$ rpki-client -vvf rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft File: bycituUTNGUloqmUZBtOJ_BNU1Y.mft (raw, json) Hash identifier: +PiIXwiabqNAUm6ucqTqroQDG05GAUcJKQz1Y6Vtm+Q= Subject key identifier: 33:53:6F:76:34:E5:4C:AA:98:96:F9:E3:90:EC:C0:88:50:C7:25:2E Authority key identifier: 6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 Certificate issuer: /CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Certificate serial: 032C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft Manifest number: 0322 Signing time: Wed 25 Mar 2026 00:44:45 +0000 Manifest this update: Wed 25 Mar 2026 00:44:44 +0000 Manifest next update: Wed 01 Apr 2026 00:44:44 +0000 Files and hashes: 1: bycituUTNGUloqmUZBtOJ_BNU1Y.crl (hash: cf5+WmfTLxS/KkdtxmY+E93BGj8YNd1ZU27j700XYzk=) 2: A48AD700072111ED91EABE39C4F9AE02.roa (hash: nNS4I6wnFDV0IY10DkD6nefkEApdL1HBIkLyD0uDd2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:44:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 812 (0x32c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870B9, serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Validity Not Before: Mar 25 00:44:44 2026 GMT Not After : Apr 1 00:44:44 2026 GMT Subject: CN=69c32ffd-2e7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:41:00:f1:71:bb:1b:4b:cd:52:53:e0:61:3a: 56:e5:61:b2:1d:73:5f:69:be:66:a0:ae:52:4f:01: c2:d4:90:52:0e:72:79:ca:f6:c4:78:84:77:b1:6d: 48:8c:00:37:d8:15:09:08:c6:01:fe:ae:b4:15:a4: 02:f4:6b:98:61:d0:93:0a:be:ff:3b:cb:4d:fe:89: 08:fe:a2:e6:3e:9a:de:5c:47:3d:c5:29:ba:fa:d0: 99:39:69:dd:ff:ce:29:2b:ef:e6:73:fa:f8:1e:ff: c1:81:5d:1d:1c:ba:f3:ea:31:b8:dd:46:58:a1:c4: 78:66:c0:1b:ec:af:1b:f1:7f:bf:41:e5:e3:f5:0b: 9b:98:ca:70:80:d2:b1:44:f6:be:4f:da:6b:f2:5b: 50:d6:99:29:2b:18:b9:a3:e9:a0:cc:97:32:35:e1: 5b:f8:d5:ab:2f:a4:ef:2a:56:fa:b0:3e:79:a9:f5: c2:b9:eb:e3:4a:d4:00:67:f4:46:45:0c:29:c9:02: aa:3d:37:52:c3:19:2d:ca:1f:08:09:3a:b2:79:38: 77:d0:5f:e6:d1:fa:9e:ce:ac:68:a1:04:5e:4b:70: f0:e4:ea:d4:5d:21:75:26:11:1f:87:a4:f3:56:bb: 21:fd:6f:40:39:0d:65:d5:92:50:d6:bb:57:9a:92: b0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:53:6F:76:34:E5:4C:AA:98:96:F9:E3:90:EC:C0:88:50:C7:25:2E X509v3 Authority Key Identifier: keyid:6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:0d:12:9a:ba:f7:91:92:cf:85:b4:d9:9c:56:99:95:4d:96: 81:98:52:51:9d:be:4a:09:8b:56:35:53:12:e2:ce:cc:85:99: c9:c1:89:e6:b3:30:f1:44:71:ee:0d:68:87:89:b1:42:dd:88: 58:d7:fb:22:1a:fa:dd:91:81:e1:64:a2:b4:80:23:2e:db:24: c7:39:d9:6a:5d:80:38:39:e3:54:5b:53:95:c8:70:0e:8f:eb: 98:93:59:13:e9:47:84:23:5d:d6:77:c2:36:89:2c:fa:a7:3b: dc:8a:51:b9:8a:fb:68:a5:26:9f:a1:90:a1:21:85:b4:e7:f6: e1:d0:01:d5:3d:c7:88:a4:83:84:b3:08:bd:04:7b:81:c3:61: 33:e2:87:c0:19:62:96:7f:3d:bc:74:76:4f:b2:56:6d:20:3a: 82:12:d4:22:89:6e:f5:48:fb:bb:5d:01:78:5a:a9:a2:8b:31: 3f:fb:00:28:32:bd:d1:ee:19:18:95:8d:db:97:39:42:30:2a: ff:60:c6:a0:8f:8f:79:de:2c:b4:aa:5e:f0:58:4d:d1:ed:71: 78:da:8b:9b:ef:e9:1f:ce:76:4e:f8:9d:51:d2:91:76:8d:a4: 7e:2d:58:56:95:4f:5b:35:99:46:a1:c3:3a:47:dd:0b:9f:37: e9:49:df:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQjkxMTAvBgNVBAUTKDZGMjcyMkI2RTUxMzM0NjUyNUEyQTk5NDY0MUI0RTI3 RjA0RDUzNTYwHhcNMjYwMzI1MDA0NDQ0WhcNMjYwNDAxMDA0NDQ0WjAYMRYwFAYD VQQDEw02OWMzMmZmZC0yZTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20EA8XG7G0vNUlPgYTpW5WGyHXNfab5moK5STwHC1JBSDnJ5yvbEeIR3sW1I jAA32BUJCMYB/q60FaQC9GuYYdCTCr7/O8tN/okI/qLmPpreXEc9xSm6+tCZOWnd /84pK+/mc/r4Hv/BgV0dHLrz6jG43UZYocR4ZsAb7K8b8X+/QeXj9QubmMpwgNKx RPa+T9pr8ltQ1pkpKxi5o+mgzJcyNeFb+NWrL6TvKlb6sD55qfXCuevjStQAZ/RG RQwpyQKqPTdSwxktyh8ICTqyeTh30F/m0fqezqxooQReS3Dw5OrUXSF1JhEfh6Tz Vrsh/W9AOQ1l1ZJQ1rtXmpKw9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDNTb3Y0 5UyqmJb545DswIhQxyUuMB8GA1UdIwQYMBaAFG8nIrblEzRlJaKplGQbTifwTVNW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBCOS83QzhDODkwRTA3 MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5HVWxvcW1VWkJ0T0pfQk5V MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5Y2l0dVVUTkdVbG9xbVVaQnRPSl9CTlUxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzBCOS83QzhDODkwRTA3MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5H VWxvcW1VWkJ0T0pfQk5VMVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZA0Smrr3kZLPhbTZnFaZlU2WgZhSUZ2+SgmLVjVTEuLOzIWZycGJ5rMw8URx 7g1oh4mxQt2IWNf7Ihr63ZGB4WSitIAjLtskxznZal2AODnjVFtTlchwDo/rmJNZ E+lHhCNd1nfCNoks+qc73IpRuYr7aKUmn6GQoSGFtOf24dAB1T3HiKSDhLMIvQR7 gcNhM+KHwBliln89vHR2T7JWbSA6ghLUIolu9Uj7u10BeFqpoosxP/sAKDK90e4Z GJWN25c5QjAq/2DGoI+Ped4stKpe8FhN0e1xeNqLm+/pH852TvidUdKRdo2kfi1Y VpVPWzWZRqHDOkfdC5836Unf5w== -----END CERTIFICATE-----Generated at Thu Mar 26 18:25:43 2026 by rpki-client