$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft File: VCuU2GJc9xGWT9E3QSldJ616kAQ.mft (raw, json) Hash identifier: dTC7h6oUWPo0wViBXfhgUd5pyoEoi8cQK4S6SpIsjv8= Subject key identifier: 21:D6:43:70:6D:1F:79:95:A3:54:C3:BF:27:E9:0C:2A:4E:4C:87:D7 Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Certificate serial: 02A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft Manifest number: 027F Signing time: Sun 05 Apr 2026 02:14:59 +0000 Manifest this update: Sun 05 Apr 2026 02:14:58 +0000 Manifest next update: Sun 12 Apr 2026 02:14:58 +0000 Files and hashes: 1: VCuU2GJc9xGWT9E3QSldJ616kAQ.crl (hash: Ex8dZVBK6B6dOtuJAsAPNLfdn3eXmD/7O9egbEFmOIU=) 2: 232F9552F80D11F0AED4E007706F56BC.roa (hash: 1VQhLb/1DZcPUazmrGPc7TJ13JYFfVY10cAzsAWEN8k=) 3: 3352C1BAECFC11EFA398671BC4F9AE02.roa (hash: ByTjShjzlXNDkMN69/J18p3VnbTj5vjjzwheoKvtWG4=) 4: 23852F72273711F1B6AB5B98AD833773.roa (hash: P31b2FKpx48VcLnsu7CI9st3Wk7Nus+neDGiJjmbJZg=) 5: 05F505961AA311F0A475D464C4F9AE02.roa (hash: xZbkhabGis/U5mUU9RekGm8eUQ6rFKaSmoEBRgqnHq8=) 6: 020607A2498711EFBB260663C4F9AE02.roa (hash: NE7gXopF/sfzGGjBPy5TRpiqm9S4sfZVevZ1+WaB9aw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:14:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 681 (0x2a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Validity Not Before: Apr 5 02:14:58 2026 GMT Not After : Apr 12 02:14:58 2026 GMT Subject: CN=69d1c5a2-f42f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fb:05:6b:85:46:31:a8:c0:d7:d9:9c:e3:b7: 21:5f:c7:42:8e:2e:b6:2e:b2:1e:48:b5:4b:4c:c0: c8:05:85:21:74:12:99:f5:0a:24:3b:98:d8:c7:c8: 58:61:90:cb:f7:a4:db:d3:c7:b1:29:dc:b4:54:07: 40:39:c0:2b:d4:b5:d4:1d:89:2c:e7:64:df:e6:bd: 2c:61:08:60:71:de:56:9c:f6:68:5b:5d:7e:68:66: 42:e8:bd:b0:d3:1d:6d:b3:f0:d3:c5:01:d0:b1:8e: be:78:e5:1e:38:48:67:bc:3a:67:cb:4c:3d:eb:8a: 8f:07:8b:b1:56:c7:81:10:95:20:8e:70:6b:a5:5d: 41:18:84:0b:6a:4b:7c:e9:88:b4:bf:5c:33:e9:8d: 71:fa:09:0f:07:a5:49:19:e9:d1:42:0e:90:4f:38: cc:68:ef:41:09:f9:a7:11:9a:f7:e4:9f:22:18:01: 6a:3d:77:ce:51:d8:7e:28:83:bf:d4:ae:6f:df:b5: 3a:a8:48:24:62:da:f7:cf:79:3a:64:49:2d:83:30: a4:fa:3d:bd:ae:84:a7:0a:e1:c4:e1:fb:fd:1e:78: 88:ea:7f:1f:4b:e9:29:44:cd:33:78:34:5d:5a:ea: a3:1d:46:d9:96:b4:3b:54:45:2d:a4:0b:93:d0:51: 04:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D6:43:70:6D:1F:79:95:A3:54:C3:BF:27:E9:0C:2A:4E:4C:87:D7 X509v3 Authority Key Identifier: keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:26:03:0f:c1:00:2b:48:16:42:9b:f9:a0:f3:51:22:6e:73: 59:48:fa:d8:32:98:6c:54:cd:13:a8:c4:b5:41:0f:cf:5e:00: 38:f0:b1:ab:6b:83:1e:45:36:62:a0:04:ba:a9:dd:2e:ab:de: b2:f4:b3:a9:25:3a:f6:d2:dd:f7:b1:71:6c:3a:f4:71:43:77: 70:72:4c:c9:f9:4b:fd:f1:bb:f9:25:e6:e1:82:cb:5a:48:a5: 95:a7:1c:e8:dd:aa:c3:f3:19:88:5b:99:31:6a:63:6f:f5:55: 63:0c:1b:10:93:b5:07:72:08:24:e0:54:54:28:39:ec:ee:a6: 68:90:2e:be:76:7a:8a:2c:b6:bd:af:cc:aa:7b:a0:13:a3:7e: 83:0c:62:da:64:97:21:3a:0f:8e:47:03:66:65:fc:6c:93:71: 01:9d:f2:76:25:ac:08:ef:11:99:8f:95:1e:2a:27:16:72:90: 6c:3f:89:7a:74:94:b6:fe:6f:bd:18:30:8d:d9:8d:24:4b:fb: b9:22:ba:18:42:3e:18:34:3f:3f:2d:72:eb:ac:87:ca:c1:bf: c5:18:5c:03:f8:c0:88:de:c4:ed:e1:db:3d:db:48:fe:fd:69: 0c:5e:14:3e:24:8c:81:29:53:b1:22:bd:be:b4:34:18:7e:b9: d7:f9:ee:07 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDU0MkI5NEQ4NjI1Q0Y3MTE5NjRGRDEzNzQxMjk1RDI3 QUQ3QTkwMDQwHhcNMjYwNDA1MDIxNDU4WhcNMjYwNDEyMDIxNDU4WjAYMRYwFAYD VQQDEw02OWQxYzVhMi1mNDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/sFa4VGMajA19mc47chX8dCji62LrIeSLVLTMDIBYUhdBKZ9QokO5jYx8hY YZDL96Tb08exKdy0VAdAOcAr1LXUHYks52Tf5r0sYQhgcd5WnPZoW11+aGZC6L2w 0x1ts/DTxQHQsY6+eOUeOEhnvDpny0w964qPB4uxVseBEJUgjnBrpV1BGIQLakt8 6Yi0v1wz6Y1x+gkPB6VJGenRQg6QTzjMaO9BCfmnEZr35J8iGAFqPXfOUdh+KIO/ 1K5v37U6qEgkYtr3z3k6ZEktgzCk+j29roSnCuHE4fv9HniI6n8fS+kpRM0zeDRd WuqjHUbZlrQ7VEUtpAuT0FEEqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCHWQ3Bt H3mVo1TDvyfpDCpOTIfXMB8GA1UdIwQYMBaAFFQrlNhiXPcRlk/RN0EpXSetepAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC8xNjFENEMwQUU0 Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4R1dUOUUzUVNsZEo2MTZr QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDdVUyR0pjOXhHV1Q5RTNRU2xkSjYxNmtBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC8xNjFENEMwQUU0Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4 R1dUOUUzUVNsZEo2MTZrQVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJiYDD8EAK0gWQpv5oPNRIm5zWUj62DKYbFTNE6jEtUEPz14AOPCxq2uDHkU2 YqAEuqndLqvesvSzqSU69tLd97FxbDr0cUN3cHJMyflL/fG7+SXm4YLLWkillacc 6N2qw/MZiFuZMWpjb/VVYwwbEJO1B3IIJOBUVCg57O6maJAuvnZ6iiy2va/Mqnug E6N+gwxi2mSXIToPjkcDZmX8bJNxAZ3ydiWsCO8RmY+VHionFnKQbD+JenSUtv5v vRgwjdmNJEv7uSK6GEI+GDQ/Py1y66yHysG/xRhcA/jAiN7E7eHbPdtI/v1pDF4U PiSMgSlTsSK9vrQ0GH651/nuBw== -----END CERTIFICATE-----Generated at Sun Apr 5 20:01:22 2026 by rpki-client