$ rpki-client -vvf rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft File: sHoKQBnouCACE78tzPxocPheBGY.mft (raw, json) Hash identifier: hDva/agkP0WjTPkd6AVELvSdxRltjYubRjAy9qM2SnY= Subject key identifier: 49:D6:A9:E5:CC:DA:45:A4:59:88:0B:18:FD:2B:E0:4B:EE:25:57:92 Authority key identifier: B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 Certificate issuer: /CN=A916E5FB/serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Certificate serial: 0CCF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft Manifest number: 0CBD Signing time: Sun 01 Mar 2026 23:27:22 +0000 Manifest this update: Sun 01 Mar 2026 23:27:21 +0000 Manifest next update: Sun 08 Mar 2026 23:27:21 +0000 Files and hashes: 1: sHoKQBnouCACE78tzPxocPheBGY.crl (hash: QwyzFICAaLQXhBxUVrxPEsjiXfua+pCDs3zQUDmca4w=) 2: 6ED5481209DF11EAA6052433C4F9AE02.roa (hash: C3RgvD5sPzLlBXfiiW3TziQAdATMPl8r0fgRpNe+V8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:27:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3279 (0xccf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E5FB, serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Validity Not Before: Mar 1 23:27:21 2026 GMT Not After : Mar 8 23:27:21 2026 GMT Subject: CN=69a4cb5a-464a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2c:23:53:4a:a6:8b:0f:d2:e4:e3:d8:81:2e: 0b:9e:9f:37:52:5d:af:48:af:c1:a4:29:31:97:11: ea:a0:6c:e9:78:41:8c:8b:dc:01:6a:14:8f:32:23: 1f:db:2f:40:ff:ef:7f:90:76:7c:25:c7:57:dc:ca: 44:9d:bb:56:7c:8c:d8:75:8a:0c:fc:a4:73:ae:cc: aa:d5:49:cb:27:01:a9:e1:60:95:59:79:ab:2b:ed: 08:90:bc:27:92:62:79:86:c6:ad:67:ab:7a:e0:92: bf:14:06:39:f0:e9:ef:39:b8:49:30:81:9c:29:1f: 05:b1:cc:36:5d:62:48:b0:df:1f:1c:d2:63:5e:62: 06:4e:b9:25:b0:c4:99:86:d9:3f:e3:71:cf:cb:f3: 20:3c:36:be:64:ef:bf:69:7c:de:2a:61:f8:97:40: 9a:63:ee:04:7e:a1:53:cf:4a:e6:67:01:2e:e8:3e: 31:b6:31:c6:6b:bc:ac:1e:0a:a5:42:ea:ae:b2:98: 61:1b:b6:4a:d5:72:01:c7:5c:17:ad:fb:ba:5f:26: 19:cc:b5:c2:60:0f:76:a7:1c:fc:a7:9a:2f:51:ad: 9a:78:94:9a:91:7a:68:35:4e:ea:fa:f5:eb:38:c1: 45:61:44:5c:64:5e:c1:20:3c:87:48:67:b1:34:57: 7a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D6:A9:E5:CC:DA:45:A4:59:88:0B:18:FD:2B:E0:4B:EE:25:57:92 X509v3 Authority Key Identifier: keyid:B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:4f:c7:91:db:0f:64:43:f9:f7:8e:e3:f6:e7:20:ac:fa:90: c8:de:ed:ca:f5:d7:1e:2a:90:3c:3d:be:83:d2:98:c9:0b:e2: e2:44:28:00:70:52:28:c2:ee:cd:ec:58:3a:6c:15:3a:fa:6c: 9d:c3:a0:49:52:d0:ca:95:60:29:5c:e6:ff:13:c2:8a:ac:d5: b0:e6:43:5b:44:f8:11:ee:d8:db:73:25:35:31:50:c1:2a:d7: 11:d1:a2:4f:34:63:fa:2c:7b:b8:1b:28:22:b6:16:c6:18:1d: 06:11:88:6c:47:ba:b3:ae:e2:81:ef:8a:4f:29:9a:a9:f3:5a: 26:17:38:97:e0:3f:74:a5:92:17:5b:4b:67:d1:9f:d9:46:d9: 90:44:bb:ad:57:f4:c5:86:d1:50:95:24:e3:5f:a1:41:36:05: b5:f6:da:58:91:13:30:45:fc:9f:58:5b:ee:71:72:b9:e2:8c: 9a:58:90:2a:48:e5:3c:01:a2:3c:11:48:2f:b4:1f:b4:4e:06: bc:eb:5e:b3:63:c5:0d:c0:14:e3:b7:ab:35:2a:f9:a1:69:ed: 63:20:08:9b:8f:aa:5a:27:aa:c0:ed:4f:b4:83:c8:eb:27:eb: cb:f4:45:e9:96:dd:39:c8:38:2e:45:5a:03:2c:6a:87:3b:b4: 07:5b:a0:e5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1RkIxMTAvBgNVBAUTKEIwN0EwQTQwMTlFOEI4MjAwMjEzQkYyRENDRkM2ODcw Rjg1RTA0NjYwHhcNMjYwMzAxMjMyNzIxWhcNMjYwMzA4MjMyNzIxWjAYMRYwFAYD VQQDEw02OWE0Y2I1YS00NjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSwjU0qmiw/S5OPYgS4Lnp83Ul2vSK/BpCkxlxHqoGzpeEGMi9wBahSPMiMf 2y9A/+9/kHZ8JcdX3MpEnbtWfIzYdYoM/KRzrsyq1UnLJwGp4WCVWXmrK+0IkLwn kmJ5hsatZ6t64JK/FAY58OnvObhJMIGcKR8Fscw2XWJIsN8fHNJjXmIGTrklsMSZ htk/43HPy/MgPDa+ZO+/aXzeKmH4l0CaY+4EfqFTz0rmZwEu6D4xtjHGa7ysHgql QuqusphhG7ZK1XIBx1wXrfu6XyYZzLXCYA92pxz8p5ovUa2aeJSakXpoNU7q+vXr OMFFYURcZF7BIDyHSGexNFd6/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEnWqeXM 2kWkWYgLGP0r4EvuJVeSMB8GA1UdIwQYMBaAFLB6CkAZ6LggAhO/Lcz8aHD4XgRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTVGQi9DMTU2REY4RTA5 REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VDQUNFNzh0elB4b2NQaGVC R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NIb0tRQm5vdUNBQ0U3OHR6UHhvY1BoZUJHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTVGQi9DMTU2REY4RTA5REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VD QUNFNzh0elB4b2NQaGVCR1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqk/HkdsPZEP5947j9ucgrPqQyN7tyvXXHiqQPD2+g9KYyQvi4kQoAHBSKMLu zexYOmwVOvpsncOgSVLQypVgKVzm/xPCiqzVsOZDW0T4Ee7Y23MlNTFQwSrXEdGi TzRj+ix7uBsoIrYWxhgdBhGIbEe6s67ige+KTymaqfNaJhc4l+A/dKWSF1tLZ9Gf 2UbZkES7rVf0xYbRUJUk41+hQTYFtfbaWJETMEX8n1hb7nFyueKMmliQKkjlPAGi PBFIL7QftE4GvOtes2PFDcAU47erNSr5oWntYyAIm4+qWieqwO1PtIPI6yfry/RF 6ZbdOcg4LkVaAyxqhzu0B1ug5Q== -----END CERTIFICATE-----Generated at Mon Mar 2 05:54:52 2026 by rpki-client