$ rpki-client -vvf rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.mft File: iAd3htZlI61ZmNY_aXr0LwOcKqk.mft (raw, json) Hash identifier: TOtlRaNv1Jp+/43SShAIPr4uUBAC2/x/e5NSRpuxJ38= Subject key identifier: 3F:6E:53:E7:F3:22:86:7F:0F:83:C5:F7:9D:F5:FD:66:3F:75:BE:22 Authority key identifier: 88:07:77:86:D6:65:23:AD:59:98:D6:3F:69:7A:F4:2F:03:9C:2A:A9 Certificate issuer: /CN=A914A4E2/serialNumber=88077786D66523AD5998D63F697AF42F039C2AA9 Certificate serial: 110C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAd3htZlI61ZmNY_aXr0LwOcKqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.mft Manifest number: 10FA Signing time: Mon 02 Mar 2026 00:35:45 +0000 Manifest this update: Mon 02 Mar 2026 00:35:43 +0000 Manifest next update: Mon 09 Mar 2026 00:35:43 +0000 Files and hashes: 1: iAd3htZlI61ZmNY_aXr0LwOcKqk.crl (hash: bpeujZwQAk7alHVqlq2PXilxL3TgidjDdKYAp4xGzxY=) 2: 744CCD5834F911E98AB73628C4F9AE02.roa (hash: HYEKunXFXGODG028S70WdJ2ItWUZF2FtLd9w5pl0ghE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.crl rsync://rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAd3htZlI61ZmNY_aXr0LwOcKqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:35:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4364 (0x110c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A4E2, serialNumber=88077786D66523AD5998D63F697AF42F039C2AA9 Validity Not Before: Mar 2 00:35:43 2026 GMT Not After : Mar 9 00:35:43 2026 GMT Subject: CN=69a4db61-7488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e9:38:f3:3f:fa:be:67:56:19:3c:f5:7a:a3: a3:91:b7:1c:ec:e4:5b:c2:29:83:01:79:17:2d:9a: 8b:27:1c:67:9f:da:37:61:b4:86:85:18:d2:f0:72: c8:7a:5a:3e:e4:48:f2:b5:24:b6:57:82:c2:31:7d: 61:d1:ba:56:47:4d:41:ed:f3:66:d0:e6:31:cd:a3: 97:ba:a7:35:b9:38:83:0d:b2:8f:1e:70:40:2d:b5: b1:cd:ff:bc:8c:83:d3:04:bc:aa:18:f1:69:b3:84: 40:03:c0:42:de:07:87:56:55:87:52:81:aa:f4:9d: 6c:9b:6e:ec:05:6a:c7:3c:f6:6e:ad:1d:18:70:b5: c8:4d:59:20:ce:21:ce:42:66:34:29:fa:df:39:09: aa:51:8c:2f:62:54:1a:0e:70:a3:3b:03:d0:88:25: 66:82:3d:82:14:58:c6:01:84:6d:bd:83:75:6a:87: 22:4f:12:26:03:d3:dc:89:cd:6c:44:5c:65:5a:35: e2:db:bd:c2:ec:e9:c2:ff:46:dd:d5:dc:16:dd:c2: f6:85:1a:fb:41:95:25:20:77:c1:e5:d2:74:a4:79: 28:e2:b8:39:da:af:2c:c4:b9:9b:19:4f:fe:9f:c8: 73:9f:76:7b:90:01:f6:c7:41:f6:86:2e:45:7f:fa: 4e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:6E:53:E7:F3:22:86:7F:0F:83:C5:F7:9D:F5:FD:66:3F:75:BE:22 X509v3 Authority Key Identifier: