$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: k/O3NuOL8hF3MiuQOnSUC2n9oYJaK/XSrkkN7BS1RZE= Subject key identifier: 22:12:07:FF:BB:F3:B2:31:AF:6A:AA:E2:87:8D:54:70:BE:6E:68:35 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 03D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 03D4 Signing time: Mon 02 Mar 2026 01:33:46 +0000 Manifest this update: Mon 02 Mar 2026 01:33:44 +0000 Manifest next update: Mon 09 Mar 2026 01:33:44 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: Bxf8jMKJnp7I1iVc9w3Opn17kDkq9rRoOLzbkm+Rr0M=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: 1651DDZqfZG0+Q1CtVyAE69Gh2+OtTkbKUiK/1/L4rc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:33:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 985 (0x3d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Mar 2 01:33:44 2026 GMT Not After : Mar 9 01:33:44 2026 GMT Subject: CN=69a4e8fa-0abd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:94:01:dc:89:c4:90:9f:37:21:35:79:17:a8: 28:39:6f:66:0e:b9:d2:4c:12:c4:60:e5:c8:07:d0: ca:ce:88:7c:14:8d:6b:fe:bb:48:5a:77:76:21:c4: f4:25:36:e3:db:0e:6a:d2:c3:4b:79:11:c3:6c:cf: 42:aa:57:2f:25:26:d4:33:db:1e:b5:78:b3:c5:8a: fe:56:9b:d6:5a:5d:cc:9c:7c:c6:ba:47:6f:7f:f6: f0:26:93:10:36:d9:80:70:78:d9:aa:00:29:7b:53: 3e:d0:ef:2e:d9:41:ff:2b:e0:b6:36:1a:1b:ee:96: e0:fb:37:c1:45:ab:4b:1a:c9:42:e5:8c:00:f2:20: a2:ac:49:50:11:a2:34:9b:c4:30:73:6a:4d:88:38: f1:0f:10:6e:6d:f4:85:6e:15:b6:65:f8:90:fa:05: 0f:15:6c:8f:3d:5d:2d:5d:49:b5:49:93:08:4a:c5: 72:d2:18:d3:d6:cf:17:20:5b:27:42:da:1b:ae:7d: 5f:3f:bd:6b:8e:78:04:b8:13:f2:e8:59:9b:6d:6a: ac:ab:9f:c8:8d:a3:2b:f8:aa:f6:b4:89:69:1c:9e: e9:c2:1c:76:da:3b:de:ea:da:9d:1b:13:1d:2a:4f: b0:8f:a5:11:5d:fb:64:ec:86:4e:c6:f9:82:18:bb: 7b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:12:07:FF:BB:F3:B2:31:AF:6A:AA:E2:87:8D:54:70:BE:6E:68:35 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:d7:55:74:1a:78:9f:27:bf:9f:1e:10:5a:a9:82:e3:ee:e3: 6b:94:98:8a:1c:d5:bd:43:a3:c8:1b:8c:65:f5:e6:e1:af:4d: 6b:3a:e4:37:6c:db:41:1f:48:b9:a8:64:8e:c6:a5:1b:0a:ae: f5:14:f2:94:72:04:0d:8d:ab:4e:b9:a8:de:2a:a2:31:17:c0: cd:32:23:e5:ba:87:1f:4e:e5:b5:21:69:34:e4:b6:c0:7f:9a: 28:f6:0a:7a:8d:e7:c4:16:81:62:7f:12:a5:04:47:cc:f7:0f: de:b0:d1:fb:6c:e2:c9:7b:0e:c1:0b:0a:d5:ff:bd:f2:f7:15: b6:8f:19:a4:5a:53:43:fd:80:8d:ba:99:7e:66:34:16:ff:f1: c0:0c:c4:66:86:03:e4:76:bf:b2:cc:1b:e9:77:34:2e:73:5f: cc:e6:9e:40:0d:fa:6b:99:92:26:e8:b4:71:c8:1f:2a:d7:73: 0b:ee:a4:ac:0b:61:c6:b2:24:a9:b3:52:cd:da:2b:50:34:c0: cc:af:a0:f0:8e:f0:94:ae:d4:42:de:e6:d2:40:e5:24:70:07: ca:9d:f3:81:e0:9a:f7:d4:b7:b7:28:72:40:c7:df:2a:f8:c7: f3:87:f6:2e:bb:5d:dd:5b:86:be:e6:61:74:82:9e:98:73:de: 98:3c:1c:2f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjYwMzAyMDEzMzQ0WhcNMjYwMzA5MDEzMzQ0WjAYMRYwFAYD VQQDEw02OWE0ZThmYS0wYWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5QB3InEkJ83ITV5F6goOW9mDrnSTBLEYOXIB9DKzoh8FI1r/rtIWnd2IcT0 JTbj2w5q0sNLeRHDbM9CqlcvJSbUM9setXizxYr+VpvWWl3MnHzGukdvf/bwJpMQ NtmAcHjZqgApe1M+0O8u2UH/K+C2Nhob7pbg+zfBRatLGslC5YwA8iCirElQEaI0 m8Qwc2pNiDjxDxBubfSFbhW2ZfiQ+gUPFWyPPV0tXUm1SZMISsVy0hjT1s8XIFsn Qtobrn1fP71rjngEuBPy6FmbbWqsq5/IjaMr+Kr2tIlpHJ7pwhx22jve6tqdGxMd Kk+wj6URXftk7IZOxvmCGLt7jQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCISB/+7 87Ixr2qq4oeNVHC+bmg1MB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtNdVdBp4nye/nx4QWqmC4+7ja5SYihzVvUOjyBuMZfXm4a9NazrkN2zbQR9I uahkjsalGwqu9RTylHIEDY2rTrmo3iqiMRfAzTIj5bqHH07ltSFpNOS2wH+aKPYK eo3nxBaBYn8SpQRHzPcP3rDR+2ziyXsOwQsK1f+98vcVto8ZpFpTQ/2AjbqZfmY0 Fv/xwAzEZoYD5Ha/sswb6Xc0LnNfzOaeQA36a5mSJui0ccgfKtdzC+6krAthxrIk qbNSzdorUDTAzK+g8I7wlK7UQt7m0kDlJHAHyp3zgeCa99S3tyhyQMffKvjH84f2 Lrtd3VuGvuZhdIKemHPemDwcLw== -----END CERTIFICATE-----Generated at Mon Mar 2 06:26:17 2026 by rpki-client