$ rpki-client -vvf rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft File: hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft (raw, json) Hash identifier: wPlUKI60cpzVMi1WdDWwENnEc4Cb6+yaIndCTwrjq+4= Subject key identifier: 20:01:4F:B2:49:67:64:A2:6B:4E:A0:FA:71:62:39:34:6A:11:65:62 Authority key identifier: 85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF Certificate issuer: /CN=A911C9E8/serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft Manifest number: 01CC Signing time: Sun 01 Mar 2026 04:27:08 +0000 Manifest this update: Sun 01 Mar 2026 04:27:08 +0000 Manifest next update: Sun 08 Mar 2026 04:27:08 +0000 Files and hashes: 1: hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl (hash: OktzlwKAh+UHTk0KIq3e1jKfV0TVz2SnfjFxGJ+O6yI=) 2: E39F4ED65C2411EEB54C4F43C4F9AE02.roa (hash: J9YGptWflbGV2JaXinbDtAZUW1YZRHNJL5vf2fh2XOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:27:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C9E8, serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Validity Not Before: Mar 1 04:27:08 2026 GMT Not After : Mar 8 04:27:08 2026 GMT Subject: CN=69a3c01c-a16e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f8:9a:2a:cd:a4:20:f8:c9:f6:6f:8a:19:56: 88:ac:f5:39:6e:64:71:66:7f:2c:8a:29:c8:02:54: 82:4a:8b:c9:a7:bd:29:6a:d1:4f:f0:02:72:b7:5e: 6d:d6:ca:58:9f:59:4b:cb:46:68:5b:b1:19:ab:eb: 91:6c:ec:5d:9f:03:0c:9b:4b:ef:64:56:f5:72:9c: 2f:52:28:b0:7a:10:09:20:a5:f8:a2:eb:33:c4:b3: 29:a3:22:c8:44:d0:7d:27:c7:36:d5:b4:1d:58:69: d5:d0:51:9b:4b:ee:cb:b6:70:54:b2:0f:b5:1c:d2: fd:7c:f7:a1:43:a3:d1:99:01:84:d0:b6:8d:5d:0f: 44:fc:a7:65:80:eb:77:91:82:22:a5:4c:f0:18:4d: 0c:90:83:fb:6a:1f:1b:f2:57:a3:fe:43:3a:81:3a: 00:58:e5:7c:5b:40:68:a4:87:24:e6:97:11:fa:63: 62:54:46:bc:1c:88:3a:1a:20:23:47:7f:db:17:31: 8e:c0:71:0e:11:95:d6:e4:3b:0b:f0:d1:dd:4d:5b: 95:33:b7:13:37:35:86:e5:06:c4:0e:fe:ff:13:3c: 16:d1:52:1b:74:73:da:5a:c9:45:da:5b:80:60:3e: 44:8b:25:2a:db:44:21:02:2d:11:fc:87:53:fe:ef: 3d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:01:4F:B2:49:67:64:A2:6B:4E:A0:FA:71:62:39:34:6A:11:65:62 X509v3 Authority Key Identifier: keyid:85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:ec:08:84:3a:32:c5:40:75:f2:4b:47:ee:2f:51:3d:14:65: d0:fa:dc:cc:3e:a9:78:6d:f9:09:cd:5c:7d:d1:5c:8f:6f:6f: 84:d9:8f:11:41:f3:39:81:1f:82:91:e2:58:fa:c2:26:34:a3: 4b:21:11:bd:56:c0:de:fe:64:fb:5f:0c:d4:49:9c:f2:c4:f3: 84:6c:7d:e4:fd:29:d1:1e:8d:69:87:58:43:4a:76:c7:a6:69: ea:ba:b6:dc:dd:0c:c4:2f:f7:d3:bf:23:ef:1f:67:cd:5a:14: 0e:a1:fe:57:f0:c0:0e:d8:ea:3c:01:42:6d:d6:96:b9:36:2f: d2:c3:1c:76:25:37:a5:32:45:e8:86:9d:77:61:b2:6e:68:66: e1:9f:5a:85:1f:78:ac:a8:4f:02:6c:b7:84:b2:54:6d:8e:fb: 69:bc:e7:39:ea:47:bd:33:3a:d4:0e:00:4d:d4:99:d2:fa:76: cb:bc:b1:a1:e3:9e:a4:c7:22:d3:95:99:ac:47:f7:ae:6e:ea: cc:09:94:5f:22:c1:70:ac:ad:05:e4:3c:77:ca:53:05:69:7d: 51:1b:2c:93:c6:e0:9e:1b:21:1d:b6:3d:a3:4d:73:ec:e1:d9: 27:ec:36:dd:4a:46:18:d1:30:11:ff:01:64:9c:a6:e1:31:d3: b0:f8:1b:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM5RTgxMTAvBgNVBAUTKDg1Mjk5RjBEQjE0QzhGMEE1M0QyNDQ2RUZEQjBDQzA1 OUMxNTI0QkYwHhcNMjYwMzAxMDQyNzA4WhcNMjYwMzA4MDQyNzA4WjAYMRYwFAYD VQQDDA02OWEzYzAxYy1hMTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsviaKs2kIPjJ9m+KGVaIrPU5bmRxZn8siinIAlSCSovJp70patFP8AJyt15t 1spYn1lLy0ZoW7EZq+uRbOxdnwMMm0vvZFb1cpwvUiiwehAJIKX4ouszxLMpoyLI RNB9J8c21bQdWGnV0FGbS+7LtnBUsg+1HNL9fPehQ6PRmQGE0LaNXQ9E/KdlgOt3 kYIipUzwGE0MkIP7ah8b8lej/kM6gToAWOV8W0BopIck5pcR+mNiVEa8HIg6GiAj R3/bFzGOwHEOEZXW5DsL8NHdTVuVM7cTNzWG5QbEDv7/EzwW0VIbdHPaWslF2luA YD5EiyUq20QhAi0R/IdT/u89TwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCABT7JJ Z2Sia06g+nFiOTRqEWViMB8GA1UdIwQYMBaAFIUpnw2xTI8KU9JEbv2wzAWcFSS/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzlFOC9GREY2NzMwNjU4 RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3cFQwa1J1X2JETUJad1ZK TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hTbWZEYkZNandwVDBrUnVfYkRNQlp3VkpMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzlFOC9GREY2NzMwNjU4RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3 cFQwa1J1X2JETUJad1ZKTDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEOwIhDoyxUB18ktH7i9RPRRl0PrczD6peG35Cc1cfdFcj29vhNmPEUHzOYEf gpHiWPrCJjSjSyERvVbA3v5k+18M1Emc8sTzhGx95P0p0R6NaYdYQ0p2x6Zp6rq2 3N0MxC/3078j7x9nzVoUDqH+V/DADtjqPAFCbdaWuTYv0sMcdiU3pTJF6Iadd2Gy bmhm4Z9ahR94rKhPAmy3hLJUbY77abznOepHvTM61A4ATdSZ0vp2y7yxoeOepMci 05WZrEf3rm7qzAmUXyLBcKytBeQ8d8pTBWl9URssk8bgnhshHbY9o01z7OHZJ+w2 3UpGGNEwEf8BZJym4THTsPgb7g== -----END CERTIFICATE-----Generated at Sun Mar 1 21:53:23 2026 by rpki-client