$ rpki-client -vvf rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft File: 4bseYl2967MiD_kjzWoRos4kUZY.mft (raw, json) Hash identifier: 1x5dogY6JSssh+Aw6O6jb5Sa4Qv2jHmby3vwDZEiU1U= Subject key identifier: A3:58:5F:E0:74:F7:D4:77:5C:07:1A:C9:0A:3F:1B:6E:3C:5A:54:3A Authority key identifier: E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96 Certificate issuer: /CN=A916A31E/serialNumber=E1BB1E625DBDEBB3220FF923CD6A11A2CE245196 Certificate serial: 189A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft Manifest number: 1857 Signing time: Mon 02 Mar 2026 02:35:17 +0000 Manifest this update: Mon 02 Mar 2026 02:35:17 +0000 Manifest next update: Mon 09 Mar 2026 02:35:17 +0000 Files and hashes: 1: 4bseYl2967MiD_kjzWoRos4kUZY.crl (hash: Tl8E9zPhaRrR8O17jGMgF6tRR48619Av5C9zUOhCq4A=) 2: 2B04CC143D9F11EEACFF646FC4F9AE02.roa (hash: X9rsotZF7CeUjy+uRHBz/MOZBNYjTpkQ13IOleGdKEE=) 3: 2A3161763D9F11EEACFF646FC4F9AE02.roa (hash: dgLQAd17tzBsK66kQ0H0dwAp53SX6GdmC4ibG9feFVM=) 4: FA2CCDCCDE6111E88BFD7810C4F9AE02.roa (hash: 7ZAEA0r9lzg48+UEX+NDAtHxRbz47d+Yj5cRgz6OmvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.crl rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6298 (0x189a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A31E, serialNumber=E1BB1E625DBDEBB3220FF923CD6A11A2CE245196 Validity Not Before: Mar 2 02:35:17 2026 GMT Not After : Mar 9 02:35:17 2026 GMT Subject: CN=69a4f765-c24e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:66:b8:12:d5:3c:89:20:0d:27:f8:da:52:17: cb:36:38:96:3c:f6:40:91:e5:ea:6c:62:bc:a6:71: 7e:e8:00:4d:93:53:39:7a:56:8f:f3:58:e9:8d:67: 43:b6:61:58:d9:b4:2c:17:62:98:bf:95:93:4b:e8: 23:47:73:77:71:80:24:39:02:0b:d7:04:e3:b4:a6: 02:8f:1e:85:6a:09:07:3c:a8:d9:0f:15:7d:7e:fe: 31:df:88:17:0a:b2:e2:ed:6a:9c:a8:14:d6:5a:7b: 61:1d:22:2f:f6:6d:6b:9a:fb:ff:92:31:f6:9e:45: 5f:f4:72:d1:bf:c8:3b:b7:5e:b7:cb:02:3f:71:bd: e9:c3:a1:a9:01:3f:fd:56:08:4e:9b:da:97:45:34: c3:cc:c5:8e:29:f1:60:6b:3c:7d:3d:19:d9:d1:60: ac:12:f0:48:d8:4b:d8:e9:00:3e:4f:3f:18:71:e3: dc:ee:d1:ec:55:75:46:53:f8:15:7a:87:79:e9:99: 64:18:49:ae:6e:68:29:e7:6e:1a:51:2b:d5:54:7d: 41:a0:f9:f8:ac:52:7f:79:9c:00:af:c2:8f:d3:3f: 22:15:22:82:ef:5a:a9:7a:54:a5:2f:a7:77:87:41: 37:9b:33:ac:7f:80:62:87:87:be:bc:e1:46:57:a7: 05:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:58:5F:E0:74:F7:D4:77:5C:07:1A:C9:0A:3F:1B:6E:3C:5A:54:3A X509v3 Authority Key Identifier: