$ rpki-client -vvf rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft File: VTcR8u_pSETEP3dtRRAYwGSXLJo.mft (raw, json) Hash identifier: W14VqSyrRvAFGC5CLO44DMqiKzpgvbULyucPfrzfoRI= Subject key identifier: 32:4B:6B:83:5D:FE:E1:DE:F7:9B:F3:69:5D:8D:F2:45:62:A2:9D:90 Authority key identifier: 55:37:11:F2:EF:E9:48:44:C4:3F:77:6D:45:10:18:C0:64:97:2C:9A Certificate issuer: /CN=A911AAB5/serialNumber=553711F2EFE94844C43F776D451018C064972C9A Certificate serial: 0CBA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft Manifest number: 0CAE Signing time: Sat 04 Apr 2026 18:20:03 +0000 Manifest this update: Sat 04 Apr 2026 18:20:02 +0000 Manifest next update: Sat 11 Apr 2026 18:20:02 +0000 Files and hashes: 1: VTcR8u_pSETEP3dtRRAYwGSXLJo.crl (hash: Xq7/eTErJ0iWat0FNvioFfV1X0cHwrBdX4BQtsPKLP8=) 2: 65EE26547A8711ECBA5D244DC4F9AE02.roa (hash: A+pMpuuxK+69eAMmv7UHhfa7LiNDLirKYwDV1gOEsKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.crl rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:20:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3258 (0xcba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AAB5, serialNumber=553711F2EFE94844C43F776D451018C064972C9A Validity Not Before: Apr 4 18:20:02 2026 GMT Not After : Apr 11 18:20:02 2026 GMT Subject: CN=69d15652-fefd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:84:67:58:2d:aa:fc:97:65:87:2c:47:d9:a5: 51:d9:52:78:dc:e8:96:ab:22:d7:73:a8:b8:1a:34: 88:1b:d4:0a:18:b0:b2:a4:0e:09:c7:2b:69:4d:c3: 72:b1:da:0d:a7:db:68:be:52:f0:12:a2:83:44:41: f6:c0:46:da:fb:57:e1:93:78:4e:51:54:f9:6a:4a: d9:b0:2f:27:0c:c4:f8:fe:b1:72:e4:51:74:5a:e9: 3a:90:a8:4b:54:88:89:dc:4a:9e:34:22:78:6b:e4: e2:0a:e9:f4:b6:26:b2:19:cb:8a:23:f3:92:31:13: b1:cd:71:5e:6a:60:83:c2:31:21:a5:f3:46:bd:a8: e3:1c:8a:52:ca:fa:d7:97:e3:3b:e1:a5:4b:14:05: bd:b0:6b:7d:b4:dc:15:38:54:b6:50:4f:46:8f:86: 50:12:09:8b:ba:2e:ac:ce:1e:15:40:15:2c:b0:ed: e3:e1:2f:ca:44:ea:86:c1:05:3b:21:22:fb:5c:2f: 50:67:dc:ee:29:67:02:fd:61:ac:bb:ac:b1:fb:a9: 21:d0:58:7e:3d:61:43:38:2f:84:38:80:01:80:94: 83:d6:2a:70:6d:3f:83:58:cd:5f:d2:d7:a7:75:89: 3b:e3:df:68:ff:78:85:bc:5f:4f:8b:55:f9:c7:a5: dd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:4B:6B:83:5D:FE:E1:DE:F7:9B:F3:69:5D:8D:F2:45:62:A2:9D:90 X509v3 Authority Key Identifier: keyid:55:37:11:F2:EF:E9:48:44:C4:3F:77:6D:45:10:18:C0:64:97:2C:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:1b:e9:43:5b:e1:52:06:eb:64:38:03:be:5d:53:cf:f0:76: bd:cf:24:97:aa:10:b6:b8:8b:97:d5:1b:75:cb:cb:11:b6:0f: 83:10:e6:a2:97:0a:5b:c3:0f:7f:e8:9e:34:8c:11:b5:19:3e: 87:a5:81:2d:62:f7:34:ac:23:25:db:24:ca:32:06:3b:92:d6: 09:0f:05:c7:2c:6d:95:e8:bf:63:0a:01:4c:1b:70:d8:64:68: 1d:6d:34:9f:94:79:31:a6:7f:b5:50:b5:9c:87:53:c8:a8:21: 79:97:0e:00:4e:4b:0a:af:f0:14:d3:08:2b:dc:79:52:e6:85: 25:5c:43:e9:59:ed:3c:2c:c8:2b:1d:05:e0:7e:4f:73:e2:01: 19:ea:4d:38:5b:15:23:70:3b:5e:2d:27:1f:74:23:60:e0:9e: 6c:39:4f:a1:90:8a:33:15:f3:f9:9b:cb:62:de:26:90:64:09: c9:bf:d3:63:bf:6c:18:62:98:19:c4:22:16:12:45:13:6a:e1: 91:b1:07:91:f7:e6:2d:43:4a:64:74:0b:a8:b6:3a:b1:3b:c0: 6c:29:97:87:c8:90:97:5b:17:c7:82:de:cc:9a:35:15:a0:9d: ec:48:47:eb:e6:ba:2a:f3:8a:45:56:fb:01:d5:33:0d:ff:88: 5b:13:8a:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFBQjUxMTAvBgNVBAUTKDU1MzcxMUYyRUZFOTQ4NDRDNDNGNzc2RDQ1MTAxOEMw NjQ5NzJDOUEwHhcNMjYwNDA0MTgyMDAyWhcNMjYwNDExMTgyMDAyWjAYMRYwFAYD VQQDEw02OWQxNTY1Mi1mZWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4RnWC2q/JdlhyxH2aVR2VJ43OiWqyLXc6i4GjSIG9QKGLCypA4JxytpTcNy sdoNp9tovlLwEqKDREH2wEba+1fhk3hOUVT5akrZsC8nDMT4/rFy5FF0Wuk6kKhL VIiJ3EqeNCJ4a+TiCun0tiayGcuKI/OSMROxzXFeamCDwjEhpfNGvajjHIpSyvrX l+M74aVLFAW9sGt9tNwVOFS2UE9Gj4ZQEgmLui6szh4VQBUssO3j4S/KROqGwQU7 ISL7XC9QZ9zuKWcC/WGsu6yx+6kh0Fh+PWFDOC+EOIABgJSD1ipwbT+DWM1f0ten dYk7499o/3iFvF9Pi1X5x6Xd3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDJLa4Nd /uHe95vzaV2N8kViop2QMB8GA1UdIwQYMBaAFFU3EfLv6UhExD93bUUQGMBklyya MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUFCNS9BM0JERTdBMDEw RjYxMUVBOTEwM0I2MUJDNEY5QUUwMi9WVGNSOHVfcFNFVEVQM2R0UlJBWXdHU1hM Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZUY1I4dV9wU0VURVAzZHRSUkFZd0dTWExKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUFCNS9BM0JERTdBMDEwRjYxMUVBOTEwM0I2MUJDNEY5QUUwMi9WVGNSOHVfcFNF VEVQM2R0UlJBWXdHU1hMSm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfxvpQ1vhUgbrZDgDvl1Tz/B2vc8kl6oQtriLl9UbdcvLEbYPgxDmopcKW8MP f+ieNIwRtRk+h6WBLWL3NKwjJdskyjIGO5LWCQ8Fxyxtlei/YwoBTBtw2GRoHW00 n5R5MaZ/tVC1nIdTyKgheZcOAE5LCq/wFNMIK9x5UuaFJVxD6VntPCzIKx0F4H5P c+IBGepNOFsVI3A7Xi0nH3QjYOCebDlPoZCKMxXz+ZvLYt4mkGQJyb/TY79sGGKY GcQiFhJFE2rhkbEHkffmLUNKZHQLqLY6sTvAbCmXh8iQl1sXx4LezJo1FaCd7EhH 6+a6KvOKRVb7AdUzDf+IWxOKNA== -----END CERTIFICATE-----Generated at Sun Apr 5 22:25:23 2026 by rpki-client