$ rpki-client -vvf rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft File: ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft (raw, json) Hash identifier: Yn+Dx9yHMERzFcvUqeLmUDXeFT24P5wdTprW/X2Bejo= Subject key identifier: 12:BF:9F:10:6F:5C:4D:DF:46:EC:F2:6D:FB:69:69:85:56:CF:C8:43 Authority key identifier: 21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC Certificate issuer: /CN=A912382E/serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Certificate serial: 1935 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft Manifest number: 192B Signing time: Mon 02 Mar 2026 03:08:17 +0000 Manifest this update: Mon 02 Mar 2026 03:08:16 +0000 Manifest next update: Mon 09 Mar 2026 03:08:16 +0000 Files and hashes: 1: ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl (hash: Eyi9t69fkeRKUp9eC5I1CFIE44Akuik+x4athZiqlfI=) 2: BD843CCE984011E79A256C82C4F9AE02.roa (hash: YEfPuupkj6+rYgnnK9KPFgtKEqtP8lyWUzvWsUKBop0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:08:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6453 (0x1935) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912382E, serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Validity Not Before: Mar 2 03:08:16 2026 GMT Not After : Mar 9 03:08:16 2026 GMT Subject: CN=69a4ff21-25b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:96:13:0c:71:3b:30:69:ce:15:55:b3:77:05: a0:2f:4c:61:ac:02:e1:50:86:e5:aa:8a:ea:74:43: 6b:dd:e7:b6:7e:99:75:a4:af:b4:29:ff:b5:ce:14: da:7c:12:79:b2:83:ad:f0:67:20:d8:0b:24:bd:53: a2:f2:77:80:da:83:9f:36:fe:fd:be:59:8c:41:67: 98:9b:4c:84:20:76:01:ec:b1:f2:7f:20:ca:90:03: 97:4a:d7:9a:3b:00:c9:6d:8b:3a:43:9c:37:e2:c9: 12:41:66:e4:b3:0b:fe:1d:08:46:cd:69:2d:42:3b: 1d:47:58:65:e8:fc:30:db:bc:bf:37:4a:5a:ac:b9: f0:a1:fa:54:9a:75:56:59:25:df:4c:7d:5f:e1:14: cf:76:4a:dc:d3:c0:f4:60:2d:33:a4:b5:04:01:cb: 01:13:33:e7:9e:e1:19:c8:9f:05:a1:9e:3c:d2:0c: b3:cf:64:21:8d:22:df:ab:c0:97:ae:2e:9c:1f:9e: 55:9a:24:73:f0:fe:55:11:fd:06:d0:da:f7:db:dd: d6:77:c8:23:77:6c:21:51:97:6c:e9:6a:6e:e0:2f: a5:61:e2:a1:a2:34:fb:d3:3e:df:0f:d2:72:69:5f: 12:96:1e:7c:2e:9b:5c:27:10:4f:f9:76:c0:f8:eb: 7d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:BF:9F:10:6F:5C:4D:DF:46:EC:F2:6D:FB:69:69:85:56:CF:C8:43 X509v3 Authority Key Identifier: keyid:21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:bd:65:9d:e2:52:10:64:78:e3:cd:3a:9a:08:5d:0f:ad:84: 99:d9:c6:0d:54:db:18:6e:f9:10:fd:cb:34:a8:d8:0b:0b:7a: e8:35:9b:95:3e:70:a0:75:1b:8f:55:92:bf:f6:62:8f:cc:10: a1:8e:ac:c2:b1:11:db:db:b6:4b:a1:9b:50:40:03:f1:36:05: d0:af:e0:87:2e:c7:c7:65:0d:bd:85:6d:d8:6f:db:c5:bc:89: cf:85:85:49:38:1c:90:9e:75:ff:5b:ca:9c:e8:fc:2d:a9:31: 70:c6:48:2b:73:ca:1d:68:b1:02:86:38:d5:70:56:46:a4:9a: de:98:bd:e3:a3:81:8a:8d:c4:c6:5c:20:ec:7b:c3:e3:9f:32: 32:21:44:ef:9f:e7:c9:ea:63:71:19:ac:b9:41:83:97:33:27: 7a:de:5d:f2:2d:70:9d:2a:02:ff:32:ad:67:d6:7a:e4:d6:88: ca:1c:77:5e:f3:b0:6e:eb:21:af:1a:a1:63:ee:17:d6:c9:18: 5e:7e:97:e1:19:a2:fd:1a:f3:1d:3a:f1:27:0a:11:d9:86:8c: eb:61:51:cf:e5:c3:c2:0e:1f:04:f3:5e:aa:fe:df:2f:ae:2d: cf:61:59:72:bc:e9:37:de:2f:cf:0a:f9:13:b7:fe:d4:01:57: c0:90:36:25 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4MkUxMTAvBgNVBAUTKDIxMzQzNkJBMjNBOUFGMjUwQkYyNURERUE1MEM3NjIy MTlGOTA2QkMwHhcNMjYwMzAyMDMwODE2WhcNMjYwMzA5MDMwODE2WjAYMRYwFAYD VQQDEw02OWE0ZmYyMS0yNWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5JYTDHE7MGnOFVWzdwWgL0xhrALhUIblqorqdENr3ee2fpl1pK+0Kf+1zhTa fBJ5soOt8Gcg2AskvVOi8neA2oOfNv79vlmMQWeYm0yEIHYB7LHyfyDKkAOXStea OwDJbYs6Q5w34skSQWbkswv+HQhGzWktQjsdR1hl6Pww27y/N0parLnwofpUmnVW WSXfTH1f4RTPdkrc08D0YC0zpLUEAcsBEzPnnuEZyJ8FoZ480gyzz2QhjSLfq8CX ri6cH55VmiRz8P5VEf0G0Nr3293Wd8gjd2whUZds6Wpu4C+lYeKhojT70z7fD9Jy aV8Slh58LptcJxBP+XbA+Ot91wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBK/nxBv XE3fRuzybftpaYVWz8hDMB8GA1UdIwQYMBaAFCE0Nrojqa8lC/Jd3qUMdiIZ+Qa8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgyRS8zMTFFQUM1Njk4 NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5VUw4bDNlcFF4MklobjVC cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lUUTJ1aU9wcnlVTDhsM2VwUXgySWhuNUJydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgyRS8zMTFFQUM1Njk4NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5 VUw4bDNlcFF4MklobjVCcncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAir1lneJSEGR44806mghdD62EmdnGDVTbGG75EP3LNKjYCwt66DWblT5woHUb j1WSv/Zij8wQoY6swrER29u2S6GbUEAD8TYF0K/ghy7Hx2UNvYVt2G/bxbyJz4WF STgckJ51/1vKnOj8LakxcMZIK3PKHWixAoY41XBWRqSa3pi946OBio3Exlwg7HvD 458yMiFE75/nyepjcRmsuUGDlzMnet5d8i1wnSoC/zKtZ9Z65NaIyhx3XvOwbush rxqhY+4X1skYXn6X4Rmi/RrzHTrxJwoR2YaM62FRz+XDwg4fBPNeqv7fL64tz2FZ crzpN94vzwr5E7f+1AFXwJA2JQ== -----END CERTIFICATE-----Generated at Mon Mar 2 16:11:22 2026 by rpki-client