$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft File: VCuU2GJc9xGWT9E3QSldJ616kAQ.mft (raw, json) Hash identifier: gSoEd3jFtLGNM0sEDnK300KJnSqBknAXPvA6sLNlcto= Subject key identifier: FF:99:AB:FC:A4:85:4E:EC:5B:6F:C4:A8:C9:DC:0C:23:04:0A:B8:12 Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Certificate serial: 02A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft Manifest number: 0279 Signing time: Wed 25 Mar 2026 02:07:31 +0000 Manifest this update: Wed 25 Mar 2026 02:07:31 +0000 Manifest next update: Wed 01 Apr 2026 02:07:31 +0000 Files and hashes: 1: VCuU2GJc9xGWT9E3QSldJ616kAQ.crl (hash: MKV6bIGiFj+oMxQPUAJfdgZinQlwLfBqJy9qexfnDpk=) 2: 020607A2498711EFBB260663C4F9AE02.roa (hash: NE7gXopF/sfzGGjBPy5TRpiqm9S4sfZVevZ1+WaB9aw=) 3: 232F9552F80D11F0AED4E007706F56BC.roa (hash: 1VQhLb/1DZcPUazmrGPc7TJ13JYFfVY10cAzsAWEN8k=) 4: 23852F72273711F1B6AB5B98AD833773.roa (hash: P31b2FKpx48VcLnsu7CI9st3Wk7Nus+neDGiJjmbJZg=) 5: 3352C1BAECFC11EFA398671BC4F9AE02.roa (hash: ByTjShjzlXNDkMN69/J18p3VnbTj5vjjzwheoKvtWG4=) 6: 05F505961AA311F0A475D464C4F9AE02.roa (hash: xZbkhabGis/U5mUU9RekGm8eUQ6rFKaSmoEBRgqnHq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 675 (0x2a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Validity Not Before: Mar 25 02:07:31 2026 GMT Not After : Apr 1 02:07:31 2026 GMT Subject: CN=69c34363-dd66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:58:ba:c1:ad:99:4f:45:1f:37:ea:33:4c:64: 2d:6a:8b:0b:af:53:b7:f5:d9:17:44:a4:ad:1a:3e: c3:01:4b:c9:55:b7:35:97:79:27:3b:fd:40:92:78: d8:d6:87:0e:bc:49:b8:07:e0:61:3c:ed:81:31:db: 40:c3:d8:1d:07:17:d8:b3:a6:27:1f:e3:f9:5a:24: 64:4f:56:16:0a:e0:6c:94:75:69:a1:36:a5:06:e8: d9:17:c5:c6:4a:31:57:30:f8:ed:eb:24:81:c6:65: 23:6c:09:9b:0d:67:49:44:ec:85:3f:96:37:c4:fb: 3b:17:0b:bc:2c:cb:cd:f2:e0:9b:c6:e4:c6:8a:3b: cd:46:32:13:11:f0:a2:1f:e6:ba:23:36:4c:f7:9a: 0f:fe:62:2f:94:2d:b8:1c:44:3c:1b:7d:43:8c:4a: 8d:31:91:a6:b3:20:35:8c:7d:fa:ec:35:ad:14:44: c1:4e:bf:28:c8:d2:85:69:eb:a1:68:f6:97:51:1c: 06:03:3e:2d:9f:94:8f:dd:de:3d:d8:7b:97:62:74: 3d:89:32:f2:8e:3e:a3:2c:b3:a2:eb:a9:80:26:c1: 79:ea:29:5f:13:67:c4:f4:0d:8d:b9:c8:8f:df:12: ca:f6:fe:93:16:3e:ef:f4:7b:cd:95:72:80:9e:90: 15:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:99:AB:FC:A4:85:4E:EC:5B:6F:C4:A8:C9:DC:0C:23:04:0A:B8:12 X509v3 Authority Key Identifier: keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:0b:a7:1f:97:94:67:92:f6:64:24:43:f7:b8:34:c6:2a:fc: c4:36:a3:6b:28:b3:ab:99:19:ec:15:5f:b7:45:47:5d:34:cb: c4:fd:bb:61:ce:11:73:0b:b0:e6:18:9c:2b:6b:8d:1f:9c:b5: e1:0f:0e:a9:bb:3d:8c:76:22:57:68:cd:5e:a5:f2:5f:52:ca: c5:97:98:b8:f8:5d:22:c0:e4:79:5c:f8:0e:b0:22:01:5d:07: 31:af:a9:12:76:2e:6e:64:57:29:21:64:ae:ff:d6:5d:b7:50: ff:d4:cd:88:da:b0:1f:ff:be:ba:f1:78:4e:85:39:76:89:a9: 27:e8:74:33:e1:af:7c:72:dd:22:0f:5d:5d:d6:f2:b7:59:39: f2:75:d6:27:0e:e4:67:af:ba:81:25:d8:a5:b3:19:fd:17:79: 7f:41:e3:1d:3e:fb:0e:e7:51:c6:37:ed:56:08:bc:eb:cd:ad: 8a:26:26:19:d3:2e:e6:96:53:ef:35:52:76:e3:68:d3:4f:4e: b8:f9:91:72:2c:c3:7b:12:cc:cb:61:bf:e0:1f:2d:a1:1b:86: 00:c3:d8:00:3a:dd:ab:b5:f1:fe:2e:70:30:79:63:2b:30:1b: f2:b3:36:a1:51:3d:66:c2:dc:f2:d3:14:39:3f:6c:08:cd:11: 55:b4:a8:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDU0MkI5NEQ4NjI1Q0Y3MTE5NjRGRDEzNzQxMjk1RDI3 QUQ3QTkwMDQwHhcNMjYwMzI1MDIwNzMxWhcNMjYwNDAxMDIwNzMxWjAYMRYwFAYD VQQDEw02OWMzNDM2My1kZDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFi6wa2ZT0UfN+ozTGQtaosLr1O39dkXRKStGj7DAUvJVbc1l3knO/1AknjY 1ocOvEm4B+BhPO2BMdtAw9gdBxfYs6YnH+P5WiRkT1YWCuBslHVpoTalBujZF8XG SjFXMPjt6ySBxmUjbAmbDWdJROyFP5Y3xPs7Fwu8LMvN8uCbxuTGijvNRjITEfCi H+a6IzZM95oP/mIvlC24HEQ8G31DjEqNMZGmsyA1jH367DWtFETBTr8oyNKFaeuh aPaXURwGAz4tn5SP3d492HuXYnQ9iTLyjj6jLLOi66mAJsF56ilfE2fE9A2NuciP 3xLK9v6TFj7v9HvNlXKAnpAV4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP+Zq/yk hU7sW2/EqMncDCMECrgSMB8GA1UdIwQYMBaAFFQrlNhiXPcRlk/RN0EpXSetepAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC8xNjFENEMwQUU0 Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4R1dUOUUzUVNsZEo2MTZr QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDdVUyR0pjOXhHV1Q5RTNRU2xkSjYxNmtBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC8xNjFENEMwQUU0Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4 R1dUOUUzUVNsZEo2MTZrQVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmAunH5eUZ5L2ZCRD97g0xir8xDajayizq5kZ7BVft0VHXTTLxP27Yc4Rcwuw 5hicK2uNH5y14Q8Oqbs9jHYiV2jNXqXyX1LKxZeYuPhdIsDkeVz4DrAiAV0HMa+p EnYubmRXKSFkrv/WXbdQ/9TNiNqwH/++uvF4ToU5dompJ+h0M+GvfHLdIg9dXdby t1k58nXWJw7kZ6+6gSXYpbMZ/Rd5f0HjHT77DudRxjftVgi8682tiiYmGdMu5pZT 7zVSduNo009OuPmRcizDexLMy2G/4B8toRuGAMPYADrdq7Xx/i5wMHljKzAb8rM2 oVE9ZsLc8tMUOT9sCM0RVbSomw== -----END CERTIFICATE-----Generated at Thu Mar 26 23:49:04 2026 by rpki-client