$ rpki-client -vvf rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.mft File: if0nxQZ7TPQSKW_rps5tgxGFgAs.mft (raw, json) Hash identifier: u6Kkri3Y1FvsMfgcLV0o1CmsJEoNoReeCvBmX6jsoMY= Subject key identifier: B0:37:76:F5:01:7F:51:4F:C0:AA:A3:0C:3D:64:C5:53:12:2C:40:65 Authority key identifier: 89:FD:27:C5:06:7B:4C:F4:12:29:6F:EB:A6:CE:6D:83:11:85:80:0B Certificate issuer: /CN=A9185344/serialNumber=89FD27C5067B4CF412296FEBA6CE6D831185800B Certificate serial: 354A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if0nxQZ7TPQSKW_rps5tgxGFgAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.mft Manifest number: 3523 Signing time: Mon 02 Mar 2026 01:11:51 +0000 Manifest this update: Mon 02 Mar 2026 01:11:49 +0000 Manifest next update: Mon 09 Mar 2026 01:11:49 +0000 Files and hashes: 1: if0nxQZ7TPQSKW_rps5tgxGFgAs.crl (hash: TR92AmmxPaD6ZCsuoQL9umFamfPximdQUKkpZJPHkGE=) 2: 438B5C5E2CD411EC8884B41FC4F9AE02.roa (hash: O1SYsuH+O9dWW6LgLbXKRQezQd0QTg2T+y3+yaSnx9w=) 3: 7D2A30D22CD111ECBE97C117C4F9AE02.roa (hash: 7OGe5FP4HdWym7t2hyScbAIwjXWKAD0qUD149+q/PGY=) 4: 4453BC8A2CD411EC8884B41FC4F9AE02.roa (hash: z7Wg/yYEe/naNZajz7OC8CRPdjQ8pKf0KALnyOn87iA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.crl rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if0nxQZ7TPQSKW_rps5tgxGFgAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:11:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13642 (0x354a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185344, serialNumber=89FD27C5067B4CF412296FEBA6CE6D831185800B Validity Not Before: Mar 2 01:11:49 2026 GMT Not After : Mar 9 01:11:49 2026 GMT Subject: CN=69a4e3d7-7acf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0f:0b:55:4e:b9:f3:7e:7f:e8:b9:32:fe:ac: ad:4b:be:99:e4:1e:c5:6f:09:d2:47:d5:9f:da:cb: 15:f4:98:8a:6a:98:11:f1:57:2a:b6:0d:72:f0:65: 59:a8:8e:43:d6:f5:0e:ee:8c:d9:34:ec:3e:8d:f3: b6:fb:7b:e4:ed:90:07:85:47:d3:ba:26:3b:fb:db: 73:15:78:89:36:67:13:af:69:f9:a0:5f:18:4a:22: c4:e1:71:24:ff:9d:77:63:c0:5c:34:d0:b7:7d:7b: 0e:0d:97:26:46:11:bc:80:e8:ed:74:02:a7:ba:47: 24:63:e3:85:a7:7a:18:92:90:fb:1c:03:b5:7e:fd: a4:73:31:77:7d:0d:ee:cd:8e:6e:97:2e:d6:59:44: 0b:96:31:4a:2f:13:fa:0f:f5:34:0b:53:66:42:5b: dd:f9:74:34:f6:25:d3:cc:1d:c0:95:b7:15:b8:70: 58:2e:cc:86:97:c1:27:22:b1:4d:23:4c:77:3e:ca: b5:d3:8a:89:e6:e5:21:3e:f8:9e:55:9e:20:0d:f9: c4:1c:73:b8:0e:8f:2e:17:24:c5:9b:71:7a:37:2e: d4:8e:cc:02:1b:34:78:d8:c2:65:86:cf:cc:86:11: 06:9a:a6:83:2b:97:39:69:fd:e7:09:50:fe:37:76: f1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:37:76:F5:01:7F:51:4F:C0:AA:A3:0C:3D:64:C5:53:12:2C:40:65 