$ rpki-client -vvf rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft File: 2-bH-ZCQRq41ohWw4hVErlIjfoo.mft (raw, json) Hash identifier: gsc6p/Ws1IVo3kmvgWfdwO2LsD3MaYnOJHSrji/F6/Q= Subject key identifier: 83:C5:46:F5:5D:38:8A:E8:17:77:5B:5B:FA:1D:02:C2:F6:1E:A2:9B Authority key identifier: DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A Certificate issuer: /CN=A914F697/serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Certificate serial: 070B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft Manifest number: 0838 Signing time: Sat 28 Feb 2026 20:56:49 +0000 Manifest this update: Sat 28 Feb 2026 20:56:49 +0000 Manifest next update: Sat 07 Mar 2026 20:56:49 +0000 Files and hashes: 1: 2-bH-ZCQRq41ohWw4hVErlIjfoo.crl (hash: fVU4Vv8SIiyBzfaeq1vmG+s4fm1w7LPdVTVKEVvHUyo=) 2: 1AA7504A92DD11EB9B9E993FC4F9AE02.roa (hash: q9QvCRCxySgsmxHUlB3yfC5si2bvzkIxFoqx5RnCVEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 20:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F697, serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Validity Not Before: Feb 28 20:56:49 2026 GMT Not After : Mar 7 20:56:49 2026 GMT Subject: CN=69a35691-0971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:db:bc:b0:35:3f:9b:5a:d0:9d:cf:27:b2:2e: ac:1e:62:51:d9:b5:56:e9:42:71:f8:cd:89:c8:f9: 1d:0e:9e:5b:a7:95:68:08:50:df:45:75:94:df:17: 8e:25:c5:74:71:7e:54:00:b4:ef:b7:ef:35:10:cc: d1:96:0d:dd:7a:28:a6:dd:4b:24:c5:ce:40:ae:b0: 20:a8:ca:6a:9d:3b:e3:71:12:de:e8:2d:2c:14:1c: c0:2b:80:f4:98:3a:d8:8f:2c:60:12:a1:e8:bd:ca: 23:12:9a:a3:be:49:04:ca:e6:ed:61:44:31:ff:b5: be:9a:0e:33:77:37:8c:79:76:4d:a0:9c:76:91:d7: fd:b0:62:ea:f7:7a:99:25:05:7c:f4:79:86:f5:76: b2:4f:82:0a:1d:2d:00:be:3c:e3:cb:44:49:74:9b: bd:62:cb:b7:e6:b0:ea:c2:0f:f3:a3:be:9d:8f:84: 0f:d4:b4:71:f9:05:e4:7c:ac:1b:5f:fd:f0:3a:42: 25:5e:63:a0:38:6d:71:58:46:49:b0:00:d8:b9:fe: 4c:b3:d9:69:53:d3:4d:52:c0:f3:fb:15:a7:9a:46: 18:f8:45:88:c3:e6:08:2b:21:1f:57:7a:91:07:60: 34:24:c5:fa:ab:9b:b8:8d:a9:5e:2b:22:e7:6c:2d: 16:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:C5:46:F5:5D:38:8A:E8:17:77:5B:5B:FA:1D:02:C2:F6:1E:A2:9B X509v3 Authority Key Identifier: keyid:DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:84:b5:6a:79:a7:f8:ef:30:be:06:61:b1:6c:dd:47:70:e0: 0f:c3:ea:d8:cb:a4:3c:9e:3b:48:11:07:e5:c3:dc:02:fc:3d: 2b:35:0f:ea:df:0b:80:a6:94:1d:43:a0:65:31:e2:9e:ce:74: 00:fd:1c:ec:0d:9d:7e:a0:ba:b9:de:8c:cd:94:a9:5e:98:d0: d7:a7:b8:e8:49:37:31:7b:ad:96:ea:6b:5d:1f:4a:f5:0b:66: 21:cb:79:45:a1:f0:a7:80:c0:eb:c8:7f:8b:83:a1:c6:e5:6e: 8c:72:b8:9e:62:01:6d:0f:77:19:45:88:f7:79:39:24:f7:5f: 14:2d:a1:d9:cd:bf:75:70:bb:a3:aa:d7:c1:1d:63:e1:94:67: e0:a0:6b:fa:5f:54:33:59:4d:91:22:17:3f:cd:b6:d2:61:ef: da:a1:17:40:3d:35:91:5e:20:91:6e:e2:04:7d:8b:5f:d4:19: e3:3c:61:6d:ca:38:16:9f:fa:52:64:26:68:04:f9:38:88:72: 85:33:8f:1a:0f:79:02:b4:48:46:db:e7:c2:00:2b:d6:83:f1: f7:b6:60:2c:18:ad:14:e6:5b:f7:09:63:11:b0:b5:11:58:8f: bc:3d:84:c4:e4:41:7a:52:b3:30:3b:90:63:74:9f:7b:95:b4: e0:c3:20:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2OTcxMTAvBgNVBAUTKERCRTZDN0Y5OTA5MDQ2QUUzNUEyMTVCMEUyMTU0NEFF NTIyMzdFOEEwHhcNMjYwMjI4MjA1NjQ5WhcNMjYwMzA3MjA1NjQ5WjAYMRYwFAYD VQQDDA02OWEzNTY5MS0wOTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNu8sDU/m1rQnc8nsi6sHmJR2bVW6UJx+M2JyPkdDp5bp5VoCFDfRXWU3xeO JcV0cX5UALTvt+81EMzRlg3deiim3Uskxc5ArrAgqMpqnTvjcRLe6C0sFBzAK4D0 mDrYjyxgEqHovcojEpqjvkkEyubtYUQx/7W+mg4zdzeMeXZNoJx2kdf9sGLq93qZ JQV89HmG9XayT4IKHS0Avjzjy0RJdJu9Ysu35rDqwg/zo76dj4QP1LRx+QXkfKwb X/3wOkIlXmOgOG1xWEZJsADYuf5Ms9lpU9NNUsDz+xWnmkYY+EWIw+YIKyEfV3qR B2A0JMX6q5u4jaleKyLnbC0WVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIPFRvVd OIroF3dbW/odAsL2HqKbMB8GA1UdIwQYMBaAFNvmx/mQkEauNaIVsOIVRK5SI36K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjY5Ny83NTIxREZDMEU4 NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJxNDFvaFd3NGhWRXJsSWpm b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItYkgtWkNRUnE0MW9oV3c0aFZFcmxJamZvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjY5Ny83NTIxREZDMEU4NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJx NDFvaFd3NGhWRXJsSWpmb28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXoS1anmn+O8wvgZhsWzdR3DgD8Pq2MukPJ47SBEH5cPcAvw9KzUP6t8LgKaU HUOgZTHins50AP0c7A2dfqC6ud6MzZSpXpjQ16e46Ek3MXutluprXR9K9QtmIct5 RaHwp4DA68h/i4OhxuVujHK4nmIBbQ93GUWI93k5JPdfFC2h2c2/dXC7o6rXwR1j 4ZRn4KBr+l9UM1lNkSIXP8220mHv2qEXQD01kV4gkW7iBH2LX9QZ4zxhbco4Fp/6 UmQmaAT5OIhyhTOPGg95ArRIRtvnwgAr1oPx97ZgLBitFOZb9wljEbC1EViPvD2E xORBelKzMDuQY3Sfe5W04MMgig== -----END CERTIFICATE-----Generated at Mon Mar 2 00:11:29 2026 by rpki-client