$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft File: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft (raw, json) Hash identifier: tLOeEvxV15BNrztsfjuolJKXdL4zq9WjCCSh7kc6mks= Subject key identifier: 45:C3:7F:3B:58:C2:85:D5:73:C4:06:24:DF:26:23:24:DC:D2:B7:62 Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0D44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft Manifest number: 0CFB Signing time: Sat 28 Feb 2026 18:27:46 +0000 Manifest this update: Sat 28 Feb 2026 18:27:46 +0000 Manifest next update: Sat 07 Mar 2026 18:27:46 +0000 Files and hashes: 1: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl (hash: n6xRiX+GpOXHt7Q+dSfNp4rHf1vuXHIA+xcVxFhg9RM=) 2: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (hash: dgaYhxpKFTJll8QFXjJvZ56tPT1YdJCm+Du0qrFBOD0=) 3: 430342A4C02B11EA85244830C4F9AE02.roa (hash: /HbUwkCLV63DkA8kIewDjeuv9E1/Q/Scn8m5EscMHIM=) 4: 76BF7682061B11EAAD56521BC4F9AE02.roa (hash: gfw3JplHL5bbrun1qNrFIfKsfEithQjUPo7Y+9htYC8=) 5: E397AB78866F11EBA76EED3EC4F9AE02.roa (hash: 7HDSUhXjmn5jAf4btRHXJ/TE59xcu+f2wFLKgPdYXOg=) 6: E0848D606F7611EDB491621FC4F9AE02.roa (hash: RhMUU98gm65p7oT5J9YLHeesEYerHL19VCw9YOfTfoA=) 7: CF257402276E11EEBE7B7B49C4F9AE02.roa (hash: tSRgGzOhLs6moPs3c2f7rXoICY7UOY0speuEy5ZJlC4=) 8: 451C283AFE4911ED9352E438C4F9AE02.roa (hash: SjD2sfWP58+ihf83INZ2vnY7EDvD8NzkIWSowdxtxfg=) 9: 0EF9BE4E276F11EEB328204AC4F9AE02.roa (hash: DvKrvsKLOdniWZzi/FKc2eApIs5jzBKhYAztVPyF5T0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:27:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3396 (0xd44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Feb 28 18:27:46 2026 GMT Not After : Mar 7 18:27:46 2026 GMT Subject: CN=69a333a2-7780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:39:9b:f2:a4:16:72:99:4a:e8:02:d3:51:ca: b3:2b:a4:ae:7d:e8:6b:fd:0f:8e:83:ff:f6:55:9c: 17:da:96:11:b1:59:73:f4:11:b7:35:35:de:5c:45: a9:84:85:44:07:ad:36:9f:b3:3c:ec:65:af:b3:3e: 1a:d8:56:8b:63:9e:1b:93:97:68:2f:bf:e6:54:ab: 1f:d0:dd:c2:e2:64:90:72:31:ff:07:9b:ef:35:85: c8:9a:b1:ff:38:05:a8:70:05:7e:0f:b0:ae:51:6c: 22:48:e8:56:91:54:b1:59:74:81:e6:43:4c:ef:31: 81:f0:5a:50:c6:e0:a6:63:19:a0:2f:92:d3:1d:0d: 62:4d:f9:6b:ef:f1:f8:ab:76:9f:cf:1a:1a:bf:fe: 3a:cb:b6:e9:31:4c:f0:64:4b:9f:30:23:db:89:94: b6:8f:8c:68:d9:6b:9f:3c:68:bc:cd:3e:6e:1f:21: cd:90:d6:92:5a:17:5c:16:52:ed:15:18:8d:86:ed: 