$ rpki-client -vvf rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft File: hNqJJ83vUDOW9ScgGU65MSCdPzo.mft (raw, json) Hash identifier: 49FfCa49KDMHScuXH9c/8qtl5tkxVMI3sfw+eq+bzgc= Subject key identifier: 95:F6:02:19:10:F4:ED:9C:71:89:A8:F6:7D:61:7C:53:C9:EB:7C:48 Authority key identifier: 84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A Certificate issuer: /CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Certificate serial: 039D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft Manifest number: 0390 Signing time: Sun 01 Mar 2026 01:38:28 +0000 Manifest this update: Sun 01 Mar 2026 01:38:27 +0000 Manifest next update: Sun 08 Mar 2026 01:38:27 +0000 Files and hashes: 1: hNqJJ83vUDOW9ScgGU65MSCdPzo.crl (hash: DsxG0gTKLUBwU/pgx818ktpQKwd3UOmO0rofzPyvj4E=) 2: 3EABAF20D8E311EC8F274181C4F9AE02.roa (hash: TALo4JQUiKSZxQ9NVztSC91wJSFbAU3zG8zmLKHUS/o=) 3: 00F0B7EEA87411EF88F5C638C4F9AE02.roa (hash: jCGpkTOREB2CZphvzKOSraYTHWPq9LTO8zozaxcqQy8=) 4: 6910E952A86A11EF89DA976DC4F9AE02.roa (hash: l1w8+0ex2ah/bqLhlgu70ROEZ3rYXLDAefLnWRzXKeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 925 (0x39d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F051, serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Validity Not Before: Mar 1 01:38:27 2026 GMT Not After : Mar 8 01:38:27 2026 GMT Subject: CN=69a39894-a7cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8c:fb:15:9f:73:91:6f:1d:5d:19:64:b2:6f: ef:db:10:0d:ba:96:0e:0e:8b:c1:a8:57:8c:33:29: 82:b6:61:f9:f1:c2:c3:c8:3f:a6:7e:56:da:f3:0b: 28:e6:6a:89:bc:00:50:f5:ad:ce:72:bc:13:e5:7b: 04:be:2c:d7:7d:bb:71:b0:56:97:12:9c:24:f1:16: d0:5c:cd:a7:a0:b3:a1:2a:d9:f3:3a:ad:46:31:cc: 97:18:d2:af:10:49:f1:67:10:bb:0b:24:18:af:f7: 76:e9:32:c5:eb:83:77:87:f4:2c:52:b4:19:3d:93: 56:c4:31:3d:d0:d5:01:10:0d:27:9e:83:90:c0:7e: 2e:10:fd:36:e2:85:57:23:85:8e:bb:9e:2a:6b:36: f1:0e:c4:9a:d8:5f:95:e1:ce:9f:4a:a7:85:01:67: 6a:86:d2:03:8e:ec:ff:3f:c7:57:be:a9:e2:46:9f: ac:2d:eb:44:13:5d:20:c4:e8:9d:32:87:7e:68:14: 23:bd:09:6b:b2:17:be:57:3d:4c:82:38:80:6d:ad: dc:ee:7e:04:a7:30:af:d8:d1:91:01:de:ba:37:08: 59:92:79:4e:de:39:7d:82:99:85:28:f5:3b:43:c8: ca:f2:d8:5a:d6:50:0c:f3:b6:86:53:24:73:35:ab: 73:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F6:02:19:10:F4:ED:9C:71:89:A8:F6:7D:61:7C:53:C9:EB:7C:48 X509v3 Authority Key Identifier: keyid:84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:39:9b:c1:e2:78:b2:84:dc:1d:7b:37:fd:b4:77:e5:ba:cb: 85:ae:5b:79:65:c1:8b:4a:b7:04:3d:f4:ab:fa:53:27:79:9c: 0b:0f:a5:50:bf:54:7b:77:d6:ab:eb:7b:3e:53:79:3c:9e:0b: f5:3a:95:27:c5:6a:29:85:08:2a:f7:e1:e1:64:9d:fa:1c:d6: f2:2b:30:11:2d:24:2e:76:51:12:56:f6:1d:44:4a:99:98:96: ca:15:2e:58:7a:f2:eb:86:17:b0:71:6c:92:66:26:aa:b2:b7: 55:2b:85:a8:d7:d2:35:ac:27:cc:61:90:46:40:12:00:94:75: 27:4f:d6:fa:3f:d6:e8:98:58:9b:f4:e6:c0:91:8c:1a:91:2a: f3:c5:47:26:8d:27:ca:eb:35:01:fb:70:66:38:5e:6d:a1:34: 71:24:3a:b0:1b:e8:e7:60:05:bf:b6:9d:44:06:5d:c8:b8:91: b8:79:2c:86:f6:86:3e:63:fc:85:58:58:ff:a2:ce:33:09:fa: ed:16:ff:d0:71:00:10:b5:9f:5d:6c:4d:7f:a7:18:ec:d5:ad: 02:66:a1:9f:8b:02:d7:4e:9f:24:e5:20:5a:d4:30:82:2f:bb: 7f:a5:fa:31:63:a0:9c:63:de:d8:f7:16:4e:d6:89:31:8b:29: 28:b8:b9:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwNTExMTAvBgNVBAUTKDg0REE4OTI3Q0RFRjUwMzM5NkY1MjcyMDE5NEVCOTMx MjA5RDNGM0EwHhcNMjYwMzAxMDEzODI3WhcNMjYwMzA4MDEzODI3WjAYMRYwFAYD VQQDDA02OWEzOTg5NC1hN2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Yz7FZ9zkW8dXRlksm/v2xANupYODovBqFeMMymCtmH58cLDyD+mflba8wso 5mqJvABQ9a3OcrwT5XsEvizXfbtxsFaXEpwk8RbQXM2noLOhKtnzOq1GMcyXGNKv EEnxZxC7CyQYr/d26TLF64N3h/QsUrQZPZNWxDE90NUBEA0nnoOQwH4uEP024oVX I4WOu54qazbxDsSa2F+V4c6fSqeFAWdqhtIDjuz/P8dXvqniRp+sLetEE10gxOid Mod+aBQjvQlrshe+Vz1MgjiAba3c7n4EpzCv2NGRAd66NwhZknlO3jl9gpmFKPU7 Q8jK8tha1lAM87aGUyRzNatz9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJX2AhkQ 9O2ccYmo9n1hfFPJ63xIMB8GA1UdIwQYMBaAFITaiSfN71AzlvUnIBlOuTEgnT86 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjA1MS81QUFEOUQ3RUQ4 REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVET1c5U2NnR1U2NU1TQ2RQ em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOcUpKODN2VURPVzlTY2dHVTY1TVNDZFB6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjA1MS81QUFEOUQ3RUQ4REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVE T1c5U2NnR1U2NU1TQ2RQem8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgzmbweJ4soTcHXs3/bR35brLha5beWXBi0q3BD30q/pTJ3mcCw+lUL9Ue3fW q+t7PlN5PJ4L9TqVJ8VqKYUIKvfh4WSd+hzW8iswES0kLnZRElb2HURKmZiWyhUu WHry64YXsHFskmYmqrK3VSuFqNfSNawnzGGQRkASAJR1J0/W+j/W6JhYm/TmwJGM GpEq88VHJo0nyus1AftwZjhebaE0cSQ6sBvo52AFv7adRAZdyLiRuHkshvaGPmP8 hVhY/6LOMwn67Rb/0HEAELWfXWxNf6cY7NWtAmahn4sC106fJOUgWtQwgi+7f6X6 MWOgnGPe2PcWTtaJMYspKLi5Aw== -----END CERTIFICATE-----Generated at Sun Mar 1 21:53:42 2026 by rpki-client