$ rpki-client -vvf rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft File: DHxNa-htVb5Ey0rZZmbBU1GT93I.mft (raw, json) Hash identifier: xkA/AGtuI7zqK/+9dGQO0RW4T74RYt7TXrRznUJlaLk= Subject key identifier: 57:10:3D:B3:81:A7:E1:65:8E:FC:6E:6E:27:CD:53:27:18:48:34:A2 Authority key identifier: 0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 Certificate issuer: /CN=A9123CA4/serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Certificate serial: 01BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft Manifest number: 01B4 Signing time: Sun 01 Mar 2026 23:22:08 +0000 Manifest this update: Sun 01 Mar 2026 23:22:07 +0000 Manifest next update: Sun 08 Mar 2026 23:22:07 +0000 Files and hashes: 1: DHxNa-htVb5Ey0rZZmbBU1GT93I.crl (hash: jmjCNKQ1T/DCzCma9qcBN+K+NKOaYUt9IivvvVk0O2c=) 2: 300438B6C03511EFA42E9085C4F9AE02.roa (hash: bPTiYTxBxLwgfGF9jUdmUbDxjsKoq1F4YRnN4H89Q34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123CA4, serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Validity Not Before: Mar 1 23:22:07 2026 GMT Not After : Mar 8 23:22:07 2026 GMT Subject: CN=69a4ca20-4038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:11:b3:00:ad:d0:1e:ac:c3:60:91:1d:b1:57: 4d:f9:ce:58:f7:a2:36:b7:68:51:90:7b:b2:f8:c9: c6:d6:f9:38:c4:5d:71:80:45:27:87:c7:2e:d4:c6: 99:44:76:d3:e7:f9:88:9d:b2:8a:d2:3f:58:8b:2f: be:f5:c3:a3:03:d3:42:08:70:40:b1:0f:17:6c:f2: 8b:2a:bd:b2:40:ab:92:12:fa:bc:b8:88:94:94:e7: 4c:e7:9c:b2:ea:dd:48:8e:30:4f:cb:82:28:50:fa: 06:eb:a9:0b:36:a6:bc:b2:e4:f0:97:ea:67:dd:68: 88:0c:98:d9:8f:ee:e2:6e:d6:f7:c5:82:4e:55:56: fd:0e:62:a2:e5:0b:ad:46:b8:2b:4a:01:21:97:bc: e2:0b:0d:e6:ef:13:c5:d8:dd:f8:f6:63:c6:ed:37: bf:68:68:21:ae:8b:50:af:e1:e3:66:0b:d8:f1:dc: ed:96:4b:f9:b2:0a:d8:17:10:e3:05:e1:2f:a4:28: e0:65:f1:f8:f4:01:43:5b:69:f3:48:7e:04:ad:c4: 95:81:aa:a7:69:71:c3:fe:36:2f:42:25:ad:2f:49: 9a:4e:cd:6b:e5:ef:79:22:10:50:67:54:31:02:a7: 07:e7:3b:39:64:b7:af:7b:eb:fb:0e:41:a3:01:9d: 81:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:10:3D:B3:81:A7:E1:65:8E:FC:6E:6E:27:CD:53:27:18:48:34:A2 X509v3 Authority Key Identifier: keyid:0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:3b:e0:cb:9f:8c:5a:aa:c8:e9:cc:ed:eb:8e:2c:21:8b:e7: 1b:e8:1b:76:4f:cb:dc:14:2e:d0:05:49:b9:65:f5:dc:53:b2: b4:30:77:cd:bb:85:38:09:b6:33:dc:66:11:6c:21:96:86:3f: d9:c4:56:c1:d5:88:9b:cc:07:e7:18:eb:74:80:ae:86:a1:b5: 70:3c:0c:24:10:c2:12:f9:93:50:9a:ff:c7:e9:53:9c:55:1d: fa:6f:41:2d:c7:6a:85:23:83:06:c3:8b:d4:ba:c8:66:3a:45: 58:8d:d4:91:ce:5f:98:b3:a2:f9:9a:fe:09:9c:22:c7:45:14: dc:63:67:00:78:ad:b2:9e:d7:19:cd:bd:22:6b:6a:9b:81:1f: b7:a5:90:00:f6:b1:8e:39:b5:e8:24:5d:65:a1:3a:df:90:95: 9c:69:a7:c5:25:8e:f8:2a:d8:cc:45:8c:b9:14:52:c4:85:08: a7:cf:56:d4:15:5e:fc:55:10:43:57:08:59:53:e3:7f:0c:8f: da:61:9a:4d:b7:00:5f:82:f3:67:1e:c1:eb:d9:b5:7f:45:38: c7:4e:40:98:f3:82:a8:ab:cd:cf:de:c7:d1:50:17:43:85:2a: 95:dd:16:83:09:ef:b1:35:6a:2b:6f:51:0b:bd:0e:f4:73:75: 63:c4:f5:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNDQTQxMTAvBgNVBAUTKDBDN0M0RDZCRTg2RDU1QkU0NENCNEFEOTY2NjZDMTUz NTE5M0Y3NzIwHhcNMjYwMzAxMjMyMjA3WhcNMjYwMzA4MjMyMjA3WjAYMRYwFAYD VQQDEw02OWE0Y2EyMC00MDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxGzAK3QHqzDYJEdsVdN+c5Y96I2t2hRkHuy+MnG1vk4xF1xgEUnh8cu1MaZ RHbT5/mInbKK0j9Yiy++9cOjA9NCCHBAsQ8XbPKLKr2yQKuSEvq8uIiUlOdM55yy 6t1IjjBPy4IoUPoG66kLNqa8suTwl+pn3WiIDJjZj+7ibtb3xYJOVVb9DmKi5Qut RrgrSgEhl7ziCw3m7xPF2N349mPG7Te/aGghrotQr+HjZgvY8dztlkv5sgrYFxDj BeEvpCjgZfH49AFDW2nzSH4ErcSVgaqnaXHD/jYvQiWtL0maTs1r5e95IhBQZ1Qx AqcH5zs5ZLeve+v7DkGjAZ2BjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFcQPbOB p+FljvxubifNUycYSDSiMB8GA1UdIwQYMBaAFAx8TWvobVW+RMtK2WZmwVNRk/dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0NBNC9CNzUxNkIxMDg5 QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZiNUV5MHJaWm1iQlUxR1Q5 M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIeE5hLWh0VmI1RXkwclpabWJCVTFHVDkzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0NBNC9CNzUxNkIxMDg5QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZi NUV5MHJaWm1iQlUxR1Q5M0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGDvgy5+MWqrI6czt644sIYvnG+gbdk/L3BQu0AVJuWX13FOytDB3zbuFOAm2 M9xmEWwhloY/2cRWwdWIm8wH5xjrdICuhqG1cDwMJBDCEvmTUJr/x+lTnFUd+m9B LcdqhSODBsOL1LrIZjpFWI3Ukc5fmLOi+Zr+CZwix0UU3GNnAHitsp7XGc29Imtq m4Eft6WQAPaxjjm16CRdZaE635CVnGmnxSWO+CrYzEWMuRRSxIUIp89W1BVe/FUQ Q1cIWVPjfwyP2mGaTbcAX4LzZx7B69m1f0U4x05AmPOCqKvNz97H0VAXQ4Uqld0W gwnvsTVqK29RC70O9HN1Y8T1Vw== -----END CERTIFICATE-----Generated at Mon Mar 2 19:54:31 2026 by rpki-client