$ rpki-client -vvf rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft File: h17HLkbyzRY_Brgi5wQSmu_jGRA.mft (raw, json) Hash identifier: l6D73gAKcVWyJAVuwR1MH9DKe1i/8dbRhKU/VapTkjo= Subject key identifier: 95:FF:E7:E0:26:88:07:50:E8:F2:9C:49:68:B5:13:12:D4:DA:D1:0F Authority key identifier: 87:5E:C7:2E:46:F2:CD:16:3F:06:B8:22:E7:04:12:9A:EF:E3:19:10 Certificate issuer: /CN=A917C716/serialNumber=875EC72E46F2CD163F06B822E704129AEFE31910 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h17HLkbyzRY_Brgi5wQSmu_jGRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft Manifest number: 04D9 Signing time: Mon 02 Mar 2026 00:23:45 +0000 Manifest this update: Mon 02 Mar 2026 00:23:43 +0000 Manifest next update: Mon 09 Mar 2026 00:23:43 +0000 Files and hashes: 1: h17HLkbyzRY_Brgi5wQSmu_jGRA.crl (hash: 29NxNetgku3Sbc/B9ScbgYIdiEJcNVg7SoWhh19Hazw=) 2: 9BC8AC96555C11F0AF866966C4F9AE02.roa (hash: 7XzmkN2DLLb46lM9Dts1BCuPWrVmzVCUR26P5kPn0Qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.crl rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h17HLkbyzRY_Brgi5wQSmu_jGRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:23:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C716, serialNumber=875EC72E46F2CD163F06B822E704129AEFE31910 Validity Not Before: Mar 2 00:23:43 2026 GMT Not After : Mar 9 00:23:43 2026 GMT Subject: CN=69a4d891-e8eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:a6:2e:72:d9:10:bb:d9:fc:f8:96:24:2c:59: 18:0f:3f:35:f8:9d:0d:82:ac:b3:28:83:d6:45:e2: 76:56:d4:7c:04:74:e0:4a:b0:e8:49:f6:9d:76:5d: a9:e7:7e:85:7d:21:fc:ad:47:96:1b:b4:2a:f0:55: e0:d1:b1:1a:91:62:f3:cb:a4:20:18:77:ab:9e:b4: 4a:14:a7:77:48:22:6b:0c:e6:48:b7:dd:89:c7:f8: 8c:70:d5:59:31:e1:0d:24:07:0a:65:ef:f1:df:9c: d4:82:fb:44:7d:33:d3:a2:6d:6b:2a:ad:c0:41:f4: fa:02:f8:13:f4:0d:ab:31:30:21:49:8b:f9:c7:e6: 95:87:da:5e:17:d3:6d:3e:d4:a2:82:60:4b:ee:b0: 62:bc:ec:24:64:2c:bf:e8:30:af:1a:cb:15:99:87: 6f:f6:d9:f6:dc:bd:ad:f2:4b:9d:f6:02:37:f7:67: aa:7e:3f:77:75:bb:44:5a:65:33:bf:5c:89:3f:a7: 2a:e1:d3:9e:43:91:66:34:0f:6b:f2:12:3b:b9:4f: 83:25:c8:26:64:87:d7:d2:2d:02:20:27:98:7a:ab: 35:40:5c:fc:09:a1:76:0a:9b:34:e3:40:11:2c:7a: 3f:1c:58:4e:3f:17:d3:2a:78:dc:77:ff:4e:76:2e: c4:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:FF:E7:E0:26:88:07:50:E8:F2:9C:49:68:B5:13:12:D4:DA:D1:0F X509v3 Authority Key Identifier: