$ rpki-client -vvf rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft File: R2wrlqUY81f22XaCqHHD5Iu54SM.mft (raw, json) Hash identifier: Lc85dQyGsXfJpAV4oqj8Q7aoyUSJuJ6Fepkj7V+LS0w= Subject key identifier: 64:15:B0:C8:0E:53:FC:33:01:D4:AA:27:2B:A5:64:2A:D2:8A:2E:A5 Authority key identifier: 47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 Certificate issuer: /CN=A917A442/serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Certificate serial: 0247 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft Manifest number: 023F Signing time: Wed 25 Mar 2026 01:57:20 +0000 Manifest this update: Wed 25 Mar 2026 01:57:19 +0000 Manifest next update: Wed 01 Apr 2026 01:57:19 +0000 Files and hashes: 1: R2wrlqUY81f22XaCqHHD5Iu54SM.crl (hash: ndcY3yVeWWttAPllCDOUgfbAcADD57GKKzI7y3IYbBg=) 2: 65E02670C83E11ED9FAAFA22C4F9AE02.roa (hash: EQlBcz9bqMpqpDriLFM35Owqk71TepDYe/4O7SV3TS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 583 (0x247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A442, serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Validity Not Before: Mar 25 01:57:19 2026 GMT Not After : Apr 1 01:57:19 2026 GMT Subject: CN=69c34100-ea41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d3:f7:7f:c2:b9:45:78:09:d3:5f:97:d6:8a: 8f:cd:87:22:06:b2:4f:2a:b1:90:16:dc:b5:b5:4b: 52:1e:2d:80:94:a8:3f:5c:49:e7:28:31:2f:37:f2: 40:ec:b2:31:01:92:90:8a:fa:64:e3:ad:ea:98:38: 88:c5:3e:26:9b:04:73:8b:f5:ac:41:3a:6e:0c:51: 86:b0:a0:23:94:0c:99:9c:97:5c:21:e5:50:4e:dd: 9d:db:c1:86:2a:e6:a4:81:7f:cf:a2:04:ed:c0:ad: a2:d5:74:ee:60:a6:82:f9:94:b1:b7:3d:60:eb:a7: 78:99:6e:0a:07:c5:05:f5:3f:15:0a:fd:1d:cc:ed: c1:0e:dd:76:c7:fd:f2:18:a2:c8:66:06:ee:7e:27: c6:c3:aa:7c:74:27:bd:b4:bc:4e:0a:a7:5b:66:6b: 43:c0:72:1e:39:86:87:f5:8f:88:6b:7d:07:e5:be: 4d:33:02:55:c2:36:1f:7a:7a:5b:5f:04:42:16:1e: 37:07:8b:9f:9e:a8:5f:14:c1:78:ed:76:25:c4:cb: aa:81:d8:f2:c9:38:e1:22:b1:05:f8:4d:58:83:3d: 21:72:c7:89:bb:2f:ed:ab:d0:af:b8:64:37:79:49: a1:97:6c:f5:89:ac:36:26:fa:ce:95:4e:39:28:17: 30:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:15:B0:C8:0E:53:FC:33:01:D4:AA:27:2B:A5:64:2A:D2:8A:2E:A5 X509v3 Authority Key Identifier: keyid:47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:89:05:70:0d:79:89:e2:d2:96:92:15:b0:d3:7b:78:ad:4c: d0:95:ff:b1:63:18:e2:36:e0:6f:b9:12:47:d1:fc:c4:b1:02: fe:dd:6b:a2:18:cb:98:11:e4:76:aa:3f:ac:03:b1:8a:be:11: f6:c6:70:28:cd:5c:66:65:74:8a:78:5d:1a:4a:9c:53:98:5e: 28:15:84:8b:e2:d2:d3:0b:59:ed:a2:47:d4:c1:34:93:60:28: a0:b9:f2:d6:40:82:e2:2f:9d:19:37:6d:05:81:f0:90:58:06: 23:b7:5f:2e:da:e2:73:f0:ef:2e:4c:0a:77:14:8a:81:76:b9: 4a:c7:3a:23:06:66:8f:f9:a8:3d:90:47:f1:d7:f9:5b:c2:02: d5:20:23:b6:26:d1:66:cb:5d:88:64:09:d9:73:af:01:dd:3f: 92:25:69:7c:e1:d6:0d:64:1a:8a:bd:1d:28:eb:e5:38:4e:10: 9c:bb:f8:56:c4:a6:87:9a:31:dd:d6:95:47:16:83:12:26:42: a1:91:15:e5:43:8c:ee:03:71:27:f3:4b:9f:fb:a3:ee:29:db: f1:1a:c4:8d:75:97:4d:db:2a:02:e0:29:7b:2c:ab:ec:09:4a: 9d:2c:3c:5b:f9:6c:40:b3:ee:5d:52:ca:06:5e:53:fc:55:91: 65:00:3c:c8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0NDIxMTAvBgNVBAUTKDQ3NkMyQjk2QTUxOEYzNTdGNkQ5NzY4MkE4NzFDM0U0 OEJCOUUxMjMwHhcNMjYwMzI1MDE1NzE5WhcNMjYwNDAxMDE1NzE5WjAYMRYwFAYD VQQDEw02OWMzNDEwMC1lYTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9P3f8K5RXgJ01+X1oqPzYciBrJPKrGQFty1tUtSHi2AlKg/XEnnKDEvN/JA 7LIxAZKQivpk463qmDiIxT4mmwRzi/WsQTpuDFGGsKAjlAyZnJdcIeVQTt2d28GG KuakgX/PogTtwK2i1XTuYKaC+ZSxtz1g66d4mW4KB8UF9T8VCv0dzO3BDt12x/3y GKLIZgbufifGw6p8dCe9tLxOCqdbZmtDwHIeOYaH9Y+Ia30H5b5NMwJVwjYfenpb XwRCFh43B4ufnqhfFMF47XYlxMuqgdjyyTjhIrEF+E1Ygz0hcseJuy/tq9CvuGQ3 eUmhl2z1iaw2JvrOlU45KBcw7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGQVsMgO U/wzAdSqJyulZCrSii6lMB8GA1UdIwQYMBaAFEdsK5alGPNX9tl2gqhxw+SLueEj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ0Mi9FMEU3REI1NkM4 MzkxMUVEQUM3MkIxMUNDNEY5QUUwMi9SMndybHFVWTgxZjIyWGFDcUhIRDVJdTU0 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Iyd3JscVVZODFmMjJYYUNxSEhENUl1NTRTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTQ0Mi9FMEU3REI1NkM4MzkxMUVEQUM3MkIxMUNDNEY5QUUwMi9SMndybHFVWTgx ZjIyWGFDcUhIRDVJdTU0U00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbokFcA15ieLSlpIVsNN7eK1M0JX/sWMY4jbgb7kSR9H8xLEC/t1rohjLmBHk dqo/rAOxir4R9sZwKM1cZmV0inhdGkqcU5heKBWEi+LS0wtZ7aJH1ME0k2AooLny 1kCC4i+dGTdtBYHwkFgGI7dfLtric/DvLkwKdxSKgXa5Ssc6IwZmj/moPZBH8df5 W8IC1SAjtibRZstdiGQJ2XOvAd0/kiVpfOHWDWQair0dKOvlOE4QnLv4VsSmh5ox 3daVRxaDEiZCoZEV5UOM7gNxJ/NLn/uj7inb8RrEjXWXTdsqAuApeyyr7AlKnSw8 W/lsQLPuXVLKBl5T/FWRZQA8yA== -----END CERTIFICATE-----Generated at Thu Mar 26 20:42:38 2026 by rpki-client