$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: E6iW5k5NqPZz+/dvU+Hw9/9+ZmrxrGcDVuaXgo3Cflw= Subject key identifier: 0E:07:0A:3A:7C:85:5D:C5:4C:79:C5:5D:60:F6:C2:66:01:93:3A:C2 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 0453 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 044C Signing time: Sun 01 Mar 2026 22:40:54 +0000 Manifest this update: Sun 01 Mar 2026 22:40:53 +0000 Manifest next update: Sun 08 Mar 2026 22:40:53 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: 50hGGPVxQRSpf1RuEdVj0dZd3M9UgVxMWWnC8/1S9sw=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: gXnStk1MwegllJpHCk0mKvppBMmur0BRxsppyW6UBsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1107 (0x453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950, serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: Mar 1 22:40:53 2026 GMT Not After : Mar 8 22:40:53 2026 GMT Subject: CN=69a4c076-3e4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:8a:2e:a2:4e:5d:9d:bd:62:ca:91:ce:1e:0f: 95:b0:f2:8a:9e:07:5d:33:61:68:28:85:c2:73:37: 5b:c4:f1:49:de:33:49:4a:ff:f8:0d:0f:eb:ad:86: 6d:a8:cb:16:65:b8:52:81:11:14:74:e0:bc:75:b7: 40:0b:81:cd:dd:1c:f4:c1:fb:28:a0:1e:58:88:d6: 76:71:02:c5:b5:41:38:84:40:7d:20:7f:13:8e:d8: 1a:0a:35:0e:0b:94:2d:b0:4a:7f:f2:59:26:91:e9: 74:33:c5:14:d2:24:d3:1d:1a:87:e2:ae:d5:70:bf: f0:7f:79:3a:f1:cb:fb:02:d4:19:e6:17:ce:9d:ca: ac:04:6e:6a:14:c1:f5:2a:39:62:03:27:f6:8f:42: b3:02:6a:58:14:46:2b:e4:21:4d:79:09:ad:d4:86: 15:67:c0:06:2c:24:b1:2c:93:d0:e6:d3:76:86:a7: 77:f1:fc:ac:1e:69:cd:2e:e8:66:4b:e2:db:8c:92: 31:78:8e:8a:bd:26:64:4c:71:5b:c5:85:13:66:48: d3:88:35:2e:40:02:7d:83:55:39:14:d2:fe:ac:3f: 38:f2:8f:8f:4d:4c:32:03:97:1b:30:26:64:84:69: 53:72:a8:36:79:59:4f:86:de:46:60:de:2e:58:0f: ef:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:07:0A:3A:7C:85:5D:C5:4C:79:C5:5D:60:F6:C2:66:01:93:3A:C2 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:51:fa:1b:7e:6d:1d:ec:0e:2a:af:e6:24:bb:db:d3:92:a6: 6d:61:b2:9b:f6:5a:20:50:d7:10:ec:ad:4b:3f:18:cf:8e:bf: 0e:df:76:03:9f:b1:b8:be:c3:a7:46:43:45:ed:71:4d:b7:09: 82:fb:1c:01:12:ff:70:03:9d:5c:ce:4b:9d:42:1b:26:fe:4f: 68:49:d0:42:99:11:1b:be:c3:9a:44:a4:81:a2:0f:0f:d9:c6: 46:4f:2a:8f:30:37:53:28:99:69:86:ff:e2:7c:1b:27:64:ad: 40:22:33:f0:0a:15:15:f0:6e:f1:db:5e:57:79:a3:61:55:1c: 98:42:91:0c:80:85:b2:f9:04:0e:e2:b5:39:53:a4:a3:16:b7: a6:3d:9b:c6:54:31:b5:ce:22:28:3b:98:6e:94:e7:df:52:ac: c1:49:a9:34:33:51:0f:31:0e:e5:28:ac:87:ac:24:66:41:18: eb:c5:fe:16:54:88:fa:f2:bb:7a:04:77:87:4a:b1:2b:04:a1: 9b:02:25:2f:8d:f0:0a:09:98:d5:bb:48:e6:d9:4c:08:3c:28: a9:8d:08:b5:99:f2:55:64:71:c6:10:97:d6:97:5d:9e:03:84: a3:df:1a:0a:bb:40:4b:f6:18:2f:d1:86:81:25:a3:b7:a6:e4: 16:05:95:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjYwMzAxMjI0MDUzWhcNMjYwMzA4MjI0MDUzWjAYMRYwFAYD VQQDEw02OWE0YzA3Ni0zZTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm4ouok5dnb1iypHOHg+VsPKKngddM2FoKIXCczdbxPFJ3jNJSv/4DQ/rrYZt qMsWZbhSgREUdOC8dbdAC4HN3Rz0wfsooB5YiNZ2cQLFtUE4hEB9IH8TjtgaCjUO C5QtsEp/8lkmkel0M8UU0iTTHRqH4q7VcL/wf3k68cv7AtQZ5hfOncqsBG5qFMH1 KjliAyf2j0KzAmpYFEYr5CFNeQmt1IYVZ8AGLCSxLJPQ5tN2hqd38fysHmnNLuhm S+LbjJIxeI6KvSZkTHFbxYUTZkjTiDUuQAJ9g1U5FNL+rD848o+PTUwyA5cbMCZk hGlTcqg2eVlPht5GYN4uWA/v0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA4HCjp8 hV3FTHnFXWD2wmYBkzrCMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAL1H6G35tHewOKq/mJLvb05KmbWGym/ZaIFDXEOytSz8Yz46/Dt92A5+xuL7D p0ZDRe1xTbcJgvscARL/cAOdXM5LnUIbJv5PaEnQQpkRG77DmkSkgaIPD9nGRk8q jzA3UyiZaYb/4nwbJ2StQCIz8AoVFfBu8dteV3mjYVUcmEKRDICFsvkEDuK1OVOk oxa3pj2bxlQxtc4iKDuYbpTn31KswUmpNDNRDzEO5Sish6wkZkEY68X+FlSI+vK7 egR3h0qxKwShmwIlL43wCgmY1btI5tlMCDwoqY0ItZnyVWRxxhCX1pddngOEo98a CrtAS/YYL9GGgSWjt6bkFgWVQQ== -----END CERTIFICATE-----Generated at Mon Mar 2 01:59:39 2026 by rpki-client