$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft File: hf--WNwc9_kcLTgTTiC27wssOl8.mft (raw, json) Hash identifier: F5RWYP57m3FY2kKwqtuDEmNo/02iBYu5zpXSE5B/2VY= Subject key identifier: 95:6A:E4:A1:F6:DB:9C:5E:8E:79:0C:32:ED:A8:28:C0:39:AF:8A:4F Authority key identifier: 85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F Certificate issuer: /CN=A911954F/serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft Manifest number: 0300 Signing time: Sun 01 Mar 2026 11:58:53 +0000 Manifest this update: Sun 01 Mar 2026 11:58:53 +0000 Manifest next update: Sun 08 Mar 2026 11:58:53 +0000 Files and hashes: 1: hf--WNwc9_kcLTgTTiC27wssOl8.crl (hash: 1clRjLne1MNhDjyl0mgR6lkkARIBRkyq+gyL8ltISVU=) 2: 6BCEC330344311EFB7DD0D34C4F9AE02.roa (hash: o9mCInO/cZdVkgBb0zOWcRDkGAVFbgCI1G0UaKcbo3k=) 3: 65874B72FF1D11F09D5C691B85EE528E.roa (hash: Hxgf7D7ou+s6eV5JEXbKPTVg53JQdSbTX2Nm6JAsd0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 11:58:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911954F, serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Validity Not Before: Mar 1 11:58:53 2026 GMT Not After : Mar 8 11:58:53 2026 GMT Subject: CN=69a429fd-9681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:32:52:39:01:6e:47:1b:be:af:88:9c:b6:cc: 1c:c2:ef:34:3f:8d:b3:ca:08:ca:40:ff:bd:18:72: 28:47:2f:b3:91:fa:ae:b0:af:84:c0:25:2e:29:00: 94:33:2d:25:c4:50:ef:9c:10:13:7c:fd:cd:38:27: ec:e0:e7:c8:39:2e:77:f9:e4:c6:06:5e:8f:9b:49: 55:3c:c5:0a:02:57:f7:6b:cd:70:9b:9e:f3:4d:8e: 97:4e:22:75:f3:5d:a8:1f:07:03:6f:b4:cd:c4:5c: c4:9f:3e:11:a0:5a:0a:c0:50:bb:d6:d3:3a:76:a1: 71:f3:ad:c1:59:36:37:f8:f0:00:a3:ae:81:17:f5: f4:5f:05:f7:07:6a:99:f1:62:18:77:49:cf:95:7b: db:97:85:e9:66:6d:8d:d6:7a:f8:ff:04:94:8b:5f: d3:31:5c:ed:7e:a1:70:b9:26:31:9d:2d:7e:55:de: 92:a6:c7:d8:b5:0f:12:f4:1a:b9:1f:0d:0b:ea:97: 52:d5:91:9f:be:54:ec:65:af:ef:1e:91:81:b0:8d: f2:3e:c6:91:b5:e1:a7:c4:0d:27:05:24:2f:c3:6d: 5d:53:19:67:ca:66:81:1f:b7:0a:da:7f:4e:c8:8f: 63:40:b8:9a:05:f9:73:4b:f2:22:2b:be:b6:55:12: cf:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:6A:E4:A1:F6:DB:9C:5E:8E:79:0C:32:ED:A8:28:C0:39:AF:8A:4F X509v3 Authority Key Identifier: keyid:85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:7a:97:d9:27:3b:ea:c0:2e:ba:06:85:9d:d3:fd:b0:15:8f: 8e:d9:33:74:f7:01:5d:3f:14:85:86:a4:ac:d1:f3:4a:5f:28: db:a8:67:da:97:d0:e4:5c:a0:9d:b9:78:44:84:32:69:58:39: 40:7c:2d:05:c8:3e:f2:2a:96:0d:95:5c:6f:e1:c5:80:86:80: 92:a1:ce:0b:f4:5a:4f:10:b4:36:69:c6:6d:2c:2c:72:7a:70: d0:be:9f:6c:0b:0e:4b:0d:dc:63:dc:f8:98:a6:56:f3:f2:37: cf:2c:4e:58:f6:b7:2e:3e:58:a8:dc:bf:0f:fe:6d:9b:16:3c: 7e:7d:50:f4:c1:4f:03:94:42:89:f0:ab:c6:28:90:a2:42:c3: b7:f3:1f:7c:5a:bc:9e:ab:25:a4:6e:be:3b:91:66:a3:9b:01: b5:1d:21:a5:5a:d0:38:e8:f9:76:43:a3:94:67:92:4a:81:79: f1:be:99:41:20:fb:12:1f:3e:9e:7c:bd:49:a5:f1:27:d6:35: 70:a9:be:44:75:c6:3d:7f:e0:84:28:bb:57:13:b4:2e:19:cd: 53:f0:dc:92:de:e6:3a:d0:83:d0:c5:87:21:0d:f5:70:bb:3a: 94:01:9a:97:fa:36:1e:df:b5:c5:05:b7:5b:fe:c4:84:64:69: 2f:7d:cc:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1NEYxMTAvBgNVBAUTKDg1RkZCRTU4REMxQ0Y3RjkxQzJEMzgxMzRFMjBCNkVG MEIyQzNBNUYwHhcNMjYwMzAxMTE1ODUzWhcNMjYwMzA4MTE1ODUzWjAYMRYwFAYD VQQDEw02OWE0MjlmZC05NjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DJSOQFuRxu+r4ictswcwu80P42zygjKQP+9GHIoRy+zkfqusK+EwCUuKQCU My0lxFDvnBATfP3NOCfs4OfIOS53+eTGBl6Pm0lVPMUKAlf3a81wm57zTY6XTiJ1 812oHwcDb7TNxFzEnz4RoFoKwFC71tM6dqFx863BWTY3+PAAo66BF/X0XwX3B2qZ 8WIYd0nPlXvbl4XpZm2N1nr4/wSUi1/TMVztfqFwuSYxnS1+Vd6SpsfYtQ8S9Bq5 Hw0L6pdS1ZGfvlTsZa/vHpGBsI3yPsaRteGnxA0nBSQvw21dUxlnymaBH7cK2n9O yI9jQLiaBflzS/IiK762VRLPGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJVq5KH2 25xejnkMMu2oKMA5r4pPMB8GA1UdIwQYMBaAFIX/vljcHPf5HC04E04gtu8LLDpf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTU0Ri81OTFBMzIyMDkx NEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlfa2NMVGdUVGlDMjd3c3NP bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hmLS1XTndjOV9rY0xUZ1RUaUMyN3dzc09sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTU0Ri81OTFBMzIyMDkxNEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlf a2NMVGdUVGlDMjd3c3NPbDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr3qX2Sc76sAuugaFndP9sBWPjtkzdPcBXT8UhYakrNHzSl8o26hn2pfQ5Fyg nbl4RIQyaVg5QHwtBcg+8iqWDZVcb+HFgIaAkqHOC/RaTxC0NmnGbSwscnpw0L6f bAsOSw3cY9z4mKZW8/I3zyxOWPa3Lj5YqNy/D/5tmxY8fn1Q9MFPA5RCifCrxiiQ okLDt/MffFq8nqslpG6+O5Fmo5sBtR0hpVrQOOj5dkOjlGeSSoF58b6ZQSD7Eh8+ nny9SaXxJ9Y1cKm+RHXGPX/ghCi7VxO0LhnNU/Dckt7mOtCD0MWHIQ31cLs6lAGa l/o2Ht+1xQW3W/7EhGRpL33MCA== -----END CERTIFICATE-----Generated at Mon Mar 2 00:46:55 2026 by rpki-client