$ rpki-client -vvf rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft File: 8ItqFjLJysLoaI3qSIfZMC6VYBA.mft (raw, json) Hash identifier: OCxhEmOvjTDv+ekiINp7Ib5KRmpAftPyMeq6TUyWBRw= Subject key identifier: 84:74:FE:DC:96:9A:49:D3:5D:0C:F8:F2:91:3A:F0:41:F7:29:39:D0 Authority key identifier: F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10 Certificate issuer: /CN=A911FFAB/serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010 Certificate serial: 0821 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft Manifest number: 0810 Signing time: Tue 24 Mar 2026 20:50:21 +0000 Manifest this update: Tue 24 Mar 2026 20:50:20 +0000 Manifest next update: Tue 31 Mar 2026 20:50:20 +0000 Files and hashes: 1: 8ItqFjLJysLoaI3qSIfZMC6VYBA.crl (hash: tZS1/Hiuv1KEofrGmoKt1lQvGMhVlv5h0lkvcXuyxOo=) 2: 7E18ACF0C66811F084C00543C4F9AE02.roa (hash: YjaZjFJ4OE4qs6Tb31SaYy82dZ13Nf7KTI31OEH2uWo=) 3: B5DC8802169411EBBEBD9A23C4F9AE02.roa (hash: S4Fj7c37sRx+Mq0uiUgxDmZ4r2r7orSm+8n0yOj6S3A=) 4: B54C3DBA169411EBBEBD9A23C4F9AE02.roa (hash: uHAJeAX70wsp/eeV5Bp1w19TMmSSBJmKzqhhCVPk8Ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2081 (0x821) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FFAB, serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010 Validity Not Before: Mar 24 20:50:20 2026 GMT Not After : Mar 31 20:50:20 2026 GMT Subject: CN=69c2f90d-579b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2c:88:fa:d0:33:e5:09:f9:79:0f:64:45:93: 45:95:98:b4:28:fe:01:a9:08:66:b0:c9:5b:ce:43: cd:a5:cd:34:fe:c3:a9:4c:ae:fd:93:f3:b1:8a:05: 4c:91:fe:bd:d6:47:4b:58:4a:5e:4c:78:eb:04:4d: 42:72:e8:6a:29:a9:b7:bf:6e:2d:75:1e:23:c0:e6: 0b:d6:7b:27:e9:da:99:a0:5b:1e:f0:d3:bb:ab:dd: d2:e8:28:9e:1d:81:28:f2:5f:34:d6:5c:19:68:9d: 1d:a4:84:2a:ec:39:ed:70:01:3a:d3:45:94:e3:10: 8b:0b:18:ff:d8:6c:76:f6:21:f2:59:30:ae:7e:52: 35:3a:e8:a0:ce:b2:08:b0:07:c0:ee:be:b8:b3:1e: 0e:99:6b:60:7b:16:2c:25:00:1b:33:7a:59:4c:76: 26:b2:48:e7:cf:7e:3a:ba:b1:69:71:8d:eb:a8:d7: 78:4e:b6:76:fa:63:a9:13:88:e4:c8:96:53:6f:83: 13:b0:50:d9:c3:f8:b3:8c:3f:7b:25:4c:f1:b4:5e: cd:48:8a:88:77:ca:54:16:67:82:3e:42:21:5d:69: 57:cb:b1:7f:a2:1e:cb:36:e6:ae:83:dc:60:04:9a: ee:a4:98:64:e5:60:28:15:90:96:9b:5e:21:ca:63: 7d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:74:FE:DC:96:9A:49:D3:5D:0C:F8:F2:91:3A:F0:41:F7:29:39:D0 X509v3 Authority Key Identifier: