$ rpki-client -vvf rpki.apnic.net/member_repository/A913B243/A9A753A0BB9911F0B5FB696AC4F9AE02/aH-6IOL3iRfg-wO5ErjIVjfFNz0.mft File: aH-6IOL3iRfg-wO5ErjIVjfFNz0.mft (raw, json) Hash identifier: mboplH8y51SZmM9h2pTcmAcdbNQ0G1ib5iF0JVn2l+A= Subject key identifier: 1D:85:68:C3:A3:3D:B2:46:E9:BE:D8:1C:6F:BA:03:AF:19:3D:A1:59 Authority key identifier: 68:7F:BA:20:E2:F7:89:17:E0:FB:03:B9:12:B8:C8:56:37:C5:37:3D Certificate issuer: /CN=A913B243/serialNumber=687FBA20E2F78917E0FB03B912B8C85637C5373D Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aH-6IOL3iRfg-wO5ErjIVjfFNz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B243/A9A753A0BB9911F0B5FB696AC4F9AE02/aH-6IOL3iRfg-wO5ErjIVjfFNz0.mft Manifest number: 3E Signing time: Sun 01 Mar 2026 09:52:26 +0000 Manifest this update: Sun 01 Mar 2026 09:52:26 +0000 Manifest next update: Sun 08 Mar 2026 09:52:26 +0000 Files and hashes: 1: aH-6IOL3iRfg-wO5ErjIVjfFNz0.crl (hash: /ijkrhlg/i+WD19Y3e/LGCYtEkakSGisDQLdUljgTNA=) 2: F800618EBBA511F0B0EA597FC4F9AE02.roa (hash: zx0wMVGXNski+XKZAMtyBUkbSRt+Hcyh2fuW03NU7nA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B243/A9A753A0BB9911F0B5FB696AC4F9AE02/aH-6IOL3iRfg-wO5ErjIVjfFNz0.crl rsync://rpki.apnic.net/member_repository/A913B243/A9A753A0BB9911F0B5FB696AC4F9AE02/aH-6IOL3iRfg-wO5ErjIVjfFNz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aH-6IOL3iRfg-wO5ErjIVjfFNz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:52:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B243, serialNumber=687FBA20E2F78917E0FB03B912B8C85637C5373D Validity Not Before: Mar 1 09:52:26 2026 GMT Not After : Mar 8 09:52:26 2026 GMT Subject: CN=69a40c5a-a85c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:34:5f:65:4b:ab:78:44:af:34:63:54:4f:d4: a3:cd:a1:a1:18:fb:c0:da:db:fe:2f:a2:ef:46:0b: 2c:31:94:e8:7e:ef:1e:34:35:f8:59:85:1f:1e:41: f1:bb:84:2f:bf:7a:d1:58:45:fb:14:5a:ba:21:56: d3:68:b1:bc:3d:cd:1b:14:21:c2:11:33:0c:77:9d: db:8e:ab:92:2c:42:38:b5:b7:fe:6b:cc:99:7e:a9: 66:70:df:6a:e9:c3:12:4c:e0:7a:35:c1:c4:bd:87: df:88:2c:13:7e:77:c1:ca:0a:d8:9a:37:08:29:ba: fa:70:d8:1a:cc:ce:96:7f:90:e5:da:23:1b:6c:ef: 2d:77:86:c6:71:ad:0f:83:58:b6:d5:3f:ec:46:61: 20:f8:70:82:31:b9:57:97:f6:8f:26:31:da:d3:c6: 65:01:8b:fb:d4:cb:e5:68:1f:a6:cc:ad:4a:46:49: d9:77:78:3a:73:16:26:e9:84:e7:77:14:e3:9c:8a: e8:93:c7:01:8c:d0:71:88:66:8a:a6:59:f3:6a:e7: c0:9e:83:c6:aa:28:72:db:e7:93:11:1c:05:3a:ab: a4:39:1e:04:82:c9:4a:51:43:5f:63:d3:b6:37:3a: 65:16:d4:84:bd:06:6c:d7:a3:12:df:5e:60:78:4a: 3f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:85:68:C3:A3:3D:B2:46:E9:BE:D8:1C:6F:BA:03:AF:19:3D:A1:59 X509v3 Authority Key Identifier: