$ rpki-client -vvf rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft File: ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft (raw, json) Hash identifier: B++gP79sV20nrTklimsXXv7TflCTlelAZD8eSqPx7CY= Subject key identifier: F6:F5:2E:77:CC:8D:89:94:2F:C1:92:D8:5D:93:B9:5E:79:CB:7A:BE Authority key identifier: 49:3D:3E:AF:E0:40:57:28:41:E9:FA:B2:56:D0:C6:04:4C:B8:58:C8 Certificate issuer: /CN=A916C7B6/serialNumber=493D3EAFE040572841E9FAB256D0C6044CB858C8 Certificate serial: 0BF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft Manifest number: 0BEB Signing time: Sun 01 Mar 2026 23:30:03 +0000 Manifest this update: Sun 01 Mar 2026 23:29:59 +0000 Manifest next update: Sun 08 Mar 2026 23:29:59 +0000 Files and hashes: 1: ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl (hash: Lmfyc85OME7UxoGZoqyamU0mEvZFEPd8Wf297dEec0E=) 2: 1A8553B831F011EAA18AC76AC4F9AE02.roa (hash: tnVPuD19UwWln3/34cxqq1xm4up8rwSwfbjxhWxlsQw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3059 (0xbf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C7B6, serialNumber=493D3EAFE040572841E9FAB256D0C6044CB858C8 Validity Not Before: Mar 1 23:29:59 2026 GMT Not After : Mar 8 23:29:59 2026 GMT Subject: CN=69a4cbfa-0f4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:40:23:62:6f:dd:2c:76:0b:c7:ae:d1:f1:14: 40:1a:9c:4c:e9:b9:52:ef:e7:0a:a8:cb:fc:ba:ae: 91:8f:57:d9:8a:92:73:97:ec:60:d2:36:42:0b:ba: bf:3e:c3:91:ae:d3:5c:1d:59:f1:fd:1b:15:b6:58: 32:68:7d:68:e1:ef:5a:cf:43:54:cf:d4:8c:03:df: dd:1e:ad:76:73:7d:74:f3:7c:83:b1:d0:a9:a9:09: 8f:0b:3f:b6:d3:cb:07:b3:01:c2:1d:13:30:dd:0e: d0:09:06:b2:0b:9c:97:53:c4:33:be:6d:46:ba:e7: cc:2b:14:a5:d5:49:ea:cf:2f:14:e0:26:02:d3:25: 2a:0a:a1:00:80:26:ea:0e:cc:b2:be:45:b1:4c:d6: f4:7a:c4:ff:8a:0e:1e:eb:0f:e0:ff:02:99:eb:79: 84:10:a3:3b:d6:5a:b7:83:b3:f8:9e:1c:3f:ba:26: ef:4d:68:50:1f:37:f0:8b:bb:85:e6:a0:a1:a3:bd: 4c:27:56:fd:94:2a:b4:0b:d4:67:fe:45:ca:c5:a1: 7e:b7:53:27:c3:ee:d7:da:4e:b7:6d:17:04:01:1a: 5f:54:8f:05:2c:54:7a:18:ef:0c:d8:e7:80:cd:58: 94:68:ae:ca:45:84:df:98:88:eb:db:b4:d3:a0:37: fa:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F5:2E:77:CC:8D:89:94:2F:C1:92:D8:5D:93:B9:5E:79:CB:7A:BE X509v3 Authority Key Identifier: keyid:49:3D:3E:AF:E0:40:57:28:41:E9:FA:B2:56:D0:C6:04:4C:B8:58:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:3a:67:5a:dc:e1:28:16:59:c8:d8:94:b5:79:63:63:0a:87: 