$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft File: vHDzdLcox7cRwkpoJ_dHekKyKk0.mft (raw, json) Hash identifier: 24qh1YHpRY52qDQIpS/Yl6wsF+ecjZMH153JhpIqoFw= Subject key identifier: 95:7D:9A:47:2C:D4:A6:29:CF:4B:A0:48:80:15:FB:5A:7A:4C:9F:67 Authority key identifier: BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D Certificate issuer: /CN=A9142A75/serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft Manifest number: BD Signing time: Sun 01 Mar 2026 08:11:29 +0000 Manifest this update: Sun 01 Mar 2026 08:11:28 +0000 Manifest next update: Sun 08 Mar 2026 08:11:28 +0000 Files and hashes: 1: vHDzdLcox7cRwkpoJ_dHekKyKk0.crl (hash: SPk9xM/uIiLIHWx8G1BsKsq/BdK7WQMhfhDYo3gV31Y=) 2: 079BBA32E69211F0B91B90A24A6F56BC.roa (hash: gHqOr5UL3bMsQICZ1hW3FBIZjN2T2+3xCwYpUlRFFzw=) 3: 6BD4BB16F83111EFBA64911FC4F9AE02.roa (hash: XvWuI1YoEga2y2ypcrjG1/r0tc+yszPXr1W996sUaXM=) 4: 3B69BCFAF53A11EF907A433EC4F9AE02.roa (hash: g53LMcn3iRdJAKtGtiImyfZixGirZg93i3IYIo94JAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A75, serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Validity Not Before: Mar 1 08:11:28 2026 GMT Not After : Mar 8 08:11:28 2026 GMT Subject: CN=69a3f4b1-fea5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a3:af:db:ee:90:7f:8b:f4:8b:90:45:69:29: 41:b7:21:66:1d:ae:4e:1f:3f:8f:f7:07:16:4d:3d: 83:84:c5:99:45:62:b9:bc:c3:c7:d6:14:1b:c8:d7: 90:44:41:63:c2:48:41:1a:81:1a:b9:89:c6:46:fb: 70:d4:31:e9:a4:f8:d6:66:ec:ee:2f:33:a3:32:4a: 17:1c:22:03:06:6e:0e:b3:6b:97:02:fb:3c:7f:b4: 9d:d4:61:ef:9e:8e:f1:b6:38:4b:20:51:af:49:f9: a2:10:a1:64:09:ce:5b:cc:18:66:d0:f7:5c:80:a8: ef:49:8b:91:f7:4c:fe:06:88:f4:ee:b4:1e:dd:77: 30:13:43:5f:8c:94:49:53:ce:8a:aa:fe:85:38:4a: 87:86:4b:a9:94:02:f9:ab:de:8a:99:45:d9:cb:c7: a5:02:42:2f:12:d7:0a:4a:03:92:bb:d3:88:b5:e5: 06:10:42:3a:5a:50:36:f6:a6:86:b7:60:da:d1:12: 92:c4:02:67:4e:57:dc:ab:5f:ef:40:79:79:6f:53: f5:13:0c:ee:4f:20:04:90:1c:a1:ec:c3:6d:0d:c5: 00:7c:df:eb:d0:99:2f:f5:29:b0:b0:30:6c:80:a7: ea:24:4c:99:c7:66:0e:66:e6:a6:29:dd:1c:5c:e7: 10:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:7D:9A:47:2C:D4:A6:29:CF:4B:A0:48:80:15:FB:5A:7A:4C:9F:67 X509v3 Authority Key Identifier: keyid:BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:99:82:42:b0:5e:37:57:49:77:a1:37:cd:41:08:90:62:5f: 