$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft File: iyhQBa2gBz4MCUttpqOLtR__oaQ.mft (raw, json) Hash identifier: CaklkidmnusiQUGxo7jnOJYRynFQuyag0+CZ2jeW5mw= Subject key identifier: D8:22:E4:F0:8E:BC:25:56:2C:5F:0E:90:A9:91:D3:C5:E2:B6:47:42 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 0462 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft Manifest number: 044C Signing time: Sun 01 Mar 2026 01:01:32 +0000 Manifest this update: Sun 01 Mar 2026 01:01:32 +0000 Manifest next update: Sun 08 Mar 2026 01:01:32 +0000 Files and hashes: 1: iyhQBa2gBz4MCUttpqOLtR__oaQ.crl (hash: BMoz6hr7iTxRQbnLAoNXyKtfI9XRzuQHf/ViUiLtgVQ=) 2: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (hash: zSMfmkgKLmaOH/Z5+adjQakDvYWDWTMPU8hfhZvkbj0=) 3: 989BBF70904F11EC8B118911C4F9AE02.roa (hash: RKQILnRRvCXVpjuIajvwymCOUk+ETJiuoTq9T/X4+u8=) 4: 58C00854905211EC90E6100FC4F9AE02.roa (hash: ICWn7rVUWMERLeucUPzwR9zXjQJf5LFZ3N1nvCMFLw8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1122 (0x462) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B, serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Mar 1 01:01:32 2026 GMT Not After : Mar 8 01:01:32 2026 GMT Subject: CN=69a38fec-7f97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6e:2b:8b:c0:27:07:d8:3d:12:c6:a1:69:e1: 0b:ab:2f:fb:d5:8e:6e:a5:bf:d4:69:14:9f:dd:64: e6:d6:87:c9:95:a9:45:7e:ff:b4:67:0b:9e:dc:af: 93:29:dc:1e:67:6f:0e:d8:5d:8a:ce:3d:b5:c7:a7: f1:ff:c1:5e:d2:40:de:6e:42:66:f8:f6:16:3d:d5: 0a:58:5a:48:cb:01:10:56:df:df:fb:b8:e5:ea:ed: 5c:25:da:c8:0e:d5:b9:35:e7:86:a6:69:3b:5f:07: 8a:e4:8b:22:d3:b9:16:81:76:de:23:9d:c4:09:b1: 07:d3:4a:cf:bc:38:5b:d6:09:23:79:b1:f1:d5:43: 96:59:3c:18:eb:21:c1:71:bb:4e:cf:87:e2:b6:39: db:74:8a:cc:e4:8d:bc:2c:ef:9b:93:3d:15:08:00: b8:c5:68:a0:d2:46:92:2c:66:80:40:90:ab:40:4f: 44:56:8d:61:05:e8:f2:ac:84:38:e9:a2:e3:f9:b6: 72:2f:a7:8f:3c:da:b3:85:f0:ad:a4:ce:6a:71:ff: da:25:fc:66:fa:54:b7:cf:dd:f7:c3:53:94:f9:34: ed:63:4e:92:de:b2:7e:87:4c:cd:b1:1f:74:43:63: 2c:26:e0:25:41:e1:87:89:28:21:2d:95:bf:d6:fb: cb:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:22:E4:F0:8E:BC:25:56:2C:5F:0E:90:A9:91:D3:C5:E2:B6:47:42 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:7d:5a:3e:1f:e8:21:69:16:2c:b6:49:f2:0f:91:69:03:72: 68:af:a7:23:5e:10:e8:11:83:72:47:67:b3:af:d6:65:97:50: e9:b3:ba:72:b5:b2:4d:69:a3:07:2f:9d:c0:2b:19:a6:d7:09: b8:df:23:a9:d6:e6:48:77:38:21:e5:4c:ad:64:a3:33:1a:cf: 66:06:b6:1c:28:ad:a5:e4:fd:57:25:10:08:2c:3c:7d:a3:08: 7a:34:5c:46:01:d6:61:a8:c2:d2:35:0d:92:96:2e:20:3b:41: 56:53:0a:d8:6a:0f:7b:d7:94:da:4b:01:33:ac:e0:16:03:43: aa:07:6e:56:1c:82:5e:9b:34:3f:89:2c:8d:c2:1f:27:f1:c8: a8:b8:47:2c:52:13:18:80:67:b5:ee:c3:a0:a2:01:57:f6:d5: 86:09:19:f4:ca:dd:4b:d0:38:c2:b2:9f:d3:4e:91:e7:ad:61: 0e:0a:6e:6f:7f:c1:52:f5:45:f0:7a:4d:24:34:d5:46:7a:7c: 5c:a9:ff:d3:b9:3c:6a:02:19:69:c0:9d:ad:e8:a6:eb:2f:28: 42:5f:2a:28:bd:fc:93:a4:14:ca:76:a7:dc:65:92:af:8e:a8: e6:1f:38:60:af:94:b2:77:62:10:28:b4:34:88:94:40:c9:d8: f2:22:f1:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjYwMzAxMDEwMTMyWhcNMjYwMzA4MDEwMTMyWjAYMRYwFAYD VQQDDA02OWEzOGZlYy03Zjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsG4ri8AnB9g9EsahaeELqy/71Y5upb/UaRSf3WTm1ofJlalFfv+0Zwue3K+T KdweZ28O2F2Kzj21x6fx/8Fe0kDebkJm+PYWPdUKWFpIywEQVt/f+7jl6u1cJdrI DtW5NeeGpmk7XweK5Isi07kWgXbeI53ECbEH00rPvDhb1gkjebHx1UOWWTwY6yHB cbtOz4fitjnbdIrM5I28LO+bkz0VCAC4xWig0kaSLGaAQJCrQE9EVo1hBejyrIQ4 6aLj+bZyL6ePPNqzhfCtpM5qcf/aJfxm+lS3z933w1OU+TTtY06S3rJ+h0zNsR90 Q2MsJuAlQeGHiSghLZW/1vvLCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNgi5PCO vCVWLF8OkKmR08XitkdCMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDE0Qi85NEM4OThDQzhGRTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6 NE1DVXR0cHFPTHRSX19vYVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANn1aPh/oIWkWLLZJ8g+RaQNyaK+nI14Q6BGDckdns6/WZZdQ6bO6crWyTWmj By+dwCsZptcJuN8jqdbmSHc4IeVMrWSjMxrPZga2HCitpeT9VyUQCCw8faMIejRc RgHWYajC0jUNkpYuIDtBVlMK2GoPe9eU2ksBM6zgFgNDqgduVhyCXps0P4ksjcIf J/HIqLhHLFITGIBnte7DoKIBV/bVhgkZ9MrdS9A4wrKf006R561hDgpub3/BUvVF 8HpNJDTVRnp8XKn/07k8agIZacCdreim6y8oQl8qKL38k6QUynan3GWSr46o5h84 YK+UsndiECi0NIiUQMnY8iLxBg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:35:23 2026 by rpki-client