$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft File: hYBFlRf-HXfU04pCnx0hxskt6TQ.mft (raw, json) Hash identifier: JNTnbwSe/hB6qKDfg6S0Ps+uWZhMQnd60oreHZnvCUg= Subject key identifier: D9:FD:6B:70:E6:9B:F4:A7:AF:45:35:48:20:CA:FC:50:BF:16:CD:8C Authority key identifier: 85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 Certificate issuer: /CN=A9145B5E/serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft Manifest number: 0131 Signing time: Mon 02 Mar 2026 02:15:59 +0000 Manifest this update: Mon 02 Mar 2026 02:15:57 +0000 Manifest next update: Mon 09 Mar 2026 02:15:57 +0000 Files and hashes: 1: hYBFlRf-HXfU04pCnx0hxskt6TQ.crl (hash: EanjWTNfEonLPkehTkH4E2lCp3uMNWTywgC+mDFFr+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:15:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B5E, serialNumber=8580459517FE1D77D4D38A429F1D21C6C92DE934 Validity Not Before: Mar 2 02:15:57 2026 GMT Not After : Mar 9 02:15:57 2026 GMT Subject: CN=69a4f2de-5e96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b1:73:10:54:ff:c3:42:ca:83:aa:18:1e:ea: b1:38:19:83:42:1f:1d:53:16:cc:84:f2:f1:5f:9a: b2:21:6f:21:e0:6c:51:ca:5d:a4:77:2a:c8:13:bf: 13:48:bf:a0:88:ed:f8:cb:54:1a:0e:be:f4:1c:ff: e6:e3:72:74:25:ec:51:ec:cc:00:e3:03:f1:b1:25: 0d:eb:dd:97:cd:98:69:c0:be:24:1d:92:bf:62:31: c2:c7:99:26:90:9f:1c:32:e5:c3:30:24:34:9c:37: e5:4e:45:24:0b:77:47:f8:ab:d4:16:64:bd:40:b4: a4:39:00:3f:29:2a:9a:ef:dc:df:c6:52:d1:5b:c2: 32:80:b1:00:3f:61:e6:22:3f:37:30:88:04:0a:8d: 4c:c8:f3:96:a3:66:a5:89:51:3a:ba:b7:79:e9:86: a3:48:a2:3c:35:02:a2:9c:c5:1c:92:e8:25:bd:d4: dc:d6:58:cc:f8:58:fa:7a:2b:b3:d3:17:94:b5:e3: 1e:88:7d:50:99:12:18:7f:91:00:ff:95:f1:78:9a: 1f:5f:a7:5a:9c:b5:c3:8a:8c:f5:e4:3e:5b:b6:2f: 10:24:e6:6d:11:b5:0a:1b:cf:15:2f:1b:89:ee:be: 46:eb:d0:bc:89:38:27:de:4f:7e:72:a7:90:d2:13: 34:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:FD:6B:70:E6:9B:F4:A7:AF:45:35:48:20:CA:FC:50:BF:16:CD:8C X509v3 Authority Key Identifier: keyid:85:80:45:95:17:FE:1D:77:D4:D3:8A:42:9F:1D:21:C6:C9:2D:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYBFlRf-HXfU04pCnx0hxskt6TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B5E/85BCEE4C45B511EFBA4A621EC4F9AE02/hYBFlRf-HXfU04pCnx0hxskt6TQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:74:a4:43:a4:52:55:0a:5a:00:2f:c8:d4:f0:75:23:e3:54: ff:63:d1:cc:63:92:4c:65:8e:39:f4:2b:d8:ae:a9:3d:16:54: c0:94:ed:94:9a:f3:98:1b:25:09:07:f7:4d:56:68:79:5e:67: 72:d1:d2:e4:37:f8:cc:96:6d:10:b7:68:53:d6:93:de:ad:46: 22:b4:e8:23:6a:1d:0f:05:c8:b4:1d:50:21:43:a4:76:33:15: 9e:14:4c:28:39:9e:2b:57:94:4e:f8:06:53:c5:c1:c0:23:fc: 34:cd:df:79:19:15:72:20:2c:d0:fc:93:5e:60:be:d9:29:ef: a9:81:66:1c:2b:34:67:31:59:a9:cf:a1:70:6b:86:c3:92:fd: f9:e9:59:b9:28:b0:ca:7a:4b:dd:2b:9f:93:60:bd:5e:9b:02: ef:95:eb:80:83:82:a5:dd:d2:bb:d1:96:97:a0:b2:56:2d:7c: bd:96:31:3b:57:9e:67:09:45:02:7d:57:e8:d9:21:3f:53:ce: 94:44:5d:e5:0a:2c:18:0c:fb:f3:9c:ac:f8:28:ca:0e:5f:ed: cc:bb:24:3c:c0:39:4c:cf:3c:60:8b:79:f7:6a:df:0f:85:a3: 95:78:47:cf:33:12:80:ab:c7:cb:0b:95:1d:f0:0d:91:05:27: 89:57:44:39 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCNUUxMTAvBgNVBAUTKDg1ODA0NTk1MTdGRTFENzdENEQzOEE0MjlGMUQyMUM2 QzkyREU5MzQwHhcNMjYwMzAyMDIxNTU3WhcNMjYwMzA5MDIxNTU3WjAYMRYwFAYD VQQDEw02OWE0ZjJkZS01ZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybFzEFT/w0LKg6oYHuqxOBmDQh8dUxbMhPLxX5qyIW8h4GxRyl2kdyrIE78T SL+giO34y1QaDr70HP/m43J0JexR7MwA4wPxsSUN692XzZhpwL4kHZK/YjHCx5km kJ8cMuXDMCQ0nDflTkUkC3dH+KvUFmS9QLSkOQA/KSqa79zfxlLRW8IygLEAP2Hm Ij83MIgECo1MyPOWo2aliVE6urd56YajSKI8NQKinMUckuglvdTc1ljM+Fj6eiuz 0xeUteMeiH1QmRIYf5EA/5XxeJofX6danLXDioz15D5bti8QJOZtEbUKG88VLxuJ 7r5G69C8iTgn3k9+cqeQ0hM0HQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNn9a3Dm m/Snr0U1SCDK/FC/Fs2MMB8GA1UdIwQYMBaAFIWARZUX/h131NOKQp8dIcbJLek0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUI1RS84NUJDRUU0QzQ1 QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhYZlUwNHBDbngwaHhza3Q2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hZQkZsUmYtSFhmVTA0cENueDBoeHNrdDZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUI1RS84NUJDRUU0QzQ1QjUxMUVGQkE0QTYyMUVDNEY5QUUwMi9oWUJGbFJmLUhY ZlUwNHBDbngwaHhza3Q2VFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJXSkQ6RSVQpaAC/I1PB1I+NU/2PRzGOSTGWOOfQr2K6pPRZUwJTtlJrzmBsl CQf3TVZoeV5nctHS5Df4zJZtELdoU9aT3q1GIrToI2odDwXItB1QIUOkdjMVnhRM KDmeK1eUTvgGU8XBwCP8NM3feRkVciAs0PyTXmC+2SnvqYFmHCs0ZzFZqc+hcGuG w5L9+elZuSiwynpL3Sufk2C9XpsC75XrgIOCpd3Su9GWl6CyVi18vZYxO1eeZwlF An1X6NkhP1POlERd5QosGAz785ys+CjKDl/tzLskPMA5TM88YIt592rfD4WjlXhH zzMSgKvHywuVHfANkQUniVdEOQ== -----END CERTIFICATE-----Generated at Mon Mar 2 13:21:01 2026 by rpki-client