$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: 8RdONbJzFrfbT9Ua5Pf9bQV0vyJ8BTbPZDBvbv2GwOw= Subject key identifier: 8F:B9:D4:9B:12:AC:73:86:B7:95:9D:50:9E:8D:DD:3D:EB:E3:95:74 Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 35A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 356A Signing time: Sat 28 Feb 2026 14:28:11 +0000 Manifest this update: Sat 28 Feb 2026 14:28:10 +0000 Manifest next update: Sat 07 Mar 2026 14:28:10 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: SuzWCotuPCGWpsdALb0PFVstJkxpy5xMZRpNjOqkYrA=) 2: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: I5t/9d1FpDA1nSsUY9DqmVb9YbxmBSs4f9ZYU3gw97M=) 3: ACACA8C6D5A611F0A08DD435C4F9AE02.roa (hash: hHttSTcz4sc0GeHHtjzVUHJueVZpvan7qBcnImekb/A=) 4: 665D242CD57411F0AA8EA47EC4F9AE02.roa (hash: jlRKh0AqqSJcv7ZlHryhL9ROThf6gXk5uarBFSX2CCA=) 5: B16ED608D4A311F09760561DC4F9AE02.roa (hash: 4bme3z3RaW959NyFbC3ntFLSKnx0xhbAsriDuvXK1Ac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 14:28:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13735 (0x35a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Feb 28 14:28:10 2026 GMT Not After : Mar 7 14:28:10 2026 GMT Subject: CN=69a2fb7b-f4c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:27:f9:92:91:a4:41:59:ee:ff:b2:0f:61:89: 79:ec:4a:4f:ca:b0:df:3b:58:49:61:be:7d:b2:35: 6d:16:81:86:07:87:db:0c:e9:80:b0:52:5a:b5:1a: d1:b2:7c:f0:e3:34:3f:21:9e:20:65:64:92:14:98: 92:68:f7:81:b5:d2:3c:a2:ad:18:71:20:02:dd:a6: d0:72:24:d4:a2:24:41:a9:c4:8d:bb:22:dc:c5:32: 9d:d8:ca:5b:b2:c6:7b:a4:26:1b:4d:fe:d4:37:d3: 8b:fb:fd:7c:6c:a1:4f:66:63:dd:9b:ac:a2:ff:96: 45:9e:63:7a:e9:40:11:56:9e:9e:be:2a:e2:b2:71: 84:a4:4b:fa:c5:a2:09:44:75:e6:da:94:62:40:c2: 53:a3:fa:c3:74:a9:45:bc:49:47:84:fc:32:a5:32: 9a:1f:28:47:69:c0:04:ad:3c:d4:d9:c9:86:f7:9a: b4:9b:82:e7:e0:1c:80:e3:a3:4a:19:41:00:44:d5: 36:45:4d:49:1f:86:22:30:b8:2a:bd:86:b3:89:07: 25:ec:60:ba:54:81:a6:85:0e:dc:e2:70:31:b1:9e: 59:fb:24:a7:a6:7f:af:bd:fc:16:fb:8c:18:00:a5: e8:b5:93:85:b5:77:03:a2:cb:9e:6b:19:26:41:73: 23:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:B9:D4:9B:12:AC:73:86:B7:95:9D:50:9E:8D:DD:3D:EB:E3:95:74 X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:57:4b:60:01:74:bd:c5:02:94:68:8d:07:c2:1a:d7:9e:d6: 67:b6:1c:b7:9c:7e:3c:77:0a:cc:1e:63:6e:2a:f1:57:e1:1a: 49:62:5b:a8:5c:87:d0:ec:cc:28:a7:ec:b1:1a:58:31:f0:ee: 75:a2:57:eb:bd:4d:76:f8:0b:7e:28:48:36:a9:21:09:1c:57: 99:f6:dc:43:6a:be:e5:56:eb:80:5d:7b:63:73:0a:c7:3f:bc: 6e:9a:26:64:7c:38:ad:73:72:ce:41:15:d2:68:84:14:d4:6c: ce:01:12:96:79:ab:1a:9a:ce:a6:ea:27:8a:07:08:34:fb:7a: 54:f6:4b:7f:77:1c:50:6f:be:23:db:5b:fd:16:90:d0:82:5a: fc:53:1c:2f:32:18:79:78:6c:fe:2b:0d:9c:0d:d5:d9:be:73: 11:8b:d4:23:ca:5d:ca:61:31:48:44:5a:b7:fd:8e:a8:0d:b8: 21:a8:c9:7b:f2:92:89:54:c2:f5:95:20:be:25:77:b3:a1:94: 63:e4:96:a1:bc:ef:97:79:bf:05:9e:15:77:95:24:08:42:27: 87:02:2a:6a:7c:89:3a:1a:ae:83:ce:12:d4:4e:53:37:ca:64: 8b:f9:a1:1e:c8:c9:e3:36:84:3e:fe:25:81:91:f4:cf:c1:89: fa:d9:00:1f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjYwMjI4MTQyODEwWhcNMjYwMzA3MTQyODEwWjAYMRYwFAYD VQQDDA02OWEyZmI3Yi1mNGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCf5kpGkQVnu/7IPYYl57EpPyrDfO1hJYb59sjVtFoGGB4fbDOmAsFJatRrR snzw4zQ/IZ4gZWSSFJiSaPeBtdI8oq0YcSAC3abQciTUoiRBqcSNuyLcxTKd2Mpb ssZ7pCYbTf7UN9OL+/18bKFPZmPdm6yi/5ZFnmN66UARVp6evirisnGEpEv6xaIJ RHXm2pRiQMJTo/rDdKlFvElHhPwypTKaHyhHacAErTzU2cmG95q0m4Ln4ByA46NK GUEARNU2RU1JH4YiMLgqvYaziQcl7GC6VIGmhQ7c4nAxsZ5Z+ySnpn+vvfwW+4wY AKXotZOFtXcDosueaxkmQXMj8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI+51JsS rHOGt5WdUJ6N3T3r45V0MB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU1dLYAF0vcUClGiNB8Ia157WZ7Yct5x+PHcKzB5jbirxV+EaSWJbqFyH0OzM KKfssRpYMfDudaJX671NdvgLfihINqkhCRxXmfbcQ2q+5VbrgF17Y3MKxz+8bpom ZHw4rXNyzkEV0miEFNRszgESlnmrGprOpuonigcINPt6VPZLf3ccUG++I9tb/RaQ 0IJa/FMcLzIYeXhs/isNnA3V2b5zEYvUI8pdymExSERat/2OqA24IajJe/KSiVTC 9ZUgviV3s6GUY+SWobzvl3m/BZ4Vd5UkCEInhwIqanyJOhqug84S1E5TN8pki/mh HsjJ4zaEPv4lgZH0z8GJ+tkAHw== -----END CERTIFICATE-----Generated at Sun Mar 1 20:17:31 2026 by rpki-client