$ rpki-client -vvf rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft File: RS-rvfCd335V_Q-dvd1CePRPuIE.mft (raw, json) Hash identifier: 40CD3TEpPwXBm52M4GIIechclVC0aBRBCTjQ2I4ev0c= Subject key identifier: 03:40:5C:12:45:9D:94:6F:CC:AC:67:17:7E:7A:3A:4D:98:A2:4F:87 Authority key identifier: 45:2F:AB:BD:F0:9D:DF:7E:55:FD:0F:9D:BD:DD:42:78:F4:4F:B8:81 Certificate issuer: /CN=A917E5DC/serialNumber=452FABBDF09DDF7E55FD0F9DBDDD4278F44FB881 Certificate serial: 05FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft Manifest number: 05DC Signing time: Sat 28 Feb 2026 23:37:24 +0000 Manifest this update: Sat 28 Feb 2026 23:37:23 +0000 Manifest next update: Sat 07 Mar 2026 23:37:23 +0000 Files and hashes: 1: RS-rvfCd335V_Q-dvd1CePRPuIE.crl (hash: c0na/ra9UlhVKhsD8diwNEfbp9lzQOql0xF+kkaqbVI=) 2: C41221884B6011F092B79129C4F9AE02.roa (hash: eGLsPA8l5HSe8OMlZISwwbWr457lzrzWilQ6RLRmTFw=) 3: C611EE6CBCF711EEA90A1F1DC4F9AE02.roa (hash: FI9oAFt4bbmfkfNugwVmJuOBB5qgqHjbNqhtoYKstlw=) 4: C54C42C04D7611EEA69CE262C4F9AE02.roa (hash: cQVRpmnpZjVgZOpeG1cfP2mAEFnkPSvH2kAIgCs2zTA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.crl rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 23:37:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1532 (0x5fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E5DC, serialNumber=452FABBDF09DDF7E55FD0F9DBDDD4278F44FB881 Validity Not Before: Feb 28 23:37:23 2026 GMT Not After : Mar 7 23:37:23 2026 GMT Subject: CN=69a37c34-43cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:2f:3c:85:02:63:b0:b3:73:79:dd:03:c6:ac: 37:cb:81:dd:dc:66:66:48:b4:69:92:fa:52:74:b2: 0a:b1:8e:87:6c:8c:02:f8:a3:0b:b9:a2:1b:f0:3f: d8:96:33:24:dc:4c:44:dc:16:3c:52:90:30:71:2c: c7:00:c5:a9:09:88:52:36:6f:90:0b:e7:4e:45:4e: d9:ec:95:06:e4:d4:04:e2:24:c3:6d:d9:a9:2d:c6: 86:eb:ef:8a:ad:35:87:93:7c:eb:58:b1:83:e5:15: c4:50:d0:b6:8e:0e:dd:4c:9d:a7:4d:b5:b0:a0:7c: e4:a4:95:3e:3e:97:cc:e7:00:0e:d1:a3:70:02:27: 3e:5f:c5:9a:f5:91:9a:8c:dd:41:20:7c:4d:97:9c: 23:40:cc:53:76:35:98:8a:f5:81:c3:de:5a:d3:30: 95:12:4c:84:40:09:c9:ff:81:85:27:13:c6:cc:c5: 26:6c:ba:4e:be:dc:8f:6c:fc:90:6a:12:65:1b:b7: 1b:09:fc:99:b7:93:8c:3e:cf:10:65:a0:e4:af:2f: 14:45:86:31:6c:56:e5:1e:ad:eb:ca:67:fc:23:ce: 94:36:08:fd:86:4d:60:b5:68:73:d2:66:07:8c:a5: 83:6b:01:08:ca:27:b1:1a:17:fc:ea:8f:7c:ff:55: 5a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:40:5C:12:45:9D:94:6F:CC:AC:67:17:7E:7A:3A:4D:98:A2:4F:87 X509v3 Authority Key Identifier: keyid:45:2F:AB:BD:F0:9D:DF:7E:55:FD:0F:9D:BD:DD:42:78:F4:4F:B8:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:97:5d:80:ab:18:06:7c:ec:94:42:fa:4d:23:5d:fd:ad:6f: 66:fe:aa:a7:81:f2:87:e0:6c:5c:36:e6:8c:02:20:37:84:f5: 5b:c9:a4:fc:6b:7a:10:ef:c3:07:b7:1d:56:3a:a5:42:df:2f: 7d:a7:86:a3:f3:99:ff:94:7d:ab:7c:4d:f0:0a:ea:78:8f:78: a5:f6:9a:34:c1:85:9b:d0:af:ac:e9:a8:ca:70:3d:19:c4:f8: d7:17:91:7d:8a:34:8c:fc:ff:74:f3:d9:57:e7:48:98:26:ac: 99:0d:a5:72:f4:83:80:d4:d0:49:1a:df:b9:15:1c:a8:f2:6f: dc:7d:d4:87:00:05:9e:f9:b3:5c:04:e5:a5:88:bb:23:e5:0f: 93:cd:80:09:85:4e:0f:af:20:71:f0:9f:db:3c:48:0b:21:7b: f3:9e:23:4e:bc:9d:49:ae:08:88:ef:3e:8e:d0:8e:8f:5f:4c: f1:af:ae:d2:f3:a2:60:a1:84:72:dd:0d:46:fa:32:d3:35:41: b8:dd:9f:ca:94:29:34:13:3f:68:d0:ad:7b:82:8d:92:b7:2f: 9f:01:9a:91:87:35:d7:89:04:4e:fd:4a:b0:e2:7b:04:f2:de: 9e:91:e6:01:f2:29:19:8c:09:37:3d:d2:63:08:e7:5a:c0:4f: d1:53:62:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U1REMxMTAvBgNVBAUTKDQ1MkZBQkJERjA5RERGN0U1NUZEMEY5REJEREQ0Mjc4 RjQ0RkI4ODEwHhcNMjYwMjI4MjMzNzIzWhcNMjYwMzA3MjMzNzIzWjAYMRYwFAYD VQQDDA02OWEzN2MzNC00M2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjy88hQJjsLNzed0Dxqw3y4Hd3GZmSLRpkvpSdLIKsY6HbIwC+KMLuaIb8D/Y ljMk3ExE3BY8UpAwcSzHAMWpCYhSNm+QC+dORU7Z7JUG5NQE4iTDbdmpLcaG6++K rTWHk3zrWLGD5RXEUNC2jg7dTJ2nTbWwoHzkpJU+PpfM5wAO0aNwAic+X8Wa9ZGa jN1BIHxNl5wjQMxTdjWYivWBw95a0zCVEkyEQAnJ/4GFJxPGzMUmbLpOvtyPbPyQ ahJlG7cbCfyZt5OMPs8QZaDkry8URYYxbFblHq3rymf8I86UNgj9hk1gtWhz0mYH jKWDawEIyiexGhf86o98/1VaVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFANAXBJF nZRvzKxnF356Ok2Yok+HMB8GA1UdIwQYMBaAFEUvq73wnd9+Vf0Pnb3dQnj0T7iB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTVEQy9CQkUyQjUwMkY4 RUIxMUVCQkVGNUFBMzdDNEY5QUUwMi9SUy1ydmZDZDMzNVZfUS1kdmQxQ2VQUlB1 SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JTLXJ2ZkNkMzM1Vl9RLWR2ZDFDZVBSUHVJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTVEQy9CQkUyQjUwMkY4RUIxMUVCQkVGNUFBMzdDNEY5QUUwMi9SUy1ydmZDZDMz NVZfUS1kdmQxQ2VQUlB1SUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOZddgKsYBnzslEL6TSNd/a1vZv6qp4Hyh+BsXDbmjAIgN4T1W8mk/Gt6EO/D B7cdVjqlQt8vfaeGo/OZ/5R9q3xN8ArqeI94pfaaNMGFm9CvrOmoynA9GcT41xeR fYo0jPz/dPPZV+dImCasmQ2lcvSDgNTQSRrfuRUcqPJv3H3UhwAFnvmzXATlpYi7 I+UPk82ACYVOD68gcfCf2zxICyF7854jTrydSa4IiO8+jtCOj19M8a+u0vOiYKGE ct0NRvoy0zVBuN2fypQpNBM/aNCte4KNkrcvnwGakYc114kETv1KsOJ7BPLenpHm AfIpGYwJNz3SYwjnWsBP0VNiiw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:24:50 2026 by rpki-client