8f:55:2a:1e:6d:ca:02:b3:ab:51:6f:6a:ff:71:1e:8e:2a:a3: 6b:d7:28:a2:37:8d:04:89:15:bf:86:e8:95:b8:16:ef:25:6d: fa:3f:1b:68:78:ff:61:fc:a8:96:30:ff:ce:0c:e1:8e:3a:f3: c0:20:b0:b0:cc:0c:50:41:3d:31:b9:4f:af:0b:ea:97:e0:8b: fc:4c:a9:cc:12:ec:4a:03:98:e0:d0:8e:ca:16:84:65:c5:f9: 77:b5:f1:66:f5:3b:ac:2a:2c:ba:c0:78:59:a9:ca:51:ac:4c: ea:94:01:67:04:91:d5:8a:78:26:1e:fc:2c:27:9d:d5:13:ac: ea:c9:79:7a:6b:96:f4:dc:0b:40:7f:54:14:54:b2:5b:95:df: 47:e2:ec:64:77:6b:cd:a9:c2:84:88:73:65:ad:b1:8f:10:00: 00:df:78:5c:11:48:1a:da:d9:f5:05:f8:e4:68:33:00:65:b3: 19:96:06:12:6d:5e:63:66:16:83:0d:e2:3d:b6:0a:85:50:be: ac:23:fd:c7:5f:01:5e:05:bb:67:58:37:04:15:06:92:1a:23: 9d:6c:5e:b1:d8:fc:78:5f:43:3e:49:d3:fe:87:57:ec:4d:5c: 4e:9a:ab:44 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM3QjYxMTAvBgNVBAUTKDQ5M0QzRUFGRTA0MDU3Mjg0MUU5RkFCMjU2RDBDNjA0 NENCODU4QzgwHhcNMjYwMzAxMjMyOTU5WhcNMjYwMzA4MjMyOTU5WjAYMRYwFAYD VQQDEw02OWE0Y2JmYS0wZjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0AjYm/dLHYLx67R8RRAGpxM6blS7+cKqMv8uq6Rj1fZipJzl+xg0jZCC7q/ PsORrtNcHVnx/RsVtlgyaH1o4e9az0NUz9SMA9/dHq12c31083yDsdCpqQmPCz+2 08sHswHCHRMw3Q7QCQayC5yXU8Qzvm1GuufMKxSl1Unqzy8U4CYC0yUqCqEAgCbq DsyyvkWxTNb0esT/ig4e6w/g/wKZ63mEEKM71lq3g7P4nhw/uibvTWhQHzfwi7uF 5qCho71MJ1b9lCq0C9Rn/kXKxaF+t1Mnw+7X2k63bRcEARpfVI8FLFR6GO8M2OeA zViUaK7KRYTfmIjr27TToDf6zwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPb1LnfM jYmUL8GS2F2TuV55y3q+MB8GA1UdIwQYMBaAFEk9Pq/gQFcoQen6slbQxgRMuFjI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzdCNi80M0Y2QTU3ODMx RUUxMUVBQUIwMUU3NjdDNEY5QUUwMi9TVDAtci1CQVZ5aEI2ZnF5VnRER0JFeTRX TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUMC1yLUJBVnloQjZmcXlWdERHQkV5NFdNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzdCNi80M0Y2QTU3ODMxRUUxMUVBQUIwMUU3NjdDNEY5QUUwMi9TVDAtci1CQVZ5 aEI2ZnF5VnRER0JFeTRXTWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWDpnWtzhKBZZyNiUtXljYwqHj1UqHm3KArOrUW9q/3Eejiqja9coojeNBIkV v4bolbgW7yVt+j8baHj/YfyoljD/zgzhjjrzwCCwsMwMUEE9MblPrwvql+CL/Eyp zBLsSgOY4NCOyhaEZcX5d7XxZvU7rCosusB4WanKUaxM6pQBZwSR1Yp4Jh78LCed 1ROs6sl5emuW9NwLQH9UFFSyW5XfR+LsZHdrzanChIhzZa2xjxAAAN94XBFIGtrZ 9QX45GgzAGWzGZYGEm1eY2YWgw3iPbYKhVC+rCP9x18BXgW7Z1g3BBUGkhojnWxe sdj8eF9DPknT/odX7E1cTpqrRA== -----END CERTIFICATE-----Generated at Mon Mar 2 20:19:16 2026 by rpki-client