$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft File: HsQsG2nhb183xz2Bv5-rH0ukIyk.mft (raw, json) Hash identifier: m7I/SUOdUxwdTPct9HYuMjKDj0jxgRmYUMczebKbwd4= Subject key identifier: FA:AE:8D:08:EC:A6:A6:86:B4:0D:70:A0:3F:60:CB:CD:04:0D:53:1A Authority key identifier: 1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 Certificate issuer: /CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Certificate serial: 0B26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft Manifest number: 0AAF Signing time: Mon 02 Mar 2026 00:35:31 +0000 Manifest this update: Mon 02 Mar 2026 00:35:29 +0000 Manifest next update: Mon 09 Mar 2026 00:35:29 +0000 Files and hashes: 1: HsQsG2nhb183xz2Bv5-rH0ukIyk.crl (hash: p9ClW1bE0JwuLskILFmg9A4+/Ua8JdhbHyTlUfx6IK8=) 2: 6C68485C5A1D11EFA9989052C4F9AE02.roa (hash: gKdZCMFVp9SI3rESOVHwnsGLBaaJOZqgNabpfZNzfAY=) 3: A81364AC4B0611EF91534014C4F9AE02.roa (hash: 7nc0FQIuWt5iAf4cd70KYSyea0Ow8OKJ3jyzk3RRDos=) 4: D42F0D06B51611EEADC7924BC4F9AE02.roa (hash: kqyC7MEnLT1Hy4mgRDx5xjtCxGf3dNpztnPLrCKEqKY=) 5: D9AFDBC2400111EFBB30C475C4F9AE02.roa (hash: HrZGFhV7ij/MniPPdnAUj9aXz0QqgUpU7Kf1yG1SMQ0=) 6: A7A72BF24B0611EF91534014C4F9AE02.roa (hash: RMfV3v+YMKrEsv4J/X9BeNndnRE9fJpMKXXZWqx+jrk=) 7: 73DC26744B0611EF8698EB13C4F9AE02.roa (hash: QbjBpA8yO+Th7aJxPrDQfS3hz6qzzWk2P0LycOFlE0A=) 8: B8D18508EDE011EF88407251C4F9AE02.roa (hash: NdZ92kK8LP+A4ucoxj2Mn/YHm/Cj8wuqKbvHDIwNWi0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:35:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2854 (0xb26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661, serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Validity Not Before: Mar 2 00:35:29 2026 GMT Not After : Mar 9 00:35:29 2026 GMT Subject: CN=69a4db52-5807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:50:4b:71:56:5a:c0:7d:9f:ca:22:cf:5e:0e: 62:d1:01:1f:17:de:f1:12:f0:d7:fa:36:69:e3:2c: 4d:2c:ea:4d:3e:c1:f0:1d:53:7f:bb:46:96:7b:de: 5f:c3:55:ea:12:42:d1:07:ff:8b:2f:74:92:b1:fd: a7:6f:ec:be:54:50:d3:c3:b7:6e:e1:8c:d3:a8:2d: 16:4e:c1:ee:13:13:fc:17:ba:83:ac:81:fb:2c:21: 8e:36:fc:f9:e3:b1:9a:c8:b1:e7:30:03:03:17:da: 53:18:93:c4:d0:29:d1:62:3f:4d:8f:15:44:ac:3d: b3:43:f5:df:f1:f4:79:b1:2d:73:c5:0e:41:02:ce: d2:da:49:f8:ff:37:54:a3:ba:4d:d8:c1:a3:90:65: 87:f7:70:51:3f:1e:a5:1c:41:42:ef:f6:07:72:08: b2:1f:ab:e1:c1:73:f1:4d:0a:20:66:c5:2e:e4:80: 87:02:07:4c:24:51:76:4f:5c:36:0a:b2:ae:49:3f: c9:18:53:c1:55:d5:41:84:36:f1:1b:5c:03:cb:08: 5f:1f:c4:47:fa:ab:ba:1e:db:f0:48:fb:bc:6a:b5: bd:bb:62:ca:05:77:28:a7:e1:f7:c4:1f:e8:f1:40: a2:31:79:78:8a:01:09:d4:09:39:86:c1:79:70:b6: 