$ rpki-client -vvf rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft File: 7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft (raw, json) Hash identifier: u034kb/phohcSGcTmsyooD+LDEInDfQj6P7A9SR99RU= Subject key identifier: C2:6E:DD:F2:61:C6:9F:B1:2C:C0:0A:16:CB:5C:08:08:DF:44:87:72 Authority key identifier: EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26 Certificate issuer: /CN=A917ACF1/serialNumber=EC84D60F796BF416F8F81D18BADA2FFF87C15F26 Certificate serial: 0436 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft Manifest number: 042D Signing time: Wed 25 Mar 2026 00:01:12 +0000 Manifest this update: Wed 25 Mar 2026 00:01:11 +0000 Manifest next update: Wed 01 Apr 2026 00:01:11 +0000 Files and hashes: 1: 7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl (hash: rCaqe1Sd1RiESd5tf9cWnFfX8ZOWK2a9spo0kWnJvmQ=) 2: 5895821AB62611ECB410C81DC4F9AE02.roa (hash: t3Xie5IDxeCZBCdmI9sHWzRfklnVyurzehxhGsRDsok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1078 (0x436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ACF1, serialNumber=EC84D60F796BF416F8F81D18BADA2FFF87C15F26 Validity Not Before: Mar 25 00:01:11 2026 GMT Not After : Apr 1 00:01:11 2026 GMT Subject: CN=69c325c8-9631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1a:0c:c0:b6:e4:08:5d:46:b7:3e:35:f7:14: 95:fd:70:12:e4:d3:58:73:6e:57:a2:8c:e9:b2:32: 21:13:f2:5a:29:34:eb:81:02:fb:ce:5f:35:0a:cc: 0f:80:dd:c6:6c:ea:ad:68:48:6a:70:02:f8:b2:ac: ee:ba:af:64:5d:7e:dd:c8:6a:24:30:42:53:ed:b6: a8:13:4e:52:47:a9:c7:c9:a2:b4:ca:d8:ec:85:ca: 8a:32:60:2b:b6:de:85:6c:d2:0f:e5:15:e1:9c:f9: ab:f6:04:cf:e4:cb:6b:d5:ff:18:16:81:bf:af:c8: 00:ee:bf:97:16:1e:98:28:a5:e6:02:be:f2:44:78: 65:5a:d6:90:1e:24:fa:06:e9:23:83:c7:cc:2f:6a: bf:3e:67:41:dc:b8:f3:e1:c5:37:59:d8:f7:ee:a1: 2f:67:f0:c5:09:ea:67:aa:b8:ee:f6:34:cf:03:b8: 8d:65:ce:d8:08:80:98:a6:8a:cd:64:68:30:98:6b: 56:35:ee:4f:87:6d:6d:2d:7d:d9:64:3b:ec:7c:dd: ef:78:7b:d3:a9:31:b4:31:87:d4:eb:26:64:4e:54: 85:2d:61:11:11:df:31:92:1f:aa:14:99:7e:d5:9e: 2b:de:9c:2a:8c:dd:f5:13:bb:53:9b:bb:46:79:47: 44:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:6E:DD:F2:61:C6:9F:B1:2C:C0:0A:16:CB:5C:08:08:DF:44:87:72 X509v3 Authority Key Identifier: keyid:EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:4e:ba:d8:1f:7f:3e:92:81:14:4d:55:b1:ef:82:2d:9d:d5: b2:88:85:c8:83:60:c1:66:06:52:59:b2:22:6a:8d:f2:da:a1: a6:39:44:28:0b:99:69:b3:d3:c2:6b:1f:f3:bd:15:2b:fd:70: 16:60:1b:de:1b:1d:25:bd:1a:ab:1e:54:c5:57:12:02:eb:4b: ed:fd:cd:2f:bf:84:5b:72:4c:2f:63:18:c4:09:d3:38:67:32: 6f:f0:bf:7c:da:a7:03:00:58:bb:c7:5e:0d:57:56:83:b7:d9: bb:7a:fa:fb:ae:65:09:04:17:64:f9:2c:ba:d9:df:cb:97:5b: 7e:68:33:a8:0f:a3:8a:1f:3e:8e:ce:3c:b4:e6:5d:36:d0:45: 5e:c3:d5:80:f3:ca:ff:b5:d9:2a:ab:1c:9d:e3:3c:45:ec:94: 4b:a1:6f:6c:73:79:c4:ac:65:55:55:d7:47:41:65:96:81:cc: 24:50:b1:b7:c6:ab:84:65:c3:1e:f0:8f:cc:9e:d2:3c:d2:7a: 96:8f:04:66:45:39:b7:e2:3f:0e:75:03:97:7a:37:88:47:6d: bb:b9:88:5a:80:71:9f:25:85:bb:5f:7d:c0:5b:f9:b1:12:9e: 98:ba:bd:e4:b5:2f:ef:88:93:30:c9:6c:97:d8:a2:9c:bb:f0: 36:66:89:88 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDRjExMTAvBgNVBAUTKEVDODRENjBGNzk2QkY0MTZGOEY4MUQxOEJBREEyRkZG ODdDMTVGMjYwHhcNMjYwMzI1MDAwMTExWhcNMjYwNDAxMDAwMTExWjAYMRYwFAYD VQQDEw02OWMzMjVjOC05NjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhoMwLbkCF1Gtz419xSV/XAS5NNYc25XoozpsjIhE/JaKTTrgQL7zl81CswP gN3GbOqtaEhqcAL4sqzuuq9kXX7dyGokMEJT7baoE05SR6nHyaK0ytjshcqKMmAr tt6FbNIP5RXhnPmr9gTP5Mtr1f8YFoG/r8gA7r+XFh6YKKXmAr7yRHhlWtaQHiT6 Bukjg8fML2q/PmdB3Ljz4cU3Wdj37qEvZ/DFCepnqrju9jTPA7iNZc7YCICYporN ZGgwmGtWNe5Ph21tLX3ZZDvsfN3veHvTqTG0MYfU6yZkTlSFLWEREd8xkh+qFJl+ 1Z4r3pwqjN31E7tTm7tGeUdEHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMJu3fJh xp+xLMAKFstcCAjfRIdyMB8GA1UdIwQYMBaAFOyE1g95a/QW+PgdGLraL/+HwV8m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUNGMS84NjgzNTUwNkEw MzkxMUVDOEExRjFDMjNDNEY5QUUwMi83SVRXRDNscjlCYjQtQjBZdXRvdl80ZkJY eVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdJVFdEM2xyOUJiNC1CMFl1dG92XzRmQlh5WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUNGMS84NjgzNTUwNkEwMzkxMUVDOEExRjFDMjNDNEY5QUUwMi83SVRXRDNscjlC YjQtQjBZdXRvdl80ZkJYeVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZk662B9/PpKBFE1Vse+CLZ3VsoiFyINgwWYGUlmyImqN8tqhpjlEKAuZabPT wmsf870VK/1wFmAb3hsdJb0aqx5UxVcSAutL7f3NL7+EW3JML2MYxAnTOGcyb/C/ fNqnAwBYu8deDVdWg7fZu3r6+65lCQQXZPksutnfy5dbfmgzqA+jih8+js48tOZd NtBFXsPVgPPK/7XZKqscneM8ReyUS6FvbHN5xKxlVVXXR0FlloHMJFCxt8arhGXD HvCPzJ7SPNJ6lo8EZkU5t+I/DnUDl3o3iEdtu7mIWoBxnyWFu199wFv5sRKemLq9 5LUv74iTMMlsl9iinLvwNmaJiA== -----END CERTIFICATE-----Generated at Thu Mar 26 12:58:12 2026 by rpki-client