5d:e1:f8:a4:ee:87:25:82:31:c4:94:b0:5e:06:92:cc:76:51: 26:af:8e:26:ea:1f:af:a0:e6:9f:95:66:31:51:f3:03:0f:12: 25:0d:34:22:43:c5:56:fa:6c:10:69:dd:d8:50:9a:3a:84:1a: 70:06:40:62:d3:46:06:2f:b2:b2:a4:4a:e8:45:8e:01:61:13: 49:8b:39:1e:8d:d3:ae:c2:f7:d0:0a:4e:b6:29:86:d1:ce:e2: f5:3d:ce:ca:39:a0:ae:25:cb:bc:ec:c5:35:43:55:ca:d9:1e: 0d:5e:b5:22:06:a9:dc:df:3a:04:8e:c0:42:60:82:77:88:64: e6:19:e4:1e:ef:13:74:58:15:f8:5d:bc:05:17:c5:49:6b:18: eb:1f:cd:a8:a7:9f:26:7a:11:a2:11:e6:57:db:38:53:12:5c: 0d:67:d3:66:00:82:a4:6a:68:87:d7:99:e2:a5:15:36:7e:b9: 9e:9b:c1:e6:a7:64:23:e4:e0:95:bb:50:82:54:59:43:c6:40: b2:38:bd:71:42:83:ab:48:e6:a5:d0:01:ad:86:7e:44:5c:17: 9e:2b:34:88:7e:1a:81:1a:8c:67:36:6e:e4:f6:b4:09:2b:c5: 2a:b7:5d:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBNzUxMTAvBgNVBAUTKEJDNzBGMzc0QjcyOEM3QjcxMUMyNEE2ODI3Rjc0NzdB NDJCMjJBNEQwHhcNMjYwMzAxMDgxMTI4WhcNMjYwMzA4MDgxMTI4WjAYMRYwFAYD VQQDEw02OWEzZjRiMS1mZWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qOv2+6Qf4v0i5BFaSlBtyFmHa5OHz+P9wcWTT2DhMWZRWK5vMPH1hQbyNeQ REFjwkhBGoEauYnGRvtw1DHppPjWZuzuLzOjMkoXHCIDBm4Os2uXAvs8f7Sd1GHv no7xtjhLIFGvSfmiEKFkCc5bzBhm0PdcgKjvSYuR90z+Boj07rQe3XcwE0NfjJRJ U86Kqv6FOEqHhkuplAL5q96KmUXZy8elAkIvEtcKSgOSu9OIteUGEEI6WlA29qaG t2Da0RKSxAJnTlfcq1/vQHl5b1P1EwzuTyAEkByh7MNtDcUAfN/r0Jkv9SmwsDBs gKfqJEyZx2YOZuamKd0cXOcQnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJV9mkcs 1KYpz0ugSIAV+1p6TJ9nMB8GA1UdIwQYMBaAFLxw83S3KMe3EcJKaCf3R3pCsipN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkE3NS9FRjVDRDZEQUY1 MzkxMUVGQjA5RkM4M0RDNEY5QUUwMi92SER6ZExjb3g3Y1J3a3BvSl9kSGVrS3lL azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZIRHpkTGNveDdjUndrcG9KX2RIZWtLeUtrMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkE3NS9FRjVDRDZEQUY1MzkxMUVGQjA5RkM4M0RDNEY5QUUwMi92SER6ZExjb3g3 Y1J3a3BvSl9kSGVrS3lLazAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHZmCQrBeN1dJd6E3zUEIkGJfXeH4pO6HJYIxxJSwXgaSzHZRJq+OJuofr6Dm n5VmMVHzAw8SJQ00IkPFVvpsEGnd2FCaOoQacAZAYtNGBi+ysqRK6EWOAWETSYs5 Ho3TrsL30ApOtimG0c7i9T3OyjmgriXLvOzFNUNVytkeDV61Igap3N86BI7AQmCC d4hk5hnkHu8TdFgV+F28BRfFSWsY6x/NqKefJnoRohHmV9s4UxJcDWfTZgCCpGpo h9eZ4qUVNn65npvB5qdkI+TglbtQglRZQ8ZAsji9cUKDq0jmpdABrYZ+RFwXnis0 iH4agRqMZzZu5Pa0CSvFKrddRw== -----END CERTIFICATE-----Generated at Sun Mar 1 20:25:13 2026 by rpki-client