$ rpki-client -vvf rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft File: B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft (raw, json) Hash identifier: eaq4ZntdFWgy2WsWHwAEjzaOacRx0EFafp/QtdihfqA= Subject key identifier: D8:A8:DB:9E:38:97:48:07:95:A3:CB:E2:84:2F:25:F9:3C:D9:F6:3B Authority key identifier: 07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B Certificate issuer: /CN=A917C5E0/serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft Manifest number: 0135 Signing time: Wed 25 Mar 2026 04:42:01 +0000 Manifest this update: Wed 25 Mar 2026 04:42:00 +0000 Manifest next update: Wed 01 Apr 2026 04:42:00 +0000 Files and hashes: 1: B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl (hash: 5QcbwUgXvdRSP360/tRG6wBPDNyXHDAbn+BexZmChmg=) 2: 52AE08D4ABCF11F083B9610FC4F9AE02.roa (hash: iGq1jNFW8Jf/KFgz2eEoKwlpfdulgStFmeWoJUH2Q3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C5E0, serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Validity Not Before: Mar 25 04:42:00 2026 GMT Not After : Apr 1 04:42:00 2026 GMT Subject: CN=69c36799-8170 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d5:de:1a:bf:b3:a0:89:45:53:94:56:f8:6d: 5d:d9:e2:bf:cf:4b:7a:a4:7a:7b:9a:ef:9d:a9:9a: fa:ca:e2:70:de:22:6b:18:ad:90:bc:4d:83:8f:64: ee:71:8a:f1:e5:d0:fe:6c:b7:bc:5d:59:a6:fb:f5: b4:c0:f4:93:60:a1:25:fd:c6:9d:43:5a:b3:b3:99: db:ca:39:e7:ad:76:81:dd:06:99:0c:a7:15:95:48: 06:a1:ba:ee:c4:d5:07:48:89:c5:cf:70:50:0c:a6: d1:4c:11:94:0d:e9:a3:25:05:fa:31:09:aa:60:ef: 7f:89:2b:22:ab:76:93:09:4c:ac:7c:a3:5c:23:ea: 7b:ff:e0:a0:08:2c:02:16:59:0f:07:8d:b3:5c:ca: ea:f8:bb:4b:64:cb:e3:6e:6d:3e:86:45:20:a1:f7: 96:e8:33:f6:47:3b:5c:96:f3:b7:d8:da:26:97:4f: 08:0e:cd:9c:e6:3c:2d:5d:ff:c1:62:ba:91:34:db: da:ae:ec:07:e4:22:a9:9d:16:d1:bd:1e:b9:f8:0a: bb:39:90:d7:69:88:14:90:d6:b4:01:b7:d2:8d:c1: ec:ca:9a:46:57:f3:ac:3b:b7:82:77:08:b5:06:87: 38:c9:41:eb:5b:54:27:55:b4:57:af:ec:98:67:ba: b9:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A8:DB:9E:38:97:48:07:95:A3:CB:E2:84:2F:25:F9:3C:D9:F6:3B X509v3 Authority Key Identifier: keyid:07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:0f:92:cf:b2:c2:c1:a7:c4:f6:8f:ce:5c:fa:46:ee:2b:f6: d6:ab:a7:16:c7:f6:53:8b:b7:0f:ef:a4:9d:c4:b6:7b:ee:b4: ab:c4:10:86:72:e9:b8:62:ed:93:d7:e6:a7:3d:7a:c3:62:b6: ea:40:30:86:7c:37:1e:4e:b0:4f:2c:9c:3a:6d:10:fd:d5:34: d9:0f:98:d8:00:b4:c6:be:09:40:9f:13:c0:77:d1:2d:fb:3d: af:cc:c8:13:0d:06:9e:f0:9a:5a:60:78:60:f4:2d:b0:63:b0: 20:39:8a:d7:8b:68:92:27:83:da:db:f0:7f:01:26:5e:e8:ab: 12:b1:51:eb:80:3b:bb:ac:f3:e9:20:76:14:4d:ae:f7:37:f4: db:d0:e4:0c:76:ab:70:6a:87:fe:0a:ea:29:34:88:1f:72:ed: c6:88:83:64:6b:df:6e:16:6e:9a:21:2e:5e:32:f8:bc:a7:84: e9:85:fe:16:a4:2a:a5:39:96:01:47:e2:c0:4d:70:56:00:39: 53:96:2d:c7:20:63:15:97:98:f1:07:aa:67:e6:85:1c:f9:d3: 74:c3:66:1d:93:0c:f7:2d:11:3d:6a:ed:e4:42:a6:6f:7b:53: a4:2c:4e:55:e0:de:25:be:01:55:a5:b6:fb:fa:6a:d2:b6:32: c6:9a:a5:0c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1RTAxMTAvBgNVBAUTKDA3OEI0QTgwRDFERkU2QzA1MjUzM0FBREIxOTUzNEFD NTlBMzk1NEIwHhcNMjYwMzI1MDQ0MjAwWhcNMjYwNDAxMDQ0MjAwWjAYMRYwFAYD VQQDEw02OWMzNjc5OS04MTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtXeGr+zoIlFU5RW+G1d2eK/z0t6pHp7mu+dqZr6yuJw3iJrGK2QvE2Dj2Tu cYrx5dD+bLe8XVmm+/W0wPSTYKEl/cadQ1qzs5nbyjnnrXaB3QaZDKcVlUgGobru xNUHSInFz3BQDKbRTBGUDemjJQX6MQmqYO9/iSsiq3aTCUysfKNcI+p7/+CgCCwC FlkPB42zXMrq+LtLZMvjbm0+hkUgofeW6DP2RztclvO32Noml08IDs2c5jwtXf/B YrqRNNvaruwH5CKpnRbRvR65+Aq7OZDXaYgUkNa0AbfSjcHsyppGV/OsO7eCdwi1 Boc4yUHrW1QnVbRXr+yYZ7q5cQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNio2544 l0gHlaPL4oQvJfk82fY7MB8GA1UdIwQYMBaAFAeLSoDR3+bAUlM6rbGVNKxZo5VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzVFMC84NzIwQUIxODVB MTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVzQlNVenF0c1pVMHJGbWps VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I0dEtnTkhmNXNCU1V6cXRzWlUwckZtamxVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzVFMC84NzIwQUIxODVBMTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVz QlNVenF0c1pVMHJGbWpsVXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXw+Sz7LCwafE9o/OXPpG7iv21qunFsf2U4u3D++kncS2e+60q8QQhnLpuGLt k9fmpz16w2K26kAwhnw3Hk6wTyycOm0Q/dU02Q+Y2AC0xr4JQJ8TwHfRLfs9r8zI Ew0GnvCaWmB4YPQtsGOwIDmK14tokieD2tvwfwEmXuirErFR64A7u6zz6SB2FE2u 9zf029DkDHarcGqH/grqKTSIH3LtxoiDZGvfbhZumiEuXjL4vKeE6YX+FqQqpTmW AUfiwE1wVgA5U5YtxyBjFZeY8QeqZ+aFHPnTdMNmHZMM9y0RPWrt5EKmb3tTpCxO VeDeJb4BVaW2+/pq0rYyxpqlDA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:55:07 2026 by rpki-client