$ rpki-client -vvf rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft File: sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft (raw, json) Hash identifier: BMhu4qCpSqLw4H7f0lKoI/uoXxBbVD7p3gelmKPtv5o= Subject key identifier: 24:02:47:80:CC:02:56:BA:22:B3:C4:16:A9:42:BC:0D:43:2B:BB:EB Authority key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 Certificate issuer: /CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Certificate serial: 1017 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft Manifest number: 0FF9 Signing time: Tue 24 Mar 2026 17:21:37 +0000 Manifest this update: Tue 24 Mar 2026 17:21:36 +0000 Manifest next update: Tue 31 Mar 2026 17:21:36 +0000 Files and hashes: 1: sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl (hash: zFqbELrMdhUfEAYLWtG411Q8KeL9IBmBlFIPsptpvVs=) 2: 8EF29168D1ED11F08D3A6B3CC4F9AE02.roa (hash: 4Xje0XiJFLxR2quCCNpe0kCvsRqAV/JFhxiHtPkeXUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4119 (0x1017) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BF1E, serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Validity Not Before: Mar 24 17:21:36 2026 GMT Not After : Mar 31 17:21:36 2026 GMT Subject: CN=69c2c821-0bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:49:b9:4d:9e:3a:7c:3d:cf:42:8c:3f:f6:d4: 59:5d:84:56:b6:d4:fd:10:52:31:09:0a:ec:24:f8: 2c:78:f7:bd:97:29:8a:a3:65:f5:42:9e:fa:17:f8: d3:9c:1f:9d:c4:4a:b1:88:ea:f0:7e:70:1c:fd:00: 45:e1:c8:84:a1:f7:73:f2:4d:8f:e0:b1:76:cc:9a: ad:25:0f:b0:24:20:2d:16:3a:9b:1b:8d:82:ea:f2: 2a:72:7a:0a:7d:0c:dc:47:e3:b2:97:b4:01:a1:70: 7d:08:5d:41:ad:07:6a:4c:5a:57:00:8a:cd:8e:5d: 65:56:f8:d5:a2:14:96:56:c1:11:15:d0:e2:18:19: 03:fa:0f:3c:1c:80:91:62:ed:c5:59:5c:91:53:88: 1e:c7:ce:a3:43:83:fa:a6:e8:6c:49:03:bb:a3:ea: 9d:f4:0a:56:bb:ac:8a:ce:28:cc:52:64:e6:03:7a: 9c:e4:5f:77:20:78:6a:a5:11:54:da:c8:5b:ae:4c: a7:6b:35:1f:96:3a:a9:d4:b3:ae:9e:cb:46:57:5f: af:b2:df:1c:d7:e5:ad:27:87:6c:78:68:75:80:8d: 7a:7d:72:a9:88:19:ed:d5:d5:03:80:e3:e8:72:07: 87:ef:b2:ac:8a:b4:96:30:db:02:97:2f:30:99:d4: e6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:02:47:80:CC:02:56:BA:22:B3:C4:16:A9:42:BC:0D:43:2B:BB:EB X509v3 Authority Key Identifier: keyid:B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:b7:1b:42:42:b0:81:87:02:29:ec:a6:30:f5:c2:f1:95:b6: 35:79:9d:79:42:1c:71:a9:b7:94:75:49:1c:a8:af:49:8d:05: 69:56:ea:01:83:14:0c:2e:e9:b6:d3:68:66:cc:3f:d2:f7:c9: d2:46:41:1c:62:70:e9:58:ad:c6:43:eb:03:f2:55:ab:d0:6f: 7d:7a:12:26:de:41:b0:51:c6:d0:63:39:95:d9:7e:34:49:a9: 26:06:d6:7d:f5:5e:97:1e:be:58:61:fa:4c:c3:16:9e:70:a6: 31:50:be:d4:e5:71:a6:c8:6e:38:ff:55:23:04:c0:18:b6:d9: 3c:a4:24:d7:8c:15:99:76:fc:cc:0e:d9:16:e4:b8:db:63:b7: 3b:47:54:d5:bf:04:6e:ca:5b:81:df:22:cc:fe:46:4a:d5:ff: 34:4f:f6:8e:74:8d:ea:4c:81:3f:92:26:27:77:87:57:71:8f: 87:34:72:81:09:dc:64:13:56:21:de:97:10:ee:18:35:9a:60: d3:c3:a9:55:f0:71:ff:36:20:29:f5:fb:3e:48:b0:ff:06:5c: d6:2f:9f:cf:3c:27:9a:f5:0e:4d:44:91:c7:0b:4c:ce:63:46: 83:4f:4d:05:76:77:82:58:68:b6:c4:cf:d0:90:80:bd:d2:29: 96:53:e8:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JGMUUxMTAvBgNVBAUTKEIxNEIyRUU1QzVFRDczNkFCNzM2QjI1NTM1ODY3NTlB RkNERUMzRTIwHhcNMjYwMzI0MTcyMTM2WhcNMjYwMzMxMTcyMTM2WjAYMRYwFAYD VQQDEw02OWMyYzgyMS0wYmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10m5TZ46fD3PQow/9tRZXYRWttT9EFIxCQrsJPgsePe9lymKo2X1Qp76F/jT nB+dxEqxiOrwfnAc/QBF4ciEofdz8k2P4LF2zJqtJQ+wJCAtFjqbG42C6vIqcnoK fQzcR+Oyl7QBoXB9CF1BrQdqTFpXAIrNjl1lVvjVohSWVsERFdDiGBkD+g88HICR Yu3FWVyRU4gex86jQ4P6puhsSQO7o+qd9ApWu6yKzijMUmTmA3qc5F93IHhqpRFU 2shbrkynazUfljqp1LOunstGV1+vst8c1+WtJ4dseGh1gI16fXKpiBnt1dUDgOPo cgeH77KsirSWMNsCly8wmdTmtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCQCR4DM Ala6IrPEFqlCvA1DK7vrMB8GA1UdIwQYMBaAFLFLLuXF7XNqtzayVTWGdZr83sPi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkYxRS9EQkIyQkY2NjZF NkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMycTNOckpWTllaMW12emV3 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVc3U1Y1h0YzJxM05ySlZOWVoxbXZ6ZXctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkYxRS9EQkIyQkY2NjZFNkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMy cTNOckpWTllaMW12emV3LUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXbcbQkKwgYcCKeymMPXC8ZW2NXmdeUIccam3lHVJHKivSY0FaVbqAYMUDC7p ttNoZsw/0vfJ0kZBHGJw6VitxkPrA/JVq9BvfXoSJt5BsFHG0GM5ldl+NEmpJgbW ffVelx6+WGH6TMMWnnCmMVC+1OVxpshuOP9VIwTAGLbZPKQk14wVmXb8zA7ZFuS4 22O3O0dU1b8Ebspbgd8izP5GStX/NE/2jnSN6kyBP5ImJ3eHV3GPhzRygQncZBNW Id6XEO4YNZpg08OpVfBx/zYgKfX7Pkiw/wZc1i+fzzwnmvUOTUSRxwtMzmNGg09N BXZ3glhotsTP0JCAvdIpllPogQ== -----END CERTIFICATE-----Generated at Thu Mar 26 04:15:56 2026 by rpki-client