keyid:87:5E:C7:2E:46:F2:CD:16:3F:06:B8:22:E7:04:12:9A:EF:E3:19:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h17HLkbyzRY_Brgi5wQSmu_jGRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/h17HLkbyzRY_Brgi5wQSmu_jGRA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:9c:26:96:e2:7c:21:57:d1:f5:9a:4f:83:a6:89:77:19:4a: 90:cd:89:d8:2c:d3:3e:a1:22:0d:e7:3a:67:6b:b4:4b:10:a0: 93:13:ab:f4:38:2e:50:b2:ff:7a:6e:bf:63:64:ab:d6:f6:1c: b6:29:49:28:b9:c0:54:89:17:22:0a:b9:fa:05:2a:63:44:80: b7:5e:76:a9:08:dc:53:46:a7:23:46:97:33:c0:df:8e:ee:70: 4b:d4:5c:e2:72:24:47:60:79:52:ce:d1:98:f0:07:66:a1:08: 8b:9d:f3:d3:48:c7:48:a8:6a:64:14:a2:c3:4c:85:78:49:d8: 6f:3a:16:f9:85:d7:57:c3:58:f4:6a:b7:01:33:3c:31:f8:62: eb:4c:4f:16:6a:d3:7d:a7:d5:a4:f9:21:2d:64:30:f6:0a:49: e8:e4:9a:ac:9d:88:8d:85:29:ea:e9:34:3e:3c:58:d5:d3:19: ce:f0:d3:9e:3c:68:7f:55:60:c6:05:a6:3a:7b:5d:5f:8a:f1: c6:a0:89:48:48:bb:17:3f:24:e9:45:33:5f:32:a4:9b:63:16: d0:7e:0a:05:ac:02:f2:82:5c:43:71:a0:3f:b9:f2:2f:ff:a8: 6f:01:ad:73:9e:ec:1d:eb:4e:8c:96:39:42:68:c0:bb:ef:e8: 65:18:5b:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3MTYxMTAvBgNVBAUTKDg3NUVDNzJFNDZGMkNEMTYzRjA2QjgyMkU3MDQxMjlB RUZFMzE5MTAwHhcNMjYwMzAyMDAyMzQzWhcNMjYwMzA5MDAyMzQzWjAYMRYwFAYD VQQDEw02OWE0ZDg5MS1lOGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA86YuctkQu9n8+JYkLFkYDz81+J0NgqyzKIPWReJ2VtR8BHTgSrDoSfaddl2p 536FfSH8rUeWG7Qq8FXg0bEakWLzy6QgGHernrRKFKd3SCJrDOZIt92Jx/iMcNVZ MeENJAcKZe/x35zUgvtEfTPTom1rKq3AQfT6AvgT9A2rMTAhSYv5x+aVh9peF9Nt PtSigmBL7rBivOwkZCy/6DCvGssVmYdv9tn23L2t8kud9gI392eqfj93dbtEWmUz v1yJP6cq4dOeQ5FmNA9r8hI7uU+DJcgmZIfX0i0CICeYeqs1QFz8CaF2Cps040AR LHo/HFhOPxfTKnjcd/9Odi7EUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJX/5+Am iAdQ6PKcSWi1ExLU2tEPMB8GA1UdIwQYMBaAFIdexy5G8s0WPwa4IucEEprv4xkQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzcxNi80REI5Q0FDNDE0 MDIxMUVEQjk2NjM0MTVDNEY5QUUwMi9oMTdITGtieXpSWV9CcmdpNXdRU211X2pH UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxN0hMa2J5elJZX0JyZ2k1d1FTbXVfakdSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzcxNi80REI5Q0FDNDE0MDIxMUVEQjk2NjM0MTVDNEY5QUUwMi9oMTdITGtieXpS WV9CcmdpNXdRU211X2pHUkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi5wmluJ8IVfR9ZpPg6aJdxlKkM2J2CzTPqEiDec6Z2u0SxCgkxOr9DguULL/ em6/Y2Sr1vYctilJKLnAVIkXIgq5+gUqY0SAt152qQjcU0anI0aXM8Dfju5wS9Rc 4nIkR2B5Us7RmPAHZqEIi53z00jHSKhqZBSiw0yFeEnYbzoW+YXXV8NY9Gq3ATM8 Mfhi60xPFmrTfafVpPkhLWQw9gpJ6OSarJ2IjYUp6uk0PjxY1dMZzvDTnjxof1Vg xgWmOntdX4rxxqCJSEi7Fz8k6UUzXzKkm2MW0H4KBawC8oJcQ3GgP7nyL/+obwGt c57sHetOjJY5QmjAu+/oZRhbjA== -----END CERTIFICATE-----Generated at Mon Mar 2 14:43:54 2026 by rpki-client