$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft File: HWQu0o7OpfKqzzR7Fgl_nZJB120.mft (raw, json) Hash identifier: Ro/r0WNo4rgoi0vSzZxB1cTItE7dh4CByqkDz7EeLGo= Subject key identifier: B1:34:ED:8A:50:EC:D3:25:DF:E0:8C:FE:A6:86:5A:0B:E2:6B:25:82 Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D Certificate issuer: /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Certificate serial: 03E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft Manifest number: 03DC Signing time: Sun 01 Mar 2026 01:23:15 +0000 Manifest this update: Sun 01 Mar 2026 01:23:14 +0000 Manifest next update: Sun 08 Mar 2026 01:23:14 +0000 Files and hashes: 1: HWQu0o7OpfKqzzR7Fgl_nZJB120.crl (hash: /dJpfS7NEPWvTXprrkmipJ7LRqhutln6YSVfsngmsqw=) 2: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (hash: 8hUucYPHQ79ZY6uDpo1eHlNtJ78CYgic7xieJwMDGwU=) 3: 64197A380C4E11F1BFF51C3A113D8C67.roa (hash: 5Oy8Md0mZVaFY1N2L0Z/JaqYCAcPM4gQutr42m7Ekmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 993 (0x3e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118E3A, serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Validity Not Before: Mar 1 01:23:14 2026 GMT Not After : Mar 8 01:23:14 2026 GMT Subject: CN=69a39503-5c51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:45:cc:7b:3e:d0:cd:cb:a3:de:bf:cc:66:99: 69:6a:8b:62:70:a3:ef:f9:ff:9f:bc:c4:c7:26:38: 7d:69:62:4b:33:f1:e1:68:76:e7:7e:1f:dc:25:2f: de:5e:bc:24:68:c5:c7:e9:6b:1a:c3:bc:3d:28:60: 56:a8:33:e1:2c:a7:5e:00:44:05:e9:2e:a0:41:bb: b4:3f:e0:d2:fa:1e:83:da:b8:50:57:e8:8d:d4:bb: 96:51:fb:b1:2d:0e:f0:a6:d5:b8:26:b9:e3:59:e9: bf:be:01:0b:07:91:1f:fd:e5:fc:c1:0e:86:ba:b9: bc:0c:98:7c:80:9e:17:22:9c:17:fa:5a:df:4b:53: fb:b2:89:41:95:8d:3e:db:95:d1:6c:92:ef:95:96: 64:82:f6:0b:41:94:be:56:22:a9:2f:0a:9f:f3:39: dc:bf:16:9a:37:0d:73:70:ba:de:6a:44:58:88:24: 42:dd:7b:55:de:1d:50:23:6f:38:46:0e:88:38:8d: 34:ea:5c:52:54:58:b0:06:ab:6e:c0:cf:dc:f3:bb: d3:72:31:c0:67:d4:18:83:fc:20:67:08:e4:f4:b6: cd:6d:2b:f8:ef:eb:52:7a:ea:10:f5:f8:33:d2:e0: 4b:52:02:d1:cb:df:74:bf:14:33:9e:52:77:25:09: ac:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:34:ED:8A:50:EC:D3:25:DF:E0:8C:FE:A6:86:5A:0B:E2:6B:25:82 X509v3 Authority Key Identifier: keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:c4:51:7e:11:d8:a4:80:1e:5e:d2:2e:b9:22:3e:f3:c1:31: 3c:2d:8d:4d:5b:3b:74:46:05:ab:d3:af:f5:3e:ef:cd:04:11: 99:c0:cc:89:f9:c2:35:a6:75:fb:e9:1a:74:22:3a:7c:38:02: 29:6d:49:82:2c:17:1f:19:23:66:c8:90:36:0e:66:ea:85:5f: 2f:59:d8:d0:db:b4:5f:38:c4:ed:b6:6e:03:e4:96:c4:87:63: b2:43:9f:b5:dc:16:7c:e8:a9:2e:bd:47:ab:1e:63:37:06:18: fd:0e:e4:d2:66:a2:f4:7b:08:df:f0:0f:e7:5d:59:36:68:df: 82:b3:a0:8d:42:18:17:43:94:0f:91:d0:47:66:94:4d:58:a9: 7d:e7:db:10:65:2a:cf:4d:6a:68:46:f4:86:22:46:2b:0d:05: e9:3c:ea:9a:ae:3b:a0:49:ff:05:91:8b:69:e8:36:3b:04:81: 13:60:f6:b3:9d:dc:21:91:33:48:52:8c:2c:e8:5b:49:b7:98: 5b:af:ce:75:d2:76:14:e6:7c:74:67:ab:c0:45:fc:e7:45:34: 5d:fa:54:9e:99:7e:7d:d7:dd:6c:c8:dc:5b:08:30:1b:fb:15: d9:ca:41:bf:01:18:fb:22:c3:90:aa:18:fd:d0:1b:d1:e5:be: e4:a7:d5:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFM0ExMTAvBgNVBAUTKDFENjQyRUQyOEVDRUE1RjJBQUNGMzQ3QjE2MDk3RjlE OTI0MUQ3NkQwHhcNMjYwMzAxMDEyMzE0WhcNMjYwMzA4MDEyMzE0WjAYMRYwFAYD VQQDDA02OWEzOTUwMy01YzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkXMez7Qzcuj3r/MZplpaoticKPv+f+fvMTHJjh9aWJLM/HhaHbnfh/cJS/e XrwkaMXH6Wsaw7w9KGBWqDPhLKdeAEQF6S6gQbu0P+DS+h6D2rhQV+iN1LuWUfux LQ7wptW4JrnjWem/vgELB5Ef/eX8wQ6Gurm8DJh8gJ4XIpwX+lrfS1P7solBlY0+ 25XRbJLvlZZkgvYLQZS+ViKpLwqf8zncvxaaNw1zcLreakRYiCRC3XtV3h1QI284 Rg6IOI006lxSVFiwBqtuwM/c87vTcjHAZ9QYg/wgZwjk9LbNbSv47+tSeuoQ9fgz 0uBLUgLRy990vxQznlJ3JQms3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLE07YpQ 7NMl3+CM/qaGWgviayWCMB8GA1UdIwQYMBaAFB1kLtKOzqXyqs80exYJf52SQddt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEUzQS9BN0FCMEE4QUI5 OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3BmS3F6elI3RmdsX25aSkIx MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXUXUwbzdPcGZLcXp6UjdGZ2xfblpKQjEyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEUzQS9BN0FCMEE4QUI5OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3Bm S3F6elI3RmdsX25aSkIxMjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhMRRfhHYpIAeXtIuuSI+88ExPC2NTVs7dEYFq9Ov9T7vzQQRmcDMifnCNaZ1 ++kadCI6fDgCKW1JgiwXHxkjZsiQNg5m6oVfL1nY0Nu0XzjE7bZuA+SWxIdjskOf tdwWfOipLr1Hqx5jNwYY/Q7k0mai9HsI3/AP511ZNmjfgrOgjUIYF0OUD5HQR2aU TVipfefbEGUqz01qaEb0hiJGKw0F6Tzqmq47oEn/BZGLaeg2OwSBE2D2s53cIZEz SFKMLOhbSbeYW6/OddJ2FOZ8dGerwEX850U0XfpUnpl+fdfdbMjcWwgwG/sV2cpB vwEY+yLDkKoY/dAb0eW+5KfVQA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:05:29 2026 by rpki-client