$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft File: hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json) Hash identifier: MNt/ARsNnQ6I9Ob4gOBTW/IZD6b1Jh1rJyvQiGlvzlc= Subject key identifier: 6E:4D:A7:AC:E4:7D:1B:40:69:E3:54:E5:24:B0:83:DA:9A:58:DD:79 Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 0437 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft Manifest number: 0425 Signing time: Sun 01 Mar 2026 01:15:00 +0000 Manifest this update: Sun 01 Mar 2026 01:14:59 +0000 Manifest next update: Sun 08 Mar 2026 01:14:59 +0000 Files and hashes: 1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: 6d/BQTEHlww0MZ8Oea5sPVCrhlhE0SJcimsNGukHWEI=) 2: 06FA5A64774011F0BE2D3736C4F9AE02.roa (hash: kpBK3OXshYOskuLSoO3uUhN6W4dairHEsqEKAKksIS4=) 3: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: A66Rcwdstkb/5EinIJWrWOuekP0qJLH5hk4F7NZimSw=) 4: F570D764773F11F09FC02036C4F9AE02.roa (hash: zmJ243eRg2Ohq2gJwqhBcxhyjwkk5xLJsekeFyx7Ld0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1079 (0x437) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: Mar 1 01:14:59 2026 GMT Not After : Mar 8 01:14:59 2026 GMT Subject: CN=69a39314-d90d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:07:af:2e:d7:ff:ea:0d:7f:fb:2c:07:93:27: a9:75:85:f8:2e:24:31:1d:f6:ab:b1:19:ff:94:a3: 8e:99:38:17:ff:95:fa:6a:ae:c2:21:29:0b:9e:cb: d1:0e:c1:27:c6:7d:8b:bf:f3:a4:ea:3b:d0:51:09: fd:ef:41:a0:09:a9:6a:b1:22:e7:a6:b1:a9:a9:5f: 47:db:6f:fc:7d:57:9f:2f:1d:e0:47:22:8a:b5:ca: 2b:bd:12:70:04:12:03:b9:dd:e5:45:15:0e:fb:c9: 77:08:50:a9:1e:fb:54:3b:cb:59:12:65:9a:ca:57: ce:b3:ac:62:3b:20:82:c6:3e:17:0f:35:c3:db:4e: 3f:b6:d5:a0:fe:1a:24:6a:42:5b:b3:5b:db:f4:2a: f7:bc:16:4a:6d:5e:9f:20:4e:04:7f:22:67:b4:c2: fd:0b:ad:ab:ae:b4:01:2c:c9:7d:59:a6:41:f5:6e: a0:d2:0e:42:cf:50:84:29:d3:f8:7b:a9:37:97:08: a4:50:e2:9a:9e:b2:44:fb:b7:26:fb:52:8a:a0:d4: cc:03:1d:09:dd:9b:f3:ed:6e:15:6c:03:2f:45:ee: 50:22:45:f5:58:14:89:c3:ad:53:46:7b:fb:52:ee: 70:d7:4f:38:c2:3c:98:3c:8e:81:3e:a8:82:6c:a8: ba:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:4D:A7:AC:E4:7D:1B:40:69:E3:54:E5:24:B0:83:DA:9A:58:DD:79 X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:a6:af:76:e3:21:17:35:b2:ea:aa:3c:9b:79:c1:ac:9f:af: 52:c5:48:e6:56:ac:67:84:7d:d7:53:55:9e:3b:3b:e0:a4:42: 2f:f2:93:02:10:9d:17:cb:96:1d:9c:b7:ff:17:11:0c:7f:c0: 92:f2:88:42:4e:2a:1a:43:b3:62:86:95:b7:82:3f:f3:ce:4f: f7:57:69:9a:be:53:38:e4:96:69:22:42:31:86:3d:ba:1d:8c: 27:29:5e:f5:97:28:db:1e:6a:cf:84:90:ef:1d:c9:fb:a8:98: 7d:b6:08:ff:4e:e3:11:62:34:2f:af:11:cb:cb:74:14:2e:9a: e0:bc:48:78:ea:82:ad:04:c1:2f:fb:d1:1d:94:31:d1:2f:11: c9:47:ee:53:7f:58:e8:cf:af:5d:7f:5a:4f:4f:86:6b:f1:e4: 90:c2:3c:c2:27:02:b9:a3:ad:3e:75:63:0f:cf:8c:0b:68:ef: 9b:96:fa:0a:92:1a:89:7a:10:b3:3d:31:ba:17:a4:62:0e:2e: 76:fa:ba:d8:14:98:2a:57:3b:b7:89:79:f9:33:dd:ce:fc:d1: 3f:f3:39:be:c5:2c:83:46:42:5e:09:60:11:6e:0e:0b:c8:8b: 7f:cd:ae:42:e4:45:d5:f7:5b:12:cf:ac:86:d4:ea:2f:f0:28: 27:1c:ef:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjYwMzAxMDExNDU5WhcNMjYwMzA4MDExNDU5WjAYMRYwFAYD VQQDDA02OWEzOTMxNC1kOTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQevLtf/6g1/+ywHkyepdYX4LiQxHfarsRn/lKOOmTgX/5X6aq7CISkLnsvR DsEnxn2Lv/Ok6jvQUQn970GgCalqsSLnprGpqV9H22/8fVefLx3gRyKKtcorvRJw BBIDud3lRRUO+8l3CFCpHvtUO8tZEmWaylfOs6xiOyCCxj4XDzXD204/ttWg/hok akJbs1vb9Cr3vBZKbV6fIE4EfyJntML9C62rrrQBLMl9WaZB9W6g0g5Cz1CEKdP4 e6k3lwikUOKanrJE+7cm+1KKoNTMAx0J3Zvz7W4VbAMvRe5QIkX1WBSJw61TRnv7 Uu5w1084wjyYPI6BPqiCbKi6/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG5Np6zk fRtAaeNU5SSwg9qaWN15MB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh cU1pS3RzWG5qQl9NUDNqUWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGaavduMhFzWy6qo8m3nBrJ+vUsVI5lasZ4R911NVnjs74KRCL/KTAhCdF8uW HZy3/xcRDH/AkvKIQk4qGkOzYoaVt4I/885P91dpmr5TOOSWaSJCMYY9uh2MJyle 9Zco2x5qz4SQ7x3J+6iYfbYI/07jEWI0L68Ry8t0FC6a4LxIeOqCrQTBL/vRHZQx 0S8RyUfuU39Y6M+vXX9aT0+Ga/HkkMI8wicCuaOtPnVjD8+MC2jvm5b6CpIaiXoQ sz0xuhekYg4udvq62BSYKlc7t4l5+TPdzvzRP/M5vsUsg0ZCXglgEW4OC8iLf82u QuRF1fdbEs+shtTqL/AoJxzvaQ== -----END CERTIFICATE-----Generated at Mon Mar 2 04:12:05 2026 by rpki-client