keyid:F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:55:8f:76:6c:22:b3:51:47:2f:07:fd:c3:71:47:6d:47:5a: fe:1a:b3:ab:1b:40:f0:36:dd:11:6b:1b:2c:17:08:84:28:75: 7e:6d:cc:9b:36:da:63:7f:ee:a8:1d:5f:b4:0b:72:3e:a7:1c: 7b:97:9d:c6:c2:42:c7:93:2d:cd:99:b3:1d:4c:87:b8:0c:35: 00:53:92:df:0a:47:e5:0c:00:73:c1:31:db:00:2c:40:cf:e3: d4:02:15:69:1a:1c:ec:6f:4c:a4:83:f7:45:58:d7:4a:4b:35: 20:16:15:8c:cb:af:0e:6e:aa:72:8b:af:6d:1a:89:09:e1:9e: f7:0f:6b:90:e2:95:3e:3e:94:e3:73:0e:cb:6a:51:ba:e3:e5: 28:3c:2a:74:50:41:df:b2:e3:d3:b6:e0:28:d9:af:e1:1d:ab: de:aa:db:b6:b3:48:13:db:4e:e3:05:3e:0b:c1:69:f9:e4:26: 00:00:06:eb:70:37:58:41:f6:4b:b0:6c:44:01:5b:bc:59:97: b6:25:31:eb:42:20:7d:42:65:ce:27:20:b2:82:61:ed:69:d8: 91:12:b6:8c:ef:c1:e5:42:94:ba:cd:42:38:17:3f:22:3b:b3: 8b:9e:a0:92:7e:5f:84:be:7a:40:fe:21:25:57:89:ac:6f:76: b0:90:6e:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZGQUIxMTAvBgNVBAUTKEYwOEI2QTE2MzJDOUNBQzJFODY4OERFQTQ4ODdEOTMw MkU5NTYwMTAwHhcNMjYwMzI0MjA1MDIwWhcNMjYwMzMxMjA1MDIwWjAYMRYwFAYD VQQDEw02OWMyZjkwZC01NzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CyI+tAz5Qn5eQ9kRZNFlZi0KP4BqQhmsMlbzkPNpc00/sOpTK79k/OxigVM kf691kdLWEpeTHjrBE1CcuhqKam3v24tdR4jwOYL1nsn6dqZoFse8NO7q93S6Cie HYEo8l801lwZaJ0dpIQq7DntcAE600WU4xCLCxj/2Gx29iHyWTCuflI1OuigzrII sAfA7r64sx4OmWtgexYsJQAbM3pZTHYmskjnz346urFpcY3rqNd4TrZ2+mOpE4jk yJZTb4MTsFDZw/izjD97JUzxtF7NSIqId8pUFmeCPkIhXWlXy7F/oh7LNuaug9xg BJrupJhk5WAoFZCWm14hymN9iwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIR0/tyW mknTXQz48pE68EH3KTnQMB8GA1UdIwQYMBaAFPCLahYyycrC6GiN6kiH2TAulWAQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkZBQi9BQTdGQTQwMDE2 OTIxMUVCQjQ1RDg5MURDNEY5QUUwMi84SXRxRmpMSnlzTG9hSTNxU0lmWk1DNlZZ QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhJdHFGakxKeXNMb2FJM3FTSWZaTUM2VllCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkZBQi9BQTdGQTQwMDE2OTIxMUVCQjQ1RDg5MURDNEY5QUUwMi84SXRxRmpMSnlz TG9hSTNxU0lmWk1DNlZZQkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAglWPdmwis1FHLwf9w3FHbUda/hqzqxtA8DbdEWsbLBcIhCh1fm3MmzbaY3/u qB1ftAtyPqcce5edxsJCx5MtzZmzHUyHuAw1AFOS3wpH5QwAc8Ex2wAsQM/j1AIV aRoc7G9MpIP3RVjXSks1IBYVjMuvDm6qcouvbRqJCeGe9w9rkOKVPj6U43MOy2pR uuPlKDwqdFBB37Lj07bgKNmv4R2r3qrbtrNIE9tO4wU+C8Fp+eQmAAAG63A3WEH2 S7BsRAFbvFmXtiUx60IgfUJlzicgsoJh7WnYkRK2jO/B5UKUus1COBc/Ijuzi56g kn5fhL56QP4hJVeJrG92sJBurw== -----END CERTIFICATE-----Generated at Thu Mar 26 09:56:23 2026 by rpki-client