$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: nGsrS/jHm6Y9oOta2k33YIuMvlzAQjbJhXy2pAVw8Mg= Subject key identifier: F4:DA:07:F1:C1:17:8C:27:5C:E0:71:D4:0C:69:92:F6:7F:5E:4E:38 Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 3523 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 351A Signing time: Sat 28 Feb 2026 15:00:04 +0000 Manifest this update: Sat 28 Feb 2026 15:00:03 +0000 Manifest next update: Sat 07 Mar 2026 15:00:03 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: Hk1B4fodwVS19V8ijYLy9ZtoiO+hbURcEP7yuArJBR0=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: KKbAooYir9kiM+kQeIhamjhStk+gbSQk/A73xTUucXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 15:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13603 (0x3523) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC, serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: Feb 28 15:00:03 2026 GMT Not After : Mar 7 15:00:03 2026 GMT Subject: CN=69a302f4-9aa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:34:32:9b:bf:e6:11:1a:39:82:d7:04:b1:ea: 81:29:07:d5:1f:33:6c:92:22:25:3c:57:86:ef:61: df:9d:7c:3a:9c:54:5d:17:35:af:27:15:a0:da:3b: 11:5e:dc:89:a6:3f:d4:69:f1:ce:33:c4:59:d7:ef: 4c:7c:71:8f:76:87:0b:63:b4:4c:35:f4:fb:6b:c0: 91:e9:9e:60:f0:65:7a:16:7d:c5:2c:17:e7:11:40: 73:46:e7:a7:03:2a:43:27:61:72:cc:76:73:2b:95: 28:c8:d9:7d:ee:f6:02:0d:f5:75:1d:23:9d:43:f6: 5a:e7:af:a5:24:55:14:48:d1:01:91:4d:97:90:4f: 1c:33:bc:35:a8:0f:d3:8e:5d:f2:d5:5d:80:c0:ea: e0:5f:b6:28:ae:78:cf:3e:76:0d:85:28:92:36:1c: ca:55:3a:73:0a:de:59:3f:06:b6:ee:25:1c:63:7d: 9a:fb:17:b3:bd:20:16:62:1a:5a:77:cb:ce:1f:63: 92:13:49:f0:01:c9:dd:fd:af:bc:ea:5f:c7:ec:d8: 75:3c:6f:ad:50:61:13:0b:3d:41:17:61:33:82:c6: a9:68:48:28:cb:8e:a5:83:ca:4e:7c:8e:f8:5d:e9: 6d:9f:21:8e:83:3f:89:c3:77:7e:e9:47:51:49:32: f4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:DA:07:F1:C1:17:8C:27:5C:E0:71:D4:0C:69:92:F6:7F:5E:4E:38 X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:69:cc:7a:b6:3a:c8:a0:2a:87:48:c2:bb:40:3c:65:b2:78: f6:31:7f:eb:6b:c2:3e:7b:06:c1:d3:28:7a:93:3a:17:90:32: cb:bf:83:e0:11:9c:f7:79:62:54:f0:5e:4a:c8:5a:66:d3:95: 8b:47:0e:cf:79:27:07:fc:ab:43:d2:2d:a3:9f:de:d4:4e:38: 39:b9:24:b8:9c:7d:41:26:a0:3c:7f:51:8e:ac:50:af:63:da: b1:3a:d6:92:ff:24:2e:ef:0a:1c:0e:93:a4:b8:d5:b8:de:fd: c6:ba:06:e8:0f:60:89:72:73:83:8c:4b:ed:2d:86:f7:07:82: cd:67:04:76:39:79:ab:68:97:4d:d2:19:7c:ac:5f:fe:e0:7d: 5a:39:ae:1e:6b:33:fc:01:22:56:65:db:92:cd:45:95:1b:0c: 8a:e9:8a:25:83:57:f6:fb:c5:8a:66:3e:a4:17:29:93:19:fb: 46:20:60:da:78:eb:17:2a:4e:ec:1b:28:a9:65:cc:c2:e3:b8: d1:20:b6:51:1e:07:ee:b4:98:a3:c8:07:17:04:52:8f:07:b3: 0c:f6:92:7c:d9:6d:65:63:52:94:32:af:b8:fa:ab:b3:a2:0f: 5b:b8:ba:4c:f6:53:43:56:bd:9c:c0:e2:c9:47:b8:48:d8:60: 06:e5:1e:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjYwMjI4MTUwMDAzWhcNMjYwMzA3MTUwMDAzWjAYMRYwFAYD VQQDDA02OWEzMDJmNC05YWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmzQym7/mERo5gtcEseqBKQfVHzNskiIlPFeG72HfnXw6nFRdFzWvJxWg2jsR XtyJpj/UafHOM8RZ1+9MfHGPdocLY7RMNfT7a8CR6Z5g8GV6Fn3FLBfnEUBzRuen AypDJ2FyzHZzK5UoyNl97vYCDfV1HSOdQ/Za56+lJFUUSNEBkU2XkE8cM7w1qA/T jl3y1V2AwOrgX7YornjPPnYNhSiSNhzKVTpzCt5ZPwa27iUcY32a+xezvSAWYhpa d8vOH2OSE0nwAcnd/a+86l/H7Nh1PG+tUGETCz1BF2EzgsapaEgoy46lg8pOfI74 XeltnyGOgz+Jw3d+6UdRSTL0FQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPTaB/HB F4wnXOBx1AxpkvZ/Xk44MB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFWnMerY6yKAqh0jCu0A8ZbJ49jF/62vCPnsGwdMoepM6F5Ayy7+D4BGc93li VPBeSshaZtOVi0cOz3knB/yrQ9Ito5/e1E44ObkkuJx9QSagPH9RjqxQr2PasTrW kv8kLu8KHA6TpLjVuN79xroG6A9giXJzg4xL7S2G9weCzWcEdjl5q2iXTdIZfKxf /uB9WjmuHmsz/AEiVmXbks1FlRsMiumKJYNX9vvFimY+pBcpkxn7RiBg2njrFypO 7BsoqWXMwuO40SC2UR4H7rSYo8gHFwRSjwezDPaSfNltZWNSlDKvuPqrs6IPW7i6 TPZTQ1a9nMDiyUe4SNhgBuUemw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:39:34 2026 by rpki-client