$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: RRhsH2xO+T+P5EZ9WvzP+UNkcHOa3PXp4bh+k9gob8c= Subject key identifier: 9C:E4:76:E1:8B:2A:BB:1E:6C:F1:BB:5A:A4:69:B3:C9:53:32:4C:5C Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 0592 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 0584 Signing time: Sat 14 Mar 2026 22:48:01 +0000 Manifest this update: Sat 14 Mar 2026 22:48:00 +0000 Manifest next update: Sat 21 Mar 2026 22:48:00 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: c9mX09a9JBOXj4vUvE0rRRsmthcz2poAjpqcwtZmPHI=) 2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: 0zuqIS8hbfV5A711MSih3uxG9p+AWNnca2aMV8NXs2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 22:47:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1426 (0x592) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Mar 14 22:48:00 2026 GMT Not After : Mar 21 22:48:00 2026 GMT Subject: CN=69b5e5a1-6602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:42:31:6d:50:46:d0:0f:4d:0e:84:79:96:bd: d6:f0:65:10:fb:fe:40:ec:da:b4:0e:23:39:f5:48: 43:73:28:26:97:8b:9b:b5:3c:12:8c:2e:4c:c3:41: d0:f6:a7:32:90:86:27:1d:3b:2f:b0:e3:ea:90:81: 4e:19:ee:1d:1f:f6:07:73:4d:2b:39:98:3b:e9:ed: f7:8e:e3:8a:ef:98:6d:41:06:ff:81:24:73:7e:0d: 28:ee:59:e9:0e:aa:8a:e9:df:01:15:ee:ed:20:8d: 35:ef:24:63:8e:10:d0:67:2e:2b:e9:97:2b:16:99: 14:51:c0:ec:b7:5c:d0:3b:5b:e9:b8:e7:16:f4:a3: 13:0e:64:b0:d4:f1:c4:d1:63:4c:14:31:d7:47:7b: 9e:45:4a:4e:13:9e:09:d3:03:0a:55:ca:19:aa:67: 71:3f:05:c4:68:9d:9c:2a:63:7a:d5:6b:da:73:2f: 8e:2e:fd:c0:8f:ab:ee:d6:de:d1:e8:1b:98:9c:7c: 16:cd:6a:f9:fa:ed:61:f9:6b:85:03:5b:d8:53:ba: f4:46:c5:e6:81:b0:6e:9f:63:2c:a6:3c:dc:11:46: 02:ce:b6:cf:7a:35:0b:45:80:b6:7d:e5:d1:ce:d0: 24:97:aa:e3:32:f1:b4:a7:ff:5c:20:fb:a5:62:26: b8:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E4:76:E1:8B:2A:BB:1E:6C:F1:BB:5A:A4:69:B3:C9:53:32:4C:5C X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:a4:d9:2a:f7:6b:dc:bf:cb:c9:5b:ff:5d:ec:2b:d4:bb:82: 99:16:1f:a9:2b:f9:d5:a8:ab:9e:4b:5f:07:39:8b:79:98:ba: cf:60:28:13:f3:7b:8f:0f:fd:35:45:aa:d9:3f:a6:f5:f0:09: 66:fc:47:81:1f:c8:2a:03:54:54:19:0b:e9:71:5d:ea:25:ee: 54:8b:bd:51:b5:82:6f:dc:ef:93:d8:dd:4c:67:e3:c6:9b:7a: 2a:45:1a:8e:f7:5d:05:4a:11:d0:c9:33:00:58:20:51:02:b2: cb:96:67:b7:55:98:29:65:56:48:b1:ce:ca:40:8e:2c:44:cc: 33:60:e4:46:9e:df:aa:55:46:82:58:84:15:cd:2e:42:1b:1c: de:e6:1f:ac:00:d7:5e:56:89:1c:e3:88:47:99:68:58:6a:0a: 50:37:9d:46:0a:bb:c7:14:fb:54:19:dd:bc:c2:d5:2a:31:38: e1:b4:62:ce:db:82:41:ae:4b:b4:99:60:fc:05:dd:5f:3f:b4: 47:ea:a9:b3:b4:82:80:f1:b1:ca:49:6b:12:c9:96:71:c2:d9: 32:05:38:ec:10:99:72:31:5b:d2:b5:5e:b7:be:5b:87:ac:89: 44:9a:24:23:12:42:ca:55:e7:a9:c8:9e:72:67:fe:98:cb:8e: 87:0b:0a:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwMzE0MjI0ODAwWhcNMjYwMzIxMjI0ODAwWjAYMRYwFAYD VQQDEw02OWI1ZTVhMS02NjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UIxbVBG0A9NDoR5lr3W8GUQ+/5A7Nq0DiM59UhDcygml4ubtTwSjC5Mw0HQ 9qcykIYnHTsvsOPqkIFOGe4dH/YHc00rOZg76e33juOK75htQQb/gSRzfg0o7lnp DqqK6d8BFe7tII017yRjjhDQZy4r6ZcrFpkUUcDst1zQO1vpuOcW9KMTDmSw1PHE 0WNMFDHXR3ueRUpOE54J0wMKVcoZqmdxPwXEaJ2cKmN61Wvacy+OLv3Aj6vu1t7R 6BuYnHwWzWr5+u1h+WuFA1vYU7r0RsXmgbBun2MspjzcEUYCzrbPejULRYC2feXR ztAkl6rjMvG0p/9cIPulYia4SwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJzkduGL KrsebPG7WqRps8lTMkxcMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdqTZKvdr3L/LyVv/Xewr1LuCmRYfqSv51airnktfBzmLeZi6z2AoE/N7jw/9 NUWq2T+m9fAJZvxHgR/IKgNUVBkL6XFd6iXuVIu9UbWCb9zvk9jdTGfjxpt6KkUa jvddBUoR0MkzAFggUQKyy5Znt1WYKWVWSLHOykCOLETMM2DkRp7fqlVGgliEFc0u Qhsc3uYfrADXXlaJHOOIR5loWGoKUDedRgq7xxT7VBndvMLVKjE44bRiztuCQa5L tJlg/AXdXz+0R+qps7SCgPGxyklrEsmWccLZMgU47BCZcjFb0rVet75bh6yJRJok IxJCylXnqciecmf+mMuOhwsK8g== -----END CERTIFICATE-----Generated at Sun Mar 15 04:55:51 2026 by rpki-client