$ rpki-client -vvf rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft File: B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft (raw, json) Hash identifier: JJVIHhmp7TmPVTvJ3I24cyaEfgE3sQ0JVqguPTBQxiw= Subject key identifier: 70:57:11:90:E9:1F:06:FF:54:CB:BB:61:09:1D:FF:4B:FC:1A:FD:EE Authority key identifier: 07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B Certificate issuer: /CN=A917C5E0/serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft Manifest number: 0133 Signing time: Sat 21 Mar 2026 04:30:28 +0000 Manifest this update: Sat 21 Mar 2026 04:30:28 +0000 Manifest next update: Sat 28 Mar 2026 04:30:28 +0000 Files and hashes: 1: B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl (hash: 14zJZOH6qxUjqb66QD/5TJ4MM5cw2/oqB+/50B6HImE=) 2: 52AE08D4ABCF11F083B9610FC4F9AE02.roa (hash: iGq1jNFW8Jf/KFgz2eEoKwlpfdulgStFmeWoJUH2Q3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 04:30:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C5E0, serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Validity Not Before: Mar 21 04:30:28 2026 GMT Not After : Mar 28 04:30:28 2026 GMT Subject: CN=69be1ee4-9227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6a:7e:99:d6:2b:a1:38:dc:b4:a9:d6:ec:16: 54:a4:59:d0:04:6f:e7:0f:e5:de:7c:c2:7f:76:2a: f4:44:72:30:4b:1b:44:38:29:f3:f6:48:a2:d6:a0: 31:b5:30:88:64:81:30:0d:84:7c:e1:07:23:6d:d2: 95:ec:8b:df:fb:49:87:58:7f:dd:17:80:45:c2:24: 5a:3d:df:c2:6b:af:80:99:66:86:25:7f:70:7e:83: 97:fb:58:60:8a:52:48:f8:01:f8:f0:22:6b:7b:cd: 2b:5d:be:c4:09:5c:69:16:38:8f:f9:e5:e1:9e:92: 96:ab:ae:8d:cd:84:63:44:52:0d:20:4f:63:7b:9a: d3:88:5c:61:34:e4:6a:88:e6:35:d8:96:98:fe:9c: 8f:e4:73:aa:3e:95:14:17:ae:0f:a9:41:4b:04:b3: c7:58:c1:0a:12:6a:84:46:bd:f9:68:31:43:7a:4e: 4d:f6:f1:df:96:af:0e:da:f2:5d:8d:f8:73:ad:16: 01:c5:17:dd:b5:9a:f4:bb:a3:80:5c:72:e8:27:e4: f4:78:97:72:ff:c9:86:fe:2d:2e:fb:a3:ab:0a:dc: 87:b4:2e:a5:7f:bb:47:bc:46:c7:87:36:3e:c2:b1: 5d:6f:8c:52:2e:84:ba:1a:e2:7a:db:b4:ca:cb:44: 4b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:57:11:90:E9:1F:06:FF:54:CB:BB:61:09:1D:FF:4B:FC:1A:FD:EE X509v3 Authority Key Identifier: keyid:07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:55:39:51:6f:31:21:68:c5:0a:48:c9:05:b8:b6:3a:e4:5d: f1:98:56:7a:ea:8f:7c:28:5f:48:02:e9:9f:c2:ba:30:38:38: 53:80:ef:20:f7:4e:0a:70:44:ac:14:46:b1:b7:2d:07:00:5b: 5b:d8:4b:d4:42:53:b4:32:f2:37:94:5d:07:96:10:f3:12:7d: 9f:8d:31:5c:02:e2:1e:d7:8a:2d:a4:15:c2:52:b7:1e:13:15: b6:80:bb:3a:8f:76:00:2a:58:58:cd:0b:e2:81:10:55:01:09: 89:9f:d4:80:41:6f:1e:91:29:03:13:5e:ae:c8:2b:b3:ba:c4: aa:73:25:84:42:36:fb:68:9c:e9:ba:0c:a5:3d:32:5f:f8:20: d4:6e:b6:08:62:3b:22:ca:0c:59:19:6a:6f:27:15:8c:c8:b3: 18:be:21:cf:cf:db:06:17:8a:4f:fa:5e:38:07:2c:14:9f:d9: 9c:d0:05:55:cd:3e:b5:03:38:bb:01:17:cb:36:0b:23:51:1b: 5a:7c:87:67:cb:a8:5d:a9:9c:31:10:98:10:4e:66:32:8b:bc: 4b:d4:3f:9d:b4:f3:06:8e:49:78:57:a9:2a:84:cd:7a:1c:35: 21:6d:c8:78:9d:0c:23:f1:d0:a5:4c:14:76:7c:24:a8:3c:4b: 4b:37:58:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1RTAxMTAvBgNVBAUTKDA3OEI0QTgwRDFERkU2QzA1MjUzM0FBREIxOTUzNEFD NTlBMzk1NEIwHhcNMjYwMzIxMDQzMDI4WhcNMjYwMzI4MDQzMDI4WjAYMRYwFAYD VQQDEw02OWJlMWVlNC05MjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2p+mdYroTjctKnW7BZUpFnQBG/nD+XefMJ/dir0RHIwSxtEOCnz9kii1qAx tTCIZIEwDYR84QcjbdKV7Ivf+0mHWH/dF4BFwiRaPd/Ca6+AmWaGJX9wfoOX+1hg ilJI+AH48CJre80rXb7ECVxpFjiP+eXhnpKWq66NzYRjRFINIE9je5rTiFxhNORq iOY12JaY/pyP5HOqPpUUF64PqUFLBLPHWMEKEmqERr35aDFDek5N9vHflq8O2vJd jfhzrRYBxRfdtZr0u6OAXHLoJ+T0eJdy/8mG/i0u+6OrCtyHtC6lf7tHvEbHhzY+ wrFdb4xSLoS6GuJ627TKy0RLjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHBXEZDp Hwb/VMu7YQkd/0v8Gv3uMB8GA1UdIwQYMBaAFAeLSoDR3+bAUlM6rbGVNKxZo5VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzVFMC84NzIwQUIxODVB MTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVzQlNVenF0c1pVMHJGbWps VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I0dEtnTkhmNXNCU1V6cXRzWlUwckZtamxVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzVFMC84NzIwQUIxODVBMTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVz QlNVenF0c1pVMHJGbWpsVXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABVU5UW8xIWjFCkjJBbi2OuRd8ZhWeuqPfChfSALpn8K6MDg4U4DvIPdOCnBE rBRGsbctBwBbW9hL1EJTtDLyN5RdB5YQ8xJ9n40xXALiHteKLaQVwlK3HhMVtoC7 Oo92ACpYWM0L4oEQVQEJiZ/UgEFvHpEpAxNersgrs7rEqnMlhEI2+2ic6boMpT0y X/gg1G62CGI7IsoMWRlqbycVjMizGL4hz8/bBheKT/peOAcsFJ/ZnNAFVc0+tQM4 uwEXyzYLI1EbWnyHZ8uoXamcMRCYEE5mMou8S9Q/nbTzBo5JeFepKoTNehw1IW3I eJ0MI/HQpUwUdnwkqDxLSzdYeQ== -----END CERTIFICATE-----Generated at Sat Mar 21 23:47:07 2026 by rpki-client