$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft File: SztaAaiVL7VkLSSEt_AgWufcx2E.mft (raw, json) Hash identifier: osqOJqBFAsCeT1oN2mseIvCMDHsREQvCEGzyxsBDwDs= Subject key identifier: 08:CE:9B:A5:B5:BD:30:52:7D:F6:74:27:12:19:C1:6A:00:19:D1:E3 Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 02A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft Manifest number: 0289 Signing time: Mon 02 Mar 2026 02:13:46 +0000 Manifest this update: Mon 02 Mar 2026 02:13:45 +0000 Manifest next update: Mon 09 Mar 2026 02:13:45 +0000 Files and hashes: 1: SztaAaiVL7VkLSSEt_AgWufcx2E.crl (hash: ToZbG6pgaF594Fgx4h115FNr6kaDJZV00t1ImadBneU=) 2: 82A6D4C4373711F0B4C22F6AC4F9AE02.roa (hash: 2dB8losCkzflgKLeyufFpykKeZbPyeG/91dZ2ar3/fk=) 3: C1ECF984D07411F0B0B35C27C4F9AE02.roa (hash: 4b1qRgjlNRcZ+iubckIse8edU98Q81NltkHwnBtFg58=) 4: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (hash: 0XIzwd7D2/6iAcpSl1J963JfV4yO/w+9LYIuULpKH7s=) 5: A4B9732E372211F088B77741C4F9AE02.roa (hash: uZoFjlWd0s35bUyaKBjteCw8B5zIPfjlCTUifO0BOtw=) 6: 46C3344E346611F0AF16091DC4F9AE02.roa (hash: G3atXAKqq6oFKBpr32HyeNbKvnZw8JFgcP/o+eZXrQQ=) 7: 0C21BBAC373711F08FA9BD3DC4F9AE02.roa (hash: WbC9Zi3FkuUimM2LDo18sEOCgwjkb/IqEbL/LDR9mkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:13:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 681 (0x2a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Validity Not Before: Mar 2 02:13:45 2026 GMT Not After : Mar 9 02:13:45 2026 GMT Subject: CN=69a4f25a-113c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1f:20:4a:0a:e1:b7:bf:c2:87:04:1f:4b:3d: 89:76:f6:d5:53:79:9b:4f:84:3c:63:ca:1b:22:5e: db:0b:aa:87:b3:e0:7d:9a:5a:cf:2f:bd:36:8c:6b: ec:ff:56:69:08:52:91:9a:84:14:d3:3c:b2:ed:c1: 0d:6e:fb:d6:12:d6:d0:6b:bd:2a:1d:02:b0:55:5c: 54:73:77:fd:df:e6:a8:59:82:de:6a:3c:c3:81:48: 0c:1e:8c:57:06:01:cd:7d:28:db:a5:84:e5:56:51: 90:c4:7b:07:a1:71:81:1e:9e:ec:87:e9:33:6c:55: e7:0c:7e:b5:4f:7e:17:f5:d4:ba:75:71:83:67:07: 47:e5:f6:ea:14:84:ef:3b:ab:18:62:75:4d:e7:61: 0d:06:2a:99:62:5c:e7:8a:0a:90:87:b2:0a:e6:6e: 99:1c:46:df:03:99:15:66:00:3d:88:6c:eb:28:e3: 97:a2:c9:28:15:de:cb:3b:71:b9:eb:1a:54:66:22: df:f7:04:fe:12:52:cd:6f:de:fe:93:d4:08:4d:b9: c3:4d:11:e3:8f:ff:4d:8e:1c:6e:f0:a9:3c:11:84: 76:7f:3d:4c:4b:04:f4:4f:bc:b1:8b:87:94:0b:47: b7:40:59:f0:6f:fd:b4:19:d0:d7:dc:43:fc:64:f2: 2c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:CE:9B:A5:B5:BD:30:52:7D:F6:74:27:12:19:C1:6A:00:19:D1:E3 X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:b5:ed:7e:96:f3:60:04:8e:25:83:25:30:29:53:c3:93:c5: 11:51:3c:c4:08:4d:c1:ba:03:2f:1a:76:18:77:42:86:b7:64: e8:0f:ca:47:f5:f5:d6:5a:9c:54:90:6d:42:68:69:6d:d4:d1: bb:36:bd:fa:c0:31:43:82:df:47:36:e6:f1:74:97:f5:be:a6: 32:99:02:47:d0:a3:ea:29:f9:81:88:e8:7f:52:bd:59:cb:d1: a6:86:7f:71:f1:c3:ff:9e:50:43:0c:36:82:d9:d8:ee:f8:d2: b5:bd:80:60:85:40:df:02:a6:b0:0d:02:c4:4d:73:6a:f1:36: 9a:d8:c5:db:d4:5e:cf:92:2f:fc:0a:67:d9:a3:af:eb:10:5d: 4e:ee:b7:ae:c5:31:9e:41:a0:1f:b2:30:33:92:a9:f8:04:62: cf:b7:76:e1:2c:b0:80:57:51:25:3b:6d:90:5d:9e:a5:69:f2: f5:fc:25:18:88:1a:75:9d:b1:83:43:be:7e:18:4d:c7:2a:2e: ae:d6:47:30:c4:c0:03:b9:2b:85:86:8c:c4:84:0c:29:36:51: d9:78:42:ed:c4:7c:95:fe:aa:e1:e1:90:17:31:e8:c1:21:42: eb:59:65:23:d0:b2:29:6e:35:74:20:49:ae:a1:6d:8c:38:a7: 27:14:ae:7f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjYwMzAyMDIxMzQ1WhcNMjYwMzA5MDIxMzQ1WjAYMRYwFAYD VQQDEw02OWE0ZjI1YS0xMTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5R8gSgrht7/ChwQfSz2JdvbVU3mbT4Q8Y8obIl7bC6qHs+B9mlrPL702jGvs /1ZpCFKRmoQU0zyy7cENbvvWEtbQa70qHQKwVVxUc3f93+aoWYLeajzDgUgMHoxX BgHNfSjbpYTlVlGQxHsHoXGBHp7sh+kzbFXnDH61T34X9dS6dXGDZwdH5fbqFITv O6sYYnVN52ENBiqZYlznigqQh7IK5m6ZHEbfA5kVZgA9iGzrKOOXoskoFd7LO3G5 6xpUZiLf9wT+ElLNb97+k9QITbnDTRHjj/9Njhxu8Kk8EYR2fz1MSwT0T7yxi4eU C0e3QFnwb/20GdDX3EP8ZPIsnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAjOm6W1 vTBSffZ0JxIZwWoAGdHjMB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzQ4RS80RDc4OTI2QTRGQTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3 VmtMU1NFdF9BZ1d1ZmN4MkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAALXtfpbzYASOJYMlMClTw5PFEVE8xAhNwboDLxp2GHdChrdk6A/KR/X11lqc VJBtQmhpbdTRuza9+sAxQ4LfRzbm8XSX9b6mMpkCR9Cj6in5gYjof1K9WcvRpoZ/ cfHD/55QQww2gtnY7vjStb2AYIVA3wKmsA0CxE1zavE2mtjF29Rez5Iv/Apn2aOv 6xBdTu63rsUxnkGgH7IwM5Kp+ARiz7d24SywgFdRJTttkF2epWny9fwlGIgadZ2x g0O+fhhNxyourtZHMMTAA7krhYaMxIQMKTZR2XhC7cR8lf6q4eGQFzHowSFC61ll I9CyKW41dCBJrqFtjDinJxSufw== -----END CERTIFICATE-----Generated at Mon Mar 2 12:40:33 2026 by rpki-client