$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft File: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft (raw, json) Hash identifier: iS7hnos+cbU/+4W4XFXzu+RkOTlz043i1mxMkg9uGCA= Subject key identifier: F8:62:7B:5F:6D:6D:1D:0A:DB:77:46:93:BC:52:55:2A:D5:F0:4B:71 Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0CCA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft Manifest number: 0CA3 Signing time: Sat 28 Feb 2026 18:42:32 +0000 Manifest this update: Sat 28 Feb 2026 18:42:31 +0000 Manifest next update: Sat 07 Mar 2026 18:42:31 +0000 Files and hashes: 1: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl (hash: y5JrkMtla+gQJcM7xF69Z2GSDf5e6HuSh/JKUJqgapU=) 2: B688C61E2A7411F09C50DF45C4F9AE02.roa (hash: ewGnN7hc9g0hE2viXLZFCs+BCr01/VYOfqNiGnRW5q8=) 3: 89EA369C2A7411F09A757F45C4F9AE02.roa (hash: qZ3WHC7Uzfdz/tVUKGRkSRxqqkmsAfOeaIWYl8nNrfQ=) 4: B32668C4D98C11EB905D7281C4F9AE02.roa (hash: ZlTrLF7sUZ+SlecWA9syBWYq4ZBPMaI/qFvMwjXDo9I=) 5: 183DE570057A11EC822F230EC4F9AE02.roa (hash: GXLgHDoiJJX9ZG6YHax+vfsHDqeC2/UtO4pFuqnfqF8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:42:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3274 (0xcca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Feb 28 18:42:31 2026 GMT Not After : Mar 7 18:42:31 2026 GMT Subject: CN=69a33718-5c01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9e:31:51:c9:77:12:ba:1a:15:2e:14:a6:47: 9b:43:45:cb:8b:4c:84:2d:64:bd:2d:e2:a0:63:ad: 60:ce:2e:7a:70:cf:ef:96:8a:ec:6e:a0:2c:35:4b: f0:6c:b4:ea:8c:a9:3e:07:01:8e:6f:d5:84:f8:63: 8f:f9:14:1a:aa:fd:b1:fe:96:44:ee:67:b7:fd:b8: 53:8c:7d:c2:f0:fe:04:42:8c:0f:de:81:16:08:ab: 91:83:b9:0d:e9:0c:62:59:14:5a:9e:48:57:8b:ce: 18:95:df:00:4e:e0:e0:f8:ed:93:54:b0:f5:5b:7c: 4d:c7:d2:20:55:54:b7:66:b5:d4:e9:f6:05:91:54: 04:d8:d0:a2:0e:ef:b2:05:46:e1:f3:78:e4:8c:2a: 62:1f:90:89:a8:8f:fa:7f:bb:b6:d8:e9:fb:42:b3: 6c:9e:0d:07:4a:db:26:92:0d:5b:bc:b2:c3:0c:d8: 01:17:61:68:ea:37:1a:e5:8e:f3:12:f8:f3:94:45: de:60:b8:67:67:c6:09:36:31:9c:52:6b:5c:12:36: 37:6b:df:60:36:dd:be:6f:8d:87:0e:f5:bc:00:09: df:b0:b8:e5:40:db:50:4c:30:7b:3d:f0:ef:c6:db: 3c:63:e6:0d:f8:95:b3:a9:3a:13:44:6b:cf:0b:66: 56:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:62:7B:5F:6D:6D:1D:0A:DB:77:46:93:BC:52:55:2A:D5:F0:4B:71 X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:41:7d:98:75:4c:18:9a:d6:b4:40:91:b9:3a:c6:d9:fe:a6: 38:4a:df:f6:62:e9:7b:e6:cd:97:47:f9:63:c7:9a:81:e9:3e: fd:09:9a:09:0b:b4:1d:b6:b6:90:9b:b4:76:a1:73:68:9f:23: 56:94:d2:e0:7c:de:a9:6c:f4:d7:3b:05:8e:73:45:17:b5:97: 5f:5d:6e:e0:f2:42:e3:87:b6:13:0d:b7:8b:55:f4:05:39:95: c1:a0:a8:bd:4e:5f:10:ba:5e:a5:c5:41:9c:cf:25:94:96:16: 28:de:7b:cd:b7:72:a4:eb:b6:9c:a1:d2:6c:48:08:c3:46:03: ff:dd:47:71:eb:15:38:a4:7f:6a:ff:ce:9c:67:fe:bd:ac:0b: 26:97:8f:8a:34:07:2c:1a:35:4c:98:4d:84:b5:d3:e2:24:a8: 17:ae:53:e8:6a:7d:db:03:6c:18:79:b2:3f:56:8e:53:aa:e0: e4:87:bb:5e:46:57:44:fb:63:81:eb:c3:89:e9:9c:c0:62:4a: bb:f2:0a:d7:d6:16:ee:c3:3b:91:7c:be:cd:88:e7:5d:24:a9: cc:78:94:24:3d:8c:40:bb:d2:3e:4d:8f:22:a3:fc:00:2b:f8: 43:b5:35:fd:8f:66:6e:f9:d3:2f:cf:e5:88:39:bc:71:11:7d: 0b:27:ab:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjYwMjI4MTg0MjMxWhcNMjYwMzA3MTg0MjMxWjAYMRYwFAYD VQQDDA02OWEzMzcxOC01YzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZ4xUcl3EroaFS4UpkebQ0XLi0yELWS9LeKgY61gzi56cM/vlorsbqAsNUvw bLTqjKk+BwGOb9WE+GOP+RQaqv2x/pZE7me3/bhTjH3C8P4EQowP3oEWCKuRg7kN 6QxiWRRankhXi84Yld8ATuDg+O2TVLD1W3xNx9IgVVS3ZrXU6fYFkVQE2NCiDu+y BUbh83jkjCpiH5CJqI/6f7u22On7QrNsng0HStsmkg1bvLLDDNgBF2Fo6jca5Y7z EvjzlEXeYLhnZ8YJNjGcUmtcEjY3a99gNt2+b42HDvW8AAnfsLjlQNtQTDB7PfDv xts8Y+YN+JWzqToTRGvPC2ZW0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPhie19t bR0K23dGk7xSVSrV8EtxMB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0JGMy8xQkM2RUIyMDExRTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4 NHVkc1FzZk14dDBaTlJCd2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAg0F9mHVMGJrWtECRuTrG2f6mOErf9mLpe+bNl0f5Y8eagek+/QmaCQu0Hba2 kJu0dqFzaJ8jVpTS4HzeqWz01zsFjnNFF7WXX11u4PJC44e2Ew23i1X0BTmVwaCo vU5fELpepcVBnM8llJYWKN57zbdypOu2nKHSbEgIw0YD/91HcesVOKR/av/OnGf+ vawLJpePijQHLBo1TJhNhLXT4iSoF65T6Gp92wNsGHmyP1aOU6rg5Ie7XkZXRPtj gevDiemcwGJKu/IK19YW7sM7kXy+zYjnXSSpzHiUJD2MQLvSPk2PIqP8ACv4Q7U1 /Y9mbvnTL8/liDm8cRF9CyerqA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:29:44 2026 by rpki-client