$ rpki-client -vvf rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft File: It8xdbHdMjEX4MGfP21qHncfnB8.mft (raw, json) Hash identifier: Ba7qt+ufODim2y8CRIRPnXan6bAiJykTbq/LWjtpcuo= Subject key identifier: 43:B5:E2:58:FE:D9:8C:7A:AB:A1:6E:29:01:66:9D:12:1B:74:B2:17 Authority key identifier: 22:DF:31:75:B1:DD:32:31:17:E0:C1:9F:3F:6D:6A:1E:77:1F:9C:1F Certificate issuer: /CN=A917148B/serialNumber=22DF3175B1DD323117E0C19F3F6D6A1E771F9C1F Certificate serial: 0CC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft Manifest number: 0CBF Signing time: Mon 02 Mar 2026 00:19:54 +0000 Manifest this update: Mon 02 Mar 2026 00:19:52 +0000 Manifest next update: Mon 09 Mar 2026 00:19:52 +0000 Files and hashes: 1: It8xdbHdMjEX4MGfP21qHncfnB8.crl (hash: obirTa+W+rz3dqI/XfE7E1VJZ1BNPZRhc9gB2QRBO1A=) 2: D725AC5C091411EABBFC8739C4F9AE02.roa (hash: zDxsuRndlq0lJuspimIYJwOxaHSsP7u9+ZEkGQ4K8fQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.crl rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3273 (0xcc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917148B, serialNumber=22DF3175B1DD323117E0C19F3F6D6A1E771F9C1F Validity Not Before: Mar 2 00:19:52 2026 GMT Not After : Mar 9 00:19:52 2026 GMT Subject: CN=69a4d7a9-0ca8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7c:d9:62:7e:9f:eb:c0:75:17:64:ad:14:bc: 7c:63:44:85:28:db:04:8d:50:c0:88:6b:0d:6f:d3: 8a:96:55:ec:6b:c9:72:bf:78:79:d1:3e:13:87:3b: d7:6b:f1:00:90:13:58:b5:0d:67:80:7d:7a:f8:7e: 00:d3:7f:d1:d8:72:f7:a7:ff:33:98:b5:4e:1c:d1: b9:26:7b:10:f3:25:33:47:de:31:54:28:46:40:c7: 2b:73:3d:7c:76:36:a3:da:15:67:eb:21:71:ec:09: 57:7b:bc:10:52:74:df:41:9e:88:ff:ea:47:16:19: 13:6f:a1:8d:b2:21:b9:3f:aa:3a:68:e5:24:8a:32: a9:1c:26:4f:6a:c8:62:54:78:59:9d:50:74:d5:2c: 75:73:aa:91:c9:a9:e0:fa:b0:2e:b6:04:cf:99:12: fc:16:8d:45:6b:25:e4:fb:84:d0:51:9e:aa:b8:f9: 00:6f:2d:f5:4d:86:20:a2:9a:8d:1e:10:f6:f5:14: 7c:a0:f6:b4:d8:e5:6f:b2:79:e2:24:5d:43:62:b7: 78:72:d9:6d:68:d3:f7:02:89:54:a1:cd:75:18:d7: d7:9a:9a:3c:3c:b5:81:22:41:0c:bd:ff:18:4f:62: 5a:7d:5b:3b:1a:d6:56:4c:ea:31:4f:cf:63:38:13: e0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:B5:E2:58:FE:D9:8C:7A:AB:A1:6E:29:01:66:9D:12:1B:74:B2:17 X509v3 Authority Key Identifier: keyid:22:DF:31:75:B1:DD:32:31:17:E0:C1:9F:3F:6D:6A:1E:77:1F:9C:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:3d:53:a1:01:fc:9a:f3:50:fb:9e:cf:7d:4a:c7:32:80:d7: 