$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: ionsrUePkPvsreaoqXVpXF4ziCLhCIb+BohSZwOj+TI= Subject key identifier: 53:56:78:61:D4:BA:CF:7C:05:23:97:20:F3:A1:B6:99:F4:F4:E2:40 Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 036C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 0354 Signing time: Sun 01 Mar 2026 01:50:19 +0000 Manifest this update: Sun 01 Mar 2026 01:50:18 +0000 Manifest next update: Sun 08 Mar 2026 01:50:18 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: Xm5t5I9qg6+PacHhfj8cB0z8McUvjOAF3liQiLrhiV0=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: +6obkqNFt0tnKMRz6dRit6ArMoN+fxhvRElw6ROUx6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 876 (0x36c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: Mar 1 01:50:18 2026 GMT Not After : Mar 8 01:50:18 2026 GMT Subject: CN=69a39b5b-be82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:fa:17:d9:de:7b:b6:d0:36:25:9f:88:fa:ab: 6c:15:68:e9:83:05:15:37:3c:19:40:79:a4:2e:94: d6:ce:de:09:c6:75:fd:45:4b:2c:2c:33:ae:cf:d7: e6:d0:e2:25:67:24:a4:bf:28:4d:63:fa:47:6b:9e: ca:ca:b7:d7:f4:b1:55:0f:4a:24:65:7e:69:31:be: 36:75:9c:81:5f:36:e6:ce:9d:ae:7c:da:7d:5b:a3: 0c:9d:15:0b:8f:7f:be:1f:48:9d:88:26:8d:f0:c4: 25:5f:d5:73:bb:96:43:c9:39:43:a4:a7:ba:c8:8f: 89:d2:b8:87:b0:e6:b2:38:a6:7a:67:91:a0:0d:f4: 2d:d3:75:06:d3:75:a2:d8:b0:d6:0d:33:2c:ea:4c: c9:fe:ed:3a:c1:0f:d7:61:0f:91:dd:c9:5d:2c:5f: 81:0d:6d:df:73:27:f0:7e:cd:a9:fd:6c:27:b2:30: a4:fe:69:f9:a4:6f:80:37:75:a0:81:70:b6:24:1e: 85:24:ee:c4:17:bc:47:42:d3:d5:3c:02:3e:e1:d3: a0:18:da:c1:e3:41:f2:7f:ff:5c:ac:1e:e5:4c:4a: 85:6f:b3:8f:29:f9:3a:2b:e8:3e:73:d2:a9:00:c5: 88:cd:b4:c4:41:f6:1e:93:64:8b:b0:fb:5e:4d:77: 4a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:56:78:61:D4:BA:CF:7C:05:23:97:20:F3:A1:B6:99:F4:F4:E2:40 X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:01:28:4e:d7:8b:f2:17:bf:e0:c2:b2:98:62:b3:00:9d:ec: ef:ed:6a:3a:80:84:09:6d:77:16:9f:69:5b:6b:1a:a0:1b:36: d3:c4:57:b5:d7:45:89:80:4e:47:63:4e:89:ae:a3:a4:ba:e0: 10:6a:16:57:c6:34:c9:32:f4:e7:00:0e:2e:2c:ce:05:6a:b6: d3:df:e5:8f:54:96:d2:71:6f:e4:bb:5d:74:60:76:f3:ac:79: e3:e4:3d:c1:3b:9e:ef:a3:1a:c6:c2:20:cb:fe:5d:a6:9c:1c: 80:78:04:3f:6f:68:aa:b6:ac:1f:da:ed:ba:e6:ce:55:f5:f5: 25:91:d8:51:45:1f:ef:5b:29:5a:f7:d1:6d:a6:29:90:70:73: 7f:75:b3:3d:f2:cf:61:0f:6f:94:e6:43:bc:19:6c:b7:5c:2e: 2f:69:b6:7e:34:80:9b:55:16:78:30:ce:25:25:45:b7:46:d5: d6:61:5f:55:93:9f:b8:c6:47:28:09:c8:f6:be:c9:63:eb:08: 8f:38:ae:65:00:c5:47:ab:d5:05:9e:fa:53:7b:79:09:89:a9: 56:70:5a:3a:92:1d:41:a0:36:67:ba:5c:6f:37:0c:52:87:69: 6b:e6:3b:bd:b1:79:38:31:96:32:16:46:69:d3:b1:5f:a5:09: a8:19:78:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjYwMzAxMDE1MDE4WhcNMjYwMzA4MDE1MDE4WjAYMRYwFAYD VQQDDA02OWEzOWI1Yi1iZTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+PoX2d57ttA2JZ+I+qtsFWjpgwUVNzwZQHmkLpTWzt4JxnX9RUssLDOuz9fm 0OIlZySkvyhNY/pHa57KyrfX9LFVD0okZX5pMb42dZyBXzbmzp2ufNp9W6MMnRUL j3++H0idiCaN8MQlX9Vzu5ZDyTlDpKe6yI+J0riHsOayOKZ6Z5GgDfQt03UG03Wi 2LDWDTMs6kzJ/u06wQ/XYQ+R3cldLF+BDW3fcyfwfs2p/WwnsjCk/mn5pG+AN3Wg gXC2JB6FJO7EF7xHQtPVPAI+4dOgGNrB40Hyf/9crB7lTEqFb7OPKfk6K+g+c9Kp AMWIzbTEQfYek2SLsPteTXdKNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFNWeGHU us98BSOXIPOhtpn09OJAMB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALAEoTteL8he/4MKymGKzAJ3s7+1qOoCECW13Fp9pW2saoBs208RXtddFiYBO R2NOia6jpLrgEGoWV8Y0yTL05wAOLizOBWq209/lj1SW0nFv5LtddGB286x54+Q9 wTue76MaxsIgy/5dppwcgHgEP29oqrasH9rtuubOVfX1JZHYUUUf71spWvfRbaYp kHBzf3WzPfLPYQ9vlOZDvBlst1wuL2m2fjSAm1UWeDDOJSVFt0bV1mFfVZOfuMZH KAnI9r7JY+sIjziuZQDFR6vVBZ76U3t5CYmpVnBaOpIdQaA2Z7pcbzcMUodpa+Y7 vbF5ODGWMhZGadOxX6UJqBl4QA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:14:16 2026 by rpki-client