$ rpki-client -vvf rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft File: PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft (raw, json) Hash identifier: ndu+vv7byxvBlBiyLYhs0vgG1YnBxg9cL7TPu0Zs+Fg= Subject key identifier: 21:DD:A9:FD:A9:E4:71:DD:A2:1B:CD:B9:6A:4A:30:82:85:6B:2F:9A Authority key identifier: 3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2 Certificate issuer: /CN=A914E6AA/serialNumber=3D51EDC43A3999B1371CE5C04142083FE287D0F2 Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft Manifest number: 0B0A Signing time: Sat 28 Feb 2026 23:02:00 +0000 Manifest this update: Sat 28 Feb 2026 23:01:59 +0000 Manifest next update: Sat 07 Mar 2026 23:01:59 +0000 Files and hashes: 1: PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl (hash: tg3vtkCeBmYVWP9xO4kUonFonI+iPUAb+2GyJIFFtqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 23:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E6AA, serialNumber=3D51EDC43A3999B1371CE5C04142083FE287D0F2 Validity Not Before: Feb 28 23:01:59 2026 GMT Not After : Mar 7 23:01:59 2026 GMT Subject: CN=69a373e7-af7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fa:fa:d5:44:71:0d:49:1e:16:36:9f:3e:63: 7e:23:4b:ee:9f:88:cd:fe:4c:9f:6b:b9:c3:c3:42: a9:e5:bf:34:d8:36:38:ce:fe:d6:4b:ca:7c:f6:cf: d2:cf:d2:48:65:5d:0c:33:ae:62:c1:69:3c:d5:cf: ee:5b:c8:0c:25:dc:55:5a:a6:d9:0c:6e:c1:b5:6c: e5:05:72:88:75:d0:8c:0f:86:60:f1:ad:d2:a0:05: b9:d3:6c:92:a5:ba:05:2f:5a:e0:05:6a:79:e4:8f: f6:cd:b1:85:35:3a:5b:c7:cd:60:7c:cf:73:b5:d3: 26:9b:3b:0f:64:f9:20:2a:0c:b0:48:d6:d4:6c:63: 81:28:7f:b8:72:82:c4:c9:6c:07:d1:76:83:dc:13: d6:e9:05:e7:3f:1e:0d:89:eb:6a:d3:93:47:b8:ce: 77:40:a5:45:a1:ec:20:d7:8b:52:70:bb:71:ed:4d: 79:e7:e0:6a:cd:06:95:48:67:d4:e5:f4:88:35:0c: fa:2c:46:50:9b:c9:7f:b9:2b:9c:eb:f4:b5:24:6d: 33:99:22:4c:53:f7:1e:d3:d2:09:4d:56:f1:76:54: 98:8a:3d:69:be:1d:82:a3:41:8a:43:4b:ed:b9:db: 3d:6c:fa:2f:1b:b0:89:38:87:96:9e:38:95:6d:47: 8c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:DD:A9:FD:A9:E4:71:DD:A2:1B:CD:B9:6A:4A:30:82:85:6B:2F:9A X509v3 Authority Key Identifier: keyid:3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:32:77:36:1e:29:67:11:af:94:74:ef:61:ba:de:38:40:a5: 59:4a:0b:ec:66:98:f2:d4:df:af:ff:bd:45:b8:36:3c:a5:fa: 44:4d:92:22:d7:55:7f:85:e8:c1:32:d0:b6:3b:87:4c:e4:f6: 78:3e:e8:4b:d8:92:d7:21:f3:9a:8f:8d:a4:e4:5f:78:6f:fd: e7:de:20:13:46:18:23:88:80:92:00:65:da:6e:8e:b8:c8:1e: 76:a4:5a:8e:6b:39:4c:d2:d4:82:ce:4f:58:50:83:b5:c4:5c: d1:46:70:41:ad:b6:53:65:6a:dd:d3:71:b5:1d:35:8e:52:b6: 4a:45:d7:a8:0f:65:72:37:ed:35:40:b2:59:d3:be:1f:a7:c1: ed:31:6b:2b:ae:e2:93:14:7c:52:18:e0:2e:5e:d8:3b:fe:be: f3:a6:5d:03:da:0b:ac:5a:89:15:2d:5a:59:27:26:4d:9c:40: d4:b0:85:f0:35:39:ac:0d:24:95:b3:3d:0d:19:c7:a2:b8:9a: fb:83:bd:b7:7a:5f:6e:0e:73:98:53:5c:af:1e:ad:c6:5c:b6: 2d:4e:1e:50:bc:af:9f:18:7e:21:55:cf:12:38:fb:36:d5:d3: c9:6a:85:95:38:71:cf:b4:35:a4:dc:ba:4e:4d:85:22:0c:ff: 60:a2:1d:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU2QUExMTAvBgNVBAUTKDNENTFFREM0M0EzOTk5QjEzNzFDRTVDMDQxNDIwODNG RTI4N0QwRjIwHhcNMjYwMjI4MjMwMTU5WhcNMjYwMzA3MjMwMTU5WjAYMRYwFAYD VQQDDA02OWEzNzNlNy1hZjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/r61URxDUkeFjafPmN+I0vun4jN/kyfa7nDw0Kp5b802DY4zv7WS8p89s/S z9JIZV0MM65iwWk81c/uW8gMJdxVWqbZDG7BtWzlBXKIddCMD4Zg8a3SoAW502yS pboFL1rgBWp55I/2zbGFNTpbx81gfM9ztdMmmzsPZPkgKgywSNbUbGOBKH+4coLE yWwH0XaD3BPW6QXnPx4Nietq05NHuM53QKVFoewg14tScLtx7U155+BqzQaVSGfU 5fSINQz6LEZQm8l/uSuc6/S1JG0zmSJMU/ce09IJTVbxdlSYij1pvh2Co0GKQ0vt uds9bPovG7CJOIeWnjiVbUeMTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCHdqf2p 5HHdohvNuWpKMIKFay+aMB8GA1UdIwQYMBaAFD1R7cQ6OZmxNxzlwEFCCD/ih9Dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTZBQS84RURCMTA3RUFE QTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9QVkh0eERvNW1iRTNIT1hBUVVJSVAtS0gw UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BWSHR4RG81bWJFM0hPWEFRVUlJUC1LSDBQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTZBQS84RURCMTA3RUFEQTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9QVkh0eERvNW1i RTNIT1hBUVVJSVAtS0gwUEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3DJ3Nh4pZxGvlHTvYbreOEClWUoL7GaY8tTfr/+9Rbg2PKX6RE2SItdVf4Xo wTLQtjuHTOT2eD7oS9iS1yHzmo+NpORfeG/9594gE0YYI4iAkgBl2m6OuMgedqRa jms5TNLUgs5PWFCDtcRc0UZwQa22U2Vq3dNxtR01jlK2SkXXqA9lcjftNUCyWdO+ H6fB7TFrK67ikxR8UhjgLl7YO/6+86ZdA9oLrFqJFS1aWScmTZxA1LCF8DU5rA0k lbM9DRnHoria+4O9t3pfbg5zmFNcrx6txly2LU4eULyvnxh+IVXPEjj7NtXTyWqF lThxz7Q1pNy6Tk2FIgz/YKIdhw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:28 2026 by rpki-client