9e:09:6b:ff:50:40:e4:a1:e5:12:5b:fd:3c:9f:c4:39:3e:1e: 23:3a:50:99:36:6d:b0:5c:a1:c0:ba:75:85:6d:49:be:6d:5e: e9:04:24:b2:20:b8:13:e7:3f:b1:d2:b8:b4:4b:47:cf:7e:56: 70:36:af:52:49:34:0b:57:b5:32:19:39:de:b5:46:17:7e:31: 09:87:95:92:53:19:fd:93:50:d1:34:76:ae:9f:b6:37:31:a0: bf:dc:a1:39:64:94:2f:36:dc:1b:e1:b8:ba:65:d3:87:49:db: c0:36:33:58:3f:2b:f8:3d:d9:d8:5f:02:d9:e4:9c:43:5d:f8: b7:89:2e:3d:06:8a:e2:d9:07:28:d8:a3:f9:e6:cc:6a:81:3a: 45:ec:15:39:d8:e2:3c:39:d0:78:d2:26:d3:57:e7:d1:a2:b9: 1d:c9:3f:59:f8:a1:08:d3:bc:85:2e:d7:a0:73:b2:ac:31:d0: 4c:fa:7a:ca:0b:db:90:e4:fd:ee:65:16:4f:10:ce:21:2a:46: 96:16:ae:b3:1e:e4:91:0a:17:54:3b:36:1d:87:0d:d0:ce:ea: 10:32:88:4d:23:ae:3d:6b:fa:26:b4:d5:3f:24:f9:4d:23:43: f9:13:c7:1a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE0OEIxMTAvBgNVBAUTKDIyREYzMTc1QjFERDMyMzExN0UwQzE5RjNGNkQ2QTFF NzcxRjlDMUYwHhcNMjYwMzAyMDAxOTUyWhcNMjYwMzA5MDAxOTUyWjAYMRYwFAYD VQQDEw02OWE0ZDdhOS0wY2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHzZYn6f68B1F2StFLx8Y0SFKNsEjVDAiGsNb9OKllXsa8lyv3h50T4ThzvX a/EAkBNYtQ1ngH16+H4A03/R2HL3p/8zmLVOHNG5JnsQ8yUzR94xVChGQMcrcz18 djaj2hVn6yFx7AlXe7wQUnTfQZ6I/+pHFhkTb6GNsiG5P6o6aOUkijKpHCZPashi VHhZnVB01Sx1c6qRyang+rAutgTPmRL8Fo1FayXk+4TQUZ6quPkAby31TYYgopqN HhD29RR8oPa02OVvsnniJF1DYrd4ctltaNP3AolUoc11GNfXmpo8PLWBIkEMvf8Y T2JafVs7GtZWTOoxT89jOBPgxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEO14lj+ 2Yx6q6FuKQFmnRIbdLIXMB8GA1UdIwQYMBaAFCLfMXWx3TIxF+DBnz9tah53H5wf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTQ4Qi8wNDk0MTBBRTA5 MTMxMUVBQkE0MUM3MzVDNEY5QUUwMi9JdDh4ZGJIZE1qRVg0TUdmUDIxcUhuY2Zu QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0OHhkYkhkTWpFWDRNR2ZQMjFxSG5jZm5COC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTQ4Qi8wNDk0MTBBRTA5MTMxMUVBQkE0MUM3MzVDNEY5QUUwMi9JdDh4ZGJIZE1q RVg0TUdmUDIxcUhuY2ZuQjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcj1ToQH8mvNQ+57PfUrHMoDXnglr/1BA5KHlElv9PJ/EOT4eIzpQmTZtsFyh wLp1hW1Jvm1e6QQksiC4E+c/sdK4tEtHz35WcDavUkk0C1e1Mhk53rVGF34xCYeV klMZ/ZNQ0TR2rp+2NzGgv9yhOWSULzbcG+G4umXTh0nbwDYzWD8r+D3Z2F8C2eSc Q134t4kuPQaK4tkHKNij+ebMaoE6RewVOdjiPDnQeNIm01fn0aK5Hck/WfihCNO8 hS7XoHOyrDHQTPp6ygvbkOT97mUWTxDOISpGlhausx7kkQoXVDs2HYcN0M7qEDKI TSOuPWv6JrTVPyT5TSND+RPHGg== -----END CERTIFICATE-----Generated at Mon Mar 2 05:55:22 2026 by rpki-client