$ rpki-client -vvf rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft File: 0ba-fNUVRYE-wxdmgHrN2YepD98.mft (raw, json) Hash identifier: S6uJjv6bK0p1/2GITp/mLyODVSBGJ0uR04+JRcKAf3w= Subject key identifier: AA:42:1E:A4:6B:6E:42:26:81:64:EC:43:90:38:07:CE:BE:BF:71:04 Authority key identifier: D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF Certificate issuer: /CN=A915418F/serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Certificate serial: 097F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft Manifest number: 0970 Signing time: Mon 02 Mar 2026 19:56:56 +0000 Manifest this update: Mon 02 Mar 2026 19:56:55 +0000 Manifest next update: Mon 09 Mar 2026 19:56:55 +0000 Files and hashes: 1: 0ba-fNUVRYE-wxdmgHrN2YepD98.crl (hash: e4xYJW2W9IqEd7ej6ZsFnkc66wrazpF/HYfWF7m8goU=) 2: 3BEF1820AFBA11EA8449B980C4F9AE02.roa (hash: xhNjPqA73OpL8U8u4dVTjHBcy8FV6vJPVW6N4NhLK5I=) 3: F4757B1018C811EB94A5327AC4F9AE02.roa (hash: 5TJ8fpI/hph92A8Cw9TwpRY9J8n0ZIFo0zChXcOf4qo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 19:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2431 (0x97f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915418F, serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Validity Not Before: Mar 2 19:56:55 2026 GMT Not After : Mar 9 19:56:55 2026 GMT Subject: CN=69a5eb87-a1e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:38:0c:9d:e8:f6:9f:a2:30:46:25:2a:ae:5e: c0:09:20:d7:cd:6e:9a:9c:b9:d0:40:cb:da:0e:24: 59:b4:ca:bc:15:b5:a3:f3:df:36:93:ef:b3:f3:6c: 97:6c:25:62:85:3c:e0:24:32:c2:d5:c3:5a:68:b8: 8e:a9:64:12:f1:e0:82:83:da:32:50:35:13:36:f8: 9b:61:69:58:4c:48:10:3b:b6:31:3f:7c:82:28:20: 60:09:e8:29:a5:22:bb:56:41:57:d9:bf:0b:56:38: 38:69:45:39:ed:91:68:75:82:d6:bc:3a:10:c2:03: 86:9f:20:40:93:0e:f4:1c:fe:5c:01:d6:67:46:64: a4:42:c3:37:6e:02:48:f5:c1:47:5e:f2:81:7b:82: 29:ca:af:7a:a0:b9:da:9a:c3:23:4f:3b:5c:ec:29: 30:73:62:40:be:8a:4e:77:6b:03:dc:60:44:d9:be: 26:45:9b:50:38:7a:a6:48:cf:04:89:f6:e8:47:cf: 6e:c5:7a:5b:c6:20:61:12:da:1c:09:57:cb:69:be: ce:3d:93:b6:dc:23:f8:df:fa:09:8f:79:23:41:ba: 36:e7:79:52:07:74:8a:87:45:f7:77:23:fc:00:4b: 06:b4:9f:a8:d6:24:eb:36:cc:90:1c:d2:65:e7:98: 8b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:42:1E:A4:6B:6E:42:26:81:64:EC:43:90:38:07:CE:BE:BF:71:04 X509v3 Authority Key Identifier: