$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft File: h7_uyP-fsmiAINtZpiLBOhXlryA.mft (raw, json) Hash identifier: pmbRXhe1iuRgc875hHi24NlyC8Ahthpx3nCfMdv3ME4= Subject key identifier: EB:D0:67:DF:4A:E6:0E:C2:13:FE:FC:D8:1C:E7:C6:A0:D3:E8:88:4E Authority key identifier: 87:BF:EE:C8:FF:9F:B2:68:80:20:DB:59:A6:22:C1:3A:15:E5:AF:20 Certificate issuer: /CN=A9132B7A/serialNumber=87BFEEC8FF9FB2688020DB59A622C13A15E5AF20 Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft Manifest number: 01CC Signing time: Mon 02 Mar 2026 02:13:52 +0000 Manifest this update: Mon 02 Mar 2026 02:13:50 +0000 Manifest next update: Mon 09 Mar 2026 02:13:50 +0000 Files and hashes: 1: h7_uyP-fsmiAINtZpiLBOhXlryA.crl (hash: OuuOjjuoWAXo3pSYu+qhhSSawWnrNziPBTZbxE/e9rw=) 2: 28382F96644E11EEA1DCB653C4F9AE02.roa (hash: Hn/cKj3PeYZoLPGpaN1fINnhbucRAfAoTwU5JZOQO60=) 3: ADB02E5C5CB411F0BE8D2465C4F9AE02.roa (hash: 96qp6OlFvyt4AD3Ueh7h17elJXQzlKp/F00ZsiqHEMU=) 4: 81D3CB186B7D11F0A482004CC4F9AE02.roa (hash: WJIyz/cRqbc3/QMwliSVH70tDNBX6svUIefvj+Dz1lY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.crl rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:13:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B7A, serialNumber=87BFEEC8FF9FB2688020DB59A622C13A15E5AF20 Validity Not Before: Mar 2 02:13:50 2026 GMT Not After : Mar 9 02:13:50 2026 GMT Subject: CN=69a4f260-fac8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cd:f4:65:69:15:cb:1d:b1:94:81:e4:36:29: 3b:36:4c:6d:35:52:bf:86:6f:96:72:58:69:35:95: 1d:f4:00:7e:fd:e8:fd:33:25:a3:e7:30:c2:30:18: 75:b8:47:9c:41:6f:0d:19:74:a6:8d:9a:1f:5a:45: ac:5f:31:8d:3c:e5:3f:da:0b:41:25:73:46:a6:fa: 2c:e5:48:42:59:98:77:d3:c3:4a:00:28:f8:30:c1: f2:0a:03:6a:cd:89:c0:2f:50:41:bf:18:73:97:04: 50:20:cb:1f:dc:69:d8:5c:1b:98:81:1a:20:11:cc: 7e:23:5d:f7:a1:ac:c3:f7:0d:04:a8:e4:fd:c2:af: 76:ac:c3:de:63:0c:52:56:e3:f7:d6:a6:3a:f0:ea: 3d:33:54:79:9f:7c:b8:54:d5:44:71:0f:36:52:e4: 59:56:63:81:b0:4c:c6:ce:7c:25:75:bc:59:c5:39: 41:18:de:45:a7:ac:31:ed:e1:6f:60:6b:08:c5:d9: 1e:0a:df:a7:fb:d0:4b:15:b7:fe:ff:50:b4:8b:80: cb:b2:14:06:dd:13:7b:be:1c:a4:7c:af:26:2b:ec: 6e:b6:65:cb:6d:a2:d6:d6:34:50:e7:91:96:53:c5: db:3d:57:bf:2c:b0:c2:c2:11:c9:e3:0f:54:bf:23: 94:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:D0:67:DF:4A:E6:0E:C2:13:FE:FC:D8:1C:E7:C6:A0:D3:E8:88:4E X509v3 Authority Key Identifier: keyid:87:BF:EE:C8:FF:9F:B2:68:80:20:DB:59:A6:22:C1:3A:15:E5:AF:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7_uyP-fsmiAINtZpiLBOhXlryA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B7A/06A19602644D11EE84D4034FC4F9AE02/h7_uyP-fsmiAINtZpiLBOhXlryA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:f3:52:89:8a:e3:bd:81:79:4a:56:03:03:74:3b:ce:6f:80: 9c:fb:d1:81:fe:33:39:9b:4e:5a:89:f6:83:3c:59:89:fa:15: b4:a5:da:d1:81:4c:05:d7:4f:b6:41:97:75:de:48:8c:3a:d6: f4:d2:f0:0b:46:db:d0:78:a2:53:c0:58:6c:ef:10:3a:ff:c2: 96:10:c3:5f:4a:4b:62:7c:e1:39:5d:29:ce:d9:0d:a2:9d:de: 0a:ac:d6:95:d8:21:65:17:59:62:d5:b0:8d:e7:54:9a:c3:4d: f4:95:80:72:ef:2e:cd:70:96:44:86:83:84:a5:41:d5:66:77: 7d:c2:43:10:52:05:8d:b2:20:81:6e:e0:d4:e6:15:97:4c:79: f6:a7:6c:0c:36:50:70:43:f8:e0:65:da:3e:d6:05:00:a9:df: 2e:34:b1:81:1c:c1:1c:1c:46:6b:9c:7a:84:01:5e:f0:dd:d0: 14:c4:45:36:aa:c1:8d:fe:21:39:25:a3:17:b0:16:78:9c:55: 31:9b:39:c9:4c:53:8e:a4:56:3c:45:28:8f:5a:25:1f:27:99: e3:b4:9f:cd:d3:26:3e:cd:33:cf:56:ce:25:59:3a:ff:6e:07: de:f8:0d:c1:f1:32:34:da:1e:58:58:53:0e:88:08:b5:2a:17: f8:41:fd:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCN0ExMTAvBgNVBAUTKDg3QkZFRUM4RkY5RkIyNjg4MDIwREI1OUE2MjJDMTNB MTVFNUFGMjAwHhcNMjYwMzAyMDIxMzUwWhcNMjYwMzA5MDIxMzUwWjAYMRYwFAYD VQQDEw02OWE0ZjI2MC1mYWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwM30ZWkVyx2xlIHkNik7NkxtNVK/hm+WclhpNZUd9AB+/ej9MyWj5zDCMBh1 uEecQW8NGXSmjZofWkWsXzGNPOU/2gtBJXNGpvos5UhCWZh308NKACj4MMHyCgNq zYnAL1BBvxhzlwRQIMsf3GnYXBuYgRogEcx+I133oazD9w0EqOT9wq92rMPeYwxS VuP31qY68Oo9M1R5n3y4VNVEcQ82UuRZVmOBsEzGznwldbxZxTlBGN5Fp6wx7eFv YGsIxdkeCt+n+9BLFbf+/1C0i4DLshQG3RN7vhykfK8mK+xutmXLbaLW1jRQ55GW U8XbPVe/LLDCwhHJ4w9UvyOUowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOvQZ99K 5g7CE/782BznxqDT6IhOMB8GA1UdIwQYMBaAFIe/7sj/n7JogCDbWaYiwToV5a8g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkI3QS8wNkExOTYwMjY0 NEQxMUVFODRENDAzNEZDNEY5QUUwMi9oN191eVAtZnNtaUFJTnRacGlMQk9oWGxy eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3X3V5UC1mc21pQUlOdFpwaUxCT2hYbHJ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkI3QS8wNkExOTYwMjY0NEQxMUVFODRENDAzNEZDNEY5QUUwMi9oN191eVAtZnNt aUFJTnRacGlMQk9oWGxyeUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIPNSiYrjvYF5SlYDA3Q7zm+AnPvRgf4zOZtOWon2gzxZifoVtKXa0YFMBddP tkGXdd5IjDrW9NLwC0bb0HiiU8BYbO8QOv/ClhDDX0pLYnzhOV0pztkNop3eCqzW ldghZRdZYtWwjedUmsNN9JWAcu8uzXCWRIaDhKVB1WZ3fcJDEFIFjbIggW7g1OYV l0x59qdsDDZQcEP44GXaPtYFAKnfLjSxgRzBHBxGa5x6hAFe8N3QFMRFNqrBjf4h OSWjF7AWeJxVMZs5yUxTjqRWPEUoj1olHyeZ47SfzdMmPs0zz1bOJVk6/24H3vgN wfEyNNoeWFhTDogItSoX+EH9fA== -----END CERTIFICATE-----Generated at Tue Mar 3 02:12:45 2026 by rpki-client