$ rpki-client -vvf rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft File: SHy2MxcaDd84rLtq0e2K5pZVhgo.mft (raw, json) Hash identifier: pPKc5U/EqxEmFTyBMgDvcQ05tak71AbeBJBsVolu1RQ= Subject key identifier: B3:15:64:14:E4:54:D8:57:36:74:28:70:49:C4:65:0D:98:F9:2D:A1 Authority key identifier: 48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A Certificate issuer: /CN=A916899E/serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Certificate serial: 0230 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft Manifest number: 022A Signing time: Mon 02 Mar 2026 01:29:27 +0000 Manifest this update: Mon 02 Mar 2026 01:29:24 +0000 Manifest next update: Mon 09 Mar 2026 01:29:24 +0000 Files and hashes: 1: SHy2MxcaDd84rLtq0e2K5pZVhgo.crl (hash: tRoVqw5ztlk7l79mp/oYyRhjPW8LUa0aZ77a9tcmhMQ=) 2: 96540A72CD0E11ED9A9CAE58C4F9AE02.roa (hash: VUhX4V+uuAXCvJJx8gbFvjg2DTFUtnIh9VNRCqvzwQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:29:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 560 (0x230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916899E, serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Validity Not Before: Mar 2 01:29:24 2026 GMT Not After : Mar 9 01:29:24 2026 GMT Subject: CN=69a4e7f7-0ed4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:95:0a:bf:ce:a0:85:71:0a:bb:9a:22:34:b5: 1d:8f:63:0c:86:57:d9:93:d2:33:1e:f8:2e:e9:30: 01:30:33:9e:a5:01:fe:d5:e8:fd:11:a1:78:da:2e: b1:9a:73:db:32:39:cd:c8:c4:a7:16:cb:00:fd:98: f0:01:12:ed:c0:4e:9a:0b:21:6f:eb:bd:b5:0d:82: a7:79:6b:01:8c:68:46:e0:7e:6e:f7:06:f4:7e:ea: 7a:f1:31:c9:df:bc:34:2c:33:dd:62:2a:04:55:4d: c1:c0:d1:8d:15:1f:9a:b0:29:dd:c9:cb:84:4f:2c: bc:7d:25:9a:ed:4f:93:b0:e4:01:dc:e7:bc:36:18: 34:69:79:0a:65:ae:c5:ae:c7:23:6b:1e:a8:bb:a9: c3:67:f7:a2:5c:d4:64:9a:a6:0a:d0:8b:b6:bf:e5: 99:3b:06:f6:58:c5:56:3c:31:0c:f8:eb:fc:f2:7e: b7:3d:af:3a:30:10:43:13:d3:51:0b:41:3b:a1:33: 99:0a:41:d9:19:a4:be:c1:65:dd:09:0b:7c:70:d3: f4:a5:d0:07:d7:a1:2b:0c:8e:09:d6:53:af:aa:01: 01:3d:ad:9e:90:de:12:ec:73:ee:df:ac:bd:45:fe: d9:e3:b2:cd:46:e0:de:ce:fa:bc:29:40:cf:37:e0: 9a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:15:64:14:E4:54:D8:57:36:74:28:70:49:C4:65:0D:98:F9:2D:A1 X509v3 Authority Key Identifier: keyid:48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:86:38:c0:e8:c0:1c:9c:e8:ae:54:60:5c:50:c5:f8:31:2b: f0:9a:da:b9:f5:62:f9:a3:1b:91:1b:8f:b6:b8:62:03:a9:b6: c2:d4:88:0e:69:fc:02:4b:7f:27:cb:54:6c:4f:1a:b5:30:44: b2:af:47:24:b0:9c:1f:7c:02:8c:7a:5e:8b:24:53:0e:c1:8c: ab:98:96:21:e7:d0:dc:3b:94:bc:2e:ff:97:d9:3d:af:e3:00: 14:50:91:00:11:45:fa:7d:6d:51:17:57:c4:9a:3e:9f:8a:db: 8e:14:f4:45:f0:98:01:45:32:6d:68:f9:6c:81:17:46:18:6a: c9:69:17:7a:b5:d5:12:d4:74:1d:db:e3:f7:f3:2f:9f:d1:c8: 3c:4c:75:bd:d4:4f:36:b9:a9:21:77:fa:01:87:08:61:73:35: f7:f2:9a:2f:4e:e7:04:fe:90:57:0e:f6:82:8b:ba:be:1f:10: 4f:6f:7d:c3:3f:50:b0:2d:be:2d:d3:f8:c9:bd:6e:ec:d4:3e: 59:30:c7:16:bf:ee:04:37:a5:68:47:65:17:ad:12:db:6e:77: 14:59:ac:96:45:f1:f8:ad:e6:2b:f1:4b:eb:13:50:cb:e2:ab: 1c:10:d6:1c:0f:2a:f9:32:86:ee:33:3b:94:cf:89:c6:b9:df: 14:d9:cd:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5OUUxMTAvBgNVBAUTKDQ4N0NCNjMzMTcxQTBEREYzOEFDQkI2QUQxRUQ4QUU2 OTY1NTg2MEEwHhcNMjYwMzAyMDEyOTI0WhcNMjYwMzA5MDEyOTI0WjAYMRYwFAYD VQQDEw02OWE0ZTdmNy0wZWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZUKv86ghXEKu5oiNLUdj2MMhlfZk9IzHvgu6TABMDOepQH+1ej9EaF42i6x mnPbMjnNyMSnFssA/ZjwARLtwE6aCyFv6721DYKneWsBjGhG4H5u9wb0fup68THJ 37w0LDPdYioEVU3BwNGNFR+asCndycuETyy8fSWa7U+TsOQB3Oe8Nhg0aXkKZa7F rscjax6ou6nDZ/eiXNRkmqYK0Iu2v+WZOwb2WMVWPDEM+Ov88n63Pa86MBBDE9NR C0E7oTOZCkHZGaS+wWXdCQt8cNP0pdAH16ErDI4J1lOvqgEBPa2ekN4S7HPu36y9 Rf7Z47LNRuDezvq8KUDPN+CaFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLMVZBTk VNhXNnQocEnEZQ2Y+S2hMB8GA1UdIwQYMBaAFEh8tjMXGg3fOKy7atHtiuaWVYYK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk5RS82QzEzNTQzNEM5 RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURkODRyTHRxMGUySzVwWlZo Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NIeTJNeGNhRGQ4NHJMdHEwZTJLNXBaVmhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODk5RS82QzEzNTQzNEM5RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURk ODRyTHRxMGUySzVwWlZoZ28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAloY4wOjAHJzorlRgXFDF+DEr8JraufVi+aMbkRuPtrhiA6m2wtSIDmn8Akt/ J8tUbE8atTBEsq9HJLCcH3wCjHpeiyRTDsGMq5iWIefQ3DuUvC7/l9k9r+MAFFCR ABFF+n1tURdXxJo+n4rbjhT0RfCYAUUybWj5bIEXRhhqyWkXerXVEtR0Hdvj9/Mv n9HIPEx1vdRPNrmpIXf6AYcIYXM19/KaL07nBP6QVw72gou6vh8QT299wz9QsC2+ LdP4yb1u7NQ+WTDHFr/uBDelaEdlF60S2253FFmslkXx+K3mK/FL6xNQy+KrHBDW HA8q+TKG7jM7lM+JxrnfFNnNsA== -----END CERTIFICATE-----Generated at Mon Mar 2 11:58:30 2026 by rpki-client