8b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:AE:8D:08:EC:A6:A6:86:B4:0D:70:A0:3F:60:CB:CD:04:0D:53:1A X509v3 Authority Key Identifier: keyid:1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:9f:29:3f:a7:04:18:64:f5:5e:66:12:8d:5b:ad:c8:7e:26: 81:d7:26:8a:6e:e3:da:93:45:67:d7:f1:6e:64:fd:01:88:85: cc:bb:c5:6f:1f:7b:52:89:d3:a2:9e:7c:e1:e3:78:36:64:df: 40:e2:1e:bd:be:80:b3:84:d2:46:35:13:72:ee:79:ea:c5:de: 23:3f:0d:9e:87:7e:ce:78:72:62:77:c8:2b:bb:d9:ae:1d:d2: df:ce:2c:f2:31:eb:42:71:0c:98:a9:d9:2b:f5:21:74:f5:26: 3c:01:6a:2a:55:ea:87:76:45:39:d7:c1:87:c5:ca:73:07:22: 7f:b7:72:8d:bb:51:b3:e9:ad:60:7e:a3:6d:68:a2:f7:9c:55: 45:88:67:88:eb:39:29:13:18:27:2c:6d:bc:a0:04:12:e1:5d: 25:37:ed:a9:a3:9a:78:2c:20:7e:9b:00:bf:98:b2:6d:d0:e6: a6:2c:af:5a:56:d5:34:12:da:93:7f:71:b9:d0:fd:78:5d:fa: 97:b5:07:8e:d1:bf:63:24:06:47:26:66:3a:a8:4a:af:92:57: c6:d2:dc:6c:40:45:78:ec:04:2d:8b:4f:b8:96:4e:ac:ba:a4: 2f:81:0e:9c:21:01:71:d7:1d:cc:38:58:58:1b:99:b6:bd:ec: ae:76:e7:25 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDFFQzQyQzFCNjlFMTZGNUYzN0M3M0Q4MUJGOUZBQjFG NEJBNDIzMjkwHhcNMjYwMzAyMDAzNTI5WhcNMjYwMzA5MDAzNTI5WjAYMRYwFAYD VQQDEw02OWE0ZGI1Mi01ODA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkFBLcVZawH2fyiLPXg5i0QEfF97xEvDX+jZp4yxNLOpNPsHwHVN/u0aWe95f w1XqEkLRB/+LL3SSsf2nb+y+VFDTw7du4YzTqC0WTsHuExP8F7qDrIH7LCGONvz5 47GayLHnMAMDF9pTGJPE0CnRYj9NjxVErD2zQ/Xf8fR5sS1zxQ5BAs7S2kn4/zdU o7pN2MGjkGWH93BRPx6lHEFC7/YHcgiyH6vhwXPxTQogZsUu5ICHAgdMJFF2T1w2 CrKuST/JGFPBVdVBhDbxG1wDywhfH8RH+qu6HtvwSPu8arW9u2LKBXcop+H3xB/o 8UCiMXl4igEJ1Ak5hsF5cLaLvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPqujQjs pqaGtA1woD9gy80EDVMaMB8GA1UdIwQYMBaAFB7ELBtp4W9fN8c9gb+fqx9LpCMp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wQkJEOUVBMjgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIxODN4ejJCdjUtckgwdWtJ eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hzUXNHMm5oYjE4M3h6MkJ2NS1ySDB1a0l5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzY2MS8wQkJEOUVBMjgzNkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIx ODN4ejJCdjUtckgwdWtJeWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlJ8pP6cEGGT1XmYSjVutyH4mgdcmim7j2pNFZ9fxbmT9AYiFzLvFbx97UonT op584eN4NmTfQOIevb6As4TSRjUTcu556sXeIz8Nnod+znhyYnfIK7vZrh3S384s 8jHrQnEMmKnZK/UhdPUmPAFqKlXqh3ZFOdfBh8XKcwcif7dyjbtRs+mtYH6jbWii 95xVRYhniOs5KRMYJyxtvKAEEuFdJTftqaOaeCwgfpsAv5iybdDmpiyvWlbVNBLa k39xudD9eF36l7UHjtG/YyQGRyZmOqhKr5JXxtLcbEBFeOwELYtPuJZOrLqkL4EO nCEBcdcdzDhYWBuZtr3srnbnJQ== -----END CERTIFICATE-----Generated at Mon Mar 2 13:25:10 2026 by rpki-client