$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft File: IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft (raw, json) Hash identifier: LIFgaPPuEcDS72WCGjK3U/Mcll5EzgTVyng+NYvrsUo= Subject key identifier: 8E:83:EC:2D:81:06:1E:8A:76:E6:9A:10:C4:61:91:2B:10:86:02:91 Authority key identifier: 21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA Certificate issuer: /CN=A91EA409/serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft Manifest number: FE Signing time: Tue 03 Mar 2026 05:48:39 +0000 Manifest this update: Tue 03 Mar 2026 05:48:38 +0000 Manifest next update: Tue 10 Mar 2026 05:48:38 +0000 Files and hashes: 1: IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl (hash: n3sKX3Kx5r2syu6oByRCM0fD1kW+IpMzBvq+tmw6ItA=) 2: E9F177B89D9C11EFA9526A6CC4F9AE02.roa (hash: aIh23/3y8xgm3k9QGKPnGbqB42NXH2OLUXREX9l30Z4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:48:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA409, serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Validity Not Before: Mar 3 05:48:38 2026 GMT Not After : Mar 10 05:48:38 2026 GMT Subject: CN=69a67636-d3e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f2:72:28:28:78:11:fa:3a:ff:f6:bb:59:cd: 98:b3:a5:86:ff:5e:da:9e:f7:2a:ca:f3:3b:83:08: e3:1c:48:80:90:17:7d:1f:56:ff:1e:ad:05:27:06: 4c:a1:db:7b:de:65:ff:ab:6a:94:dd:dc:83:17:89: f9:4f:36:f2:70:9d:71:9b:9b:db:2d:cc:06:56:63: 4d:bd:9d:ae:84:21:49:7c:6b:ab:ab:30:7b:39:25: 35:60:e6:e7:66:62:4b:0f:b0:bd:34:d0:ca:50:14: 56:10:38:58:23:f2:6b:9d:2e:1e:50:d6:2a:35:fe: 73:69:8f:92:17:03:72:f9:b1:69:ad:bf:c9:4d:9a: b3:1d:7f:81:e1:6f:6e:5f:0f:6a:d2:52:1a:1c:42: d3:44:78:fd:b5:f8:1a:62:cd:ed:db:43:6a:19:b7: 95:30:74:28:5e:8a:84:af:37:71:77:b7:5a:da:54: 24:d2:4d:c3:83:20:33:f6:88:52:a9:9c:69:6c:3e: 7c:28:b1:a4:c3:68:66:0b:12:ea:62:c0:0b:13:73: 15:42:eb:69:70:a9:bf:66:62:39:33:96:25:a9:1c: f2:15:4b:f1:52:3e:2b:01:31:a6:e5:a8:4f:a9:84: d0:53:32:f1:53:ca:f1:0b:7e:27:8d:b1:b8:4e:ab: f3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:83:EC:2D:81:06:1E:8A:76:E6:9A:10:C4:61:91:2B:10:86:02:91 X509v3 Authority Key Identifier: keyid:21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:94:77:70:b7:96:b6:82:20:b9:67:9e:c6:a0:3b:56:57:ac: 1c:50:0e:a8:99:ea:bd:71:14:b9:4f:e8:c4:7d:60:a0:1b:ec: df:bd:ff:08:32:b4:6f:11:fb:5b:c7:33:93:29:af:0a:3c:c2: 5c:86:99:e7:ee:89:f3:e7:66:88:48:95:c6:de:ea:f0:63:3e: 0f:5b:09:b9:a3:0d:6a:21:4f:2d:65:0b:ce:b5:9c:f4:86:a2: ad:ee:10:b7:c6:5c:58:71:69:e2:ad:43:cf:d3:d1:48:ad:87: 43:61:42:53:f3:ab:4c:2f:18:4a:1c:b4:74:64:19:9a:66:5f: 50:39:cd:8a:53:a3:e6:73:b9:30:39:0c:2f:32:2d:b1:20:f3: 8d:72:19:1c:a7:68:8d:81:70:47:a2:e9:c7:06:ff:87:2c:04: 2d:7e:15:1b:8b:7f:31:0b:4c:8f:05:52:06:55:51:f7:36:69: 81:d6:0c:bf:67:33:fe:72:bf:55:42:48:0e:17:de:d7:b0:5a: 54:79:d4:35:49:2c:96:4a:4e:64:5b:5e:f3:ce:72:6d:2e:9d: 7b:53:b9:b4:52:05:2b:a5:c9:7a:68:b6:1c:26:9c:ec:83:73: 5b:d7:7c:ce:2d:23:f0:2c:60:2b:4c:74:ff:1f:b5:b5:13:6c: 15:b9:94:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0MDkxMTAvBgNVBAUTKDIxNjRERDU5QTYxNUQ1RjJFMzM5M0U3MjA5OEE3M0FE ODY4RTc4REEwHhcNMjYwMzAzMDU0ODM4WhcNMjYwMzEwMDU0ODM4WjAYMRYwFAYD VQQDEw02OWE2NzYzNi1kM2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPJyKCh4Efo6//a7Wc2Ys6WG/17anvcqyvM7gwjjHEiAkBd9H1b/Hq0FJwZM odt73mX/q2qU3dyDF4n5TzbycJ1xm5vbLcwGVmNNvZ2uhCFJfGurqzB7OSU1YObn ZmJLD7C9NNDKUBRWEDhYI/JrnS4eUNYqNf5zaY+SFwNy+bFprb/JTZqzHX+B4W9u Xw9q0lIaHELTRHj9tfgaYs3t20NqGbeVMHQoXoqErzdxd7da2lQk0k3DgyAz9ohS qZxpbD58KLGkw2hmCxLqYsALE3MVQutpcKm/ZmI5M5YlqRzyFUvxUj4rATGm5ahP qYTQUzLxU8rxC34njbG4TqvzVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI6D7C2B Bh6KduaaEMRhkSsQhgKRMB8GA1UdIwQYMBaAFCFk3VmmFdXy4zk+cgmKc62Gjnja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQwOS9GOTQ0RTNDQzlD QUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFmTGpPVDV5Q1lwenJZYU9l Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lXVGRXYVlWMWZMak9UNXlDWXB6cllhT2VOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQwOS9GOTQ0RTNDQzlDQUIxMUVGQUI1OTU1MTZDNEY5QUUwMi9JV1RkV2FZVjFm TGpPVDV5Q1lwenJZYU9lTm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADpR3cLeWtoIguWeexqA7VlesHFAOqJnqvXEUuU/oxH1goBvs373/CDK0bxH7 W8czkymvCjzCXIaZ5+6J8+dmiEiVxt7q8GM+D1sJuaMNaiFPLWULzrWc9Iaire4Q t8ZcWHFp4q1Dz9PRSK2HQ2FCU/OrTC8YShy0dGQZmmZfUDnNilOj5nO5MDkMLzIt sSDzjXIZHKdojYFwR6Lpxwb/hywELX4VG4t/MQtMjwVSBlVR9zZpgdYMv2cz/nK/ VUJIDhfe17BaVHnUNUkslkpOZFte885ybS6de1O5tFIFK6XJemi2HCac7INzW9d8 zi0j8CxgK0x0/x+1tRNsFbmUNQ== -----END CERTIFICATE-----Generated at Wed Mar 4 08:30:33 2026 by rpki-client