$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: dG+fTYAkyBtUERhDmyCy6lA9t55oYtFAuRq8veHvYjM= Subject key identifier: AF:C1:B0:83:0B:F7:F8:EB:5C:E7:70:6B:B2:3B:DB:E6:FB:CA:B4:1C Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 0590 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 0582 Signing time: Tue 10 Mar 2026 22:50:14 +0000 Manifest this update: Tue 10 Mar 2026 22:50:14 +0000 Manifest next update: Tue 17 Mar 2026 22:50:14 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: Xk2gQyzGJik9ihkfEX+8gerGJhhgPPaQ/YHChUqS+d4=) 2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: 0zuqIS8hbfV5A711MSih3uxG9p+AWNnca2aMV8NXs2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 22:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1424 (0x590) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Mar 10 22:50:14 2026 GMT Not After : Mar 17 22:50:14 2026 GMT Subject: CN=69b0a026-32c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:63:31:26:95:c5:6f:6d:50:3e:c7:0f:dc:1c: db:2b:f8:d2:e7:86:01:97:88:75:33:7c:d2:80:92: ab:2e:3a:ad:3a:32:c4:39:50:0e:dd:4b:49:6c:16: e7:a2:ae:5a:d9:16:91:68:8c:c4:e7:94:00:89:7b: ae:85:cd:31:e1:d2:16:48:50:dc:f8:59:92:d5:09: 24:aa:6e:cc:55:4f:46:be:9c:39:2d:1c:d3:8a:cb: be:3a:59:db:4c:2e:09:57:a6:42:4a:b1:0d:03:b2: 1f:e8:21:05:d3:96:bc:fc:d1:3b:88:b8:cb:bc:79: fc:33:05:29:2a:f6:79:f6:bc:3c:c8:0c:f6:6d:25: 08:eb:3f:20:92:f1:ed:93:9b:be:0b:4d:a8:e0:01: 32:1c:47:f7:28:05:ca:e8:fa:c3:35:e2:34:20:6a: 58:cd:ef:d0:1f:24:d0:b2:7b:a2:50:e5:61:e2:01: 46:05:19:8b:e6:30:2b:e1:80:95:e8:c9:73:ed:32: bb:82:c5:05:29:05:17:fd:66:4f:be:70:3d:1c:02: b4:f7:87:55:c8:69:97:40:0d:1d:df:cd:6e:25:8d: e6:c7:a2:38:96:5f:b3:2e:52:97:01:f8:09:89:c2: 57:3c:27:f3:ec:b4:f9:43:0c:ff:6e:ce:4a:3b:5b: e7:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:C1:B0:83:0B:F7:F8:EB:5C:E7:70:6B:B2:3B:DB:E6:FB:CA:B4:1C X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:ea:69:35:f4:8a:e9:75:1f:10:24:64:d1:b2:05:81:b6:5b: b6:a7:92:ed:68:1d:e4:ab:17:2a:b6:5c:b7:4c:5e:1b:fd:92: 5b:ed:94:b2:17:55:f0:47:5c:59:d2:d8:63:8b:7c:bf:ad:b8: 44:45:71:e5:9a:6d:1f:90:2a:1f:b0:2c:ea:01:92:72:a2:a8: 60:c4:4e:45:4e:1c:75:2b:d7:29:9e:31:ce:38:a9:fb:cf:4c: da:da:04:33:34:6c:6e:71:a8:07:26:32:44:d8:87:4a:6a:5d: e9:a7:99:26:17:ec:f7:27:14:6e:86:db:6c:51:7b:cf:45:a3: e8:57:0b:43:57:1d:42:7e:77:ba:96:40:00:73:77:50:47:c9: b5:ab:c3:75:9b:14:c4:9a:d0:c3:1e:65:c5:ef:bf:f2:17:a6: 68:43:42:91:1b:d4:5b:df:78:11:10:dc:21:0c:2b:70:30:7c: 26:3a:44:88:3e:65:13:56:4c:31:cf:b8:f6:0b:9c:24:46:4b: 9d:6d:a4:a2:b5:1f:ad:c9:99:38:91:46:6c:5d:5c:91:9a:68: 66:c3:7f:3f:48:0a:89:df:d0:8d:52:9e:26:e1:df:80:cd:8b: 78:15:78:0a:de:4d:28:b6:f9:d5:9a:58:9f:5e:94:a8:8e:91: 47:43:2b:9d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwMzEwMjI1MDE0WhcNMjYwMzE3MjI1MDE0WjAYMRYwFAYD VQQDEw02OWIwYTAyNi0zMmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWMxJpXFb21QPscP3BzbK/jS54YBl4h1M3zSgJKrLjqtOjLEOVAO3UtJbBbn oq5a2RaRaIzE55QAiXuuhc0x4dIWSFDc+FmS1Qkkqm7MVU9Gvpw5LRzTisu+Olnb TC4JV6ZCSrENA7If6CEF05a8/NE7iLjLvHn8MwUpKvZ59rw8yAz2bSUI6z8gkvHt k5u+C02o4AEyHEf3KAXK6PrDNeI0IGpYze/QHyTQsnuiUOVh4gFGBRmL5jAr4YCV 6Mlz7TK7gsUFKQUX/WZPvnA9HAK094dVyGmXQA0d381uJY3mx6I4ll+zLlKXAfgJ icJXPCfz7LT5Qwz/bs5KO1vn0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK/BsIML 9/jrXOdwa7I72+b7yrQcMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiOppNfSK6XUfECRk0bIFgbZbtqeS7Wgd5KsXKrZct0xeG/2SW+2UshdV8Edc WdLYY4t8v624REVx5ZptH5AqH7As6gGScqKoYMRORU4cdSvXKZ4xzjip+89M2toE MzRsbnGoByYyRNiHSmpd6aeZJhfs9ycUbobbbFF7z0Wj6FcLQ1cdQn53upZAAHN3 UEfJtavDdZsUxJrQwx5lxe+/8hemaENCkRvUW994ERDcIQwrcDB8JjpEiD5lE1ZM Mc+49gucJEZLnW2korUfrcmZOJFGbF1ckZpoZsN/P0gKid/QjVKeJuHfgM2LeBV4 Ct5NKLb51ZpYn16UqI6RR0MrnQ== -----END CERTIFICATE-----Generated at Wed Mar 11 09:38:21 2026 by rpki-client