$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft File: 8a29DnE5HfIQ3jRh52V4tHoBYko.mft (raw, json) Hash identifier: drW/dn9YKdZCS5+Zw2IkUqT3VXVbWO6yVTWqNOjbreg= Subject key identifier: C0:3E:14:8B:37:08:80:B1:E8:6E:DA:7A:10:95:FF:53:D4:CB:D3:ED Authority key identifier: F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A Certificate issuer: /CN=A9131711/serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Certificate serial: 017F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft Manifest number: 017E Signing time: Sun 01 Mar 2026 05:32:31 +0000 Manifest this update: Sun 01 Mar 2026 05:32:30 +0000 Manifest next update: Sun 08 Mar 2026 05:32:30 +0000 Files and hashes: 1: 8a29DnE5HfIQ3jRh52V4tHoBYko.crl (hash: iV62ATUSeHM5jO5sNab9z+86rArslM+RaOJRKGO13rw=) 2: 1D63B4248BB011F0A730E413C4F9AE02.roa (hash: OyE30n/5T2aP2dUzdX/x+6s1iB5G8Z+cghgCmYn5BRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 05:32:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Validity Not Before: Mar 1 05:32:30 2026 GMT Not After : Mar 8 05:32:30 2026 GMT Subject: CN=69a3cf6e-46e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:09:ee:95:a8:ca:42:58:68:00:2a:dc:cc:f2: e2:bc:14:57:c4:f6:c8:8e:ed:28:ec:b5:5b:3f:4f: df:c8:91:25:67:e0:42:aa:83:a6:bd:11:c4:39:5f: fc:18:f7:3b:e3:dd:8d:0a:7d:e2:2b:59:28:7c:ad: 98:4f:8f:94:a5:0b:ed:7b:af:42:31:1c:40:57:29: bc:b2:98:7c:d4:03:70:f1:c4:05:f8:2c:4d:f2:76: 88:57:17:6d:aa:bd:d4:ea:90:a6:75:f9:17:6f:a6: 82:8e:c8:d0:df:b6:1f:21:b8:dd:de:f2:67:d2:f9: 43:54:27:36:df:6c:82:9f:f6:14:dd:ab:e9:b6:62: a4:79:ad:0d:9d:c9:8c:3b:9e:0d:30:2d:d2:35:a8: b8:df:e3:04:3e:d2:7c:59:d1:42:93:27:21:64:1b: 60:1c:51:5a:45:9a:ce:36:38:47:b5:0d:bf:75:90: a2:8e:09:5f:70:bf:8a:92:fc:a2:55:ce:07:37:f9: ac:32:60:21:11:ab:f0:4d:07:92:f5:4d:72:c7:09: b7:07:42:c0:3d:c6:0b:d2:92:c1:62:7a:9b:29:e4: d8:6e:dd:d7:b5:4c:a5:8e:0e:11:54:c4:23:5a:10: e2:b7:d4:69:28:b6:8c:cf:c0:bc:4c:21:6d:b6:6e: f3:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:3E:14:8B:37:08:80:B1:E8:6E:DA:7A:10:95:FF:53:D4:CB:D3:ED X509v3 Authority Key Identifier: keyid:F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:b2:97:ca:6b:25:5a:1a:4a:e8:64:fc:c0:97:c7:ab:81:f2: 65:63:ab:fc:d9:0e:8d:68:5e:4e:f1:4d:12:ec:2b:80:9f:7f: 2d:a8:b5:1f:70:77:a1:04:0b:8c:6a:74:4a:8e:c7:ff:ee:00: a7:fe:97:c9:8c:21:15:54:50:68:46:f4:34:25:4d:be:13:69: d3:c1:e5:61:99:f7:ed:d6:13:71:be:d0:d2:22:1a:a4:04:c0: ac:0f:6e:50:91:25:04:be:dd:a7:c0:e1:e8:0c:b9:d0:f8:ed: 52:d1:8d:1b:45:df:6b:2a:1b:20:59:f5:8b:47:12:bb:b3:e4: 5f:79:2f:b9:8a:57:b7:d5:91:27:e4:7b:f5:22:88:3d:b2:3b: cd:37:ff:9d:68:a1:b5:56:b0:3a:4e:4b:46:cf:d5:46:c7:3e: 3f:73:38:f2:6d:24:1e:c6:2b:28:e1:10:9c:fc:66:f7:d4:16: 49:14:88:ab:1d:56:4d:3a:46:57:11:2d:ce:61:b3:25:45:a3: d9:eb:1c:f7:dc:d0:af:62:30:46:06:89:fb:8b:95:45:15:45: 1f:36:10:f3:78:49:4d:23:4d:47:e7:e4:22:28:b5:bc:69:7f: 91:0d:eb:a0:83:b6:99:4b:e9:90:d4:3f:97:d7:46:e2:ca:b6: 2a:4e:3e:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEYxQURCRDBFNzEzOTFERjIxMERFMzQ2MUU3NjU3OEI0 N0EwMTYyNEEwHhcNMjYwMzAxMDUzMjMwWhcNMjYwMzA4MDUzMjMwWjAYMRYwFAYD VQQDEw02OWEzY2Y2ZS00NmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAnulajKQlhoACrczPLivBRXxPbIju0o7LVbP0/fyJElZ+BCqoOmvRHEOV/8 GPc7492NCn3iK1kofK2YT4+UpQvte69CMRxAVym8sph81ANw8cQF+CxN8naIVxdt qr3U6pCmdfkXb6aCjsjQ37YfIbjd3vJn0vlDVCc232yCn/YU3avptmKkea0NncmM O54NMC3SNai43+MEPtJ8WdFCkychZBtgHFFaRZrONjhHtQ2/dZCijglfcL+Kkvyi Vc4HN/msMmAhEavwTQeS9U1yxwm3B0LAPcYL0pLBYnqbKeTYbt3XtUyljg4RVMQj WhDit9RpKLaMz8C8TCFttm7z8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMA+FIs3 CICx6G7aehCV/1PUy9PtMB8GA1UdIwQYMBaAFPGtvQ5xOR3yEN40YedleLR6AWJK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS9BOTUwREZEQUM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhmSVEzalJoNTJWNHRIb0JZ a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhhMjlEbkU1SGZJUTNqUmg1MlY0dEhvQllrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS9BOTUwREZEQUM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhm SVEzalJoNTJWNHRIb0JZa28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkbKXymslWhpK6GT8wJfHq4HyZWOr/NkOjWheTvFNEuwrgJ9/Lai1H3B3oQQL jGp0So7H/+4Ap/6XyYwhFVRQaEb0NCVNvhNp08HlYZn37dYTcb7Q0iIapATArA9u UJElBL7dp8Dh6Ay50PjtUtGNG0XfayobIFn1i0cSu7PkX3kvuYpXt9WRJ+R79SKI PbI7zTf/nWihtVawOk5LRs/VRsc+P3M48m0kHsYrKOEQnPxm99QWSRSIqx1WTTpG VxEtzmGzJUWj2esc99zQr2IwRgaJ+4uVRRVFHzYQ83hJTSNNR+fkIii1vGl/kQ3r oIO2mUvpkNQ/l9dG4sq2Kk4+bg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:26:18 2026 by rpki-client