$ rpki-client -vvf rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft File: H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft (raw, json) Hash identifier: BH49fut5MzeL67fcyo4WZ9/sZrY2PEI0Fyp3jP4zWpM= Subject key identifier: 6D:7D:25:4F:DA:4D:6C:40:42:F6:C7:69:D0:A5:5F:2F:5C:63:30:6B Authority key identifier: 1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF Certificate issuer: /CN=A916A447/serialNumber=1F68258C526C5DBC715434357D380020146440EF Certificate serial: 2959 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft Manifest number: 28E2 Signing time: Mon 02 Mar 2026 02:35:23 +0000 Manifest this update: Mon 02 Mar 2026 02:35:23 +0000 Manifest next update: Mon 09 Mar 2026 02:35:23 +0000 Files and hashes: 1: H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl (hash: SEUa8X87m5p1jI5+YJWM5tkGNDOPXgoh4w0uNbsdF2w=) 2: 7F3D1128DC7811EFA7D7DB49C4F9AE02.roa (hash: snv+Ao7h3D4AtoNcirglnIxXsbyuBKIZBJZQbsSHXrE=) 3: 4B65B208288F11EFB3C88742C4F9AE02.roa (hash: Yq2daRikzG4ZrSeoTTYOGveA0n/Xr575I3ns919mQG4=) 4: 57D5BBF870F211F086293675C4F9AE02.roa (hash: j+yw6G1FJ5OT1/AgUaFdJSNRkLOHVnav/U1aoCxvDXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:35:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10585 (0x2959) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A447, serialNumber=1F68258C526C5DBC715434357D380020146440EF Validity Not Before: Mar 2 02:35:23 2026 GMT Not After : Mar 9 02:35:23 2026 GMT Subject: CN=69a4f76b-e066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b7:b5:bc:3b:60:95:b4:93:a2:f4:20:16:71: c6:ac:b0:07:92:f4:b0:c1:90:1d:64:28:b2:05:d3: 53:80:75:00:a6:eb:7f:60:65:90:a8:85:3b:b5:9b: d8:40:e7:02:44:78:43:9d:69:a7:50:e8:6d:d7:0a: 26:8f:23:1d:cf:47:e0:de:85:81:08:19:f6:99:6a: 4a:8c:1f:48:43:41:17:3f:32:d2:9f:c5:de:63:d1: a4:02:ea:25:f3:b0:e0:46:3a:1a:05:d8:79:09:77: 2a:a6:68:69:6d:f0:26:e7:72:91:af:54:b3:fb:95: 9d:ee:83:8d:ba:b4:0d:1a:56:dd:af:e6:8f:db:d8: f3:bc:64:ed:79:96:93:1a:2e:7e:f5:82:02:bc:2f: 27:c6:cb:24:7e:3a:f8:90:68:3b:9f:20:36:7c:02: e9:0d:a5:7c:ba:71:a3:c7:d5:b5:5a:99:27:7e:52: 12:45:ee:af:49:e2:8e:1f:de:11:86:12:aa:54:72: 79:f0:e7:cb:6c:5a:57:97:d8:a6:79:24:7f:37:52: 8b:7e:b1:d7:0c:f4:b6:9b:9b:3b:7f:17:61:24:be: d2:2f:d4:0a:d3:6a:6d:25:62:4e:a1:34:9f:55:82: 81:e8:f3:0a:b8:62:2e:e7:6f:06:8f:f8:b2:61:e3: d7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:7D:25:4F:DA:4D:6C:40:42:F6:C7:69:D0:A5:5F:2F:5C:63:30:6B X509v3 Authority Key Identifier: