$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft File: loNUUNMhwefEjKDF3NK6bB0tSPE.mft (raw, json) Hash identifier: go/676PAdPeBtWJBsi4VTkg3znk5LLmreTNHnoGMAhg= Subject key identifier: B2:1E:1F:D5:17:F3:11:5B:65:8E:94:9F:8D:8C:3C:E9:05:32:2C:23 Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft Manifest number: 0123 Signing time: Sun 01 Mar 2026 06:40:09 +0000 Manifest this update: Sun 01 Mar 2026 06:40:09 +0000 Manifest next update: Sun 08 Mar 2026 06:40:09 +0000 Files and hashes: 1: loNUUNMhwefEjKDF3NK6bB0tSPE.crl (hash: xz9y/ka+H0EI5n2gswbn/u63NuZauHiC0XAJHML1r7Y=) 2: 050079585AC911EF9DF4275AC4F9AE02.roa (hash: r3ab2hXEUx4DTxPcSBrvJTxlFoImKdTbWENPYxt4ZVo=) 3: 047C04705AC911EF9DF4275AC4F9AE02.roa (hash: gFJfC0bItrBd113l2fr+RXunsEK2SI34GEF/xaXg74s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DF25, serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Validity Not Before: Mar 1 06:40:09 2026 GMT Not After : Mar 8 06:40:09 2026 GMT Subject: CN=69a3df49-19f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:50:b8:66:c8:f5:1a:e7:2e:72:ac:b6:be:cf: 7f:02:e3:7b:e7:20:c6:88:0d:ea:f6:97:44:51:77: da:4e:a6:c2:96:60:cd:5d:d2:21:6b:6d:41:6a:13: 6f:8b:72:87:d5:5f:4e:11:1a:2d:7b:a9:ae:0e:b4: 0f:a2:30:07:d6:bb:f0:c7:4a:a4:f3:53:ac:8a:71: 6c:3c:59:e0:e3:ae:29:1a:89:e3:04:07:80:48:12: 0b:17:cb:24:a0:8b:2a:ec:f6:eb:c6:a2:42:80:5a: 35:51:13:cd:20:2b:84:84:7f:65:96:3d:98:b3:80: a7:2f:20:b3:5f:3d:bd:29:3c:b9:0d:0d:e2:5c:f5: 93:09:32:b6:43:fc:b6:2d:71:33:fe:80:3c:48:fe: 1c:8a:40:e1:44:c0:6c:14:4d:c4:ec:0d:e5:cb:f5: fd:c3:50:e2:90:75:e7:42:20:e3:c1:08:36:1a:68: 44:6e:53:aa:76:e6:ae:2e:bd:1c:7b:c2:ff:7a:f0: 47:2c:70:02:83:ca:d0:7e:05:41:a6:96:01:6f:b9: 2e:c5:0c:af:45:ad:55:ed:cd:25:6e:74:d1:ee:8a: d8:f6:79:d3:0d:a9:3e:46:6a:d1:c9:92:c0:ef:e9: 08:fb:fa:90:8d:05:c5:b8:88:81:14:68:fd:22:db: 77:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:1E:1F:D5:17:F3:11:5B:65:8E:94:9F:8D:8C:3C:E9:05:32:2C:23 X509v3 Authority Key Identifier: keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:f5:09:b7:cb:8d:28:97:46:f3:d7:c4:3c:25:17:e5:cd:aa: 66:7e:2c:30:6d:5a:f5:c5:c3:dd:80:0b:05:63:0b:8c:44:23: 5c:dd:87:cf:4f:ee:be:22:ae:69:9e:db:8f:f6:d1:c5:f4:c6: f1:83:8e:4c:da:b5:7d:fb:9a:d3:40:50:51:6a:6a:24:2d:21: 1b:14:ce:75:c8:f8:46:3f:2a:18:f8:a2:a7:42:11:9b:c1:9f: 51:c5:80:1d:2d:e5:fa:f6:39:da:18:f7:fa:4c:e4:ee:9b:f5: f9:40:12:e9:79:d4:7d:a9:ad:40:ee:e2:af:16:88:f8:4f:d7: 47:51:07:06:8a:32:09:75:44:ff:58:c4:85:3a:9d:e0:59:06: ad:78:3a:60:34:44:58:a4:45:cd:d7:22:ba:b0:b3:54:87:06: 7a:fc:95:7e:be:a4:76:16:b3:2e:98:39:d4:a4:7e:d5:9d:0f: a5:8b:10:0e:4a:3b:f0:bf:7a:a3:a4:ac:ae:b6:e3:24:fa:eb: 5f:6e:21:21:04:fc:95:4f:17:9c:78:f6:99:06:9a:6d:55:0b: 2c:9a:d1:b3:05:29:fa:0c:5c:3c:89:2a:7a:69:34:7e:1e:94: 2a:35:56:e0:c1:9e:cc:41:21:5c:0c:73:dc:41:eb:b3:20:4e: e2:c7:9a:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGMjUxMTAvBgNVBAUTKDk2ODM1NDUwRDMyMUMxRTdDNDhDQTBDNURDRDJCQTZD MUQyRDQ4RjEwHhcNMjYwMzAxMDY0MDA5WhcNMjYwMzA4MDY0MDA5WjAYMRYwFAYD VQQDEw02OWEzZGY0OS0xOWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFC4Zsj1Gucucqy2vs9/AuN75yDGiA3q9pdEUXfaTqbClmDNXdIha21BahNv i3KH1V9OERote6muDrQPojAH1rvwx0qk81OsinFsPFng464pGonjBAeASBILF8sk oIsq7PbrxqJCgFo1URPNICuEhH9llj2Ys4CnLyCzXz29KTy5DQ3iXPWTCTK2Q/y2 LXEz/oA8SP4cikDhRMBsFE3E7A3ly/X9w1DikHXnQiDjwQg2GmhEblOqduauLr0c e8L/evBHLHACg8rQfgVBppYBb7kuxQyvRa1V7c0lbnTR7orY9nnTDak+RmrRyZLA 7+kI+/qQjQXFuIiBFGj9Itt3EQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLIeH9UX 8xFbZY6Un42MPOkFMiwjMB8GA1UdIwQYMBaAFJaDVFDTIcHnxIygxdzSumwdLUjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREYyNS83RjdCMURBQzVB QzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdlZkVqS0RGM05LNmJCMHRT UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvTlVVTk1od2VmRWpLREYzTks2YkIwdFNQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REYyNS83RjdCMURBQzVBQzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdl ZkVqS0RGM05LNmJCMHRTUEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZPUJt8uNKJdG89fEPCUX5c2qZn4sMG1a9cXD3YALBWMLjEQjXN2Hz0/uviKu aZ7bj/bRxfTG8YOOTNq1ffua00BQUWpqJC0hGxTOdcj4Rj8qGPiip0IRm8GfUcWA HS3l+vY52hj3+kzk7pv1+UAS6XnUfamtQO7irxaI+E/XR1EHBooyCXVE/1jEhTqd 4FkGrXg6YDREWKRFzdciurCzVIcGevyVfr6kdhazLpg51KR+1Z0PpYsQDko78L96 o6SsrrbjJPrrX24hIQT8lU8XnHj2mQaabVULLJrRswUp+gxcPIkqemk0fh6UKjVW 4MGezEEhXAxz3EHrsyBO4seabg== -----END CERTIFICATE-----Generated at Mon Mar 2 05:36:57 2026 by rpki-client