$ rpki-client -vvf rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft File: HlwQfv0DzxPSFKOaaizo3a0wRw4.mft (raw, json) Hash identifier: xteocro085DY9z7mvaNTVz6LIODu+84ouSt7WNeKa1g= Subject key identifier: 86:93:DC:8D:19:C4:8D:9D:43:63:6A:CE:63:9B:A0:9B:81:DC:33:B0 Authority key identifier: 1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E Certificate issuer: /CN=A914D9C3/serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft Manifest number: 010C Signing time: Sun 01 Mar 2026 07:03:27 +0000 Manifest this update: Sun 01 Mar 2026 07:03:27 +0000 Manifest next update: Sun 08 Mar 2026 07:03:27 +0000 Files and hashes: 1: HlwQfv0DzxPSFKOaaizo3a0wRw4.crl (hash: 3Y4nmWEZSLq/1d1kpZG02MM8585Dd15gSUXJMw1QsMg=) 2: F7B3707C806911EF8C30A03DC4F9AE02.roa (hash: D1LvyPIB6XS8U0XsPUquyUJY63w3djQp7Wc3/arn9TY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:03:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D9C3, serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Validity Not Before: Mar 1 07:03:27 2026 GMT Not After : Mar 8 07:03:27 2026 GMT Subject: CN=69a3e4bf-4655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ab:67:4b:72:63:e2:59:e1:a9:d9:f7:7f:e2: cd:f0:78:f2:45:d4:18:e3:b8:9d:4f:0e:66:a0:8c: 48:0b:1f:a8:88:08:f1:0e:06:c6:3a:47:73:e7:44: 09:e8:15:fe:b5:29:39:ca:1b:8d:f1:49:62:e2:aa: 37:26:04:a2:8f:bb:23:6d:da:6e:09:a3:46:f6:82: 4c:d8:c6:b6:bf:23:a8:a8:03:09:eb:d5:da:54:97: 54:40:f9:b8:62:99:b8:45:a1:de:82:15:f0:39:c8: e3:93:bb:4d:a4:1f:75:9f:4e:38:0c:f3:db:4b:df: e0:e1:d1:ca:7f:d1:c8:28:f4:52:70:cc:6f:ee:db: 49:4a:5c:f2:1e:2b:4c:68:44:42:e3:6f:93:e9:c1: e2:6d:27:4e:e3:b2:12:8a:a5:5f:f8:25:93:0a:f4: 35:09:39:ea:3e:b4:8b:53:3a:78:a8:12:53:89:07: 03:2a:bf:f7:70:fe:9b:5a:40:37:e0:b3:49:64:86: c7:3c:db:a0:1a:e2:e8:1c:6e:2b:b3:0a:fa:f5:56: 30:2f:0d:84:a8:3a:9d:b0:b7:9f:08:43:40:b7:86: 76:e7:76:6f:a0:28:9f:45:c6:73:ab:d5:69:e3:00: 35:ed:b4:7a:82:6e:3d:3a:70:b7:6b:17:dd:85:be: 2b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:93:DC:8D:19:C4:8D:9D:43:63:6A:CE:63:9B:A0:9B:81:DC:33:B0 X509v3 Authority Key Identifier: keyid:1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:11:4b:05:63:c4:ad:df:77:6a:ac:b4:43:58:07:da:f2:2f: 7a:91:de:1d:07:e8:9e:ec:ff:af:42:c5:8f:bf:ab:47:50:ba: 25:8a:a4:e2:ea:8b:42:65:6f:9f:90:6b:e3:c6:7d:62:ae:45: bb:df:29:0c:be:38:53:db:fc:61:ba:3f:df:9d:af:16:99:fe: 1e:43:3a:ad:1b:c8:77:79:cc:7c:60:05:33:bb:59:31:bd:b1: 52:89:42:f0:3f:ca:4f:b6:9e:c0:0f:60:86:34:21:56:6f:90: af:62:7d:49:1d:4e:96:c8:3e:a4:e8:b8:f8:98:62:96:dc:d1: 78:d0:79:d0:f6:66:cc:db:30:90:86:e5:64:08:e3:8b:af:22: 03:60:85:cc:12:9a:9d:ca:13:5f:55:08:d4:19:db:a7:b7:1d: ca:aa:1b:b0:4b:89:12:d8:a0:37:46:b2:19:3b:47:87:fd:1e: 6e:1b:99:4a:ca:4e:c0:f4:c6:9d:9f:e9:42:8f:93:ce:0c:5c: f2:bf:86:6a:d5:c8:7a:03:2b:23:22:1e:ae:5c:04:79:68:2f: 7f:28:12:43:12:9c:97:ea:97:73:f6:47:ea:55:21:0a:e9:e0: ec:27:cc:7c:86:f6:98:e6:1d:e8:be:d0:f6:7b:43:0b:a5:62: e9:90:1f:91 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ5QzMxMTAvBgNVBAUTKDFFNUMxMDdFRkQwM0NGMTNEMjE0QTM5QTZBMkNFOERE QUQzMDQ3MEUwHhcNMjYwMzAxMDcwMzI3WhcNMjYwMzA4MDcwMzI3WjAYMRYwFAYD VQQDEw02OWEzZTRiZi00NjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqtnS3Jj4lnhqdn3f+LN8HjyRdQY47idTw5moIxICx+oiAjxDgbGOkdz50QJ 6BX+tSk5yhuN8Uli4qo3JgSij7sjbdpuCaNG9oJM2Ma2vyOoqAMJ69XaVJdUQPm4 Ypm4RaHeghXwOcjjk7tNpB91n044DPPbS9/g4dHKf9HIKPRScMxv7ttJSlzyHitM aERC42+T6cHibSdO47ISiqVf+CWTCvQ1CTnqPrSLUzp4qBJTiQcDKr/3cP6bWkA3 4LNJZIbHPNugGuLoHG4rswr69VYwLw2EqDqdsLefCENAt4Z253ZvoCifRcZzq9Vp 4wA17bR6gm49OnC3axfdhb4rnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIaT3I0Z xI2dQ2NqzmOboJuB3DOwMB8GA1UdIwQYMBaAFB5cEH79A88T0hSjmmos6N2tMEcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDlDMy80NUNDODJDQzgw NjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4UFNGS09hYWl6bzNhMHdS dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hsd1FmdjBEenhQU0ZLT2FhaXpvM2Ewd1J3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDlDMy80NUNDODJDQzgwNjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4 UFNGS09hYWl6bzNhMHdSdzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXBFLBWPErd93aqy0Q1gH2vIvepHeHQfonuz/r0LFj7+rR1C6JYqk4uqLQmVv n5Br48Z9Yq5Fu98pDL44U9v8Ybo/352vFpn+HkM6rRvId3nMfGAFM7tZMb2xUolC 8D/KT7aewA9ghjQhVm+Qr2J9SR1Olsg+pOi4+JhiltzReNB50PZmzNswkIblZAjj i68iA2CFzBKancoTX1UI1Bnbp7cdyqobsEuJEtigN0ayGTtHh/0ebhuZSspOwPTG nZ/pQo+Tzgxc8r+GatXIegMrIyIerlwEeWgvfygSQxKcl+qXc/ZH6lUhCung7CfM fIb2mOYd6L7Q9ntDC6Vi6ZAfkQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:29:17 2026 by rpki-client