$ rpki-client -vvf rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft File: bycituUTNGUloqmUZBtOJ_BNU1Y.mft (raw, json) Hash identifier: yP6YuIO0G1OxkHQttw+uIOiR4VSwh+HumNZGCxwqP1k= Subject key identifier: B3:FE:9F:9E:49:0B:99:F0:72:3F:23:4F:A0:86:CD:FB:15:3C:22:88 Authority key identifier: 6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 Certificate issuer: /CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Certificate serial: 0332 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft Manifest number: 0328 Signing time: Sun 05 Apr 2026 00:50:18 +0000 Manifest this update: Sun 05 Apr 2026 00:50:17 +0000 Manifest next update: Sun 12 Apr 2026 00:50:17 +0000 Files and hashes: 1: bycituUTNGUloqmUZBtOJ_BNU1Y.crl (hash: AYeQQF1o7E8jxLh1vB1rMUSdrRHG7dYoo+G/kRo2xPQ=) 2: A48AD700072111ED91EABE39C4F9AE02.roa (hash: nNS4I6wnFDV0IY10DkD6nefkEApdL1HBIkLyD0uDd2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:50:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 818 (0x332) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870B9, serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Validity Not Before: Apr 5 00:50:17 2026 GMT Not After : Apr 12 00:50:17 2026 GMT Subject: CN=69d1b1ca-319a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d4:ec:3f:45:61:db:d0:a2:b1:06:bf:8b:1f: bd:93:fc:ec:c2:62:be:40:73:c1:8d:39:f8:08:eb: cc:47:31:dc:1a:b1:7d:da:d1:ba:12:b4:f3:8d:1a: 21:fb:96:cd:78:4e:d5:d9:8e:90:cd:a7:be:a8:ab: 90:6e:07:0e:2b:93:d8:16:52:07:69:cc:c9:e8:75: 69:7c:ac:ac:42:f6:9a:11:14:58:11:42:83:5f:c2: 97:5e:f3:4d:5b:1f:5d:6a:90:cb:af:fa:e2:71:71: 1d:ac:9f:2d:64:d1:41:8b:ba:a4:b5:8e:2b:a1:7c: f9:a0:47:83:b4:25:21:0e:e2:80:e2:bf:07:07:c3: 6f:b6:fa:47:fc:79:80:87:01:df:95:54:0b:0b:57: 5f:15:41:04:7a:0a:9d:86:50:6a:92:39:c4:fe:8b: c1:e2:45:76:84:97:eb:19:f7:02:fa:30:44:86:3b: 8a:9d:09:98:49:58:ad:d1:43:00:61:f4:76:a0:31: 9a:a7:06:77:66:a1:4e:8d:7a:59:07:7e:ab:da:04: e0:f8:a0:18:b3:02:d9:ac:ab:d8:c3:15:02:da:ce: 0d:7c:bc:2f:66:36:b8:bc:7d:9d:39:0d:59:8c:b0: a3:46:a6:01:be:e1:4b:57:a0:89:1a:b3:78:81:5b: c6:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:FE:9F:9E:49:0B:99:F0:72:3F:23:4F:A0:86:CD:FB:15:3C:22:88 X509v3 Authority Key Identifier: keyid:6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:d4:21:80:e6:5f:ca:6c:1e:ec:52:e0:ab:66:f2:8f:c0:c2: 49:55:10:b7:c3:72:92:1f:4c:6a:67:1c:e6:c2:43:89:80:b2: 68:f4:71:6e:46:f7:42:c2:75:61:a3:e2:20:36:8b:ef:8b:2f: ad:31:7a:49:b0:bb:40:7d:e9:1e:1e:0f:07:8f:dc:54:38:7c: 6f:2e:f7:bc:09:03:cc:72:c9:9d:59:bf:99:64:0f:15:ba:b0: c9:58:da:6f:cb:83:c9:35:d7:6f:af:10:19:17:fa:69:f5:c0: f9:ee:04:be:cc:72:ea:4d:a9:84:f5:df:18:64:33:84:59:18: ba:f1:56:5d:18:6c:31:ee:7c:c9:70:74:c7:bc:3c:55:49:ec: 20:c4:1f:f6:61:9b:f8:24:5f:ca:00:6d:d8:36:25:c8:08:13: 59:36:72:ac:4c:e5:c9:b1:47:ec:6b:2a:56:36:a8:25:e8:bf: 88:44:2d:7f:5c:6e:f6:2b:9c:c5:d5:42:4c:42:fc:65:cf:c3: dd:f9:7c:4a:13:04:91:09:af:df:fd:1e:69:69:25:53:96:cf: f4:37:7d:87:4f:00:35:6f:09:eb:be:76:11:fc:53:0b:a5:d8: 42:c8:5a:03:cf:6d:9d:36:b7:a9:3c:68:18:20:cb:18:e7:92: e0:41:65:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQjkxMTAvBgNVBAUTKDZGMjcyMkI2RTUxMzM0NjUyNUEyQTk5NDY0MUI0RTI3 RjA0RDUzNTYwHhcNMjYwNDA1MDA1MDE3WhcNMjYwNDEyMDA1MDE3WjAYMRYwFAYD VQQDEw02OWQxYjFjYS0zMTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9TsP0Vh29CisQa/ix+9k/zswmK+QHPBjTn4COvMRzHcGrF92tG6ErTzjRoh +5bNeE7V2Y6Qzae+qKuQbgcOK5PYFlIHaczJ6HVpfKysQvaaERRYEUKDX8KXXvNN Wx9dapDLr/ricXEdrJ8tZNFBi7qktY4roXz5oEeDtCUhDuKA4r8HB8NvtvpH/HmA hwHflVQLC1dfFUEEegqdhlBqkjnE/ovB4kV2hJfrGfcC+jBEhjuKnQmYSVit0UMA YfR2oDGapwZ3ZqFOjXpZB36r2gTg+KAYswLZrKvYwxUC2s4NfLwvZja4vH2dOQ1Z jLCjRqYBvuFLV6CJGrN4gVvGKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLP+n55J C5nwcj8jT6CGzfsVPCKIMB8GA1UdIwQYMBaAFG8nIrblEzRlJaKplGQbTifwTVNW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBCOS83QzhDODkwRTA3 MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5HVWxvcW1VWkJ0T0pfQk5V MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5Y2l0dVVUTkdVbG9xbVVaQnRPSl9CTlUxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzBCOS83QzhDODkwRTA3MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5H VWxvcW1VWkJ0T0pfQk5VMVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc9QhgOZfymwe7FLgq2byj8DCSVUQt8Nykh9Mamcc5sJDiYCyaPRxbkb3QsJ1 YaPiIDaL74svrTF6SbC7QH3pHh4PB4/cVDh8by73vAkDzHLJnVm/mWQPFbqwyVja b8uDyTXXb68QGRf6afXA+e4Evsxy6k2phPXfGGQzhFkYuvFWXRhsMe58yXB0x7w8 VUnsIMQf9mGb+CRfygBt2DYlyAgTWTZyrEzlybFH7GsqVjaoJei/iEQtf1xu9iuc xdVCTEL8Zc/D3fl8ShMEkQmv3/0eaWklU5bP9Dd9h08ANW8J6752EfxTC6XYQsha A89tnTa3qTxoGCDLGOeS4EFlPw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:40:57 2026 by rpki-client