$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: akNnD7sUAgYRHOAtw3xKg7DhnvyhsI50BMbSOm7HQ2Q= Subject key identifier: 82:31:0A:E6:0B:C2:DC:34:A3:0E:01:1A:AD:BC:AF:12:48:E3:43:A1 Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 0275 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 026A Signing time: Sun 01 Mar 2026 02:50:11 +0000 Manifest this update: Sun 01 Mar 2026 02:50:10 +0000 Manifest next update: Sun 08 Mar 2026 02:50:10 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: x+A7xlda7PG6LYRO3EiMOZ3mGk/D2BrSOgT6MRHbBco=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: GVOUC4MKrbnvUTv2uNe1nX2ZCHFSF3noXHkFVbRSj6s=) 3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: TvPsjBYv8YD+UyZFhknSKE2zr2NFlk+AOah7BYv6Tqw=) 4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: ZTaTX92DSueBqzm60yPdcSvyNPa7rDdgCWzUtpNtxLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 629 (0x275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Mar 1 02:50:10 2026 GMT Not After : Mar 8 02:50:10 2026 GMT Subject: CN=69a3a963-f403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:13:7f:d6:c5:03:4f:a9:ed:6e:cb:a0:90:e1: 3b:7a:a1:37:81:c6:c5:90:37:7c:c3:94:98:1a:20: 0a:15:3a:14:63:ab:e9:ab:07:db:b4:75:dd:6e:89: be:46:a5:c3:ec:89:f2:d7:e8:d9:57:43:af:66:b1: 65:5d:ea:cd:46:dc:8e:48:8f:67:74:8d:d1:63:89: 5b:47:f5:9c:5a:4a:52:02:ee:d4:e5:48:99:87:1f: 17:b0:83:0b:89:3e:39:0f:ea:27:ca:bf:ae:f0:f1: 5e:78:93:78:5e:82:fc:14:de:e1:6f:8e:fd:a9:0f: 26:ac:23:0c:8a:39:ac:70:e4:73:1f:cb:8f:16:81: 73:3a:d2:ed:9e:85:63:23:2a:40:f4:b2:c9:cb:d1: 1f:20:72:77:d6:1f:90:91:f5:c5:63:73:2e:cc:cc: d6:6c:80:ef:99:ab:74:96:70:c9:d5:e8:d7:f6:2b: 75:be:86:26:e4:2d:5d:2b:83:ca:09:83:ab:f8:b0: 90:b6:9f:05:89:92:96:be:a6:c4:ae:97:47:c1:5f: 0b:3b:c7:bd:eb:b9:be:20:31:c6:7c:33:fb:d2:d6: 1f:2a:45:dd:e6:fc:97:d6:94:7d:6d:71:e8:1d:2c: b9:72:52:e1:74:9f:41:df:21:da:47:8d:29:2b:a4: e4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:31:0A:E6:0B:C2:DC:34:A3:0E:01:1A:AD:BC:AF:12:48:E3:43:A1 X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:f6:62:ce:6f:09:41:50:27:1b:4d:d9:14:e5:cc:8f:7a:7b: da:ce:15:e5:65:26:4e:0b:62:1a:fc:08:d5:5f:e7:e1:82:89: 8d:2b:39:ad:a3:a0:47:51:42:5a:0a:7d:8e:1e:0d:a4:b9:a1: c2:23:3e:eb:37:a8:2f:3a:ec:11:e7:15:bc:80:89:9b:9e:64: bf:bb:01:eb:f5:97:72:a0:a3:8b:26:80:38:75:12:44:a3:be: 72:a6:68:fb:26:25:5f:6b:8b:ea:3d:e0:ac:2f:4b:6d:31:e1: e1:9d:30:ad:c6:49:ba:5a:b9:6a:e7:66:a2:19:4c:e7:80:ad: a7:75:b7:df:9e:fe:9c:69:15:f9:f4:e3:fc:d7:87:7d:fe:df: 0c:30:3d:39:81:20:e0:8f:41:d3:df:fc:85:16:33:5f:41:ee: 4e:08:33:9d:c4:30:25:78:4a:8c:19:ba:b0:d7:d6:7d:a0:88: 4d:59:67:f8:6a:c4:fb:14:64:68:30:07:e6:46:f8:6f:d6:8f: 12:f5:fb:b5:3c:59:42:2a:ad:6c:be:94:d6:9a:59:8e:49:06: 27:5f:11:92:e3:0a:0b:42:9a:69:53:f7:a5:dd:9f:3e:2b:44: b1:f0:a1:85:e0:8e:66:77:86:4d:ed:c3:23:11:50:1f:28:15: 9a:bf:e7:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjYwMzAxMDI1MDEwWhcNMjYwMzA4MDI1MDEwWjAYMRYwFAYD VQQDDA02OWEzYTk2My1mNDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnRN/1sUDT6ntbsugkOE7eqE3gcbFkDd8w5SYGiAKFToUY6vpqwfbtHXdbom+ RqXD7Iny1+jZV0OvZrFlXerNRtyOSI9ndI3RY4lbR/WcWkpSAu7U5UiZhx8XsIML iT45D+onyr+u8PFeeJN4XoL8FN7hb479qQ8mrCMMijmscORzH8uPFoFzOtLtnoVj IypA9LLJy9EfIHJ31h+QkfXFY3MuzMzWbIDvmat0lnDJ1ejX9it1voYm5C1dK4PK CYOr+LCQtp8FiZKWvqbErpdHwV8LO8e967m+IDHGfDP70tYfKkXd5vyX1pR9bXHo HSy5clLhdJ9B3yHaR40pK6TkfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIIxCuYL wtw0ow4BGq28rxJI40OhMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgPZizm8JQVAnG03ZFOXMj3p72s4V5WUmTgtiGvwI1V/n4YKJjSs5raOgR1FC Wgp9jh4NpLmhwiM+6zeoLzrsEecVvICJm55kv7sB6/WXcqCjiyaAOHUSRKO+cqZo +yYlX2uL6j3grC9LbTHh4Z0wrcZJulq5audmohlM54Ctp3W3357+nGkV+fTj/NeH ff7fDDA9OYEg4I9B09/8hRYzX0HuTggzncQwJXhKjBm6sNfWfaCITVln+GrE+xRk aDAH5kb4b9aPEvX7tTxZQiqtbL6U1ppZjkkGJ18RkuMKC0KaaVP3pd2fPitEsfCh heCOZneGTe3DIxFQHygVmr/ngQ== -----END CERTIFICATE-----Generated at Sun Mar 1 23:56:01 2026 by rpki-client