keyid:D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:cc:c2:0b:3c:39:93:72:90:23:2f:fe:ae:18:3c:75:c8:cd: 41:fc:c8:de:64:28:34:b5:45:01:23:93:64:58:cd:d3:5e:66: 41:5d:15:09:57:16:b8:ab:f7:f4:13:77:2f:aa:90:16:05:b4: 2f:06:57:8f:de:48:84:a1:27:6b:38:9c:21:e2:fb:96:22:c9: 8d:2b:7a:54:d9:30:27:09:79:59:2c:44:c9:cd:64:31:3c:1a: 21:7f:2c:ff:c9:24:57:b4:48:5c:8f:5b:0c:e6:9a:a0:37:8e: a1:c0:f3:e5:e8:16:30:9c:56:22:cf:24:5a:6a:78:55:1b:d9: 56:86:a6:c9:7f:ba:07:ed:8d:c8:73:cc:f4:d9:02:bd:e5:c8: c2:05:cd:d2:cf:34:42:6e:c1:6a:3a:90:ff:0d:8a:a3:08:9b: 9b:ca:f3:9d:17:45:48:81:e7:a2:a4:57:9b:4e:5b:54:f3:d5: d6:43:a9:4d:be:33:51:df:5b:2c:3a:99:66:88:09:e0:a8:4d: 1d:c2:68:7c:7d:48:c0:76:9f:f5:e9:bf:e1:dc:62:2b:0f:6f: 34:bb:29:bc:48:eb:07:7c:0d:d9:63:64:17:79:60:35:3e:2d: 10:32:75:8c:52:d0:73:0e:a1:b5:59:13:be:34:30:cf:db:b7: 26:eb:a3:74 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQxOEYxMTAvBgNVBAUTKEQxQjZCRTdDRDUxNTQ1ODEzRUMzMTc2NjgwN0FDREQ5 ODdBOTBGREYwHhcNMjYwMzAyMTk1NjU1WhcNMjYwMzA5MTk1NjU1WjAYMRYwFAYD VQQDEw02OWE1ZWI4Ny1hMWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiDgMnej2n6IwRiUqrl7ACSDXzW6anLnQQMvaDiRZtMq8FbWj8982k++z82yX bCVihTzgJDLC1cNaaLiOqWQS8eCCg9oyUDUTNvibYWlYTEgQO7YxP3yCKCBgCegp pSK7VkFX2b8LVjg4aUU57ZFodYLWvDoQwgOGnyBAkw70HP5cAdZnRmSkQsM3bgJI 9cFHXvKBe4Ipyq96oLnamsMjTztc7Ckwc2JAvopOd2sD3GBE2b4mRZtQOHqmSM8E ifboR89uxXpbxiBhEtocCVfLab7OPZO23CP43/oJj3kjQbo253lSB3SKh0X3dyP8 AEsGtJ+o1iTrNsyQHNJl55iLcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKpCHqRr bkImgWTsQ5A4B86+v3EEMB8GA1UdIwQYMBaAFNG2vnzVFUWBPsMXZoB6zdmHqQ/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDE4Ri83NUI5MEQyNEFG QjgxMUVBQTc2RTVFN0JDNEY5QUUwMi8wYmEtZk5VVlJZRS13eGRtZ0hyTjJZZXBE OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBiYS1mTlVWUllFLXd4ZG1nSHJOMlllcEQ5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDE4Ri83NUI5MEQyNEFGQjgxMUVBQTc2RTVFN0JDNEY5QUUwMi8wYmEtZk5VVlJZ RS13eGRtZ0hyTjJZZXBEOTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuczCCzw5k3KQIy/+rhg8dcjNQfzI3mQoNLVFASOTZFjN015mQV0VCVcWuKv3 9BN3L6qQFgW0LwZXj95IhKEnazicIeL7liLJjSt6VNkwJwl5WSxEyc1kMTwaIX8s /8kkV7RIXI9bDOaaoDeOocDz5egWMJxWIs8kWmp4VRvZVoamyX+6B+2NyHPM9NkC veXIwgXN0s80Qm7BajqQ/w2Kowibm8rznRdFSIHnoqRXm05bVPPV1kOpTb4zUd9b LDqZZogJ4KhNHcJofH1IwHaf9em/4dxiKw9vNLspvEjrB3wN2WNkF3lgNT4tEDJ1 jFLQcw6htVkTvjQwz9u3JuujdA== -----END CERTIFICATE-----Generated at Tue Mar 3 01:14:36 2026 by rpki-client