$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft File: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft (raw, json) Hash identifier: 15P/4wRqGI63XICpFfH0vsJSuP+q0UZ8cGnmoFoyHKA= Subject key identifier: 6F:92:1F:C4:30:1A:DE:AC:C9:6D:1A:3B:61:C3:DB:9D:7F:DE:BF:B7 Authority key identifier: 89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 Certificate issuer: /CN=A91F2046/serialNumber=894809630956924382CC39D460FA4764B0175934 Certificate serial: 0C9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft Manifest number: 0C95 Signing time: Sat 04 Apr 2026 18:22:54 +0000 Manifest this update: Sat 04 Apr 2026 18:22:53 +0000 Manifest next update: Sat 11 Apr 2026 18:22:53 +0000 Files and hashes: 1: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl (hash: Bq+dRmpBG3d1RP1zR44JHvktVa/dwom9bKWCWdvT3NM=) 2: 0D2573FA173E11EA947B2976C4F9AE02.roa (hash: Sez/a2sgGSbWwvJeQPZUS5uIi1mmZfqNVL6dsISb/6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3231 (0xc9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2046, serialNumber=894809630956924382CC39D460FA4764B0175934 Validity Not Before: Apr 4 18:22:53 2026 GMT Not After : Apr 11 18:22:53 2026 GMT Subject: CN=69d156fe-16e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9b:bc:a3:a9:66:48:89:22:a4:a5:54:8e:b0: 60:59:55:85:7a:6a:40:3f:62:40:19:3a:83:1f:bc: c3:43:78:75:fc:d9:75:c7:b3:86:65:2a:43:41:dc: 3e:4d:36:c6:96:c8:59:35:f3:10:7b:f0:4f:5a:7f: b6:90:4b:50:43:cd:22:5d:bb:32:d4:5c:71:e4:47: ac:6c:58:13:d8:83:47:46:ac:05:01:67:39:36:11: a9:7b:3c:d9:c7:98:eb:11:41:19:aa:3e:da:f0:95: 10:33:cf:2f:58:a1:56:7e:f9:f5:28:50:0c:39:7b: 2c:7e:c6:69:51:d4:2f:87:62:f4:3a:ae:f2:b9:c9: 14:5e:3a:9e:14:04:80:c8:6f:86:2a:42:53:21:05: b7:7d:19:d7:57:ad:ff:35:a8:47:7e:39:59:21:e1: c5:f6:3a:40:b5:cb:1a:25:7e:2a:fb:a4:01:b6:06: 73:76:7b:9f:f6:00:aa:b8:0c:67:6f:43:cd:49:05: b8:65:01:d4:4d:39:c0:db:dd:17:46:02:53:8d:44: 75:f9:b3:0f:73:57:a3:ae:cd:2e:96:b8:92:4f:de: 86:35:29:24:26:e5:93:e4:61:2e:9f:38:05:51:e5: 51:99:2f:c5:d8:be:76:cc:b2:41:ef:c9:c0:8a:81: 83:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:92:1F:C4:30:1A:DE:AC:C9:6D:1A:3B:61:C3:DB:9D:7F:DE:BF:B7 X509v3 Authority Key Identifier: keyid:89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:fc:5e:0a:32:df:92:16:3c:a3:76:b1:cc:e6:98:04:86:74: e8:23:50:48:7f:2a:d6:70:19:0d:3a:ee:31:77:85:44:b6:7d: 9b:75:af:50:5d:34:9a:da:1b:5a:fe:8f:7d:cc:ac:6d:3c:08: 64:56:43:45:32:da:dd:9a:4c:92:39:28:15:eb:9f:23:64:47: d6:13:78:f4:2b:ec:6b:86:ab:23:1a:db:86:7a:77:15:09:f9: 58:4b:73:b4:5a:58:a7:8b:f3:28:e5:0b:b0:61:3a:f4:23:4c: cd:e6:5f:53:e6:a5:57:95:1a:e5:e1:e2:fb:6f:ae:e8:33:d0: 20:4a:6e:ca:f9:6d:85:d8:6c:14:ba:c2:ee:1c:12:ac:42:d5: b5:b7:c7:e1:c2:21:16:3d:c8:a2:6a:bb:48:e2:aa:8e:4d:ea: bd:96:e6:d4:ee:c9:08:bc:92:ad:c9:4c:71:30:b1:7f:24:0e: 54:14:58:50:cf:08:ce:c4:cc:65:9f:c8:ad:5d:ea:24:03:47: 0d:39:0a:40:4a:c3:be:63:f0:33:67:67:29:ee:72:1d:1c:be: 46:5e:76:5f:21:63:55:05:42:8e:e7:cf:9b:3b:88:cb:05:9a: 54:45:3b:31:82:1f:d0:11:65:43:e3:de:93:a8:0f:70:91:09: e9:b5:6c:26 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIwNDYxMTAvBgNVBAUTKDg5NDgwOTYzMDk1NjkyNDM4MkNDMzlENDYwRkE0NzY0 QjAxNzU5MzQwHhcNMjYwNDA0MTgyMjUzWhcNMjYwNDExMTgyMjUzWjAYMRYwFAYD VQQDEw02OWQxNTZmZS0xNmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Zu8o6lmSIkipKVUjrBgWVWFempAP2JAGTqDH7zDQ3h1/Nl1x7OGZSpDQdw+ TTbGlshZNfMQe/BPWn+2kEtQQ80iXbsy1Fxx5EesbFgT2INHRqwFAWc5NhGpezzZ x5jrEUEZqj7a8JUQM88vWKFWfvn1KFAMOXssfsZpUdQvh2L0Oq7yuckUXjqeFASA yG+GKkJTIQW3fRnXV63/NahHfjlZIeHF9jpAtcsaJX4q+6QBtgZzdnuf9gCquAxn b0PNSQW4ZQHUTTnA290XRgJTjUR1+bMPc1ejrs0ulriST96GNSkkJuWT5GEunzgF UeVRmS/F2L52zLJB78nAioGDIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG+SH8Qw Gt6syW0aO2HD251/3r+3MB8GA1UdIwQYMBaAFIlICWMJVpJDgsw51GD6R2SwF1k0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjA0Ni8zRkIwMkFFMjE0 RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2trT0N6RG5VWVBwSFpMQVhX VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVZ0pZd2xXa2tPQ3pEblVZUHBIWkxBWFdUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjA0Ni8zRkIwMkFFMjE0RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2tr T0N6RG5VWVBwSFpMQVhXVFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAPxeCjLfkhY8o3axzOaYBIZ06CNQSH8q1nAZDTruMXeFRLZ9m3WvUF00mtob Wv6PfcysbTwIZFZDRTLa3ZpMkjkoFeufI2RH1hN49Cvsa4arIxrbhnp3FQn5WEtz tFpYp4vzKOULsGE69CNMzeZfU+alV5Ua5eHi+2+u6DPQIEpuyvlthdhsFLrC7hwS rELVtbfH4cIhFj3Iomq7SOKqjk3qvZbm1O7JCLySrclMcTCxfyQOVBRYUM8IzsTM ZZ/IrV3qJANHDTkKQErDvmPwM2dnKe5yHRy+Rl52XyFjVQVCjufPmzuIywWaVEU7 MYIf0BFlQ+Pek6gPcJEJ6bVsJg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:00 2026 by rpki-client