$ rpki-client -vvf rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft File: _whTCVKXG6BlIktSH1ZWO20hJO0.mft (raw, json) Hash identifier: pBXDJnWJ4o+JewEaYoGFI4DM15vABJS0gLW3bgBHe4M= Subject key identifier: 66:2E:FC:B5:8C:27:0B:93:20:F5:AB:02:18:39:E2:E0:1F:A6:A9:1C Authority key identifier: FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED Certificate issuer: /CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Certificate serial: 0D8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft Manifest number: 0D86 Signing time: Thu 26 Mar 2026 17:53:41 +0000 Manifest this update: Thu 26 Mar 2026 17:53:41 +0000 Manifest next update: Thu 02 Apr 2026 17:53:41 +0000 Files and hashes: 1: _whTCVKXG6BlIktSH1ZWO20hJO0.crl (hash: HKFnBEHeWtoKSNtP3Te/nZnjWtxvjI/pMvqml6M8uLA=) 2: 3A8AC908E41C11E9AD4A8D16C4F9AE02.roa (hash: n4Sr8XQlMSqL6gzDWm/TDckqQSOFH1CNlIw47oAhdDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 17:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3471 (0xd8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E475, serialNumber=FF08530952971BA065224B521F56563B6D2124ED Validity Not Before: Mar 26 17:53:41 2026 GMT Not After : Apr 2 17:53:41 2026 GMT Subject: CN=69c572a5-c3ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:06:27:d5:bb:2e:69:55:f5:18:86:3d:8f:8b: e8:17:0c:14:32:8d:aa:d1:64:08:2c:35:9d:85:e8: 83:ef:ad:8a:ad:26:23:20:ac:fc:51:75:b7:4f:53: 57:25:fa:76:a1:a9:13:66:93:92:96:ea:b2:43:67: 2c:dc:d7:c3:12:2c:96:de:b0:96:20:f7:68:8d:83: f1:4d:4f:48:56:e3:8e:d0:06:c9:b4:40:de:33:e6: ff:eb:18:48:6a:6c:f4:a5:98:3b:5e:04:7b:c0:29: 84:84:57:50:73:74:fd:ed:c8:98:2b:4a:8f:1d:f5: 5b:f2:78:25:0f:71:c4:ba:e3:c3:7c:c5:60:c7:b4: 01:5a:62:ab:a4:50:b2:b4:ec:f0:aa:17:23:d8:fa: 42:d9:5d:35:d9:aa:86:ad:ea:35:35:d7:60:b6:ca: 53:a2:59:65:12:9e:9d:ba:22:7a:68:d1:d5:bc:a7: 99:d3:b4:7e:12:91:c0:e6:cb:38:51:c6:38:f6:a4: 99:52:2c:f6:78:20:fe:3d:21:03:51:ed:fe:4d:ec: 33:bd:6a:c0:e7:33:56:e7:2a:1b:90:f9:f5:02:8a: ad:34:59:1c:30:e3:ee:a4:6a:48:78:d4:7c:9d:1e: f0:c0:26:42:2f:0c:5c:f5:ea:c6:ca:d0:7a:89:67: 93:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:2E:FC:B5:8C:27:0B:93:20:F5:AB:02:18:39:E2:E0:1F:A6:A9:1C X509v3 Authority Key Identifier: keyid:FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:58:48:8d:a3:78:e6:6d:ed:25:e6:39:08:6f:72:cf:18:e8: 23:36:68:81:34:61:07:4a:92:75:15:97:5d:91:45:e0:26:5e: cd:70:4c:b9:ef:96:7b:7c:30:0b:a5:33:19:5b:78:c5:ee:99: 8d:c2:e2:5f:4f:93:fe:c1:3f:41:ed:d8:fc:51:50:12:b6:61: cc:19:a1:80:1d:07:6e:92:bc:3e:7b:f3:c7:a9:f5:71:c6:48: 9a:dd:68:b3:3f:ef:82:ce:0c:12:a3:ce:93:c0:19:1e:9b:b3: 94:1a:69:58:92:75:78:4a:9b:52:cf:22:39:96:6e:e9:f0:b1: 9e:bc:5c:65:38:ca:28:ee:8f:65:10:c4:de:8a:33:3a:2c:5e: 8a:5e:90:5d:2c:77:24:52:3e:e1:55:f0:e7:09:7e:96:87:a6: 27:43:21:eb:3c:87:ce:81:a1:75:f2:35:dc:e0:81:0c:bc:13: b4:c8:da:8e:53:58:9b:d0:2c:09:d4:f5:4d:24:93:40:28:72: 29:9a:ae:2d:b7:cb:b5:d7:98:be:ec:44:37:49:ec:50:78:80: e0:34:b3:53:e8:49:28:cd:af:96:51:bd:34:03:9a:3d:2d:bf: 39:b3:e0:1c:36:f3:2b:a0:98:3f:b2:57:8a:81:43:f4:e0:8a: 5e:7b:11:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0NzUxMTAvBgNVBAUTKEZGMDg1MzA5NTI5NzFCQTA2NTIyNEI1MjFGNTY1NjNC NkQyMTI0RUQwHhcNMjYwMzI2MTc1MzQxWhcNMjYwNDAyMTc1MzQxWjAYMRYwFAYD VQQDEw02OWM1NzJhNS1jM2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgYn1bsuaVX1GIY9j4voFwwUMo2q0WQILDWdheiD762KrSYjIKz8UXW3T1NX Jfp2oakTZpOSluqyQ2cs3NfDEiyW3rCWIPdojYPxTU9IVuOO0AbJtEDeM+b/6xhI amz0pZg7XgR7wCmEhFdQc3T97ciYK0qPHfVb8nglD3HEuuPDfMVgx7QBWmKrpFCy tOzwqhcj2PpC2V012aqGreo1NddgtspTolllEp6duiJ6aNHVvKeZ07R+EpHA5ss4 UcY49qSZUiz2eCD+PSEDUe3+TewzvWrA5zNW5yobkPn1AoqtNFkcMOPupGpIeNR8 nR7wwCZCLwxc9erGytB6iWeTgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGYu/LWM JwuTIPWrAhg54uAfpqkcMB8GA1UdIwQYMBaAFP8IUwlSlxugZSJLUh9WVjttISTt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTQ3NS9EQkZCM0VCNEU0 MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2QmxJa3RTSDFaV08yMGhK TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193aFRDVktYRzZCbElrdFNIMVpXTzIwaEpPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTQ3NS9EQkZCM0VCNEU0MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2 QmxJa3RTSDFaV08yMGhKTzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAllhIjaN45m3tJeY5CG9yzxjoIzZogTRhB0qSdRWXXZFF4CZezXBMue+We3ww C6UzGVt4xe6ZjcLiX0+T/sE/Qe3Y/FFQErZhzBmhgB0HbpK8Pnvzx6n1ccZImt1o sz/vgs4MEqPOk8AZHpuzlBppWJJ1eEqbUs8iOZZu6fCxnrxcZTjKKO6PZRDE3ooz Oixeil6QXSx3JFI+4VXw5wl+loemJ0Mh6zyHzoGhdfI13OCBDLwTtMjajlNYm9As CdT1TSSTQChyKZquLbfLtdeYvuxEN0nsUHiA4DSzU+hJKM2vllG9NAOaPS2/ObPg HDbzK6CYP7JXioFD9OCKXnsRiw== -----END CERTIFICATE-----Generated at Sat Mar 28 08:43:46 2026 by rpki-client