keyid:68:7F:BA:20:E2:F7:89:17:E0:FB:03:B9:12:B8:C8:56:37:C5:37:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B243/A9A753A0BB9911F0B5FB696AC4F9AE02/aH-6IOL3iRfg-wO5ErjIVjfFNz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aH-6IOL3iRfg-wO5ErjIVjfFNz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B243/A9A753A0BB9911F0B5FB696AC4F9AE02/aH-6IOL3iRfg-wO5ErjIVjfFNz0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:bf:e1:a2:67:52:77:98:09:64:e0:15:5b:ab:21:1a:eb:3c: 8f:ad:a1:9d:3e:87:10:2a:27:46:34:55:3e:aa:cf:df:c9:b2: 90:d9:83:93:57:df:24:39:4c:aa:5c:6d:e5:b5:f5:ff:e5:cf: ee:46:6f:d7:10:1e:3e:22:cd:9e:b6:ec:45:3c:cb:af:b5:10: 02:70:3e:18:8b:c9:82:bd:3f:2f:52:92:d2:4d:ec:c6:33:ff: 58:4d:da:62:3d:f8:8f:7a:af:26:3e:30:b1:41:a0:ed:d7:30: 6e:ca:16:d0:83:2c:4f:6e:43:4b:ea:bf:68:cd:27:43:97:4e: be:20:39:30:ea:40:42:c7:9f:56:f4:ca:f9:79:c2:af:fe:99: eb:bb:69:4e:55:c3:8e:ae:96:03:23:eb:f0:b8:00:7a:c3:e5: e9:83:44:1e:66:73:a4:6a:31:e7:b3:2a:9f:59:db:01:00:24: 49:fd:6e:1c:b9:2a:58:d0:08:b1:3f:6d:43:90:6b:0c:e4:ef: 63:ac:9b:24:19:00:31:06:91:f2:05:cb:02:f6:b6:47:63:f4: 24:82:4a:52:b6:be:60:b2:10:d6:7b:0b:cd:96:64:2e:00:10: d7:60:8e:30:ef:0b:10:53:de:b1:f8:60:0c:f1:98:39:9c:b9: f5:54:1f:26 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QjI0MzExMC8GA1UEBRMoNjg3RkJBMjBFMkY3ODkxN0UwRkIwM0I5MTJCOEM4NTYz N0M1MzczRDAeFw0yNjAzMDEwOTUyMjZaFw0yNjAzMDgwOTUyMjZaMBgxFjAUBgNV BAMTDTY5YTQwYzVhLWE4NWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0NF9lS6t4RK80Y1RP1KPNoaEY+8Da2/4vou9GCywxlOh+7x40NfhZhR8eQfG7 hC+/etFYRfsUWrohVtNosbw9zRsUIcIRMwx3nduOq5IsQji1t/5rzJl+qWZw32rp wxJM4Ho1wcS9h9+ILBN+d8HKCtiaNwgpuvpw2BrMzpZ/kOXaIxts7y13hsZxrQ+D WLbVP+xGYSD4cIIxuVeX9o8mMdrTxmUBi/vUy+VoH6bMrUpGSdl3eDpzFibphOd3 FOOciuiTxwGM0HGIZoqmWfNq58Ceg8aqKHLb55MRHAU6q6Q5HgSCyUpRQ19j07Y3 OmUW1IS9BmzXoxLfXmB4Sj93AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUHYVow6M9 skbpvtgcb7oDrxk9oVkwHwYDVR0jBBgwFoAUaH+6IOL3iRfg+wO5ErjIVjfFNz0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCMjQzL0E5QTc1M0EwQkI5 OTExRjBCNUZCNjk2QUM0RjlBRTAyL2FILTZJT0wzaVJmZy13TzVFcmpJVmpmRk56 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUgtNklPTDNpUmZnLXdPNUVyaklWamZGTnowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNC MjQzL0E5QTc1M0EwQkI5OTExRjBCNUZCNjk2QUM0RjlBRTAyL2FILTZJT0wzaVJm Zy13TzVFcmpJVmpmRk56MC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA0v+GiZ1J3mAlk4BVbqyEa6zyPraGdPocQKidGNFU+qs/fybKQ2YOTV98kOUyq XG3ltfX/5c/uRm/XEB4+Is2etuxFPMuvtRACcD4Yi8mCvT8vUpLSTezGM/9YTdpi PfiPeq8mPjCxQaDt1zBuyhbQgyxPbkNL6r9ozSdDl06+IDkw6kBCx59W9Mr5ecKv /pnru2lOVcOOrpYDI+vwuAB6w+Xpg0QeZnOkajHnsyqfWdsBACRJ/W4cuSpY0Aix P21DkGsM5O9jrJskGQAxBpHyBcsC9rZHY/QkgkpStr5gshDWewvNlmQuABDXYI4w 7wsQU96x+GAM8Zg5nLn1VB8m -----END CERTIFICATE-----Generated at Mon Mar 2 08:34:51 2026 by rpki-client