$ rpki-client -vvf rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft File: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft (raw, json) Hash identifier: aLKy5NeHerRL1kmNel/l67/GZiDbkUVsXcQuWfsd990= Subject key identifier: 27:D9:AC:A8:5F:2D:45:66:19:40:5E:94:5A:C3:26:90:EE:18:2F:1C Authority key identifier: 87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 Certificate issuer: /CN=A916B02F/serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Certificate serial: 01B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft Manifest number: 01B1 Signing time: Sun 01 Mar 2026 04:45:19 +0000 Manifest this update: Sun 01 Mar 2026 04:45:18 +0000 Manifest next update: Sun 08 Mar 2026 04:45:18 +0000 Files and hashes: 1: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl (hash: dAP/kOqDRJ5SmmMn66puP8C7Tkn5Ny8031/DlAPI6Yo=) 2: 27178D9E7FBC11EEAF80B825C4F9AE02.roa (hash: lQYmsDBc3UpFQI5bvRZLM1pLBA2w7erJcueIAfvmPc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:45:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B02F, serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Validity Not Before: Mar 1 04:45:18 2026 GMT Not After : Mar 8 04:45:18 2026 GMT Subject: CN=69a3c45f-cb0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7e:bf:a8:f6:aa:16:07:54:aa:9b:7c:88:48: cc:81:a7:74:e1:8f:32:a7:d3:85:79:06:88:30:85: 5b:de:20:b8:7e:d8:89:47:a8:70:21:1f:7b:8a:3c: dc:1d:b8:cb:27:47:7b:89:d9:e1:ab:da:bf:a5:28: 55:8f:9a:a2:82:ca:0c:02:0d:25:e1:d0:39:e8:db: 9a:be:61:54:72:bf:6b:8b:db:93:ac:75:cf:b9:a0: 2f:c1:23:34:fd:83:b9:d5:a4:64:21:c5:5a:f6:8b: c6:5f:4b:fa:2a:a3:1e:d4:8d:18:85:b1:9d:ff:ef: 92:3a:d8:ad:2b:b5:e6:09:5b:89:2e:0a:ca:94:e1: a4:3b:be:f3:25:bc:87:69:79:40:4d:c3:cc:35:cb: 05:b8:2a:8b:36:7c:03:de:e1:a2:00:c8:62:e5:c0: 16:d2:90:20:8a:5b:5b:ea:75:59:97:96:3c:22:85: b9:19:eb:bd:d4:73:b8:ed:ae:24:63:19:87:e8:79: 3a:9b:b9:bb:f5:0e:09:8d:64:12:ca:d8:05:6b:67: 49:66:8e:ed:11:7f:0b:fe:31:d6:68:c8:c8:d5:8b: aa:9f:2c:13:0c:48:eb:7e:c9:06:1c:16:55:12:1f: ad:a0:9b:80:e2:c5:98:5a:c8:83:61:71:e0:cf:99: ad:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:D9:AC:A8:5F:2D:45:66:19:40:5E:94:5A:C3:26:90:EE:18:2F:1C X509v3 Authority Key Identifier: keyid:87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:7b:5d:d0:c7:2b:2d:12:cb:d0:40:41:fb:03:98:23:7c:2e: 01:6f:79:82:c0:ae:54:00:31:9b:12:b6:66:71:dc:8b:30:ee: 11:a3:18:43:3b:ff:e9:6b:2d:62:26:d4:b9:dc:6d:fb:11:f4: 6f:ab:33:da:e7:ed:d1:7a:4f:e5:a2:5f:77:e5:25:8b:6c:55: 64:e0:50:17:08:60:e2:ff:f1:4f:a8:fd:c9:a7:47:77:62:96: 00:2a:87:27:b2:95:b3:60:a1:ed:aa:a8:85:49:48:58:b8:1d: f6:27:41:bd:61:5b:aa:91:a8:01:a4:9c:ec:fb:36:0f:63:3f: 28:cb:5c:c8:6f:94:25:3e:07:61:1c:9a:f3:b0:66:98:ee:4e: e7:00:fb:d7:bb:9a:e2:e8:38:e5:13:a3:0f:ad:66:20:a7:fc: a6:4b:0d:e5:e8:73:d0:c9:ad:fb:f9:a9:40:74:d1:ac:68:d5: 00:66:50:4c:09:2e:d2:13:48:d0:b9:6a:21:5a:12:a6:80:35: d7:88:e2:dd:a8:79:b4:a5:6b:89:9f:dc:46:12:4d:ef:75:c6: dd:77:ae:59:08:53:27:3c:dd:11:55:4a:be:0e:cb:ce:ba:cb: 08:f2:d1:82:74:3c:de:c2:ee:5f:7f:40:ce:b6:cc:11:87:eb: ff:d0:c1:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwMkYxMTAvBgNVBAUTKDg3RjMxQjIwMUJERDE4NzU4MTU0MEM1QjhCODY0NDM4 QzI5OTkwQjkwHhcNMjYwMzAxMDQ0NTE4WhcNMjYwMzA4MDQ0NTE4WjAYMRYwFAYD VQQDDA02OWEzYzQ1Zi1jYjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA236/qPaqFgdUqpt8iEjMgad04Y8yp9OFeQaIMIVb3iC4ftiJR6hwIR97ijzc HbjLJ0d7idnhq9q/pShVj5qigsoMAg0l4dA56NuavmFUcr9ri9uTrHXPuaAvwSM0 /YO51aRkIcVa9ovGX0v6KqMe1I0YhbGd/++SOtitK7XmCVuJLgrKlOGkO77zJbyH aXlATcPMNcsFuCqLNnwD3uGiAMhi5cAW0pAgiltb6nVZl5Y8IoW5Geu91HO47a4k YxmH6Hk6m7m79Q4JjWQSytgFa2dJZo7tEX8L/jHWaMjI1YuqnywTDEjrfskGHBZV Eh+toJuA4sWYWsiDYXHgz5mtIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCfZrKhf LUVmGUBelFrDJpDuGC8cMB8GA1UdIwQYMBaAFIfzGyAb3Rh1gVQMW4uGRDjCmZC5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjAyRi9EN0MzM0FCODdG QkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdIV0JWQXhiaTRaRU9NS1pr TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfTWJJQnZkR0hXQlZBeGJpNFpFT01LWmtMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjAyRi9EN0MzM0FCODdGQkIxMUVFQTY5ODM5MjVDNEY5QUUwMi9oX01iSUJ2ZEdI V0JWQXhiaTRaRU9NS1prTGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC3td0McrLRLL0EBB+wOYI3wuAW95gsCuVAAxmxK2ZnHcizDuEaMYQzv/6Wst YibUudxt+xH0b6sz2uft0XpP5aJfd+Uli2xVZOBQFwhg4v/xT6j9yadHd2KWACqH J7KVs2Ch7aqohUlIWLgd9idBvWFbqpGoAaSc7Ps2D2M/KMtcyG+UJT4HYRya87Bm mO5O5wD717ua4ug45ROjD61mIKf8pksN5ehz0Mmt+/mpQHTRrGjVAGZQTAku0hNI 0LlqIVoSpoA114ji3ah5tKVriZ/cRhJN73XG3XeuWQhTJzzdEVVKvg7LzrrLCPLR gnQ83sLuX39AzrbMEYfr/9DBFQ== -----END CERTIFICATE-----Generated at Mon Mar 2 00:28:26 2026 by rpki-client