f6:e3:24:f1:f6:1c: ea:8d:79:c4:f9:cd:61:5d:3e:4c:6d:81:e9:ea:73: 4a:19:ed:1d:f0:6c:49:b1:56:6e:8c:89:d9:8b:a0: 99:ef:df:45:0f:ed:bc:4b:f3:be:2f:41:68:76:b1: a8:7f:ff:22:3c:1f:d3:b6:40:08:28:85:ad:8f:86: 34:1a:5f:e4:20:c0:d2:1b:1a:2f:58:fd:96:80:90: 0b:26:0e:39:56:38:22:b2:5c:4e:11:c5:57:71:6d: 15:60:e1:4e:55:93:3d:84:0b:3a:08:97:d3:96:b6: 5f:e8:4a:bc:68:21:ee:26:a1:79:cd:03:a0:9e:a8: 53:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:EC:7B:CE:7B:62:57:A8:52:C3:A4:EE:8E:E4:77:D1:75:8B:1B:88 X509v3 Authority Key Identifier: keyid:89:0A:1E:5C:CC:1E:C6:C7:CE:1E:A7:1F:49:12:91:1F:59:92:86:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQoeXMwexsfOHqcfSRKRH1mShrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2234/522569141D9611E29EE5CB7E08B02CD2/iQoeXMwexsfOHqcfSRKRH1mShrI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:66:0d:9d:b5:88:d4:68:b6:c2:1b:77:b4:eb:69:5f:12:4a: 1d:87:b0:94:0a:f4:23:a4:3a:db:da:f7:76:7d:7d:0c:72:c7: 19:f6:a4:cd:52:b4:ed:50:5e:fc:67:c7:b6:ef:1b:20:16:2e: c8:a9:c1:9a:77:57:ac:ff:1e:bf:ef:9b:18:e4:20:b8:36:bb: a4:02:a4:9f:02:13:1f:06:d3:e0:2b:9a:dc:0d:2e:c4:a3:1c: 6e:66:f5:9d:17:5a:e5:a0:1c:78:c7:11:b8:9b:8e:37:48:c3: f8:a0:72:00:31:d7:1b:92:5c:49:10:4a:27:48:bf:b0:68:ec: d9:12:a2:f7:b9:be:75:06:1d:c8:f2:53:2f:93:75:fa:df:fb: 18:64:46:3b:62:ba:f4:b5:27:3d:57:19:4b:b7:49:97:dc:14: bf:2c:f0:c3:48:3b:0f:7b:11:c8:5e:19:09:5d:1c:4f:53:5c: d2:7a:28:34:b7:2f:ef:c9:7e:2e:6b:3b:61:36:fa:30:2a:e4: 9b:6f:70:0f:1d:8a:68:48:a4:a7:c4:24:0e:30:4d:ca:c4:0c: 30:b0:3b:f5:5e:d1:c6:d3:39:b0:22:bb:b5:be:3e:87:fc:8a: ab:24:55:a7:92:8f:a7:63:93:74:54:ff:2a:dd:53:e0:bc:eb: 4d:8d:80:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIyMzQxMTAvBgNVBAUTKDg5MEExRTVDQ0MxRUM2QzdDRTFFQTcxRjQ5MTI5MTFG NTk5Mjg2QjIwHhcNMjYwNDA0MTQ0OTEzWhcNMjYwNDExMTQ0OTEzWjAYMRYwFAYD VQQDEw02OWQxMjRlYS0zYTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJp1YTSdMzeoGQAVy2Y/5+0LicFOxEAq/vplJK7gBc1nHi2x/3eD8i67rF8S bFkYTkc2I0r3hHpDNB1dpQcMuSA9N4R9Pi44hqgkgNbtsCUgrtr5sltV7D3iupJm 533MEL7bcPzbUHKXaSwn22pLNlTLlxzgXltKXVB9XbDH5qD24yTx9hzqjXnE+c1h XT5MbYHp6nNKGe0d8GxJsVZujInZi6CZ799FD+28S/O+L0FodrGof/8iPB/TtkAI KIWtj4Y0Gl/kIMDSGxovWP2WgJALJg45VjgislxOEcVXcW0VYOFOVZM9hAs6CJfT lrZf6Eq8aCHuJqF5zQOgnqhTtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMDse857 YleoUsOk7o7kd9F1ixuIMB8GA1UdIwQYMBaAFIkKHlzMHsbHzh6nH0kSkR9Zkoay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjIzNC81MjI1NjkxNDFE OTYxMUUyOUVFNUNCN0UwOEIwMkNEMi9pUW9lWE13ZXhzZk9IcWNmU1JLUkgxbVNo ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRb2VYTXdleHNmT0hxY2ZTUktSSDFtU2hySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjIzNC81MjI1NjkxNDFEOTYxMUUyOUVFNUNCN0UwOEIwMkNEMi9pUW9lWE13ZXhz Zk9IcWNmU1JLUkgxbVNockkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo2YNnbWI1Gi2wht3tOtpXxJKHYewlAr0I6Q629r3dn19DHLHGfakzVK07VBe /GfHtu8bIBYuyKnBmndXrP8ev++bGOQguDa7pAKknwITHwbT4Cua3A0uxKMcbmb1 nRda5aAceMcRuJuON0jD+KByADHXG5JcSRBKJ0i/sGjs2RKi97m+dQYdyPJTL5N1 +t/7GGRGO2K69LUnPVcZS7dJl9wUvyzww0g7D3sRyF4ZCV0cT1Nc0nooNLcv78l+ Lms7YTb6MCrkm29wDx2KaEikp8QkDjBNysQMMLA79V7RxtM5sCK7tb4+h/yKqyRV p5KPp2OTdFT/Kt1T4LzrTY2Alw== -----END CERTIFICATE-----Generated at Mon Apr 6 09:04:38 2026 by rpki-client