$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: Mpta5fuoS278Jl51pG52qh27Fm071+dG6EZF+jxaic0= Subject key identifier: B2:1C:A2:A9:4E:B5:29:BB:27:47:60:77:78:3F:2B:85:69:B6:3B:93 Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 141F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 1408 Signing time: Mon 02 Mar 2026 01:37:20 +0000 Manifest this update: Mon 02 Mar 2026 01:37:19 +0000 Manifest next update: Mon 09 Mar 2026 01:37:19 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: y3NGn0s8wV4PviXuhTrH6MyhySujiWxO+tWRCNBAW/k=) 2: 813A255423A611F09025FC11C4F9AE02.roa (hash: RaOIdSyJbLBmHHTBAcqvM2xNuH84JM4tWrC9RYmAhrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:37:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5151 (0x141f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Mar 2 01:37:19 2026 GMT Not After : Mar 9 01:37:19 2026 GMT Subject: CN=69a4e9d0-b773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e2:3c:73:bd:48:ff:ba:80:31:b4:dd:a2:97: b4:3f:8e:e9:74:52:ce:51:5a:d9:a7:c2:6d:37:94: 97:a5:f2:b5:1c:5e:75:37:06:eb:8e:27:20:be:f5: e5:42:33:e9:cf:55:fc:1d:bc:ce:f6:da:f6:f2:bf: 6c:5c:c0:5a:77:7d:84:12:fe:c0:a2:23:c6:73:27: c7:21:aa:36:01:f3:90:2f:ab:d6:fa:82:38:fb:c7: 68:6f:4d:8d:c0:e5:b2:d3:74:b0:9a:d0:c2:e7:d6: c9:19:5f:84:44:f8:54:f7:6c:d8:5b:76:28:9a:86: b2:7a:f6:ef:10:d5:a3:49:81:0b:42:cd:11:a2:28: 21:30:2b:84:d2:16:e6:ac:75:54:5c:b4:a5:03:bb: 02:b0:e2:12:ea:e6:ab:ae:8f:ca:f3:f1:ef:a4:fb: 97:36:ba:76:eb:01:8f:4b:10:f1:36:bc:f7:3b:dd: 5e:8a:60:50:bd:c3:4d:20:7e:48:b6:08:8f:6d:cb: bd:58:ce:e9:ee:55:c5:6f:6f:77:f8:68:2d:d2:99: 90:71:ed:2f:3f:d3:cf:5a:e9:75:be:99:79:f8:fa: 74:5f:bb:9c:54:87:81:c1:52:3f:48:c0:e5:10:77: ea:e5:5b:3a:a3:d0:71:94:05:2f:e0:74:68:aa:10: b8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:1C:A2:A9:4E:B5:29:BB:27:47:60:77:78:3F:2B:85:69:B6:3B:93 X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:f2:23:ba:00:b0:b8:a9:4a:ce:a8:8d:a7:7a:c0:ce:d7:55: be:ca:d8:70:98:9d:5f:7b:ea:dd:de:6e:90:02:07:0d:b0:9a: f2:93:79:33:1a:8d:f5:a0:c6:df:66:92:5d:5e:21:4f:f7:e1: 2e:a9:b9:f7:bb:7c:ba:5d:b7:4e:7d:72:84:2f:08:5f:3a:66: d6:90:2c:7c:12:b7:93:65:44:b7:01:83:87:0e:27:33:4a:70: 0c:72:64:12:f0:f0:fc:e7:06:65:c0:bd:0b:c5:ca:80:9e:2f: 9d:30:76:73:04:9a:e4:ee:10:93:1a:6d:45:43:7a:f8:b6:7b: 17:4a:80:87:0e:5b:13:e9:53:7d:5d:1b:2d:c8:fc:fc:d4:1b: 79:9a:e5:e1:c3:bb:32:55:bb:f3:fd:1b:ac:07:70:14:57:ad: b5:62:28:4c:e1:64:95:53:29:fa:90:15:e1:a4:df:0f:f4:51: 24:3e:8d:ab:c2:ca:94:84:77:15:15:40:bd:b1:ca:62:4f:63: f2:86:e1:b4:d9:6b:e9:fd:2d:52:d2:10:f0:7e:c1:c9:34:1a: bd:17:b1:d4:03:f0:2d:8f:b4:7c:5f:d2:86:00:de:28:3c:78: 9a:fb:18:cf:dd:c7:0f:af:02:2c:a5:e5:43:79:c0:07:2b:73: da:ba:88:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjYwMzAyMDEzNzE5WhcNMjYwMzA5MDEzNzE5WjAYMRYwFAYD VQQDEw02OWE0ZTlkMC1iNzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuI8c71I/7qAMbTdope0P47pdFLOUVrZp8JtN5SXpfK1HF51NwbrjicgvvXl QjPpz1X8HbzO9tr28r9sXMBad32EEv7AoiPGcyfHIao2AfOQL6vW+oI4+8dob02N wOWy03SwmtDC59bJGV+ERPhU92zYW3YomoayevbvENWjSYELQs0RoighMCuE0hbm rHVUXLSlA7sCsOIS6uarro/K8/HvpPuXNrp26wGPSxDxNrz3O91eimBQvcNNIH5I tgiPbcu9WM7p7lXFb293+Ggt0pmQce0vP9PPWul1vpl5+Pp0X7ucVIeBwVI/SMDl EHfq5Vs6o9BxlAUv4HRoqhC4BwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLIcoqlO tSm7J0dgd3g/K4VptjuTMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzfIjugCwuKlKzqiNp3rAztdVvsrYcJidX3vq3d5ukAIHDbCa8pN5MxqN9aDG 32aSXV4hT/fhLqm597t8ul23Tn1yhC8IXzpm1pAsfBK3k2VEtwGDhw4nM0pwDHJk EvDw/OcGZcC9C8XKgJ4vnTB2cwSa5O4QkxptRUN6+LZ7F0qAhw5bE+lTfV0bLcj8 /NQbeZrl4cO7MlW78/0brAdwFFettWIoTOFklVMp+pAV4aTfD/RRJD6Nq8LKlIR3 FRVAvbHKYk9j8obhtNlr6f0tUtIQ8H7ByTQavRex1APwLY+0fF/ShgDeKDx4mvsY z93HD68CLKXlQ3nABytz2rqIZw== -----END CERTIFICATE-----Generated at Mon Mar 2 04:03:09 2026 by rpki-client