$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: QLIHn6GiNLQjmscBOQX98WdO8O3+1/fTPa5Jd/tR1B4= Subject key identifier: FB:E6:C3:E9:00:7E:70:24:B5:47:4D:5A:F6:96:E9:8D:AF:DC:75:83 Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 0841 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 0836 Signing time: Sat 28 Feb 2026 21:14:24 +0000 Manifest this update: Sat 28 Feb 2026 21:14:23 +0000 Manifest next update: Sat 07 Mar 2026 21:14:23 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: KLbcnq6tLQ6nSpG1aJFFoYevqxYxV5+IDZELVX/ozDI=) 2: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: 3OsuoPomkN3KwD+aF1zCoEkkbIN7dOFAl/woMg+7fcw=) 3: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: 3rvQwF7VOidxONOxWbJzlS69h1FDkR177X5kmaAbyhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 21:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2113 (0x841) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Feb 28 21:14:23 2026 GMT Not After : Mar 7 21:14:23 2026 GMT Subject: CN=69a35ab0-154b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f2:b9:24:a6:6a:8d:79:fa:df:2b:2d:4e:f4: 24:c5:a8:6d:3b:bf:de:12:35:83:a3:42:e1:96:f3: 49:82:73:0b:47:63:ce:f1:61:8c:c4:e5:86:41:ec: cf:c4:af:fd:75:79:d8:e1:fe:19:c0:d5:ee:09:9d: af:46:0c:76:5a:04:22:87:98:14:4e:00:17:b5:b0: 62:da:21:d3:f9:14:9a:d9:f8:7a:5a:f2:57:ba:d7: f7:10:71:e4:55:90:fb:31:9b:7d:0e:e0:d6:d2:fa: 80:d8:2a:f7:00:9b:c7:1e:40:e0:e2:c0:54:c5:ed: bd:db:82:04:2b:35:22:cf:5a:dc:60:71:03:77:91: 9b:20:76:58:07:e6:b7:cd:a3:dc:ba:8d:a8:ae:dc: 80:75:6a:77:b2:07:54:9a:58:ba:6c:cc:39:73:13: e1:61:9c:82:8b:44:fc:10:00:67:23:53:8c:78:b4: 48:a3:8e:b5:86:9d:03:96:75:e1:02:8f:4f:eb:17: 33:12:73:87:2e:f1:dd:9f:1a:2a:bb:56:99:9b:42: 5d:43:46:a2:a7:e4:98:c2:9c:43:13:e9:d2:8c:90: 8a:aa:ee:98:ca:ca:3c:46:be:91:70:24:a0:6d:d8: 82:71:93:6a:bc:19:67:89:9e:7d:05:ee:73:27:66: b7:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:E6:C3:E9:00:7E:70:24:B5:47:4D:5A:F6:96:E9:8D:AF:DC:75:83 X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:27:59:06:26:ce:58:3a:8d:7e:24:11:6b:4d:e4:83:c2:e5: 9b:81:d3:4d:eb:82:39:c2:cc:11:97:e9:68:c3:3d:54:28:86: b7:be:15:98:45:5c:d6:a2:c8:56:a8:c6:83:88:af:90:3d:ef: 9d:35:0b:ba:1c:70:57:ff:ab:14:58:d6:02:bc:24:89:ac:88: 1a:fb:81:e2:d6:29:2b:75:31:52:3f:ce:5c:b3:12:5d:ac:41: 19:87:f2:d3:a9:a1:20:df:e1:93:a6:96:93:33:d2:1f:30:82: 2c:df:3a:e8:40:44:aa:b5:ef:09:16:af:a9:b7:0f:f6:4b:0b: 5c:04:9d:50:9a:99:00:31:f2:79:a2:e3:1a:36:88:73:81:2d: 5c:be:71:d1:a9:0c:49:b5:de:4c:1c:a2:22:41:82:13:8b:d3: eb:e9:67:8a:d2:ed:e0:d9:79:e0:1f:be:a6:0d:29:d2:2c:66: aa:eb:43:0b:aa:f0:0f:23:0c:76:30:96:d8:97:8a:0b:ab:a3: d6:c5:6d:5d:d6:49:f4:0f:08:21:ed:f1:04:36:56:43:86:cd: 38:12:d0:77:56:fe:3f:f6:5f:52:e0:0e:91:c4:49:89:47:ff: 00:d4:10:20:16:29:2a:ae:14:9b:79:dd:b4:99:d7:f9:50:63: 70:23:c1:17 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjYwMjI4MjExNDIzWhcNMjYwMzA3MjExNDIzWjAYMRYwFAYD VQQDDA02OWEzNWFiMC0xNTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/K5JKZqjXn63ystTvQkxahtO7/eEjWDo0LhlvNJgnMLR2PO8WGMxOWGQezP xK/9dXnY4f4ZwNXuCZ2vRgx2WgQih5gUTgAXtbBi2iHT+RSa2fh6WvJXutf3EHHk VZD7MZt9DuDW0vqA2Cr3AJvHHkDg4sBUxe2924IEKzUiz1rcYHEDd5GbIHZYB+a3 zaPcuo2ortyAdWp3sgdUmli6bMw5cxPhYZyCi0T8EABnI1OMeLRIo461hp0DlnXh Ao9P6xczEnOHLvHdnxoqu1aZm0JdQ0aip+SYwpxDE+nSjJCKqu6Yyso8Rr6RcCSg bdiCcZNqvBlniZ59Be5zJ2a3uQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPvmw+kA fnAktUdNWvaW6Y2v3HWDMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeydZBibOWDqNfiQRa03kg8Llm4HTTeuCOcLMEZfpaMM9VCiGt74VmEVc1qLI VqjGg4ivkD3vnTULuhxwV/+rFFjWArwkiayIGvuB4tYpK3UxUj/OXLMSXaxBGYfy 06mhIN/hk6aWkzPSHzCCLN866EBEqrXvCRavqbcP9ksLXASdUJqZADHyeaLjGjaI c4EtXL5x0akMSbXeTByiIkGCE4vT6+lnitLt4Nl54B++pg0p0ixmqutDC6rwDyMM djCW2JeKC6uj1sVtXdZJ9A8IIe3xBDZWQ4bNOBLQd1b+P/ZfUuAOkcRJiUf/ANQQ IBYpKq4Um3ndtJnX+VBjcCPBFw== -----END CERTIFICATE-----Generated at Sun Mar 1 20:37:34 2026 by rpki-client