$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: wM687n1S9l9wdYy3x9tZsQ7LwWTQalimeL+xN+JUvl4= Subject key identifier: 80:F8:00:A5:BC:0B:8A:A5:44:00:54:28:CB:BC:6E:FC:FA:81:72:5B Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: F6 Signing time: Mon 02 Mar 2026 02:50:56 +0000 Manifest this update: Mon 02 Mar 2026 02:50:54 +0000 Manifest next update: Mon 09 Mar 2026 02:50:54 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: if9LxUsTorcHDVOiDCEcBZbxoxWScDqR6jLhufe9yoc=) 2: 245F176CA81311F0A8A82B85C4F9AE02.roa (hash: F14KsJqUIcD+JrlfVQCtSv295fN5cUWUmnl8lDM/lag=) 3: FD4056EC7CC411F0BAFA214CC4F9AE02.roa (hash: gyl8LKflFHTBaQXJC874/YdVBr+pHDAsrgRU8hn35pg=) 4: 7B73A414A81311F0A69E5E49C4F9AE02.roa (hash: vbUGM0rj13mOKDHrJjbm/2qq1K6gnIIlTesnUtvINDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Mar 2 02:50:54 2026 GMT Not After : Mar 9 02:50:54 2026 GMT Subject: CN=69a4fb0f-d6a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d3:6f:21:17:1a:46:f9:76:f7:44:5a:af:ee: 1c:93:20:02:a6:b8:f7:a1:9a:03:ca:24:52:3a:70: b2:63:68:11:98:8e:a1:f9:a3:49:12:9c:8f:ad:ae: d1:1c:04:84:04:7a:63:01:8e:8d:d1:68:c2:e4:17: 8b:ad:4f:e2:62:eb:5b:cf:c0:67:24:28:3f:2f:70: fa:7e:c4:e2:f1:3b:b8:f9:d3:3e:52:85:d3:35:1b: 77:bf:70:78:de:03:1a:c3:96:31:2c:29:3c:50:c0: 4c:05:fa:82:7f:c8:5d:f5:b9:03:86:bc:ce:20:5c: 50:2e:35:fd:26:2b:06:68:19:95:77:c7:44:0c:6f: f4:68:c6:a5:2f:5d:12:30:50:f5:23:27:17:78:20: 1f:a0:4e:18:ba:ef:36:31:d8:2e:ac:2e:69:83:60: 1d:26:1f:d9:09:c4:ae:e8:c3:12:c5:c6:8e:8b:63: 6e:44:47:5b:47:55:ce:d3:83:e2:b1:d9:f4:99:54: 38:50:75:f3:88:45:b5:fb:2b:1e:78:4c:13:a7:67: 11:7e:02:a6:31:ce:da:ed:6f:d9:2d:f9:b7:7b:6a: 88:cf:44:b2:5f:81:cb:a8:9b:62:3d:f1:86:b7:e3: 3a:19:cd:90:ee:1d:57:28:d0:fc:ff:f9:c6:44:dc: c5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F8:00:A5:BC:0B:8A:A5:44:00:54:28:CB:BC:6E:FC:FA:81:72:5B X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:81:a2:60:50:2f:ea:27:d7:ce:57:6a:09:d6:f1:d1:8c:fc: f7:9f:07:a4:63:ac:a4:cc:77:1a:5f:e4:a4:05:53:bd:9d:e8: 90:ae:44:76:c0:33:4a:b1:f3:01:cd:07:53:11:e5:4a:79:32: 96:99:ac:ab:73:d9:d9:32:42:aa:85:36:8f:fc:19:ef:19:42: 60:18:2a:b1:31:45:f9:0f:28:94:89:9c:39:a9:6a:61:c4:ef: a4:88:a1:b6:e6:a1:02:79:5e:55:4d:de:05:b8:4a:c7:5c:fc: b3:5c:77:f0:da:ef:e9:a5:8f:d4:4e:14:d2:09:20:a5:62:59: 57:0d:2a:77:f1:ba:f3:2e:2e:f5:65:9f:8e:e9:75:47:68:5a: e1:47:45:c1:f7:33:be:4d:ec:0e:68:8c:b4:4c:4c:a6:c3:40: ea:cb:c5:d1:f6:17:8c:e1:db:16:4c:22:33:bf:72:93:71:75: 38:85:ea:b5:ee:f3:18:40:2d:78:28:b1:f5:c6:5c:53:a3:ed: d4:ea:1d:f9:bc:0d:95:8a:9b:a6:34:17:c4:8e:39:b4:6b:56: d5:f7:b7:20:6d:63:0f:c6:70:11:b4:b1:8e:6c:df:e6:33:cd: 40:17:a3:c4:3f:1b:97:60:07:77:a6:55:a8:41:c1:cb:9d:df: 27:35:1c:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDg0MEZENkY3RTg5MUUzODA0QTdEQjMwOUQwNENFODVD MUFGNzg2RDEwHhcNMjYwMzAyMDI1MDU0WhcNMjYwMzA5MDI1MDU0WjAYMRYwFAYD VQQDEw02OWE0ZmIwZi1kNmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdNvIRcaRvl290Rar+4ckyACprj3oZoDyiRSOnCyY2gRmI6h+aNJEpyPra7R HASEBHpjAY6N0WjC5BeLrU/iYutbz8BnJCg/L3D6fsTi8Tu4+dM+UoXTNRt3v3B4 3gMaw5YxLCk8UMBMBfqCf8hd9bkDhrzOIFxQLjX9JisGaBmVd8dEDG/0aMalL10S MFD1IycXeCAfoE4Yuu82MdgurC5pg2AdJh/ZCcSu6MMSxcaOi2NuREdbR1XO04Pi sdn0mVQ4UHXziEW1+yseeEwTp2cRfgKmMc7a7W/ZLfm3e2qIz0SyX4HLqJtiPfGG t+M6Gc2Q7h1XKND8//nGRNzFQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFID4AKW8 C4qlRABUKMu8bvz6gXJbMB8GA1UdIwQYMBaAFIQP1vfokeOASn2zCdBM6Fwa94bR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi8xOTdGRjdBMkI0 MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0QktmYk1KMEV6b1hCcjNo dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi8xOTdGRjdBMkI0MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0 QktmYk1KMEV6b1hCcjNodEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC4GiYFAv6ifXzldqCdbx0Yz8958HpGOspMx3Gl/kpAVTvZ3okK5EdsAzSrHz Ac0HUxHlSnkylpmsq3PZ2TJCqoU2j/wZ7xlCYBgqsTFF+Q8olImcOalqYcTvpIih tuahAnleVU3eBbhKx1z8s1x38Nrv6aWP1E4U0gkgpWJZVw0qd/G68y4u9WWfjul1 R2ha4UdFwfczvk3sDmiMtExMpsNA6svF0fYXjOHbFkwiM79yk3F1OIXqte7zGEAt eCix9cZcU6Pt1Ood+bwNlYqbpjQXxI45tGtW1fe3IG1jD8ZwEbSxjmzf5jPNQBej xD8bl2AHd6ZVqEHBy53fJzUc+g== -----END CERTIFICATE-----Generated at Mon Mar 2 11:57:47 2026 by rpki-client