$ rpki-client -vvf rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft File: h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft (raw, json) Hash identifier: W/S1b8innA2L/hQ4uEXkSofQl6j20UR1OO1VhMrMops= Subject key identifier: D9:A1:3F:33:F9:AA:44:B9:E2:23:D1:A7:1B:2D:B8:FE:EA:B8:9B:ED Authority key identifier: 87:B5:D8:53:F6:42:52:15:AD:A7:82:2F:02:A5:74:83:EE:26:7C:04 Certificate issuer: /CN=A912A294/serialNumber=87B5D853F6425215ADA7822F02A57483EE267C04 Certificate serial: 020B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft Manifest number: 01F3 Signing time: Sun 01 Mar 2026 04:20:12 +0000 Manifest this update: Sun 01 Mar 2026 04:20:12 +0000 Manifest next update: Sun 08 Mar 2026 04:20:12 +0000 Files and hashes: 1: h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl (hash: g0XpUEzOhnpLoLyScYhwkjo0rOILRXvCxfeVhhAKBOw=) 2: 64B5B49A052C11F0AFEC0478C4F9AE02.roa (hash: huPITd9WjrizkDDQMawGyr8szENVXccxygtdYGYQCJM=) 3: 24661146FA7311EFB58C366CC4F9AE02.roa (hash: txLNKah7itTjrJcRd69nJemO1MKJNqH1mqPEunQ9S/M=) 4: 60C72042052911F0A2361C50C4F9AE02.roa (hash: 1W/Ku8Per+xY46HAlC2+lLppFiPLfU3dJzCTX5pbGbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:20:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A294, serialNumber=87B5D853F6425215ADA7822F02A57483EE267C04 Validity Not Before: Mar 1 04:20:12 2026 GMT Not After : Mar 8 04:20:12 2026 GMT Subject: CN=69a3be7c-001f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:22:80:9f:99:bb:da:75:21:41:58:6f:c0:7e: 30:b8:61:f6:c0:05:80:d6:72:b5:48:40:cc:b6:c9: 41:97:42:e4:0e:86:66:22:f6:9e:33:84:63:3b:28: 8f:66:cc:6e:72:c0:47:a8:66:76:1f:af:07:a1:ac: 71:bd:67:21:ff:b6:2b:6a:44:9a:b2:f7:9f:9a:c5: 92:db:64:62:b8:e4:45:c8:6a:a4:91:c8:63:4f:d6: ec:ec:b6:66:2b:fd:4b:e5:ca:f1:e2:4a:a5:1b:61: 62:89:f4:37:e9:2b:36:88:e1:bc:87:3f:80:b0:3a: b8:e6:8b:c5:76:07:80:49:ac:1b:d4:6e:f7:5e:f2: 3c:ea:f6:f4:76:6c:a2:4f:11:f1:63:87:dc:c1:d4: 94:3a:41:df:30:da:97:27:ca:71:24:91:58:e7:23: c9:99:6d:78:73:ba:fa:24:19:82:0e:2c:b1:9b:06: 4a:7a:3d:49:31:7b:a5:bc:58:ac:be:1f:8a:52:15: 9f:bb:7b:e6:37:71:5c:0b:fb:3c:2d:b4:91:3f:de: 1a:df:36:0a:37:c5:d5:04:63:c3:e4:c7:fb:b3:56: 3c:f9:a9:27:a5:46:61:3a:6a:18:f1:2e:99:ea:89: 1f:1a:cc:cf:bd:81:16:76:89:1f:46:f5:3b:62:06: 61:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:A1:3F:33:F9:AA:44:B9:E2:23:D1:A7:1B:2D:B8:FE:EA:B8:9B:ED X509v3 Authority Key Identifier: