$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: XbZN2l0/kiKbnXT8dmmBqujRLkJczpzhubujdWDFZT4= Subject key identifier: 61:F8:7E:D5:6C:5C:93:A5:EB:15:0B:0C:0D:F9:B7:50:88:59:4E:55 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 0599 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 058B Signing time: Sat 28 Mar 2026 23:09:33 +0000 Manifest this update: Sat 28 Mar 2026 23:09:33 +0000 Manifest next update: Sat 04 Apr 2026 23:09:33 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: 7lFqZeMMx4DH0nwFoPTFBqNNke5f1YsECU0Ge6FSKk4=) 2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: 0zuqIS8hbfV5A711MSih3uxG9p+AWNnca2aMV8NXs2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 23:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1433 (0x599) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Mar 28 23:09:33 2026 GMT Not After : Apr 4 23:09:33 2026 GMT Subject: CN=69c85fad-0cc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ce:83:39:53:05:fd:86:30:77:2d:06:66:de: 22:68:04:a0:f1:14:37:93:20:a8:ba:78:36:d6:3a: e0:87:1b:61:06:f9:0a:0d:b1:80:ad:35:62:bf:2b: 0d:19:21:74:1b:70:4b:b1:d9:d5:98:bb:6c:f8:27: 2b:e4:3c:19:0f:76:8e:26:71:b8:28:89:34:d8:74: 43:b7:3a:5f:07:55:d3:70:6c:ef:52:cd:35:8c:3c: 3a:0a:f8:40:aa:a5:c8:92:42:5c:6d:f9:06:bd:a7: 8c:38:0a:df:10:0c:ee:3b:33:a7:04:41:1a:71:44: 7e:74:4e:cd:53:e9:56:6f:a0:1b:4d:48:e7:5c:d1: 7d:49:cd:f6:75:c0:6f:d9:80:e1:bc:75:20:12:99: ad:0e:a7:77:9a:70:e6:e0:15:c1:f7:89:2a:5e:7f: 0d:fe:1b:63:50:1e:0e:90:c0:db:6c:a2:6e:81:6d: e2:15:74:62:0e:81:0c:3f:b4:85:d9:9d:b7:da:11: d8:23:1c:da:ab:ab:fa:73:37:a5:bf:5c:4b:c3:a2: f8:22:54:db:2d:fa:14:25:f3:73:b7:84:70:5d:d0: 16:63:90:5a:e7:12:dc:ac:2c:97:5b:c0:26:2e:14: eb:b1:52:be:ba:7e:e6:44:91:3c:d7:3c:83:0e:95: 92:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F8:7E:D5:6C:5C:93:A5:EB:15:0B:0C:0D:F9:B7:50:88:59:4E:55 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:8a:80:88:a3:09:c2:77:4f:da:df:74:bd:b6:24:ba:ad:70: 08:7d:c7:28:b8:21:3b:2f:7f:d2:c7:c3:c6:dd:e4:c8:d4:f5: 3f:a9:35:d3:70:de:d2:bc:c7:ca:31:5f:27:99:4a:96:12:04: c8:d4:2f:82:fd:ba:2e:2c:aa:bd:24:0a:85:4b:7d:68:2b:4a: 0f:e0:c1:5a:a3:1f:8d:8c:0d:4a:89:19:ba:90:a5:21:9e:56: d3:57:35:f5:cc:36:4e:29:81:71:d2:17:64:c7:55:14:0d:9e: be:31:8f:40:f9:45:07:21:b9:74:bd:27:f5:f5:66:2e:39:a4: fc:85:7a:c8:b6:c0:12:61:33:0c:39:3a:6f:58:b9:0b:83:37: 52:4c:36:4c:96:89:23:d5:19:44:a9:07:35:40:fa:c5:e8:58: 71:6c:1f:c0:41:3e:fe:02:47:f3:16:c3:38:fb:6c:fa:9d:51: 4f:b1:1a:d4:8d:fa:ff:ba:75:f8:67:10:08:f1:7d:fd:e6:77: b6:25:c8:1f:c8:46:56:ce:5c:c0:39:fc:c2:04:d4:da:5e:d2: fd:74:26:a4:f0:92:1b:9b:d9:68:24:5e:e5:22:fb:29:8c:d0: 6c:15:37:44:2a:b2:95:3e:ed:4f:af:28:88:b3:2a:1b:8d:fa: 99:84:f9:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwMzI4MjMwOTMzWhcNMjYwNDA0MjMwOTMzWjAYMRYwFAYD VQQDEw02OWM4NWZhZC0wY2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApM6DOVMF/YYwdy0GZt4iaASg8RQ3kyCoung21jrghxthBvkKDbGArTVivysN GSF0G3BLsdnVmLts+Ccr5DwZD3aOJnG4KIk02HRDtzpfB1XTcGzvUs01jDw6CvhA qqXIkkJcbfkGvaeMOArfEAzuOzOnBEEacUR+dE7NU+lWb6AbTUjnXNF9Sc32dcBv 2YDhvHUgEpmtDqd3mnDm4BXB94kqXn8N/htjUB4OkMDbbKJugW3iFXRiDoEMP7SF 2Z232hHYIxzaq6v6czelv1xLw6L4IlTbLfoUJfNzt4RwXdAWY5Ba5xLcrCyXW8Am LhTrsVK+un7mRJE81zyDDpWSvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGH4ftVs XJOl6xULDA35t1CIWU5VMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmoqAiKMJwndP2t90vbYkuq1wCH3HKLghOy9/0sfDxt3kyNT1P6k103De0rzH yjFfJ5lKlhIEyNQvgv26LiyqvSQKhUt9aCtKD+DBWqMfjYwNSokZupClIZ5W01c1 9cw2TimBcdIXZMdVFA2evjGPQPlFByG5dL0n9fVmLjmk/IV6yLbAEmEzDDk6b1i5 C4M3Ukw2TJaJI9UZRKkHNUD6xehYcWwfwEE+/gJH8xbDOPts+p1RT7Ea1I36/7p1 +GcQCPF9/eZ3tiXIH8hGVs5cwDn8wgTU2l7S/XQmpPCSG5vZaCRe5SL7KYzQbBU3 RCqylT7tT68oiLMqG436mYT5Bg== -----END CERTIFICATE-----Generated at Sun Mar 29 05:52:30 2026 by rpki-client