$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft File: iTEhgF-UFH033MbXS2N4Rvcjl8U.mft (raw, json) Hash identifier: Q2nr4QdlHStKeq/u0pU6UzCeH+gYweQEbyzS0z3AGCw= Subject key identifier: 16:7F:EA:70:C3:F0:7A:28:BF:53:44:17:9B:24:9C:52:F4:B6:12:4D Authority key identifier: 89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 Certificate issuer: /CN=A917E00F/serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Certificate serial: 05EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft Manifest number: 078A Signing time: Tue 24 Mar 2026 22:38:24 +0000 Manifest this update: Tue 24 Mar 2026 22:38:23 +0000 Manifest next update: Tue 31 Mar 2026 22:38:23 +0000 Files and hashes: 1: iTEhgF-UFH033MbXS2N4Rvcjl8U.crl (hash: VJE1wc6ftRXwsA0hmu28q21EzyDEbFBjFADGXy23+kc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:38:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1518 (0x5ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Validity Not Before: Mar 24 22:38:23 2026 GMT Not After : Mar 31 22:38:23 2026 GMT Subject: CN=69c31260-e85c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:57:4b:c3:1f:ba:d2:9d:3f:91:f8:73:97:4e: 6d:b2:7c:2c:27:0c:e7:ed:33:0e:7e:5b:ed:4b:07: ae:92:2f:27:de:72:9d:7f:12:f5:7d:7c:67:fc:44: 40:fa:4b:d9:f0:58:29:02:7e:91:78:d8:73:78:69: 58:c8:ac:25:8c:5a:40:12:ac:bc:ec:40:57:83:f9: e3:a4:6d:0f:43:eb:a0:00:e2:24:5b:5f:ed:d8:6a: fa:6a:10:0d:51:68:82:de:2d:83:29:a3:5a:1b:bd: 58:9c:02:71:b1:c9:cd:1e:83:df:9f:6f:f3:b5:5e: d8:8d:69:75:fc:96:fd:20:b6:a6:cf:10:5b:fc:fb: ef:ae:47:14:1c:08:65:9f:e1:e3:fc:03:8d:a7:5a: 89:cd:5e:b4:1c:58:76:41:c8:9a:ff:1a:88:63:a2: 6f:13:32:f3:ed:61:ce:9d:be:2e:9a:00:56:f9:4e: 5f:03:1b:ae:9a:6b:b5:36:5c:da:8f:f1:af:ac:ce: f5:68:a0:b3:ee:44:dd:1d:56:13:ab:f0:3f:92:b9: d2:0e:78:38:fe:0e:00:4b:58:5f:54:7c:4f:37:e3: bc:58:20:1e:1b:98:22:55:73:d3:a9:64:86:69:c0: 87:d2:a7:42:57:92:36:8c:1a:d0:01:1f:2b:97:63: 2f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:7F:EA:70:C3:F0:7A:28:BF:53:44:17:9B:24:9C:52:F4:B6:12:4D X509v3 Authority Key Identifier: keyid:89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:30:b6:db:6c:da:c7:fc:ad:dd:d0:9c:0d:b7:9f:06:de:f3: 29:42:8a:27:02:f2:7f:db:8e:b5:0a:d3:c0:21:d7:eb:d0:70: c7:f6:2d:90:a0:10:0b:5c:4e:0a:2e:b9:47:c3:a5:16:51:86: cf:55:e3:3a:46:1b:f1:35:e1:60:17:2a:0d:70:8e:8c:fc:ca: 95:2c:38:9b:13:8a:6f:06:04:0f:33:09:88:0a:04:be:ca:c2: 21:78:a2:11:eb:96:b4:9e:28:f0:8f:ba:6b:c7:03:8d:f8:c0: 76:0e:4e:17:e2:cc:4a:62:95:a2:3a:b6:08:d6:a3:d8:61:07: bf:7f:50:c3:2a:7a:6c:80:36:48:36:87:a3:55:f8:70:f7:86: 89:45:99:f1:0e:c6:70:90:a1:c9:bf:47:8e:1c:4a:bd:aa:f6: fe:30:ff:4b:46:9c:b9:91:93:5d:ae:20:7e:96:50:35:05:57: b6:0d:2b:db:35:70:86:14:f3:cb:d6:ac:ef:97:b2:24:92:56: 8b:30:d8:b7:ea:74:5b:39:8e:c1:c0:b1:06:8e:ec:09:4e:ab: 47:37:de:a9:f1:08:1a:0b:28:7c:91:36:38:02:db:5b:4d:77: 16:b7:47:57:64:24:ee:6c:4c:a7:71:df:c5:23:eb:d2:b9:55: d4:bd:cd:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDg5MzEyMTgwNUY5NDE0N0QzN0RDQzZENzRCNjM3ODQ2 RjcyMzk3QzUwHhcNMjYwMzI0MjIzODIzWhcNMjYwMzMxMjIzODIzWjAYMRYwFAYD VQQDEw02OWMzMTI2MC1lODVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1dLwx+60p0/kfhzl05tsnwsJwzn7TMOflvtSweuki8n3nKdfxL1fXxn/ERA +kvZ8FgpAn6ReNhzeGlYyKwljFpAEqy87EBXg/njpG0PQ+ugAOIkW1/t2Gr6ahAN UWiC3i2DKaNaG71YnAJxscnNHoPfn2/ztV7YjWl1/Jb9ILamzxBb/PvvrkcUHAhl n+Hj/AONp1qJzV60HFh2Qcia/xqIY6JvEzLz7WHOnb4umgBW+U5fAxuummu1Nlza j/GvrM71aKCz7kTdHVYTq/A/krnSDng4/g4AS1hfVHxPN+O8WCAeG5giVXPTqWSG acCH0qdCV5I2jBrQAR8rl2MvgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBZ/6nDD 8Hoov1NEF5sknFL0thJNMB8GA1UdIwQYMBaAFIkxIYBflBR9N9zG10tjeEb3I5fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi9FREU0OEI5Q0VF MjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZIMDMzTWJYUzJONFJ2Y2ps OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lURWhnRi1VRkgwMzNNYlhTMk40UnZjamw4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi9FREU0OEI5Q0VFMjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZI MDMzTWJYUzJONFJ2Y2psOFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAADC222zax/yt3dCcDbefBt7zKUKKJwLyf9uOtQrTwCHX69Bwx/YtkKAQC1xO Ci65R8OlFlGGz1XjOkYb8TXhYBcqDXCOjPzKlSw4mxOKbwYEDzMJiAoEvsrCIXii EeuWtJ4o8I+6a8cDjfjAdg5OF+LMSmKVojq2CNaj2GEHv39Qwyp6bIA2SDaHo1X4 cPeGiUWZ8Q7GcJChyb9HjhxKvar2/jD/S0acuZGTXa4gfpZQNQVXtg0r2zVwhhTz y9as75eyJJJWizDYt+p0WzmOwcCxBo7sCU6rRzfeqfEIGgsofJE2OALbW013FrdH V2Qk7mxMp3HfxSPr0rlV1L3NPw== -----END CERTIFICATE-----Generated at Thu Mar 26 15:20:49 2026 by rpki-client