$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft File: hgOgrKcgSw7-1k23DeUcdboDk1U.mft (raw, json) Hash identifier: rhhs4OxGPTvjWmEZNaEO3Qko48IsWiZvHn+5kp3TQVc= Subject key identifier: BC:0F:B4:E8:E7:A2:F8:60:CC:1E:76:D6:38:44:89:52:01:CF:FF:8C Authority key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 Certificate issuer: /CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Certificate serial: 034F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft Manifest number: 0338 Signing time: Sun 01 Mar 2026 01:58:40 +0000 Manifest this update: Sun 01 Mar 2026 01:58:39 +0000 Manifest next update: Sun 08 Mar 2026 01:58:39 +0000 Files and hashes: 1: hgOgrKcgSw7-1k23DeUcdboDk1U.crl (hash: H0NOYRrP6tZ4g6Pgp1d1thQd4MJjeKA5H8HmM1yKKf0=) 2: 673C2B68A8BA11F096079D46C4F9AE02.roa (hash: gPhfTgtKlx4wmH5qoiWguK/Xx1pbfFOHbMckJ1VrL+Q=) 3: 208C7D2E066C11EDB31C2239C4F9AE02.roa (hash: j8sJFdaGh5hoT/OlB8BepmWR8CssCrYtB82PMaTll9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 847 (0x34f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EB2, serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Validity Not Before: Mar 1 01:58:39 2026 GMT Not After : Mar 8 01:58:39 2026 GMT Subject: CN=69a39d50-f4ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f4:30:6b:8b:53:e1:62:58:4d:f9:45:59:48: bb:1a:26:8d:14:3d:11:0b:49:aa:87:4f:22:d9:86: 52:58:e8:85:0d:13:66:5b:61:8e:29:e6:1f:da:a6: 37:01:c7:3b:7d:6d:39:f6:fa:3a:49:43:b0:33:a8: 05:87:0a:1c:1a:4e:89:74:68:21:8b:83:42:f7:d7: 68:02:7b:af:6d:5e:e0:01:dc:7d:23:12:b8:46:bb: d5:cd:d4:dc:3c:07:fd:b1:c6:ac:49:05:77:92:ad: f6:33:a8:16:44:22:ef:5d:cb:86:ea:96:d2:83:9d: d4:84:3c:e3:a1:f5:42:6e:66:9a:81:a2:8f:94:46: be:19:20:3a:91:a3:bc:40:ac:20:39:6a:0a:06:89: 07:b2:a3:f4:25:a7:02:5f:5f:59:a6:33:f7:27:36: 59:be:29:f6:4f:32:48:c5:ab:38:a7:e2:b6:b2:1e: f8:c1:e1:a6:ae:ac:3e:d1:13:04:c6:62:29:1e:88: aa:09:95:c7:74:67:b7:06:5e:9f:70:25:b1:89:e9: 37:94:97:a1:5b:4a:f4:01:22:30:d4:fb:21:cd:c9: a4:5d:c7:6a:b9:15:e4:7d:51:bb:1d:44:b4:18:61: e6:5c:ab:42:11:29:0c:86:ad:17:83:55:9b:9e:6c: 04:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:0F:B4:E8:E7:A2:F8:60:CC:1E:76:D6:38:44:89:52:01:CF:FF:8C X509v3 Authority Key Identifier: keyid:86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:c8:22:39:24:ba:0f:d1:5f:22:04:58:59:25:b6:f8:25:44: 00:87:ec:4f:b6:e2:ad:04:9a:1a:1e:02:d0:7b:6b:35:9d:e8: 9d:c1:ee:1e:75:90:65:9a:ec:e2:61:84:a7:0c:5d:90:a1:84: 0a:29:99:e9:26:f8:42:5f:0f:c6:30:c2:fe:3f:cf:2d:63:22: ee:a3:72:71:da:11:45:d7:d6:56:f3:0c:86:01:8c:87:22:8b: a7:1f:88:0f:ea:b3:39:e3:1c:23:b7:5a:c2:e0:db:0b:c4:ee: 6a:36:37:f4:9c:22:d5:82:a9:5e:1c:f1:cd:32:f9:c7:7e:3c: 12:30:fa:52:b3:22:58:4d:b8:bf:7e:e5:c1:0d:fd:c5:54:77: af:b1:0c:a3:8f:41:03:15:3f:85:f7:59:d5:a3:85:25:48:2f: e5:e3:b9:e3:a0:1e:02:d6:79:f7:c5:a7:9a:08:c8:0b:8e:b8: 9d:04:1a:5c:0d:de:9f:ad:1e:fa:f3:3e:39:e9:e1:25:2f:6e: 48:14:18:54:67:53:0d:62:39:d0:30:6b:ef:32:c0:75:09:22: 63:b6:03:75:b8:f2:e8:d3:b5:57:af:f1:11:6d:0a:8d:d3:ec: 7e:eb:6d:60:de:f1:2d:98:87:ec:d7:1e:e7:c9:be:1b:32:88: 79:14:26:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFQjIxMTAvBgNVBAUTKDg2MDNBMEFDQTcyMDRCMEVGRUQ2NERCNzBERTUxQzc1 QkEwMzkzNTUwHhcNMjYwMzAxMDE1ODM5WhcNMjYwMzA4MDE1ODM5WjAYMRYwFAYD VQQDDA02OWEzOWQ1MC1mNGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/Qwa4tT4WJYTflFWUi7GiaNFD0RC0mqh08i2YZSWOiFDRNmW2GOKeYf2qY3 Acc7fW059vo6SUOwM6gFhwocGk6JdGghi4NC99doAnuvbV7gAdx9IxK4RrvVzdTc PAf9scasSQV3kq32M6gWRCLvXcuG6pbSg53UhDzjofVCbmaagaKPlEa+GSA6kaO8 QKwgOWoKBokHsqP0JacCX19ZpjP3JzZZvin2TzJIxas4p+K2sh74weGmrqw+0RME xmIpHoiqCZXHdGe3Bl6fcCWxiek3lJehW0r0ASIw1PshzcmkXcdquRXkfVG7HUS0 GGHmXKtCESkMhq0Xg1WbnmwEGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLwPtOjn ovhgzB521jhEiVIBz/+MMB8GA1UdIwQYMBaAFIYDoKynIEsO/tZNtw3lHHW6A5NV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVCMi83QUM3NjdERTA2 NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3Ny0xazIzRGVVY2Rib0Rr MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnT2dyS2NnU3c3LTFrMjNEZVVjZGJvRGsxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVCMi83QUM3NjdERTA2NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3 Ny0xazIzRGVVY2Rib0RrMVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAN8giOSS6D9FfIgRYWSW2+CVEAIfsT7birQSaGh4C0HtrNZ3oncHuHnWQZZrs 4mGEpwxdkKGECimZ6Sb4Ql8PxjDC/j/PLWMi7qNycdoRRdfWVvMMhgGMhyKLpx+I D+qzOeMcI7dawuDbC8TuajY39Jwi1YKpXhzxzTL5x348EjD6UrMiWE24v37lwQ39 xVR3r7EMo49BAxU/hfdZ1aOFJUgv5eO546AeAtZ598WnmgjIC464nQQaXA3en60e +vM+OenhJS9uSBQYVGdTDWI50DBr7zLAdQkiY7YDdbjy6NO1V6/xEW0KjdPsfutt YN7xLZiH7Nce58m+GzKIeRQmmA== -----END CERTIFICATE-----Generated at Mon Mar 2 00:24:43 2026 by rpki-client