keyid:1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:d5:8b:7d:82:e1:c0:85:13:ad:b0:9d:cd:b1:4f:93:f2:82: 87:fb:00:26:c1:a0:98:f2:3f:cf:88:6f:20:89:11:41:03:c1: f4:70:42:17:4e:2f:1b:2f:2f:47:4e:17:6e:e7:b8:9a:f1:ee: c7:a8:2a:d0:5a:17:70:60:3d:86:a2:e4:4b:7f:e2:ed:7f:1b: 35:0c:85:a3:c5:a5:13:78:fe:30:c7:82:c0:49:6c:2b:4c:c1: d1:07:34:3f:ce:c0:f9:52:bc:3f:7d:1c:32:ff:fe:41:1e:bb: e6:d3:d3:35:e4:e9:96:7f:60:05:21:b1:4c:f1:bd:e2:2d:6b: 26:f2:37:ee:f0:38:ff:e5:fe:5c:7a:e9:c6:59:46:be:0e:5b: 6f:ed:a0:64:d6:51:88:1b:20:a7:5d:4a:64:a0:43:3b:35:6b: 81:55:d0:c6:0a:dc:bc:fd:16:c8:9d:89:24:6f:c0:37:c3:b8: da:35:41:10:1d:ec:5c:f1:a7:b4:05:43:15:ac:23:38:57:c9: 0c:aa:3b:eb:c8:ce:3a:42:a5:c7:1f:35:df:68:7d:b0:77:94: 9c:8c:c2:38:9a:4d:77:1a:9b:44:ea:bc:22:33:75:b2:87:ae: d0:86:fd:56:7e:7e:df:27:e3:43:b5:c1:26:18:b8:3c:42:f5: 1b:23:65:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICKVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE0NDcxMTAvBgNVBAUTKDFGNjgyNThDNTI2QzVEQkM3MTU0MzQzNTdEMzgwMDIw MTQ2NDQwRUYwHhcNMjYwMzAyMDIzNTIzWhcNMjYwMzA5MDIzNTIzWjAYMRYwFAYD VQQDEw02OWE0Zjc2Yi1lMDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnLe1vDtglbSTovQgFnHGrLAHkvSwwZAdZCiyBdNTgHUAput/YGWQqIU7tZvY QOcCRHhDnWmnUOht1womjyMdz0fg3oWBCBn2mWpKjB9IQ0EXPzLSn8XeY9GkAuol 87DgRjoaBdh5CXcqpmhpbfAm53KRr1Sz+5Wd7oONurQNGlbdr+aP29jzvGTteZaT Gi5+9YICvC8nxsskfjr4kGg7nyA2fALpDaV8unGjx9W1WpknflISRe6vSeKOH94R hhKqVHJ58OfLbFpXl9imeSR/N1KLfrHXDPS2m5s7fxdhJL7SL9QK02ptJWJOoTSf VYKB6PMKuGIu528Gj/iyYePXGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG19JU/a TWxAQvbHadClXy9cYzBrMB8GA1UdIwQYMBaAFB9oJYxSbF28cVQ0NX04ACAUZEDv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTQ0Ny9EMjA3NTgxNEEw OUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hieHhWRFExZlRnQUlCUmtR TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyZ2xqRkpzWGJ4eFZEUTFmVGdBSUJSa1FPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTQ0Ny9EMjA3NTgxNEEwOUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hi eHhWRFExZlRnQUlCUmtRTzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaNWLfYLhwIUTrbCdzbFPk/KCh/sAJsGgmPI/z4hvIIkRQQPB9HBCF04vGy8v R04Xbue4mvHux6gq0FoXcGA9hqLkS3/i7X8bNQyFo8WlE3j+MMeCwElsK0zB0Qc0 P87A+VK8P30cMv/+QR675tPTNeTpln9gBSGxTPG94i1rJvI37vA4/+X+XHrpxllG vg5bb+2gZNZRiBsgp11KZKBDOzVrgVXQxgrcvP0WyJ2JJG/AN8O42jVBEB3sXPGn tAVDFawjOFfJDKo768jOOkKlxx8132h9sHeUnIzCOJpNdxqbROq8IjN1soeu0Ib9 Vn5+3yfjQ7XBJhi4PEL1GyNl6A== -----END CERTIFICATE-----Generated at Mon Mar 2 06:38:33 2026 by rpki-client