$ rpki-client -vvf rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft File: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft (raw, json) Hash identifier: /fbCsLu914TILxPuxpIUYyTFSy11seNNVZAqyXJcNOQ= Subject key identifier: C3:E9:E2:5C:BC:B5:C8:19:9A:0A:DA:61:24:3E:29:3D:E8:EB:B5:1E Authority key identifier: E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 Certificate issuer: /CN=A917F0AF/serialNumber=E114378DA934861469F495D97598E0F00289C330 Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft Manifest number: DA Signing time: Mon 02 Mar 2026 13:12:24 +0000 Manifest this update: Mon 02 Mar 2026 13:12:23 +0000 Manifest next update: Mon 09 Mar 2026 13:12:23 +0000 Files and hashes: 1: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl (hash: 9LdPFyzkvxc++7rmmHG88FpqgmT0PTwlxEw+5KPCCNQ=) 2: 27E5184CCC6211EFA20BEE1BC4F9AE02.roa (hash: x4m5M8TdUipL7o6slEBASzNPQRc6mguoljJR97i4R5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:12:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F0AF, serialNumber=E114378DA934861469F495D97598E0F00289C330 Validity Not Before: Mar 2 13:12:23 2026 GMT Not After : Mar 9 13:12:23 2026 GMT Subject: CN=69a58cb7-831c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5c:da:55:5e:fb:e3:b6:ef:f9:38:16:f2:fd: fe:02:44:b0:9e:39:fd:51:14:5b:7b:8e:d6:96:a6: 68:57:c0:c3:98:d8:5c:13:4f:1b:ec:31:0c:d3:6a: ff:99:a6:19:07:5f:88:0b:92:46:30:1f:09:58:5e: d6:d6:43:2d:ea:e0:05:62:a8:54:33:48:ec:86:ea: 9c:11:06:91:8d:92:4b:22:0c:31:65:fe:79:fd:a0: 23:a1:0c:ac:ab:11:16:72:0a:a0:6e:f7:82:ca:e4: 3c:97:76:3a:b8:7c:14:7d:ed:06:5c:48:2a:25:78: c1:78:13:05:77:88:c8:77:6f:d8:3d:d3:e6:2e:0f: 78:2c:8c:56:86:7f:ed:5b:bf:3a:26:1b:4b:24:b1: 69:6e:67:84:f4:52:27:27:90:dd:bd:82:a6:46:eb: bd:76:3d:a3:0f:26:f7:66:80:bd:d0:96:15:f3:e2: a2:49:72:c3:b4:2f:87:df:00:e0:04:96:08:79:c1: c8:17:12:c3:e2:a8:e6:09:ee:b7:d8:0e:01:72:66: 03:8b:8c:a3:d9:aa:b0:8e:d5:8e:ad:9f:d8:52:fd: 54:1c:84:db:30:a6:ec:68:76:08:36:7c:ff:78:8f: 84:7c:29:5d:ac:49:94:3b:2c:0c:3a:2d:fc:72:b7: df:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E9:E2:5C:BC:B5:C8:19:9A:0A:DA:61:24:3E:29:3D:E8:EB:B5:1E X509v3 Authority Key Identifier: keyid:E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:21:98:24:e3:d3:25:1a:de:ad:41:38:7f:6a:8c:f9:8b:67: 4d:5b:4f:9e:97:e7:e5:83:c3:24:3e:d4:9a:c9:c0:b8:6b:bf: 16:74:63:71:da:36:70:25:02:0d:20:e4:ed:e4:9a:ff:ae:48: 81:54:84:61:82:54:ae:13:42:86:90:2b:d4:89:4a:41:1c:c3: 05:e2:55:e5:1c:64:8a:7f:1e:4a:f1:65:65:da:45:0c:64:09: 3c:de:71:4e:50:54:13:0b:06:be:72:70:f6:f7:a3:01:06:14: 0e:bf:68:8b:ef:ab:6c:00:41:f9:8d:2c:8d:a7:ff:24:4b:36: dd:19:a7:12:c4:a4:01:a3:0b:30:29:0e:9b:5f:8a:39:52:2e: 73:31:f6:93:e1:ed:04:01:f1:30:fa:ef:90:92:12:5f:19:c2: 36:e3:46:57:58:fa:79:28:36:0d:a7:c4:b2:30:51:d4:df:69: c5:8c:f0:d6:1e:eb:04:a6:59:cb:b9:89:8e:fe:d0:b7:40:ea: 79:e7:e2:7d:7e:55:e4:c9:57:84:35:18:89:62:c9:92:53:8b: 5f:98:29:f5:df:4c:7f:84:e5:f2:b9:5e:8e:3a:fc:cf:fb:a8: c6:1c:c4:b8:15:04:3f:40:96:2f:d2:e5:3b:8a:94:26:3b:8b: b5:6e:6c:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwQUYxMTAvBgNVBAUTKEUxMTQzNzhEQTkzNDg2MTQ2OUY0OTVEOTc1OThFMEYw MDI4OUMzMzAwHhcNMjYwMzAyMTMxMjIzWhcNMjYwMzA5MTMxMjIzWjAYMRYwFAYD VQQDEw02OWE1OGNiNy04MzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1zaVV7747bv+TgW8v3+AkSwnjn9URRbe47WlqZoV8DDmNhcE08b7DEM02r/ maYZB1+IC5JGMB8JWF7W1kMt6uAFYqhUM0jshuqcEQaRjZJLIgwxZf55/aAjoQys qxEWcgqgbveCyuQ8l3Y6uHwUfe0GXEgqJXjBeBMFd4jId2/YPdPmLg94LIxWhn/t W786JhtLJLFpbmeE9FInJ5DdvYKmRuu9dj2jDyb3ZoC90JYV8+KiSXLDtC+H3wDg BJYIecHIFxLD4qjmCe632A4BcmYDi4yj2aqwjtWOrZ/YUv1UHITbMKbsaHYINnz/ eI+EfCldrEmUOywMOi38crffKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMPp4ly8 tcgZmgraYSQ+KT3o67UeMB8GA1UdIwQYMBaAFOEUN42pNIYUafSV2XWY4PACicMw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjBBRi8yRDdBN0UwRUND NEYxMUVGQTg5QThGMTRDNEY5QUUwMi80UlEzamFrMGhoUnA5SlhaZFpqZzhBS0p3 ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRSUTNqYWswaGhScDlKWFpkWmpnOEFLSnd6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjBBRi8yRDdBN0UwRUNDNEYxMUVGQTg5QThGMTRDNEY5QUUwMi80UlEzamFrMGho UnA5SlhaZFpqZzhBS0p3ekEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmyGYJOPTJRrerUE4f2qM+YtnTVtPnpfn5YPDJD7UmsnAuGu/FnRjcdo2cCUC DSDk7eSa/65IgVSEYYJUrhNChpAr1IlKQRzDBeJV5Rxkin8eSvFlZdpFDGQJPN5x TlBUEwsGvnJw9vejAQYUDr9oi++rbABB+Y0sjaf/JEs23RmnEsSkAaMLMCkOm1+K OVIuczH2k+HtBAHxMPrvkJISXxnCNuNGV1j6eSg2DafEsjBR1N9pxYzw1h7rBKZZ y7mJjv7Qt0DqeefifX5V5MlXhDUYiWLJklOLX5gp9d9Mf4Tl8rlejjr8z/uoxhzE uBUEP0CWL9LlO4qUJjuLtW5sCA== -----END CERTIFICATE-----Generated at Mon Mar 2 17:45:26 2026 by rpki-client