$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: LEu3BPegtFOTZnADR/N8DIdod8MpPPtSydEIuQ5+T5s= Subject key identifier: AF:0F:93:AB:5A:49:29:5D:F7:34:25:29:2F:77:0E:DC:5A:8E:F8:E2 Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 086B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 0857 Signing time: Sun 01 Mar 2026 22:45:14 +0000 Manifest this update: Sun 01 Mar 2026 22:45:13 +0000 Manifest next update: Sun 08 Mar 2026 22:45:13 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: ZlKqiuHK+lARj1CNoXCkS+KE7+OGjaVngWcv80ruq8c=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: IxYVxX1BoFCHdIOrjAwAEmnCO+dNiZSE2wEYWsIxYD4=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: /xCNBqLNz0L8cDqpYEQMnHLgfzVahak+S8dk9Uan5oM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:45:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2155 (0x86b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Mar 1 22:45:13 2026 GMT Not After : Mar 8 22:45:13 2026 GMT Subject: CN=69a4c17a-6820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:81:13:c9:b5:e0:67:2d:80:b3:f6:c6:f4:96: bd:67:0e:6f:5d:d5:17:08:f2:ac:f6:33:c8:50:ac: 79:ef:c0:95:8d:7c:3e:f0:c0:8a:f8:b8:de:da:1c: 4d:c6:fe:7d:88:3f:0f:ce:5b:6b:f3:e5:d3:d8:a9: cb:df:56:74:6a:ad:b7:75:e7:50:0d:a8:10:47:17: 77:0c:96:41:fb:60:f8:d7:27:b0:f6:0b:69:4f:fa: 49:bb:f6:9f:77:30:51:f8:bc:83:dc:53:3f:3f:a0: b4:20:3d:d0:5e:d3:c3:a8:85:90:ea:04:61:b6:96: 39:75:10:ef:a4:6c:16:d7:8f:6b:6b:7e:5f:4d:96: ef:20:50:50:f4:9c:63:ef:52:c7:ee:78:92:21:a2: 07:41:bc:55:f7:2d:14:37:83:ef:fa:90:44:b9:a5: 95:43:d0:90:e4:65:4d:d2:ad:ce:ae:71:29:e1:bf: 73:ed:6e:b4:be:df:07:b6:6c:87:a9:00:cb:b6:71: 7b:d1:6b:72:2d:d7:90:9c:78:5c:f8:bc:07:42:3c: 5a:81:d4:1e:25:01:bb:fb:ba:0b:5d:24:37:73:99: 8a:02:29:a6:4e:bf:b8:22:70:9f:87:ba:26:45:33: cc:3c:a9:a3:4c:53:6e:09:98:5e:e3:19:18:2f:0f: 43:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:0F:93:AB:5A:49:29:5D:F7:34:25:29:2F:77:0E:DC:5A:8E:F8:E2 X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:b2:e7:ac:ad:36:15:4f:87:7c:b9:6e:ed:e0:ac:ad:12:01: 1c:66:9a:9e:24:1d:e2:b0:b9:8e:e2:f5:d8:bb:e6:83:17:13: 67:1b:74:c4:1e:90:03:c0:6e:46:9e:ed:e0:8a:16:a5:21:cb: 2e:a0:03:93:1a:a2:53:1f:36:ba:72:1f:01:81:37:3a:90:20: fc:ff:dc:fa:7f:6d:bf:97:c6:77:59:5e:b8:2f:fe:3b:82:59: c6:a6:18:60:7a:c1:2a:d6:6d:8f:af:8d:2f:e2:cd:49:a9:95: 93:b1:21:0e:0d:ed:d7:3f:0e:e8:7b:68:83:c0:30:2f:66:e0: 95:39:2c:7a:6a:9e:e4:ac:b5:4b:c5:ba:21:57:44:82:ba:f1: 22:e7:4a:b8:f9:0e:3b:2a:a3:0f:74:64:f1:1f:70:8c:aa:fe: 4f:bd:a4:e1:9a:6b:eb:54:77:d3:38:dc:b3:d7:53:3a:e6:b1: ac:67:58:14:40:86:90:ab:1d:91:82:90:83:9c:89:f3:26:55: 83:56:71:12:e5:9d:4f:eb:f2:b0:42:cc:f2:b1:49:e0:de:7e: 6c:9e:57:62:cd:16:d0:2e:60:0d:a9:f4:85:d4:16:fd:ef:fa: 91:39:93:27:07:d9:0f:e9:21:3a:7d:e7:0d:77:c1:e7:81:7a: f6:1b:88:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjYwMzAxMjI0NTEzWhcNMjYwMzA4MjI0NTEzWjAYMRYwFAYD VQQDEw02OWE0YzE3YS02ODIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoYETybXgZy2As/bG9Ja9Zw5vXdUXCPKs9jPIUKx578CVjXw+8MCK+Lje2hxN xv59iD8Pzltr8+XT2KnL31Z0aq23dedQDagQRxd3DJZB+2D41yew9gtpT/pJu/af dzBR+LyD3FM/P6C0ID3QXtPDqIWQ6gRhtpY5dRDvpGwW149ra35fTZbvIFBQ9Jxj 71LH7niSIaIHQbxV9y0UN4Pv+pBEuaWVQ9CQ5GVN0q3OrnEp4b9z7W60vt8HtmyH qQDLtnF70WtyLdeQnHhc+LwHQjxagdQeJQG7+7oLXSQ3c5mKAimmTr+4InCfh7om RTPMPKmjTFNuCZhe4xkYLw9DQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK8Pk6ta SSld9zQlKS93DtxajvjiMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmLLnrK02FU+HfLlu7eCsrRIBHGaaniQd4rC5juL12LvmgxcTZxt0xB6QA8Bu Rp7t4IoWpSHLLqADkxqiUx82unIfAYE3OpAg/P/c+n9tv5fGd1leuC/+O4JZxqYY YHrBKtZtj6+NL+LNSamVk7EhDg3t1z8O6Htog8AwL2bglTksemqe5Ky1S8W6IVdE grrxIudKuPkOOyqjD3Rk8R9wjKr+T72k4Zpr61R30zjcs9dTOuaxrGdYFECGkKsd kYKQg5yJ8yZVg1ZxEuWdT+vysELM8rFJ4N5+bJ5XYs0W0C5gDan0hdQW/e/6kTmT JwfZD+khOn3nDXfB54F69huIOA== -----END CERTIFICATE-----Generated at Mon Mar 2 10:14:27 2026 by rpki-client