$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft File: CDWHSXi6MJ7X2kZz53OdkyLyYps.mft (raw, json) Hash identifier: woxF3ckeNioRpuRW7kL4jg25ZQRe2vGu+26IkgFSQJo= Subject key identifier: 45:92:CB:F4:29:62:AE:1D:A6:38:07:37:36:1B:3E:35:5B:D7:57:97 Authority key identifier: 08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B Certificate issuer: /CN=A917E00F/serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft Manifest number: D5 Signing time: Mon 02 Mar 2026 00:26:52 +0000 Manifest this update: Mon 02 Mar 2026 00:26:50 +0000 Manifest next update: Mon 09 Mar 2026 00:26:50 +0000 Files and hashes: 1: CDWHSXi6MJ7X2kZz53OdkyLyYps.crl (hash: QKGqRkDHnQ1E6J1OJ5dJINXZJeLI3VfDhSJKKP9RLSI=) 2: 2DA549EAE23E11EFB267422EC4F9AE02.roa (hash: Mr9U/6ZYvZu9qU4Dm1rrpvinPfnT7chjtNPRoJwGxK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B Validity Not Before: Mar 2 00:26:50 2026 GMT Not After : Mar 9 00:26:50 2026 GMT Subject: CN=69a4d94b-968b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e5:1f:0d:25:60:3b:82:d6:2d:33:28:18:ca: 16:e4:4f:5e:f5:9f:ae:b2:61:03:ea:28:22:cd:8b: c2:81:e3:57:8b:98:de:bf:e6:ad:dc:f5:89:eb:39: c4:93:33:fd:4f:25:23:e3:5c:a5:50:63:31:8a:86: 1f:e3:72:34:51:7f:82:17:9c:d7:c8:f5:f1:71:49: ca:97:55:3e:d5:6e:98:3a:25:75:e1:93:33:94:c2: 83:1d:ee:d0:09:40:d4:37:aa:36:63:8d:98:7f:c9: 3f:61:b5:a8:18:91:2b:29:4d:de:89:e1:f7:8b:01: b7:a6:27:e9:86:e6:ca:97:12:38:0e:07:88:1d:e2: ba:dc:ae:3d:70:9f:bf:9f:42:79:9c:94:81:63:40: aa:b5:ce:eb:bf:8b:f2:a8:17:a2:4b:46:8c:e4:ef: e2:dc:8e:0d:4d:13:b3:14:c6:2f:ea:f8:c5:8c:59: 11:bd:0d:6e:18:e2:7e:b7:6b:6e:8c:d8:9f:7f:7d: 36:56:52:dc:44:6b:d1:61:c9:04:a8:d7:8c:a4:f3: 0e:c7:0d:90:16:34:1d:9b:3b:9f:42:6b:59:29:7b: 66:8a:2b:fa:59:20:e8:93:d9:db:51:6d:26:5f:98: a3:2d:51:f4:b7:45:7f:3c:87:c6:23:a3:6d:95:46: 22:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:92:CB:F4:29:62:AE:1D:A6:38:07:37:36:1B:3E:35:5B:D7:57:97 X509v3 Authority Key Identifier: keyid:08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:ad:c8:4e:ac:be:6f:f6:3d:3f:3b:8a:6b:1b:ee:94:45:d2: 75:62:0e:b2:40:58:33:c1:f9:95:6f:a3:a8:3b:20:1e:6d:45: 75:6a:a8:0c:fc:26:a5:a6:7d:28:97:72:ac:e5:ca:fe:47:c4: c8:00:ba:7e:4d:02:43:87:b8:ad:31:6f:6e:59:f5:f3:dc:a8: 66:6b:ee:7d:6e:9e:c0:1b:be:03:66:5f:f3:71:99:2e:46:e1: ba:62:5c:00:0a:1f:ec:28:63:e0:4c:16:21:61:ad:a6:ce:ca: 7e:7b:ff:c3:91:27:48:17:8c:21:94:8f:ce:b1:1b:55:f4:05: 20:83:b4:89:6c:f4:82:8c:99:bc:26:2a:cf:ca:81:95:25:a6: 50:0d:93:18:2e:d7:de:aa:15:be:ed:0d:13:86:78:43:0c:85: 76:e3:3e:2e:47:23:ef:f4:b7:a5:4c:b7:34:08:3a:d7:7f:7c: 8e:06:1d:c8:35:58:87:6c:e5:3e:b8:f9:e1:0c:58:49:3e:2b: 86:6f:20:f2:fb:4b:9b:ca:31:6d:ff:0d:b3:67:15:45:8b:d8: b3:b4:0d:0a:b1:d9:82:8b:6c:a0:58:7d:95:3f:b3:46:f0:d0: f1:49:92:40:c8:4f:ff:fd:9c:95:ad:cb:6f:ec:1f:d4:b3:30: 6a:59:10:10 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDA4MzU4NzQ5NzhCQTMwOUVEN0RBNDY3M0U3NzM5RDkz MjJGMjYyOUIwHhcNMjYwMzAyMDAyNjUwWhcNMjYwMzA5MDAyNjUwWjAYMRYwFAYD VQQDEw02OWE0ZDk0Yi05NjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm+UfDSVgO4LWLTMoGMoW5E9e9Z+usmED6igizYvCgeNXi5jev+at3PWJ6znE kzP9TyUj41ylUGMxioYf43I0UX+CF5zXyPXxcUnKl1U+1W6YOiV14ZMzlMKDHe7Q CUDUN6o2Y42Yf8k/YbWoGJErKU3eieH3iwG3pifphubKlxI4DgeIHeK63K49cJ+/ n0J5nJSBY0Cqtc7rv4vyqBeiS0aM5O/i3I4NTROzFMYv6vjFjFkRvQ1uGOJ+t2tu jNiff302VlLcRGvRYckEqNeMpPMOxw2QFjQdmzufQmtZKXtmiiv6WSDok9nbUW0m X5ijLVH0t0V/PIfGI6NtlUYiowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEWSy/Qp Yq4dpjgHNzYbPjVb11eXMB8GA1UdIwQYMBaAFAg1h0l4ujCe19pGc+dznZMi8mKb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi83RDJCMURGMEQ3 RDAxMUVGOUVGQzkxMERDNEY5QUUwMi9DRFdIU1hpNk1KN1gya1p6NTNPZGt5THlZ cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NEV0hTWGk2TUo3WDJrWno1M09ka3lMeVlwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi83RDJCMURGMEQ3RDAxMUVGOUVGQzkxMERDNEY5QUUwMi9DRFdIU1hpNk1K N1gya1p6NTNPZGt5THlZcHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiK3ITqy+b/Y9PzuKaxvulEXSdWIOskBYM8H5lW+jqDsgHm1FdWqoDPwmpaZ9 KJdyrOXK/kfEyAC6fk0CQ4e4rTFvbln189yoZmvufW6ewBu+A2Zf83GZLkbhumJc AAof7Chj4EwWIWGtps7Kfnv/w5EnSBeMIZSPzrEbVfQFIIO0iWz0goyZvCYqz8qB lSWmUA2TGC7X3qoVvu0NE4Z4QwyFduM+Lkcj7/S3pUy3NAg61398jgYdyDVYh2zl Prj54QxYST4rhm8g8vtLm8oxbf8Ns2cVRYvYs7QNCrHZgotsoFh9lT+zRvDQ8UmS QMhP//2cla3Lb+wf1LMwalkQEA== -----END CERTIFICATE-----Generated at Mon Mar 2 03:43:03 2026 by rpki-client