$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft File: SztaAaiVL7VkLSSEt_AgWufcx2E.mft (raw, json) Hash identifier: 3fwn2/uwT6WINLLICTyees5lbd2WINjEFMCI5Y88o3A= Subject key identifier: 73:AF:5C:B3:95:EC:10:4F:B8:15:4A:46:D9:F0:4E:35:29:37:68:22 Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 02B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft Manifest number: 0295 Signing time: Sat 21 Mar 2026 01:04:37 +0000 Manifest this update: Sat 21 Mar 2026 01:04:37 +0000 Manifest next update: Sat 28 Mar 2026 01:04:37 +0000 Files and hashes: 1: SztaAaiVL7VkLSSEt_AgWufcx2E.crl (hash: SVHxOx8SmfKvjJCs0OsQtrJlqpOsY60AkL5YIxkZN/M=) 2: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (hash: 0XIzwd7D2/6iAcpSl1J963JfV4yO/w+9LYIuULpKH7s=) 3: 0C21BBAC373711F08FA9BD3DC4F9AE02.roa (hash: WbC9Zi3FkuUimM2LDo18sEOCgwjkb/IqEbL/LDR9mkg=) 4: 82A6D4C4373711F0B4C22F6AC4F9AE02.roa (hash: 2dB8losCkzflgKLeyufFpykKeZbPyeG/91dZ2ar3/fk=) 5: 46C3344E346611F0AF16091DC4F9AE02.roa (hash: G3atXAKqq6oFKBpr32HyeNbKvnZw8JFgcP/o+eZXrQQ=) 6: C1ECF984D07411F0B0B35C27C4F9AE02.roa (hash: 4b1qRgjlNRcZ+iubckIse8edU98Q81NltkHwnBtFg58=) 7: C163E3D6170C11F1997E579B043D8C67.roa (hash: +bMsiCqkQRPGuAsovwzV+Jwx1b0r6sOT2iZqA0KUI2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 01:04:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 694 (0x2b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Validity Not Before: Mar 21 01:04:37 2026 GMT Not After : Mar 28 01:04:37 2026 GMT Subject: CN=69bdeea5-9846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3e:48:05:ef:78:7c:a9:88:50:e5:36:a3:77: 26:43:3e:c8:8e:e2:b8:bf:a9:c9:d8:56:73:76:e6: 46:6b:c8:1c:e3:bf:4a:6c:4c:b8:24:bb:f9:80:05: 07:67:16:b8:62:b1:a0:d7:57:17:cc:b5:32:56:ce: c2:74:71:33:cd:86:70:0d:3f:25:c8:d4:8d:8c:87: d7:07:12:9c:42:ae:2c:1d:f7:17:8a:06:25:57:47: 3a:2a:92:a2:c6:3f:89:95:39:82:7f:ee:f3:6b:61: a9:c3:5c:34:b4:91:95:f1:62:96:a2:2e:72:ef:bb: 4b:16:95:d5:2d:ea:dc:d3:fd:3d:b3:24:cc:35:84: bf:a8:a4:d3:27:ef:fb:ab:8a:b9:be:f8:10:7a:23: cc:73:91:d7:7d:b3:bc:c7:f1:3c:5c:b6:a1:c3:e0: 02:79:f9:44:e0:3c:ee:e0:d0:3a:f2:db:da:8b:e5: 62:28:df:5c:dd:da:33:77:ae:44:85:03:eb:74:13: 44:42:c7:e1:c2:42:85:ae:a1:5d:eb:88:fa:7f:10: 1d:27:5c:6c:13:e5:f9:c2:af:70:f1:ef:1e:d6:b0: 5e:33:cb:2a:cf:5a:b7:8a:45:16:4d:6d:eb:29:d6: bf:60:81:5a:31:4b:c2:5e:96:07:0e:e0:47:f4:d9: 07:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:AF:5C:B3:95:EC:10:4F:B8:15:4A:46:D9:F0:4E:35:29:37:68:22 X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:22:6a:b7:a4:7b:2f:30:41:38:b2:00:f7:64:48:99:68:27: 44:a0:2d:24:97:7b:e1:4a:99:28:17:f5:4d:38:6c:f5:0b:75: 97:b1:00:86:68:dd:4b:cb:6c:b1:c3:64:44:51:8f:ea:c4:72: b6:19:16:bb:3f:d0:35:8d:a5:26:44:44:35:14:26:56:d6:d3: 69:00:d5:0e:83:53:fa:f2:96:ff:7a:e5:55:df:44:f3:2b:76: 18:0f:89:c7:7a:4f:84:3c:9d:ee:a3:ec:7c:a7:2c:b3:cd:9a: 45:d1:1c:67:b1:d2:3c:24:dd:d2:eb:a9:98:28:2f:89:b0:79: b3:c1:d1:61:df:92:34:81:d1:49:ce:3e:53:6e:5f:48:84:bd: 3a:71:44:43:9f:98:08:72:af:37:2f:63:f8:30:b7:1c:1c:f0: 15:8c:9c:80:e2:64:f8:34:5b:af:21:ec:89:b7:ca:e9:8a:5d: ce:11:39:10:86:41:de:92:9b:ff:50:d5:44:af:51:35:e8:6b: 67:ec:70:83:3a:cc:61:6f:99:83:31:08:09:81:b8:e2:60:d8: 3b:75:c6:3e:93:04:30:f0:a7:d6:8c:a8:08:bc:2e:b5:d4:47: b5:f6:fd:5a:c6:3a:a0:fd:84:e0:4a:f4:96:50:4e:17:9e:ce: da:3c:ed:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICArYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjYwMzIxMDEwNDM3WhcNMjYwMzI4MDEwNDM3WjAYMRYwFAYD VQQDEw02OWJkZWVhNS05ODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1j5IBe94fKmIUOU2o3cmQz7IjuK4v6nJ2FZzduZGa8gc479KbEy4JLv5gAUH Zxa4YrGg11cXzLUyVs7CdHEzzYZwDT8lyNSNjIfXBxKcQq4sHfcXigYlV0c6KpKi xj+JlTmCf+7za2Gpw1w0tJGV8WKWoi5y77tLFpXVLerc0/09syTMNYS/qKTTJ+/7 q4q5vvgQeiPMc5HXfbO8x/E8XLahw+ACeflE4Dzu4NA68tvai+ViKN9c3dozd65E hQPrdBNEQsfhwkKFrqFd64j6fxAdJ1xsE+X5wq9w8e8e1rBeM8sqz1q3ikUWTW3r Kda/YIFaMUvCXpYHDuBH9NkHRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHOvXLOV 7BBPuBVKRtnwTjUpN2giMB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzQ4RS80RDc4OTI2QTRGQTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3 VmtMU1NFdF9BZ1d1ZmN4MkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiyJqt6R7LzBBOLIA92RImWgnRKAtJJd74UqZKBf1TThs9Qt1l7EAhmjdS8ts scNkRFGP6sRythkWuz/QNY2lJkRENRQmVtbTaQDVDoNT+vKW/3rlVd9E8yt2GA+J x3pPhDyd7qPsfKcss82aRdEcZ7HSPCTd0uupmCgvibB5s8HRYd+SNIHRSc4+U25f SIS9OnFEQ5+YCHKvNy9j+DC3HBzwFYycgOJk+DRbryHsibfK6YpdzhE5EIZB3pKb /1DVRK9RNehrZ+xwgzrMYW+ZgzEICYG44mDYO3XGPpMEMPCn1oyoCLwutdRHtfb9 WsY6oP2E4Er0llBOF57O2jzt/A== -----END CERTIFICATE-----Generated at Sun Mar 22 13:34:06 2026 by rpki-client