$ rpki-client -vvf rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft File: B-7MRCaowz1FkLzaEtl1DEkEhX0.mft (raw, json) Hash identifier: WCqv/iKR/YFEVrUp6kaaWBli+KwF4ztTKbL/WtyjkG8= Subject key identifier: 82:03:5C:0A:C3:E5:F0:EE:7A:6D:DA:65:65:6B:D4:6B:55:4D:61:44 Authority key identifier: 07:EE:CC:44:26:A8:C3:3D:45:90:BC:DA:12:D9:75:0C:49:04:85:7D Certificate issuer: /CN=A914C90B/serialNumber=07EECC4426A8C33D4590BCDA12D9750C4904857D Certificate serial: 0188 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft Manifest number: 017F Signing time: Fri 27 Mar 2026 04:07:08 +0000 Manifest this update: Fri 27 Mar 2026 04:07:07 +0000 Manifest next update: Fri 03 Apr 2026 04:07:07 +0000 Files and hashes: 1: B-7MRCaowz1FkLzaEtl1DEkEhX0.crl (hash: wiWN3Qj9a9cIwFYrRd+VFAmsN6W8F0LZAjJpRRjeuog=) 2: 306EFA64A87611F089A2B881C4F9AE02.roa (hash: dxCV5oDwm0iQGfDR4O8HOe4IbiLXLU4mPTUlx835jPI=) 3: 52BD65B4E7D511EE8C353D2AC4F9AE02.roa (hash: 68XN8JwBJBbdfUKGQscZWuVbBuf4F1dhpvRpl2kDoG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.crl rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 04:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C90B, serialNumber=07EECC4426A8C33D4590BCDA12D9750C4904857D Validity Not Before: Mar 27 04:07:07 2026 GMT Not After : Apr 3 04:07:07 2026 GMT Subject: CN=69c6026b-b651 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:fc:fa:79:42:cb:77:60:0c:0d:d2:19:fb:27: 0d:3f:77:0c:81:b7:d5:73:47:2b:1b:05:c9:54:5e: 05:2e:a8:c3:62:47:11:96:64:f1:49:b4:27:8d:1d: 38:51:95:d0:8b:a7:9f:6f:5d:b4:b2:20:c8:78:45: d4:5e:1c:bc:3f:d0:42:4c:34:a9:b1:32:73:4e:dc: d4:dc:6e:89:7d:27:14:33:03:0d:9c:f8:e3:ad:25: a6:05:33:a0:80:94:91:db:f3:e7:b0:cb:ab:d0:0c: 67:f6:47:b1:fe:3a:d6:c5:f7:28:44:a4:18:18:b5: fc:8d:10:bb:e1:90:4a:de:68:d7:b9:c6:79:80:97: e9:2e:86:fb:3c:0a:85:e6:8e:6b:2b:33:9f:9d:4b: 78:2d:b5:5f:c8:da:7e:db:1d:66:b8:79:f4:97:37: 42:fa:59:4b:51:a6:4b:a7:22:b0:2d:83:0c:9b:05: b3:25:c7:23:f6:78:fa:5a:fd:09:11:58:c2:45:eb: a7:db:7a:82:d4:17:77:19:d6:13:c7:00:46:e6:e2: 72:6d:b7:e1:ca:53:e2:74:72:d5:44:bb:39:8e:e8: cc:b9:13:ef:26:7e:7f:97:47:95:85:36:fb:6b:39: 7e:35:f8:46:8b:2a:fb:ba:af:be:53:c7:52:b0:10: dd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:03:5C:0A:C3:E5:F0:EE:7A:6D:DA:65:65:6B:D4:6B:55:4D:61:44 X509v3 Authority Key Identifier: keyid:07:EE:CC:44:26:A8:C3:3D:45:90:BC:DA:12:D9:75:0C:49:04:85:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:dc:2c:29:36:0f:cf:a9:44:bf:06:2f:f6:c2:37:7e:b4:61: 9f:1e:3e:9c:de:83:7d:d0:80:d3:7d:d2:93:4f:8d:6e:40:36: f7:5a:30:34:39:18:cf:cc:5c:9b:da:3c:a3:32:33:c6:ca:3f: 0a:3c:8d:af:a5:bc:43:de:fd:ec:51:6c:24:76:bb:31:07:b7: 66:36:09:d1:69:5a:b6:3c:17:b9:3d:79:80:88:aa:85:b3:2d: ae:05:99:ba:c6:0c:73:4f:16:d2:cc:49:23:e0:20:ca:27:7c: 84:f1:20:b0:c7:03:4b:a8:9c:49:ad:49:53:98:9c:31:ed:f3: 75:c8:ad:44:31:ec:0a:3f:a3:8e:1d:ab:47:cd:1d:27:3d:91: 3b:c4:28:21:4c:c4:53:6f:88:85:31:84:34:8a:f9:dc:cf:01: 2b:73:98:b2:d9:9f:d9:f1:d0:b7:cf:a4:54:4a:4e:06:e2:ec: cf:da:ba:82:b9:46:8b:0a:6c:4b:77:f0:91:7b:69:ae:b4:37: ca:d4:b7:8f:d0:e1:d0:ab:c6:1a:2d:04:7c:fb:65:08:03:dc: 2f:0d:9e:89:50:33:89:d4:96:56:6f:3c:f2:e4:75:11:38:7f: 64:b1:08:cb:e2:44:84:ba:ec:95:d5:dd:b1:db:fd:55:93:5b: 3f:a0:15:14 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM5MEIxMTAvBgNVBAUTKDA3RUVDQzQ0MjZBOEMzM0Q0NTkwQkNEQTEyRDk3NTBD NDkwNDg1N0QwHhcNMjYwMzI3MDQwNzA3WhcNMjYwNDAzMDQwNzA3WjAYMRYwFAYD VQQDEw02OWM2MDI2Yi1iNjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjfz6eULLd2AMDdIZ+ycNP3cMgbfVc0crGwXJVF4FLqjDYkcRlmTxSbQnjR04 UZXQi6efb120siDIeEXUXhy8P9BCTDSpsTJzTtzU3G6JfScUMwMNnPjjrSWmBTOg gJSR2/PnsMur0Axn9kex/jrWxfcoRKQYGLX8jRC74ZBK3mjXucZ5gJfpLob7PAqF 5o5rKzOfnUt4LbVfyNp+2x1muHn0lzdC+llLUaZLpyKwLYMMmwWzJccj9nj6Wv0J EVjCReun23qC1Bd3GdYTxwBG5uJybbfhylPidHLVRLs5jujMuRPvJn5/l0eVhTb7 azl+NfhGiyr7uq++U8dSsBDd4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIIDXArD 5fDuem3aZWVr1GtVTWFEMB8GA1UdIwQYMBaAFAfuzEQmqMM9RZC82hLZdQxJBIV9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzkwQi85Mjg0MjcwMkU3 MTAxMUVFQTlEQkMyNTJDNEY5QUUwMi9CLTdNUkNhb3d6MUZrTHphRXRsMURFa0Vo WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ItN01SQ2Fvd3oxRmtMemFFdGwxREVrRWhYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzkwQi85Mjg0MjcwMkU3MTAxMUVFQTlEQkMyNTJDNEY5QUUwMi9CLTdNUkNhb3d6 MUZrTHphRXRsMURFa0VoWDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUtwsKTYPz6lEvwYv9sI3frRhnx4+nN6DfdCA033Sk0+NbkA291owNDkYz8xc m9o8ozIzxso/CjyNr6W8Q9797FFsJHa7MQe3ZjYJ0WlatjwXuT15gIiqhbMtrgWZ usYMc08W0sxJI+Agyid8hPEgsMcDS6icSa1JU5icMe3zdcitRDHsCj+jjh2rR80d Jz2RO8QoIUzEU2+IhTGENIr53M8BK3OYstmf2fHQt8+kVEpOBuLsz9q6grlGiwps S3fwkXtprrQ3ytS3j9Dh0KvGGi0EfPtlCAPcLw2eiVAzidSWVm888uR1ETh/ZLEI y+JEhLrsldXdsdv9VZNbP6AVFA== -----END CERTIFICATE-----Generated at Sat Mar 28 12:18:51 2026 by rpki-client