$ rpki-client -vvf rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft File: PWRH1yl0gylOzsuFOl5QCTXRuNc.mft (raw, json) Hash identifier: 6MCO1Ol9KQdiCSUcG2nMoqCS+GW924oKogXA3Fplrlk= Subject key identifier: 4C:EE:A6:14:0A:B0:4F:52:39:39:45:CF:F5:A8:87:7A:BA:E8:2B:EE Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 Certificate issuer: /CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Certificate serial: 0522 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft Manifest number: 04ED Signing time: Tue 24 Mar 2026 23:29:07 +0000 Manifest this update: Tue 24 Mar 2026 23:29:06 +0000 Manifest next update: Tue 31 Mar 2026 23:29:06 +0000 Files and hashes: 1: PWRH1yl0gylOzsuFOl5QCTXRuNc.crl (hash: I3Tp2yMChEkk6LLmAofweX0WLrp7r0/y6xvYdoKP2K4=) 2: 793803867DEA11EC9FC67D66C4F9AE02.roa (hash: M0tXX+QlMHyjlPtQ7dwCZagDlP3SILPEeJfJgeWfgIw=) 3: 5997A6A624E011EDAEC0E529C4F9AE02.roa (hash: kgUDwmWc1IMp1gXUMvhqWSGJV5h+vYuf4OkX4cdGtfg=) 4: 18611004B42A11EC9BD3DE42C4F9AE02.roa (hash: F7zelpLk1UD+fObDTKpqTOpRawAblSrVeJkuuPP4a6c=) 5: 2CE5BE065BDA11ECAA855355C4F9AE02.roa (hash: yWnDOGXeBuapUFjfel16F3nDCGyHf2soSlsW7nZ7+cQ=) 6: 27992F96832811EFA1BAAC4FC4F9AE02.roa (hash: 0q4oZUj/sR1op8iE3N1tHBskG9i5bEl+Ec/0N0iGDjI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1314 (0x522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170E11, serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Validity Not Before: Mar 24 23:29:06 2026 GMT Not After : Mar 31 23:29:06 2026 GMT Subject: CN=69c31e42-5da1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8f:f2:b4:fc:07:ce:f8:b2:38:fd:ed:eb:00: 9f:aa:bc:45:0f:7c:30:ee:44:15:09:3b:af:30:89: b3:a9:69:e3:79:84:0c:b7:de:b0:b6:27:3d:4c:c3: ab:8c:b9:be:b3:10:e2:27:06:ee:d8:60:3d:97:30: 72:eb:f9:92:87:99:6a:a6:b0:ea:46:1b:11:4a:04: f7:c4:7a:ef:30:88:d3:e6:6c:44:57:36:24:53:05: 7a:14:20:f7:1f:ed:b1:ed:36:5e:8f:04:50:e8:23: 25:6d:b6:3a:56:e1:54:95:37:76:6b:30:26:34:69: 2a:d5:a5:85:75:a2:ff:86:b1:29:61:94:78:4b:35: 30:55:9d:de:90:83:63:0c:80:72:e0:d1:b6:ac:90: 17:6c:f3:d4:43:91:9d:a2:85:59:4a:53:27:96:8d: 16:ba:d7:03:4a:9f:c2:27:a4:99:23:b2:57:27:34: cd:aa:b2:06:90:7f:81:9f:6d:de:11:5c:91:70:b6: 60:64:c9:8f:2c:be:2c:c1:1c:a1:b7:c8:56:5b:ae: f9:db:5c:9a:68:6b:65:6c:ff:09:22:af:91:1e:6b: e4:ee:d9:47:4e:d1:63:dd:f3:15:89:df:31:b4:62: 24:12:4f:6a:2d:6c:cb:76:16:f7:df:8f:03:c3:ad: 71:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:EE:A6:14:0A:B0:4F:52:39:39:45:CF:F5:A8:87:7A:BA:E8:2B:EE X509v3 