keyid:88:07:77:86:D6:65:23:AD:59:98:D6:3F:69:7A:F4:2F:03:9C:2A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAd3htZlI61ZmNY_aXr0LwOcKqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A4E2/B256B03034D811E992987656C4F9AE02/iAd3htZlI61ZmNY_aXr0LwOcKqk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:b4:72:76:6f:6a:e6:f4:36:c7:d2:fa:ba:6a:ff:75:f9:df: 5a:4e:fd:26:aa:2a:99:00:84:e1:2e:06:01:93:d8:dc:dc:51: e4:06:b1:0d:66:0c:c6:ac:98:50:21:3c:fc:a4:da:e3:aa:bf: cc:6e:a2:8d:40:80:34:78:66:c6:c5:6b:71:29:d9:3c:7b:90: 4c:7f:8d:a2:c4:90:b0:44:d1:be:de:ac:bb:bc:e1:09:07:4c: 75:35:24:7b:6b:21:da:c9:d8:e5:01:93:cb:8c:ba:68:be:ce: be:d3:d5:0c:d4:77:ce:4b:a0:7a:41:f3:ee:8b:05:87:26:34: d8:a5:7a:75:5e:ab:56:0f:47:2b:55:f4:1a:6d:79:4d:9d:f0: 5d:f4:51:c9:47:be:67:22:01:23:d5:ce:db:a6:39:5d:8f:b2: 34:9c:f5:e7:c3:cb:e6:22:f5:a4:1f:59:af:a7:d4:7f:ba:63: 8b:53:64:76:74:48:2a:03:ce:9d:b3:cb:d6:ed:63:0f:f5:60: 43:31:12:b3:8f:e4:32:9f:4a:41:d5:94:2d:5d:3a:0d:5a:4e: 45:71:c6:a3:06:be:41:ef:05:fe:d3:4f:9e:ae:be:34:e8:6e: b8:15:b9:5e:20:bb:01:12:1f:81:b2:92:76:f7:ed:38:3c:2e: 14:68:fd:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE0RTIxMTAvBgNVBAUTKDg4MDc3Nzg2RDY2NTIzQUQ1OTk4RDYzRjY5N0FGNDJG MDM5QzJBQTkwHhcNMjYwMzAyMDAzNTQzWhcNMjYwMzA5MDAzNTQzWjAYMRYwFAYD VQQDEw02OWE0ZGI2MS03NDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ek48z/6vmdWGTz1eqOjkbcc7ORbwimDAXkXLZqLJxxnn9o3YbSGhRjS8HLI elo+5EjytSS2V4LCMX1h0bpWR01B7fNm0OYxzaOXuqc1uTiDDbKPHnBALbWxzf+8 jIPTBLyqGPFps4RAA8BC3geHVlWHUoGq9J1sm27sBWrHPPZurR0YcLXITVkgziHO QmY0KfrfOQmqUYwvYlQaDnCjOwPQiCVmgj2CFFjGAYRtvYN1aociTxImA9Pcic1s RFxlWjXi273C7OnC/0bd1dwW3cL2hRr7QZUlIHfB5dJ0pHko4rg52q8sxLmbGU/+ n8hzn3Z7kAH2x0H2hi5Ff/pOywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD9uU+fz IoZ/D4PF9531/WY/db4iMB8GA1UdIwQYMBaAFIgHd4bWZSOtWZjWP2l69C8DnCqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTRFMi9CMjU2QjAzMDM0 RDgxMUU5OTI5ODc2NTZDNEY5QUUwMi9pQWQzaHRabEk2MVptTllfYVhyMEx3T2NL cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lBZDNodFpsSTYxWm1OWV9hWHIwTHdPY0txay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTRFMi9CMjU2QjAzMDM0RDgxMUU5OTI5ODc2NTZDNEY5QUUwMi9pQWQzaHRabEk2 MVptTllfYVhyMEx3T2NLcWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEbRydm9q5vQ2x9L6umr/dfnfWk79JqoqmQCE4S4GAZPY3NxR5AaxDWYMxqyY UCE8/KTa46q/zG6ijUCANHhmxsVrcSnZPHuQTH+NosSQsETRvt6su7zhCQdMdTUk e2sh2snY5QGTy4y6aL7OvtPVDNR3zkugekHz7osFhyY02KV6dV6rVg9HK1X0Gm15 TZ3wXfRRyUe+ZyIBI9XO26Y5XY+yNJz158PL5iL1pB9Zr6fUf7pji1NkdnRIKgPO nbPL1u1jD/VgQzESs4/kMp9KQdWULV06DVpORXHGowa+Qe8F/tNPnq6+NOhuuBW5 XiC7ARIfgbKSdvftODwuFGj9Ug== -----END CERTIFICATE-----Generated at Mon Mar 2 18:24:09 2026 by rpki-client