$ rpki-client -vvf rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft File: PHUP1suMdwFoHlNr3WtxXxkrivk.mft (raw, json) Hash identifier: i7GXAXFnUoi/T59U9eJtcHXICto70DXwtuSRjd/OctQ= Subject key identifier: 6C:B7:67:78:38:E3:24:0B:4A:A6:1B:3A:25:6F:A2:5F:D5:79:FC:EC Authority key identifier: 3C:75:0F:D6:CB:8C:77:01:68:1E:53:6B:DD:6B:71:5F:19:2B:8A:F9 Certificate issuer: /CN=A914233F/serialNumber=3C750FD6CB8C7701681E536BDD6B715F192B8AF9 Certificate serial: 01E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHUP1suMdwFoHlNr3WtxXxkrivk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft Manifest number: 01DF Signing time: Sun 01 Mar 2026 04:17:45 +0000 Manifest this update: Sun 01 Mar 2026 04:17:45 +0000 Manifest next update: Sun 08 Mar 2026 04:17:45 +0000 Files and hashes: 1: PHUP1suMdwFoHlNr3WtxXxkrivk.crl (hash: 6PSPC57+d8R/BRMgyGSOASGqcIzFS8NWy3jFFmfH0m4=) 2: D1DA657E4AE411EE95B72651C4F9AE02.roa (hash: rYuzAQ2V3DCYFm8hLaFsEVJnKAGKcFikbLAjBKDZ9TQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.crl rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHUP1suMdwFoHlNr3WtxXxkrivk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914233F, serialNumber=3C750FD6CB8C7701681E536BDD6B715F192B8AF9 Validity Not Before: Mar 1 04:17:45 2026 GMT Not After : Mar 8 04:17:45 2026 GMT Subject: CN=69a3bde9-0a65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:99:7d:25:90:32:97:76:03:67:44:7e:a3:b8: 0e:eb:ed:83:c3:8e:50:94:ef:7e:a5:a0:96:1e:1d: dd:34:97:14:97:b1:fd:ed:94:02:c1:9d:4b:a2:1d: 5f:ba:19:80:4b:ad:da:7a:36:5b:56:d0:b6:16:41: 0a:4f:5a:9b:f0:0e:10:60:06:2c:6d:16:4f:27:c4: b2:4a:4a:8e:e1:01:db:61:75:b2:54:49:f4:80:94: 5d:ea:55:f9:9b:87:b7:9a:e6:2f:ab:15:4e:70:88: c8:f2:76:3b:24:e1:ec:25:32:a4:37:1b:74:b7:fd: 82:89:41:7f:e3:f0:58:35:5d:84:f9:46:a8:f0:f6: 7e:78:33:2a:18:ad:a7:b9:2e:22:c3:cc:fa:9d:d8: 4f:c8:f6:13:09:93:bf:4a:ce:18:60:fc:81:4f:69: 07:db:aa:5d:01:9e:06:e9:4b:11:18:f7:bb:ab:32: 17:de:5d:81:a7:76:f0:4e:1e:e9:a8:7e:80:21:05: 0a:0b:dc:62:fe:f6:75:dc:f6:89:c3:fd:f0:89:25: 36:53:7b:32:39:bf:73:c8:f8:98:75:a8:a9:09:a0: 54:a0:77:05:c5:32:a8:d8:b4:d4:70:7a:45:31:11: dc:25:a1:ea:37:65:f8:9d:61:e9:72:f4:62:91:3c: 6a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:B7:67:78:38:E3:24:0B:4A:A6:1B:3A:25:6F:A2:5F:D5:79:FC:EC X509v3 Authority Key Identifier: