$ rpki-client -vvf rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft File: ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft (raw, json) Hash identifier: zXs5yDQTAwZe2EUwgVEgANXfi6re33Ki1q7R0o9j3Ww= Subject key identifier: BD:FC:19:13:D4:09:0F:26:58:F7:5D:58:C7:FC:45:04:12:74:08:66 Authority key identifier: 21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC Certificate issuer: /CN=A912382E/serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Certificate serial: 1941 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft Manifest number: 1937 Signing time: Tue 24 Mar 2026 16:20:52 +0000 Manifest this update: Tue 24 Mar 2026 16:20:51 +0000 Manifest next update: Tue 31 Mar 2026 16:20:51 +0000 Files and hashes: 1: ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl (hash: RtGDIP87oNDY0XQRG1mVMKy0EGLIsY+9Hr/vrNXaJqY=) 2: BD843CCE984011E79A256C82C4F9AE02.roa (hash: YEfPuupkj6+rYgnnK9KPFgtKEqtP8lyWUzvWsUKBop0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:20:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6465 (0x1941) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912382E, serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Validity Not Before: Mar 24 16:20:51 2026 GMT Not After : Mar 31 16:20:51 2026 GMT Subject: CN=69c2b9e4-8f49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a9:80:23:56:d5:60:e4:fb:35:bb:f6:a6:ac: 1d:f0:e9:4e:a7:50:a4:38:34:ff:76:47:85:fb:bc: b2:3d:71:cc:9d:cd:86:12:fc:94:8d:70:99:fd:93: 29:cb:fd:e7:46:c5:09:db:b7:32:1d:98:e9:db:45: ef:08:2d:a9:b2:5b:cb:c7:13:31:8b:d6:94:06:53: 8f:2f:ac:c9:77:9a:7a:0e:cb:e9:88:5b:ab:e7:80: 0d:b7:cd:83:71:31:e8:87:33:0d:88:79:78:3d:17: e1:3e:ca:9f:05:06:be:8d:82:4e:e3:fc:42:2c:b3: 4c:47:8b:4c:c6:cb:61:39:4f:c6:cb:5b:49:b8:9c: a3:6b:78:74:44:3c:d3:5b:c4:71:21:d5:0b:8a:72: 4a:db:84:54:98:db:5d:4e:08:6b:94:a0:cd:dd:4b: 7f:79:88:ad:ce:b5:b7:47:40:3d:24:7e:b3:c0:d1: ea:7c:03:de:b9:39:0e:1c:20:3a:38:0f:0d:eb:0b: 9b:94:b8:04:97:81:c0:fa:d6:54:51:bf:4f:64:44: 48:84:1a:b5:73:f7:7d:06:4a:43:4c:46:c4:a4:86: bf:a2:08:24:b7:92:63:a8:04:7a:07:08:22:8e:00: d5:96:41:73:33:48:4f:a5:3c:17:2c:78:c3:53:b2: b3:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:FC:19:13:D4:09:0F:26:58:F7:5D:58:C7:FC:45:04:12:74:08:66 X509v3 Authority Key Identifier: keyid:21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:87:08:5e:8b:64:68:d4:38:02:75:da:21:42:93:d2:bc:8a: bc:cc:1a:e3:01:c7:1d:ee:97:cc:20:3b:ef:30:20:fc:e1:72: 8c:63:83:bd:80:bb:9f:bf:52:4d:e5:b5:f6:ae:87:8f:4a:a2: d2:e4:18:79:08:96:be:ba:3d:d6:dd:c0:40:42:94:67:d6:39: b7:e8:bf:df:fd:c7:f3:d6:f6:9c:29:64:f1:d9:2e:2d:9a:a6: d0:73:9b:40:ee:25:42:94:5a:2a:7c:c7:9a:eb:2f:d0:83:c5: 19:14:c0:7f:f8:7e:48:af:90:ec:d1:ec:b7:f0:11:ee:30:4d: 3f:66:fd:cb:3c:76:b8:fd:1e:d2:7d:bb:e5:2c:16:4d:10:f1: ad:79:15:50:12:e1:87:3e:d7:e7:4a:ce:ca:82:99:47:69:f2: fc:70:b1:cf:01:f3:6d:c0:6d:39:25:15:67:e8:c7:7c:50:89: 08:53:35:ce:12:5c:a3:eb:dd:b8:a5:31:76:83:5e:c2:12:49: f4:c8:53:af:b9:21:ff:a4:10:3b:2e:e7:19:76:a2:c2:aa:80: 2d:a5:ac:8a:b5:dd:6f:69:e5:7e:2e:8d:f7:12:30:22:ca:df: 29:4c:e6:9a:e5:0a:7a:80:1c:e8:43:32:2d:18:be:dc:85:8f: 3b:2d:e4:39 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4MkUxMTAvBgNVBAUTKDIxMzQzNkJBMjNBOUFGMjUwQkYyNURERUE1MEM3NjIy MTlGOTA2QkMwHhcNMjYwMzI0MTYyMDUxWhcNMjYwMzMxMTYyMDUxWjAYMRYwFAYD VQQDEw02OWMyYjllNC04ZjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6mAI1bVYOT7Nbv2pqwd8OlOp1CkODT/dkeF+7yyPXHMnc2GEvyUjXCZ/ZMp y/3nRsUJ27cyHZjp20XvCC2pslvLxxMxi9aUBlOPL6zJd5p6DsvpiFur54ANt82D cTHohzMNiHl4PRfhPsqfBQa+jYJO4/xCLLNMR4tMxsthOU/Gy1tJuJyja3h0RDzT W8RxIdULinJK24RUmNtdTghrlKDN3Ut/eYitzrW3R0A9JH6zwNHqfAPeuTkOHCA6 OA8N6wublLgEl4HA+tZUUb9PZERIhBq1c/d9BkpDTEbEpIa/oggkt5JjqAR6Bwgi jgDVlkFzM0hPpTwXLHjDU7KzwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL38GRPU CQ8mWPddWMf8RQQSdAhmMB8GA1UdIwQYMBaAFCE0Nrojqa8lC/Jd3qUMdiIZ+Qa8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgyRS8zMTFFQUM1Njk4 NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5VUw4bDNlcFF4MklobjVC cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lUUTJ1aU9wcnlVTDhsM2VwUXgySWhuNUJydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgyRS8zMTFFQUM1Njk4NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5 VUw4bDNlcFF4MklobjVCcncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJYcIXotkaNQ4AnXaIUKT0ryKvMwa4wHHHe6XzCA77zAg/OFyjGODvYC7n79S TeW19q6Hj0qi0uQYeQiWvro91t3AQEKUZ9Y5t+i/3/3H89b2nClk8dkuLZqm0HOb QO4lQpRaKnzHmusv0IPFGRTAf/h+SK+Q7NHst/AR7jBNP2b9yzx2uP0e0n275SwW TRDxrXkVUBLhhz7X50rOyoKZR2ny/HCxzwHzbcBtOSUVZ+jHfFCJCFM1zhJco+vd uKUxdoNewhJJ9MhTr7kh/6QQOy7nGXaiwqqALaWsirXdb2nlfi6N9xIwIsrfKUzm muUKeoAc6EMyLRi+3IWPOy3kOQ== -----END CERTIFICATE-----Generated at Thu Mar 26 19:31:56 2026 by rpki-client