$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft File: 8kxEMhD3QcvlnQFOum7pcrXN2uc.mft (raw, json) Hash identifier: xoHEyPD4q9lUjs3o1li2L3fdcJZHtzxTVt35sprmmnw= Subject key identifier: 6B:3C:AA:08:E1:52:84:2E:B9:5A:72:AD:7A:58:68:D2:CA:7C:92:94 Authority key identifier: F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 Certificate issuer: /CN=A916B95A/serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft Manifest number: 0138 Signing time: Sun 01 Mar 2026 06:23:50 +0000 Manifest this update: Sun 01 Mar 2026 06:23:50 +0000 Manifest next update: Sun 08 Mar 2026 06:23:50 +0000 Files and hashes: 1: 8kxEMhD3QcvlnQFOum7pcrXN2uc.crl (hash: RTvMHf85+BDC7ivtgW+mB5GMCLUkPRy6m79YfCfrcBI=) 2: 2117AE6E37AF11EF844EC638C4F9AE02.roa (hash: vmrZgLw19B5ritq7z4vG50pAGmXRwXJvrAIY9L3sz/4=) 3: 20A6C35C37AF11EF844EC638C4F9AE02.roa (hash: P4Mm2VNQngkGMc8lCO6eHVGOp7Fy5SVP9GQX/B339mE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:23:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95A, serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Validity Not Before: Mar 1 06:23:50 2026 GMT Not After : Mar 8 06:23:50 2026 GMT Subject: CN=69a3db76-63a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f6:4c:cc:56:bd:d5:73:7f:18:ae:19:c6:84: 3c:86:05:d8:d5:68:80:1d:c5:fe:b4:7d:da:ae:ac: 77:a0:e7:9a:e4:6a:9c:7b:14:1c:a5:ed:a6:c7:a6: b8:f3:7d:dd:48:ef:63:fe:d5:6e:ff:29:00:d6:f9: cf:0f:8b:9b:b3:ed:db:94:8e:98:82:e7:e4:86:11: f9:0b:18:17:07:b3:12:14:97:f7:74:e3:69:3b:de: 9d:8b:02:10:ec:77:92:3c:0d:9c:f0:70:b5:4a:cd: 5d:10:1e:37:60:b9:84:88:e4:bf:c3:5d:7f:63:b8: 3f:ab:80:03:58:92:e1:fb:fd:37:3e:f8:c9:95:32: 2d:e3:24:d3:50:c1:4c:76:4e:32:d3:4a:c5:20:5e: b0:46:14:69:3d:d8:9b:ea:15:23:ae:af:de:ee:72: 2a:cb:5d:c6:83:2d:a2:11:63:3e:54:d0:61:0a:41: 8f:bb:04:cc:e6:b4:cd:97:a3:1a:c4:f5:55:c1:52: 41:48:1d:5f:94:95:70:ba:b2:08:5d:73:13:c7:e3: 34:5a:7a:78:79:91:9f:c3:f0:b4:56:83:5e:69:a3: 15:6e:6f:13:ed:c9:cb:a5:52:e3:05:16:e8:78:d0: 22:80:48:26:4a:2e:8f:72:80:db:cc:f3:e4:cb:2d: 77:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:3C:AA:08:E1:52:84:2E:B9:5A:72:AD:7A:58:68:D2:CA:7C:92:94 X509v3 Authority Key Identifier: keyid:F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:13:9b:05:7b:f2:75:ce:db:5d:0b:d5:84:39:be:fd:ec:40: 07:e6:e0:5a:cd:3d:aa:d6:38:64:12:2b:87:a0:a4:17:29:5f: 71:a8:c2:09:57:e9:f3:dc:d7:2c:4f:a1:e1:03:49:36:01:be: 9f:dc:97:c6:59:94:c4:30:2d:66:55:a3:56:65:39:f4:c9:9b: 09:4e:00:51:f0:09:4a:a8:41:66:d3:b1:3e:ab:3c:1c:a4:52: 8a:0c:b6:1c:0c:b9:83:68:73:a9:ff:ef:dc:df:eb:af:f0:6c: 80:b8:f1:7a:34:73:a0:f5:d2:7c:f8:47:27:87:77:f2:4f:3a: 2d:5d:a8:eb:bf:7c:f4:ba:f3:32:d9:30:a7:bf:4c:06:38:9e: a6:2c:33:e3:21:ab:a6:d2:c9:23:e7:a6:ef:e3:a3:79:00:01: 6a:f3:21:e8:72:ce:f5:68:61:a7:46:02:a7:82:8c:96:72:bb: af:9c:66:3b:4c:78:24:72:5e:3b:6e:fd:0e:2d:34:cd:58:74: 79:88:74:14:21:14:75:80:85:34:9f:ff:a3:44:89:aa:18:06: 62:65:30:d7:56:03:86:aa:76:f2:df:df:2d:fe:cc:6a:ce:b6: 8d:59:85:9e:62:0d:85:b2:cf:24:25:43:96:87:74:f3:d0:23: bd:30:48:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI5NUExMTAvBgNVBAUTKEYyNEM0NDMyMTBGNzQxQ0JFNTlEMDE0RUJBNkVFOTcy QjVDRERBRTcwHhcNMjYwMzAxMDYyMzUwWhcNMjYwMzA4MDYyMzUwWjAYMRYwFAYD VQQDEw02OWEzZGI3Ni02M2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/ZMzFa91XN/GK4ZxoQ8hgXY1WiAHcX+tH3arqx3oOea5GqcexQcpe2mx6a4 833dSO9j/tVu/ykA1vnPD4ubs+3blI6YgufkhhH5CxgXB7MSFJf3dONpO96diwIQ 7HeSPA2c8HC1Ss1dEB43YLmEiOS/w11/Y7g/q4ADWJLh+/03PvjJlTIt4yTTUMFM dk4y00rFIF6wRhRpPdib6hUjrq/e7nIqy13Ggy2iEWM+VNBhCkGPuwTM5rTNl6Ma xPVVwVJBSB1flJVwurIIXXMTx+M0Wnp4eZGfw/C0VoNeaaMVbm8T7cnLpVLjBRbo eNAigEgmSi6PcoDbzPPkyy13AwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGs8qgjh UoQuuVpyrXpYaNLKfJKUMB8GA1UdIwQYMBaAFPJMRDIQ90HL5Z0BTrpu6XK1zdrn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjk1QS81MTJDNzA1RTM3 QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1FjdmxuUUZPdW03cGNyWE4y dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhreEVNaEQzUWN2bG5RRk91bTdwY3JYTjJ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjk1QS81MTJDNzA1RTM3QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1Fj dmxuUUZPdW03cGNyWE4ydWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwhObBXvydc7bXQvVhDm+/exAB+bgWs09qtY4ZBIrh6CkFylfcajCCVfp89zX LE+h4QNJNgG+n9yXxlmUxDAtZlWjVmU59MmbCU4AUfAJSqhBZtOxPqs8HKRSigy2 HAy5g2hzqf/v3N/rr/BsgLjxejRzoPXSfPhHJ4d38k86LV2o67989LrzMtkwp79M Bjiepiwz4yGrptLJI+em7+OjeQABavMh6HLO9Whhp0YCp4KMlnK7r5xmO0x4JHJe O279Di00zVh0eYh0FCEUdYCFNJ//o0SJqhgGYmUw11YDhqp28t/fLf7Mas62jVmF nmINhbLPJCVDlod089AjvTBI1Q== -----END CERTIFICATE-----Generated at Mon Mar 2 14:12:20 2026 by rpki-client