$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: WhJKz0gUsjz9ma1D5GUHOzQLdfHCK74amcce3V11d30= Subject key identifier: D9:17:45:10:26:1E:90:E2:66:88:D0:DB:E4:B8:3D:5E:D4:A7:AF:C7 Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 097C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 096B Signing time: Mon 02 Mar 2026 01:28:03 +0000 Manifest this update: Mon 02 Mar 2026 01:28:02 +0000 Manifest next update: Mon 09 Mar 2026 01:28:02 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: QpzpZ2kSSwCbqKZPkPOJrMsOVL9i/FTXHpSRTVo+HVQ=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: DRHD5xTVFWimAXAoILMZ1X9MVVZOC51/xO8I5gnlqy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:27:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2428 (0x97c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Mar 2 01:28:02 2026 GMT Not After : Mar 9 01:28:02 2026 GMT Subject: CN=69a4e7a3-5719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:50:9b:5b:b0:b8:45:1a:f5:1c:1b:c6:55:10: f3:0d:fc:7c:0e:29:75:21:74:2b:5c:eb:86:f3:4f: e0:92:96:8a:fe:5a:f0:1f:b5:82:df:47:75:e6:9b: 40:ce:25:4d:70:e8:cf:03:26:00:b0:ea:3d:94:9d: 3d:65:ba:4e:de:0e:7d:dd:40:35:0f:8d:e8:de:75: b6:5e:0c:c4:f4:5b:9c:85:e0:74:f8:8b:35:56:7f: 33:be:bf:c5:e4:1d:15:41:e3:f2:08:50:c7:00:eb: 13:9b:ac:6c:d9:f1:ad:0d:88:69:de:1a:06:ee:85: 74:8a:f9:4b:d5:0c:fa:f2:0a:c0:94:41:0d:f4:b7: 90:dd:e0:6f:0a:92:8d:bd:8b:bc:51:4f:f7:22:94: 8b:fd:d0:94:7c:ea:df:75:2a:20:d4:3d:a6:ed:3e: 79:9c:04:56:08:cc:fa:e3:48:95:0a:2e:16:1b:98: af:2d:35:7e:d0:c4:54:a9:a7:8c:c0:98:16:21:5b: 53:55:55:d7:4b:9e:49:65:b4:f4:ba:fd:57:8f:12: 24:f1:96:5d:35:62:73:21:ba:6b:5c:3a:1c:4e:90: 1c:ce:69:68:66:d1:a8:0f:da:a1:ec:1f:6d:f4:ae: 75:49:dd:14:76:aa:3b:d3:a4:08:bf:78:16:00:bc: d0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:17:45:10:26:1E:90:E2:66:88:D0:DB:E4:B8:3D:5E:D4:A7:AF:C7 X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:c5:ee:88:d1:28:1d:d7:01:77:fc:a0:84:a1:27:ac:88:91: 7f:ce:b5:0a:7a:d5:5a:8b:88:2d:c3:23:14:c3:a6:af:0f:19: 52:52:cf:9f:a3:fe:1d:2d:6f:c9:ba:f2:eb:97:96:ad:ef:ea: 65:a2:96:66:3c:b2:38:98:ba:1e:94:a2:f9:97:97:e7:bc:5d: a6:6b:00:a2:89:5e:23:48:ae:6c:e0:b8:4e:5a:1b:65:4e:d8: 10:eb:fb:2d:28:a0:fa:ce:41:93:a6:1f:a1:8b:67:7c:df:c5: 75:c8:7a:13:05:bd:8c:3d:b1:b4:86:2a:41:9c:89:e8:08:0a: f9:29:45:25:2a:c8:92:18:de:49:d0:0b:23:44:f9:6d:56:10: 93:d4:6b:4f:f9:ce:8b:96:50:24:d6:20:1e:52:90:21:f8:c6: db:3b:a6:1d:e2:7c:f7:d0:e3:44:a3:24:32:6a:bd:5b:09:26: 14:5c:36:41:4c:11:10:a4:bd:a1:10:d6:4f:05:3f:a4:6c:95: 43:a9:d5:82:5b:f3:fa:c1:d4:05:75:46:8f:59:9f:d0:4d:e6: 33:59:dd:ea:d4:2e:7f:e7:96:ca:df:80:33:d8:ee:9b:6a:50: 91:20:fd:1e:4b:99:7b:d3:fd:dd:9a:b4:4a:54:d3:a2:af:65: 7d:7c:6d:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjYwMzAyMDEyODAyWhcNMjYwMzA5MDEyODAyWjAYMRYwFAYD VQQDEw02OWE0ZTdhMy01NzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlCbW7C4RRr1HBvGVRDzDfx8Dil1IXQrXOuG80/gkpaK/lrwH7WC30d15ptA ziVNcOjPAyYAsOo9lJ09ZbpO3g593UA1D43o3nW2XgzE9FucheB0+Is1Vn8zvr/F 5B0VQePyCFDHAOsTm6xs2fGtDYhp3hoG7oV0ivlL1Qz68grAlEEN9LeQ3eBvCpKN vYu8UU/3IpSL/dCUfOrfdSog1D2m7T55nARWCMz640iVCi4WG5ivLTV+0MRUqaeM wJgWIVtTVVXXS55JZbT0uv1XjxIk8ZZdNWJzIbprXDocTpAczmloZtGoD9qh7B9t 9K51Sd0Udqo706QIv3gWALzQtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNkXRRAm HpDiZojQ2+S4PV7Up6/HMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPMXuiNEoHdcBd/yghKEnrIiRf861CnrVWouILcMjFMOmrw8ZUlLPn6P+HS1v ybry65eWre/qZaKWZjyyOJi6HpSi+ZeX57xdpmsAooleI0iubOC4TlobZU7YEOv7 LSig+s5Bk6YfoYtnfN/Fdch6EwW9jD2xtIYqQZyJ6AgK+SlFJSrIkhjeSdALI0T5 bVYQk9RrT/nOi5ZQJNYgHlKQIfjG2zumHeJ899DjRKMkMmq9WwkmFFw2QUwREKS9 oRDWTwU/pGyVQ6nVglvz+sHUBXVGj1mf0E3mM1nd6tQuf+eWyt+AM9jum2pQkSD9 HkuZe9P93Zq0SlTToq9lfXxtVw== -----END CERTIFICATE-----Generated at Mon Mar 2 13:07:29 2026 by rpki-client