keyid:3C:75:0F:D6:CB:8C:77:01:68:1E:53:6B:DD:6B:71:5F:19:2B:8A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHUP1suMdwFoHlNr3WtxXxkrivk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914233F/85C20BDA463C11EE9B789139C4F9AE02/PHUP1suMdwFoHlNr3WtxXxkrivk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:e2:35:a9:77:35:3e:8d:3e:cb:c9:4c:fc:5d:b7:6b:fd:4c: 24:3e:aa:c1:a9:2f:d6:dc:69:c9:c5:72:da:a8:68:0e:14:d6: 0a:67:60:96:b6:33:40:a8:5d:be:9c:f0:7a:5c:86:08:d8:5e: 17:0e:9e:8e:56:23:bc:ef:ee:4a:c7:b1:c8:ff:c0:f8:c6:bf: a4:1b:86:72:3d:4c:1d:c7:43:58:b9:87:db:bc:a9:01:c8:1b: 4d:d6:cb:23:f1:34:1b:ff:2d:5c:58:e5:e9:dc:be:cc:42:44: 98:04:f5:8a:d9:6e:c3:3b:62:56:fb:34:1f:a6:2e:64:99:c4: 62:9c:e9:98:87:58:0c:4a:a3:04:7e:ae:67:8f:07:7d:23:01: 5b:58:96:b0:70:5b:6e:b8:03:c9:d1:15:87:c5:b8:b5:0d:b7: fa:d3:0a:ea:ab:9e:93:59:fb:b8:03:ae:9c:b9:d4:97:b9:0d: 3a:66:24:c8:bc:e4:a1:87:69:1e:20:f7:22:ad:7f:91:ea:43: 9b:de:ad:cc:41:29:c7:b8:cc:fd:e6:c3:3c:83:0d:bd:95:5d: ae:45:89:4e:74:3f:d4:75:4b:c5:73:51:05:3c:e1:80:de:9d: 4e:3a:9f:59:c1:3d:45:0d:9f:63:e3:ad:ef:37:23:da:bb:8c: 5a:1a:15:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzM0YxMTAvBgNVBAUTKDNDNzUwRkQ2Q0I4Qzc3MDE2ODFFNTM2QkRENkI3MTVG MTkyQjhBRjkwHhcNMjYwMzAxMDQxNzQ1WhcNMjYwMzA4MDQxNzQ1WjAYMRYwFAYD VQQDDA02OWEzYmRlOS0wYTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZl9JZAyl3YDZ0R+o7gO6+2Dw45QlO9+paCWHh3dNJcUl7H97ZQCwZ1Loh1f uhmAS63aejZbVtC2FkEKT1qb8A4QYAYsbRZPJ8SySkqO4QHbYXWyVEn0gJRd6lX5 m4e3muYvqxVOcIjI8nY7JOHsJTKkNxt0t/2CiUF/4/BYNV2E+Uao8PZ+eDMqGK2n uS4iw8z6ndhPyPYTCZO/Ss4YYPyBT2kH26pdAZ4G6UsRGPe7qzIX3l2Bp3bwTh7p qH6AIQUKC9xi/vZ13PaJw/3wiSU2U3syOb9zyPiYdaipCaBUoHcFxTKo2LTUcHpF MRHcJaHqN2X4nWHpcvRikTxqtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGy3Z3g4 4yQLSqYbOiVvol/VefzsMB8GA1UdIwQYMBaAFDx1D9bLjHcBaB5Ta91rcV8ZK4r5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjMzRi84NUMyMEJEQTQ2 M0MxMUVFOUI3ODkxMzlDNEY5QUUwMi9QSFVQMXN1TWR3Rm9IbE5yM1d0eFh4a3Jp dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BIVVAxc3VNZHdGb0hsTnIzV3R4WHhrcml2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjMzRi84NUMyMEJEQTQ2M0MxMUVFOUI3ODkxMzlDNEY5QUUwMi9QSFVQMXN1TWR3 Rm9IbE5yM1d0eFh4a3JpdmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFOI1qXc1Po0+y8lM/F23a/1MJD6qwakv1txpycVy2qhoDhTWCmdglrYzQKhd vpzwelyGCNheFw6ejlYjvO/uSsexyP/A+Ma/pBuGcj1MHcdDWLmH27ypAcgbTdbL I/E0G/8tXFjl6dy+zEJEmAT1itluwztiVvs0H6YuZJnEYpzpmIdYDEqjBH6uZ48H fSMBW1iWsHBbbrgDydEVh8W4tQ23+tMK6quek1n7uAOunLnUl7kNOmYkyLzkoYdp HiD3Iq1/kepDm96tzEEpx7jM/ebDPIMNvZVdrkWJTnQ/1HVLxXNRBTzhgN6dTjqf WcE9RQ2fY+Ot7zcj2ruMWhoV0Q== -----END CERTIFICATE-----Generated at Mon Mar 2 00:17:25 2026 by rpki-client