keyid:87:B5:D8:53:F6:42:52:15:AD:A7:82:2F:02:A5:74:83:EE:26:7C:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:2b:d9:71:66:60:d6:82:43:41:27:9e:b3:2a:61:99:9d:f4: 6c:2d:b6:11:d5:83:68:2b:94:e4:71:5e:13:73:57:70:71:69: 7f:87:dc:1f:dd:eb:7f:39:d5:f4:8e:53:77:62:2e:1e:fc:e6: 66:25:85:6c:71:89:9e:ed:b6:87:2a:f4:9c:35:be:05:34:c6: 5f:8d:14:0f:1c:c2:2c:6e:05:3a:2f:19:21:6a:6a:4c:8e:50: 54:43:91:da:67:33:8e:27:30:40:83:84:02:61:cd:05:83:4e: dd:e0:2d:cf:25:6c:58:57:80:a7:0f:0f:00:34:fa:ce:96:50: b0:b7:03:30:f2:d8:53:ef:89:5b:df:2a:86:1e:7b:f9:3c:ee: 18:1b:8f:71:02:65:1b:62:12:51:5a:9a:2b:f7:f2:b0:0e:34: 70:4b:5c:28:77:81:0e:0b:e7:22:2b:71:70:88:64:69:c5:08: 87:77:03:82:ee:9c:26:06:b1:2a:3e:d1:17:ab:9f:de:a8:87: 12:42:cf:db:aa:09:fa:22:7e:fa:9e:70:f4:12:09:ce:b1:d3: a2:1b:82:bb:3f:16:ee:e9:df:74:76:26:58:85:f2:f7:3a:69: 5e:aa:88:09:c9:37:77:c5:c1:fe:0c:ae:15:ab:40:fd:95:0f: 17:8a:67:e2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEyOTQxMTAvBgNVBAUTKDg3QjVEODUzRjY0MjUyMTVBREE3ODIyRjAyQTU3NDgz RUUyNjdDMDQwHhcNMjYwMzAxMDQyMDEyWhcNMjYwMzA4MDQyMDEyWjAYMRYwFAYD VQQDDA02OWEzYmU3Yy0wMDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6iKAn5m72nUhQVhvwH4wuGH2wAWA1nK1SEDMtslBl0LkDoZmIvaeM4RjOyiP ZsxucsBHqGZ2H68HoaxxvWch/7YrakSasvefmsWS22RiuORFyGqkkchjT9bs7LZm K/1L5crx4kqlG2FiifQ36Ss2iOG8hz+AsDq45ovFdgeASawb1G73XvI86vb0dmyi TxHxY4fcwdSUOkHfMNqXJ8pxJJFY5yPJmW14c7r6JBmCDiyxmwZKej1JMXulvFis vh+KUhWfu3vmN3FcC/s8LbSRP94a3zYKN8XVBGPD5Mf7s1Y8+aknpUZhOmoY8S6Z 6okfGszPvYEWdokfRvU7YgZhtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNmhPzP5 qkS54iPRpxstuP7quJvtMB8GA1UdIwQYMBaAFIe12FP2QlIVraeCLwKldIPuJnwE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTI5NC85OTJGMUQwRTRB RDYxMUVFOTdCNTNGNzJDNEY5QUUwMi9oN1hZVV9aQ1VoV3RwNEl2QXFWMGctNG1m QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3WFlVX1pDVWhXdHA0SXZBcVYwZy00bWZBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTI5NC85OTJGMUQwRTRBRDYxMUVFOTdCNTNGNzJDNEY5QUUwMi9oN1hZVV9aQ1Vo V3RwNEl2QXFWMGctNG1mQVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnSvZcWZg1oJDQSeesyphmZ30bC22EdWDaCuU5HFeE3NXcHFpf4fcH93rfznV 9I5Td2IuHvzmZiWFbHGJnu22hyr0nDW+BTTGX40UDxzCLG4FOi8ZIWpqTI5QVEOR 2mczjicwQIOEAmHNBYNO3eAtzyVsWFeApw8PADT6zpZQsLcDMPLYU++JW98qhh57 +TzuGBuPcQJlG2ISUVqaK/fysA40cEtcKHeBDgvnIitxcIhkacUIh3cDgu6cJgax Kj7RF6uf3qiHEkLP26oJ+iJ++p5w9BIJzrHTohuCuz8W7unfdHYmWIXy9zppXqqI Cck3d8XB/gyuFatA/ZUPF4pn4g== -----END CERTIFICATE-----Generated at Mon Mar 2 00:38:24 2026 by rpki-client