4e:30:2b:6b:ef:b5:70:96:32:e5:12:98:45:f8:ed: 80:af:30:a2:e2:2a:ca:fa:e6:e1:ae:cb:25:17:ea: fe:04:68:54:0e:84:2c:6d:41:0e:86:db:2d:aa:59: 6e:25:f5:84:a5:70:34:03:37:19:e9:c9:ff:84:a6: 5c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:C3:7F:3B:58:C2:85:D5:73:C4:06:24:DF:26:23:24:DC:D2:B7:62 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:5e:f6:fd:79:f1:98:58:39:a8:c7:c6:bb:87:eb:ec:50:87: 67:b5:c8:15:04:e1:52:90:67:dd:1c:49:6b:09:17:af:26:b3: cf:dd:de:52:0c:0e:95:29:42:ca:f6:98:7b:c9:e4:8a:bb:b6: ec:36:62:84:ed:c6:65:22:a9:99:84:19:07:36:00:a9:c5:d4: 65:3a:5e:43:2e:8e:ed:62:27:04:ef:35:df:84:a9:f4:89:82: 62:ae:59:39:a1:82:04:57:ed:1f:6f:2a:45:98:3b:4e:96:1d: 20:36:d1:36:f1:30:41:68:88:c1:d6:fa:4e:a1:bc:27:44:7f: f1:3e:23:4d:a1:f7:d4:b9:c4:76:29:56:bd:87:a5:10:0a:73: 10:ed:4f:37:82:0c:c6:d0:6d:47:2e:dc:c0:3f:3b:ab:97:49: c7:73:d9:ef:d1:18:6b:65:f6:12:71:fe:81:52:45:e5:cf:30: 2b:b8:06:9d:0d:8f:60:af:ab:81:a0:89:fc:62:ee:99:6f:c5: 3e:ee:2f:cb:5c:e8:b8:31:f4:ef:b8:e0:82:38:1e:ae:57:c5: b0:5e:fc:f7:15:16:f2:4c:88:69:19:75:49:19:d5:1f:cc:c2: 20:fa:a1:f8:69:8d:5a:17:28:9f:38:5f:ec:2c:f8:cb:28:12: f2:60:02:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjYwMjI4MTgyNzQ2WhcNMjYwMzA3MTgyNzQ2WjAYMRYwFAYD VQQDDA02OWEzMzNhMi03NzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5jmb8qQWcplK6ALTUcqzK6Sufehr/Q+Og//2VZwX2pYRsVlz9BG3NTXeXEWp hIVEB602n7M87GWvsz4a2FaLY54bk5doL7/mVKsf0N3C4mSQcjH/B5vvNYXImrH/ OAWocAV+D7CuUWwiSOhWkVSxWXSB5kNM7zGB8FpQxuCmYxmgL5LTHQ1iTflr7/H4 q3afzxoav/46y7bpMUzwZEufMCPbiZS2j4xo2WufPGi8zT5uHyHNkNaSWhdcFlLt FRiNhu1OMCtr77VwljLlEphF+O2ArzCi4irK+ubhrsslF+r+BGhUDoQsbUEOhtst qlluJfWEpXA0AzcZ6cn/hKZcNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEXDfztY woXVc8QGJN8mIyTc0rdiMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVCNS9BRkVBMjlDMjA2MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1w SWJobVpPTUx4WHdnN1JxTVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdV72/XnxmFg5qMfGu4fr7FCHZ7XIFQThUpBn3RxJawkXryazz93eUgwOlSlC yvaYe8nkiru27DZihO3GZSKpmYQZBzYAqcXUZTpeQy6O7WInBO8134Sp9ImCYq5Z OaGCBFftH28qRZg7TpYdIDbRNvEwQWiIwdb6TqG8J0R/8T4jTaH31LnEdilWvYel EApzEO1PN4IMxtBtRy7cwD87q5dJx3PZ79EYa2X2EnH+gVJF5c8wK7gGnQ2PYK+r gaCJ/GLumW/FPu4vy1zouDH077jggjgerlfFsF789xUW8kyIaRl1SRnVH8zCIPqh +GmNWhconzhf7Cz4yygS8mACag== -----END CERTIFICATE-----Generated at Sun Mar 1 23:10:15 2026 by rpki-client