keyid:E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:af:7a:15:78:65:ea:c3:77:7e:1b:a3:e1:ec:e3:8c:a8:31: a2:29:54:4e:b2:47:71:39:84:7b:bf:e7:5c:d8:ef:cd:5b:ec: e0:56:c5:7c:b0:a6:64:c2:f1:c4:1a:12:9e:83:22:d0:3a:d7: 83:3c:5c:dc:b5:67:37:23:0a:24:36:8e:a2:36:6b:25:06:13: 6f:6b:6e:76:0e:97:20:6e:04:5a:f8:f4:41:4e:0e:05:63:f9: a7:b3:45:d2:2d:10:fb:3a:11:44:10:37:f1:40:c0:9c:26:1b: c4:de:3d:28:cf:86:42:73:98:f6:fc:46:10:df:6f:16:1a:e0: c4:db:04:c4:fb:f2:b0:2f:60:d9:6a:54:c3:19:bb:51:61:77: c5:8f:55:91:32:07:22:e5:51:2c:f3:c5:6b:c7:44:4e:6e:be: e1:96:32:83:ff:c5:7e:ad:61:38:da:d2:6c:69:3b:b4:0b:a4: 77:73:5b:bf:84:12:b9:5d:d4:ab:bd:24:4a:13:b6:88:21:e7: 68:d5:4c:84:38:7b:b9:74:8e:b8:d2:2f:f1:36:26:63:e5:8c: 94:35:e9:ae:b1:84:52:41:e3:dd:e9:a2:60:f2:0d:72:de:f2: ae:2b:7d:e4:fa:5e:ac:24:32:73:ea:df:58:f8:1e:ff:d5:4e: 8b:2a:b0:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMUUxMTAvBgNVBAUTKEUxQkIxRTYyNURCREVCQjMyMjBGRjkyM0NENkExMUEy Q0UyNDUxOTYwHhcNMjYwMzAyMDIzNTE3WhcNMjYwMzA5MDIzNTE3WjAYMRYwFAYD VQQDEw02OWE0Zjc2NS1jMjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWa4EtU8iSANJ/jaUhfLNjiWPPZAkeXqbGK8pnF+6ABNk1M5elaP81jpjWdD tmFY2bQsF2KYv5WTS+gjR3N3cYAkOQIL1wTjtKYCjx6FagkHPKjZDxV9fv4x34gX CrLi7WqcqBTWWnthHSIv9m1rmvv/kjH2nkVf9HLRv8g7t163ywI/cb3pw6GpAT/9 VghOm9qXRTTDzMWOKfFgazx9PRnZ0WCsEvBI2EvY6QA+Tz8YcePc7tHsVXVGU/gV eod56ZlkGEmubmgp524aUSvVVH1BoPn4rFJ/eZwAr8KP0z8iFSKC71qpelSlL6d3 h0E3mzOsf4Bih4e+vOFGV6cFxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKNYX+B0 99R3XAcayQo/G248WlQ6MB8GA1UdIwQYMBaAFOG7HmJdveuzIg/5I81qEaLOJFGW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxRS9DMUZBMDgyQ0M4 Q0IxMUU3OTBBODgxMzhDNEY5QUUwMi80YnNlWWwyOTY3TWlEX2tqeldvUm9zNGtV WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRic2VZbDI5NjdNaURfa2p6V29Sb3M0a1VaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxRS9DMUZBMDgyQ0M4Q0IxMUU3OTBBODgxMzhDNEY5QUUwMi80YnNlWWwyOTY3 TWlEX2tqeldvUm9zNGtVWlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADa96FXhl6sN3fhuj4ezjjKgxoilUTrJHcTmEe7/nXNjvzVvs4FbFfLCmZMLx xBoSnoMi0DrXgzxc3LVnNyMKJDaOojZrJQYTb2tudg6XIG4EWvj0QU4OBWP5p7NF 0i0Q+zoRRBA38UDAnCYbxN49KM+GQnOY9vxGEN9vFhrgxNsExPvysC9g2WpUwxm7 UWF3xY9VkTIHIuVRLPPFa8dETm6+4ZYyg//Ffq1hONrSbGk7tAukd3Nbv4QSuV3U q70kShO2iCHnaNVMhDh7uXSOuNIv8TYmY+WMlDXprrGEUkHj3emiYPINct7yrit9 5PperCQyc+rfWPge/9VOiyqwhA== -----END CERTIFICATE-----Generated at Mon Mar 2 14:31:34 2026 by rpki-client