$ rpki-client -vvf rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft File: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft (raw, json) Hash identifier: X7Ypzt5Nk7czdTAKsNsbIPvXfTn6glv4VorEuCvwcyw= Subject key identifier: 04:C2:AB:55:DC:EA:32:70:74:80:0B:2F:3A:92:2F:18:DD:08:3B:D4 Authority key identifier: BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 Certificate issuer: /CN=A917B503/serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft Manifest number: 0145 Signing time: Wed 25 Mar 2026 04:33:18 +0000 Manifest this update: Wed 25 Mar 2026 04:33:18 +0000 Manifest next update: Wed 01 Apr 2026 04:33:18 +0000 Files and hashes: 1: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl (hash: zm1HNIKkXM3bAXkV7bPl7eoJgzv3CnIaqOCGVZfYdDA=) 2: FF7048A08BB111EF8981B871C4F9AE02.roa (hash: Pf4vtsycRl7uQ7TRSuhW3ZPGeuFhV8pttTvvgiVqOIo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B503, serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Validity Not Before: Mar 25 04:33:18 2026 GMT Not After : Apr 1 04:33:18 2026 GMT Subject: CN=69c3658e-3686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4d:0a:db:11:d2:cd:4f:6d:9b:64:cb:55:21: 3f:43:5e:ae:dc:2a:3a:c5:a1:dc:04:0b:f8:a5:0b: e1:05:e3:76:f3:56:a3:8f:5c:22:e2:34:fa:8b:de: 79:7b:3d:8d:a8:ba:41:15:e6:3e:4a:c8:80:ab:81: 66:17:29:67:19:9e:75:28:1e:92:13:a3:02:d1:0b: 09:55:a6:3c:32:1a:2e:74:4f:13:ed:ca:36:8c:55: ad:30:7a:85:9f:aa:09:fa:8e:3e:51:d2:f9:d0:8f: f6:95:48:ec:4a:16:53:81:cd:0a:61:29:73:f9:af: b3:b3:67:b8:33:1f:50:e8:ad:2e:9c:ed:88:51:90: b3:1a:2d:30:c9:ee:9f:a9:96:f9:45:8e:50:fe:11: 61:d8:de:3d:c1:f8:bc:d4:0f:0e:4f:a8:ed:4a:f0: 11:56:23:85:e5:f3:b9:5a:80:a5:61:ed:26:b5:39: 3a:5a:73:e5:99:96:cc:86:83:1b:25:40:e5:32:43: 74:f4:0a:86:d8:7a:3c:40:82:8b:5f:2e:32:30:05: 18:56:d0:e9:ec:3f:06:05:ca:18:bb:6b:8d:d2:ae: 41:1e:af:34:82:76:69:85:f3:58:7d:03:37:0f:eb: 05:ef:9b:58:87:73:1a:59:da:74:2e:db:66:33:bd: a3:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:C2:AB:55:DC:EA:32:70:74:80:0B:2F:3A:92:2F:18:DD:08:3B:D4 X509v3 Authority Key Identifier: keyid:BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:66:83:e9:76:0b:d4:34:33:1d:70:52:fe:0a:52:4a:b8:26: 53:c2:45:88:75:33:f4:32:6f:3c:0c:c0:a3:4b:4b:9f:34:e7: c7:a7:7d:c9:33:84:b9:bc:dc:20:0a:5f:28:c4:30:38:39:11: f5:94:4a:13:2a:b0:39:65:88:b7:87:02:87:61:0c:72:a7:60: 23:89:3a:05:38:37:53:55:d2:97:c3:eb:4f:b9:76:3c:f0:26: f2:40:4c:5d:ce:3c:c0:87:f8:ef:15:ef:79:86:07:01:3e:96: 34:58:8f:d0:18:7b:c0:50:ba:25:e0:e9:d0:fc:58:dd:39:81: 07:21:70:a5:5f:4c:c9:3e:5c:e6:78:18:91:bc:ad:49:89:2d: 90:33:51:ac:be:00:2d:94:d7:b9:f6:f2:47:f1:83:df:b2:b1: 12:b3:d3:78:e7:7e:ad:ff:fb:c4:57:b0:90:db:57:1e:46:8c: 94:73:db:67:ee:f7:70:a1:79:21:d3:82:c3:dc:d6:b3:66:29: 9b:a4:77:4d:1f:9d:7c:14:ca:f0:1b:d3:30:67:52:bf:04:a5: 4a:2c:e6:e9:7a:c3:92:5e:e5:41:f5:3e:22:c5:97:29:45:36: 67:77:f5:1d:fb:cb:8b:b7:6b:ab:38:fc:f1:34:2d:ca:ff:e1: 7c:5e:e1:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MDMxMTAvBgNVBAUTKEJENjNFMEREQ0I1Q0Q0MUIzNDUwMURGMkU4MUEyQTcy Q0VFMzZFRjIwHhcNMjYwMzI1MDQzMzE4WhcNMjYwNDAxMDQzMzE4WjAYMRYwFAYD VQQDEw02OWMzNjU4ZS0zNjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy00K2xHSzU9tm2TLVSE/Q16u3Co6xaHcBAv4pQvhBeN281ajj1wi4jT6i955 ez2NqLpBFeY+SsiAq4FmFylnGZ51KB6SE6MC0QsJVaY8MhoudE8T7co2jFWtMHqF n6oJ+o4+UdL50I/2lUjsShZTgc0KYSlz+a+zs2e4Mx9Q6K0unO2IUZCzGi0wye6f qZb5RY5Q/hFh2N49wfi81A8OT6jtSvARViOF5fO5WoClYe0mtTk6WnPlmZbMhoMb JUDlMkN09AqG2Ho8QIKLXy4yMAUYVtDp7D8GBcoYu2uN0q5BHq80gnZphfNYfQM3 D+sF75tYh3MaWdp0LttmM72jhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFATCq1Xc 6jJwdIALLzqSLxjdCDvUMB8GA1UdIwQYMBaAFL1j4N3LXNQbNFAd8ugaKnLO427y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUwMy83Qjg4NUZFNDQz MTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFCczBVQjN5NkJvcWNzN2pi dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZXUGczY3RjMUJzMFVCM3k2Qm9xY3M3amJ2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUwMy83Qjg4NUZFNDQzMTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFC czBVQjN5NkJvcWNzN2pidkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABGaD6XYL1DQzHXBS/gpSSrgmU8JFiHUz9DJvPAzAo0tLnzTnx6d9yTOEubzc IApfKMQwODkR9ZRKEyqwOWWIt4cCh2EMcqdgI4k6BTg3U1XSl8PrT7l2PPAm8kBM Xc48wIf47xXveYYHAT6WNFiP0Bh7wFC6JeDp0PxY3TmBByFwpV9MyT5c5ngYkbyt SYktkDNRrL4ALZTXufbyR/GD37KxErPTeOd+rf/7xFewkNtXHkaMlHPbZ+73cKF5 IdOCw9zWs2Ypm6R3TR+dfBTK8BvTMGdSvwSlSizm6XrDkl7lQfU+IsWXKUU2Z3f1 HfvLi7drqzj88TQtyv/hfF7hkg== -----END CERTIFICATE-----Generated at Thu Mar 26 17:26:15 2026 by rpki-client