X509v3 Authority Key Identifier: keyid:89:FD:27:C5:06:7B:4C:F4:12:29:6F:EB:A6:CE:6D:83:11:85:80:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if0nxQZ7TPQSKW_rps5tgxGFgAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:90:3c:28:49:04:0e:f0:b4:b6:a4:1f:99:fc:7b:64:5c:42: e9:e2:39:45:fd:09:34:5d:f0:57:b1:a9:d5:09:c0:87:a1:ab: e8:bb:9e:c0:b5:49:59:50:6b:e3:3f:48:ce:6c:48:26:d7:09: 48:29:0d:11:87:4c:b5:b8:9d:0e:73:a5:7e:31:b8:59:db:e5: a0:53:4c:85:3c:5a:9f:2d:9c:45:43:18:4b:db:77:bc:50:1d: b2:a4:2a:f9:88:d8:0d:af:a3:dd:53:e9:7e:79:59:69:16:8a: 5a:94:de:2e:ef:d6:40:56:08:32:54:3b:0c:c9:71:cf:b9:83: 87:8e:74:bb:1c:e8:8b:88:31:53:50:58:3f:1d:bc:12:06:21: 6d:5a:c2:2b:05:e6:f8:0f:04:ad:e8:e7:ff:f3:06:b5:03:6e: f5:6a:bf:45:df:ae:1e:f2:19:80:9c:61:05:e4:c2:0d:34:94: 61:1a:de:4b:cf:ee:94:d3:10:02:72:33:33:ab:f2:33:52:bd: ea:ae:aa:78:62:1b:a5:39:03:2a:5f:18:fb:9b:ea:15:54:0b: 93:19:c1:ae:cc:90:42:5a:5a:50:f8:bc:45:1b:49:d0:a4:d1: 17:67:6e:0a:1a:0f:21:8b:49:f7:ec:43:7c:59:37:c1:fa:a8: a7:b5:de:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUzNDQxMTAvBgNVBAUTKDg5RkQyN0M1MDY3QjRDRjQxMjI5NkZFQkE2Q0U2RDgz MTE4NTgwMEIwHhcNMjYwMzAyMDExMTQ5WhcNMjYwMzA5MDExMTQ5WjAYMRYwFAYD VQQDEw02OWE0ZTNkNy03YWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQ8LVU65835/6Lky/qytS76Z5B7FbwnSR9Wf2ssV9JiKapgR8Vcqtg1y8GVZ qI5D1vUO7ozZNOw+jfO2+3vk7ZAHhUfTuiY7+9tzFXiJNmcTr2n5oF8YSiLE4XEk /513Y8BcNNC3fXsODZcmRhG8gOjtdAKnukckY+OFp3oYkpD7HAO1fv2kczF3fQ3u zY5uly7WWUQLljFKLxP6D/U0C1NmQlvd+XQ09iXTzB3AlbcVuHBYLsyGl8EnIrFN I0x3Psq104qJ5uUhPvieVZ4gDfnEHHO4Do8uFyTFm3F6Ny7UjswCGzR42MJlhs/M hhEGmqaDK5c5af3nCVD+N3bxXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLA3dvUB f1FPwKqjDD1kxVMSLEBlMB8GA1UdIwQYMBaAFIn9J8UGe0z0Eilv66bObYMRhYAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTM0NC81MTVDQUJFMDFE QTExMUUyQjJDRDZEOTMwOEIwMkNEMi9pZjBueFFaN1RQUVNLV19ycHM1dGd4R0Zn QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lmMG54UVo3VFBRU0tXX3JwczV0Z3hHRmdBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTM0NC81MTVDQUJFMDFEQTExMUUyQjJDRDZEOTMwOEIwMkNEMi9pZjBueFFaN1RQ UVNLV19ycHM1dGd4R0ZnQXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAepA8KEkEDvC0tqQfmfx7ZFxC6eI5Rf0JNF3wV7Gp1QnAh6Gr6LuewLVJWVBr 4z9IzmxIJtcJSCkNEYdMtbidDnOlfjG4WdvloFNMhTxany2cRUMYS9t3vFAdsqQq +YjYDa+j3VPpfnlZaRaKWpTeLu/WQFYIMlQ7DMlxz7mDh450uxzoi4gxU1BYPx28 EgYhbVrCKwXm+A8Erejn//MGtQNu9Wq/Rd+uHvIZgJxhBeTCDTSUYRreS8/ulNMQ AnIzM6vyM1K96q6qeGIbpTkDKl8Y+5vqFVQLkxnBrsyQQlpaUPi8RRtJ0KTRF2du ChoPIYtJ9+xDfFk3wfqop7XeQw== -----END CERTIFICATE-----Generated at Mon Mar 2 07:28:50 2026 by rpki-client