Authority Key Identifier: keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:b7:b5:06:d5:99:5e:1d:7e:58:4f:8b:03:69:45:eb:80:f9: c4:66:c8:83:5d:fa:f6:ce:11:37:70:d1:a0:09:c4:e3:2a:a8: ab:85:d1:ae:15:97:5c:17:d9:90:83:e9:f5:52:3d:3b:6e:1b: 6f:97:c1:09:97:12:c8:13:5f:b6:ea:1f:13:d4:5b:3b:c2:57: da:1d:07:a4:5d:b0:f2:f7:30:20:33:d9:7c:33:24:df:50:54: 51:b8:b2:1d:4c:d0:01:70:cd:56:1a:b9:09:b0:46:5c:09:15: 6c:e8:96:fd:1f:f6:3c:6b:9f:2f:b7:3e:53:7d:7b:32:c9:97: 49:9b:ae:68:54:cd:52:b3:25:68:0a:91:64:bf:62:d2:c4:c3: 23:e7:27:6b:31:9e:54:2f:e2:1a:ad:4a:17:93:9b:15:10:01: 28:33:0a:cc:99:d2:3f:a0:b9:a7:c1:31:a2:af:1a:76:00:b2: 79:02:c1:64:e0:2c:03:7a:7b:e9:fc:fe:15:61:31:f7:90:89: e9:65:af:a8:4e:55:55:a5:58:94:75:a5:61:fd:09:a0:91:86: c3:d2:b2:cc:23:bd:89:db:47:a0:2b:0f:98:fb:b8:3f:0e:50: f0:c7:bd:b0:94:19:a9:c9:f1:e8:e4:be:fc:50:8b:be:bc:8f: c2:20:0e:26 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFMTExMTAvBgNVBAUTKDNENjQ0N0Q3Mjk3NDgzMjk0RUNFQ0I4NTNBNUU1MDA5 MzVEMUI4RDcwHhcNMjYwMzI0MjMyOTA2WhcNMjYwMzMxMjMyOTA2WjAYMRYwFAYD VQQDEw02OWMzMWU0Mi01ZGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4/ytPwHzviyOP3t6wCfqrxFD3ww7kQVCTuvMImzqWnjeYQMt96wtic9TMOr jLm+sxDiJwbu2GA9lzBy6/mSh5lqprDqRhsRSgT3xHrvMIjT5mxEVzYkUwV6FCD3 H+2x7TZejwRQ6CMlbbY6VuFUlTd2azAmNGkq1aWFdaL/hrEpYZR4SzUwVZ3ekINj DIBy4NG2rJAXbPPUQ5GdooVZSlMnlo0WutcDSp/CJ6SZI7JXJzTNqrIGkH+Bn23e EVyRcLZgZMmPLL4swRyht8hWW67521yaaGtlbP8JIq+RHmvk7tlHTtFj3fMVid8x tGIkEk9qLWzLdhb3348Dw61x+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEzuphQK sE9SOTlFz/Woh3q66CvuMB8GA1UdIwQYMBaAFD1kR9cpdIMpTs7LhTpeUAk10bjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEUxMS9EMDYwQzlCMjVC RDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5bE96c3VGT2w1UUNUWFJ1 TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BXUkgxeWwwZ3lsT3pzdUZPbDVRQ1RYUnVOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEUxMS9EMDYwQzlCMjVCRDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5 bE96c3VGT2w1UUNUWFJ1TmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAALe1BtWZXh1+WE+LA2lF64D5xGbIg1369s4RN3DRoAnE4yqoq4XRrhWXXBfZ kIPp9VI9O24bb5fBCZcSyBNftuofE9RbO8JX2h0HpF2w8vcwIDPZfDMk31BUUbiy HUzQAXDNVhq5CbBGXAkVbOiW/R/2PGufL7c+U317MsmXSZuuaFTNUrMlaAqRZL9i 0sTDI+cnazGeVC/iGq1KF5ObFRABKDMKzJnSP6C5p8Exoq8adgCyeQLBZOAsA3p7 6fz+FWEx95CJ6WWvqE5VVaVYlHWlYf0JoJGGw9KyzCO9idtHoCsPmPu4Pw5Q8Me9 sJQZqcnx6OS+/FCLvryPwiAOJg== -----END CERTIFICATE-----Generated at Thu Mar 26 18:31:55 2026 by rpki-client