$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: 1b4Rhx12nihw/Ncu7bFYJVx7fdz/LZXpxg4/3SGRWIY= Subject key identifier: 96:06:B2:EB:88:56:AA:78:F7:9C:61:BC:6C:23:3C:E8:07:0E:04:6D Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 01BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 01B2 Signing time: Sun 01 Mar 2026 04:45:12 +0000 Manifest this update: Sun 01 Mar 2026 04:45:12 +0000 Manifest next update: Sun 08 Mar 2026 04:45:12 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: Ff19baTwe/V2egcJP/EYBYy2C4cw7io/qArdchAJtbI=) 2: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: Dsh7pIT1SQfv6ivkNmsm2ZCHRytBDFAmEgjeRNzC7do=) 3: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: s0CFqQaJE4zfLQbz4CeHwWhJkg8L6CDsaxGgDdisTeI=) 4: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: tQp/nzqfCovKInVuREO99dY4qu3efR3x/X9HpDvqlY0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:45:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: Mar 1 04:45:12 2026 GMT Not After : Mar 8 04:45:12 2026 GMT Subject: CN=69a3c458-c31b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3a:9b:02:ad:8e:80:53:3c:69:5f:ce:be:1c: 7c:e0:73:a8:e3:cf:23:55:8a:0b:36:8f:37:77:17: 8e:3f:18:a8:17:e7:c5:7e:57:7d:fe:58:7c:1b:f9: 07:64:37:35:4c:8d:6a:17:cf:43:ee:eb:ca:0e:07: 6d:d6:f8:6f:2b:96:28:34:d5:90:c0:34:63:77:63: 4d:db:18:80:79:52:16:f2:0d:ad:56:19:2e:62:71: d8:bd:a5:4c:ec:98:71:1b:6a:53:c4:46:ea:9d:9b: 95:08:82:22:4f:7a:f2:84:fc:4d:13:72:53:db:39: 4a:93:92:d7:a7:3f:38:12:83:97:13:4f:99:09:34: 20:8c:12:e2:90:17:05:b7:71:8d:16:48:d6:57:09: 03:c6:c3:d6:b2:7f:0c:1c:07:9c:e9:31:ce:97:37: 12:7f:98:91:1b:d6:16:70:d7:d4:81:69:2b:7b:1e: f1:e2:7b:64:dc:b8:4b:60:93:83:b6:c2:6d:78:ba: f1:3e:e4:1d:3b:9f:5d:d7:5b:65:a2:fe:68:9f:4f: 03:cc:dc:16:71:bc:73:61:86:49:b9:d2:75:c7:7c: 25:37:bd:24:55:37:f2:db:30:17:e9:9b:a9:14:97: d3:80:b2:c3:09:c7:c6:1c:99:d8:9b:c6:c2:e9:01: 0a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:06:B2:EB:88:56:AA:78:F7:9C:61:BC:6C:23:3C:E8:07:0E:04:6D X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:68:2f:5f:b2:a1:6b:8b:d4:9b:92:a9:f3:10:3a:64:e2:c1: f3:03:95:d4:8e:73:4f:c6:ee:bc:b5:05:07:3a:99:0a:1f:6a: f4:e9:52:b6:92:99:c3:a8:ac:e6:75:37:b2:97:38:00:0d:ca: b3:ed:42:d9:d7:ee:14:65:c2:92:74:32:fb:6c:ac:e5:31:6f: ea:c7:6e:c3:b9:ba:80:31:c4:b8:e4:bd:86:5c:9f:ea:43:b4: ab:2e:d2:81:4c:28:25:98:99:ee:66:c1:82:4f:9b:52:cb:ea: 31:6e:4d:a2:c0:64:a2:23:2f:9c:d7:a6:55:29:72:e6:68:69: 43:6c:69:f1:74:3a:76:73:37:86:0f:2f:77:bb:c9:d3:15:17: c6:b9:88:cc:78:1d:7c:2f:9a:72:9f:30:f1:8f:09:33:0e:71: 3a:ae:4e:e3:45:68:d2:26:97:af:ba:7f:51:9e:cb:8b:fc:ac: 78:25:ea:7c:a5:2c:dc:a2:78:6f:90:54:fd:e5:3a:3f:c2:01: 0a:71:09:04:4d:69:89:23:a6:91:fd:41:e2:fa:3e:8f:6f:fc: 6b:f4:52:2d:8c:04:07:f0:ba:db:fe:92:8d:09:e9:d4:f4:1d: 90:80:9f:6d:10:57:92:d3:15:c4:96:e3:db:0f:06:a5:e9:8b: f0:d8:f2:c4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjYwMzAxMDQ0NTEyWhcNMjYwMzA4MDQ0NTEyWjAYMRYwFAYD VQQDDA02OWEzYzQ1OC1jMzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTqbAq2OgFM8aV/Ovhx84HOo488jVYoLNo83dxeOPxioF+fFfld9/lh8G/kH ZDc1TI1qF89D7uvKDgdt1vhvK5YoNNWQwDRjd2NN2xiAeVIW8g2tVhkuYnHYvaVM 7JhxG2pTxEbqnZuVCIIiT3ryhPxNE3JT2zlKk5LXpz84EoOXE0+ZCTQgjBLikBcF t3GNFkjWVwkDxsPWsn8MHAec6THOlzcSf5iRG9YWcNfUgWkrex7x4ntk3LhLYJOD tsJteLrxPuQdO59d11tlov5on08DzNwWcbxzYYZJudJ1x3wlN70kVTfy2zAX6Zup FJfTgLLDCcfGHJnYm8bC6QEKeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJYGsuuI Vqp495xhvGwjPOgHDgRtMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaWgvX7Kha4vUm5Kp8xA6ZOLB8wOV1I5zT8buvLUFBzqZCh9q9OlStpKZw6is 5nU3spc4AA3Ks+1C2dfuFGXCknQy+2ys5TFv6sduw7m6gDHEuOS9hlyf6kO0qy7S gUwoJZiZ7mbBgk+bUsvqMW5NosBkoiMvnNemVSly5mhpQ2xp8XQ6dnM3hg8vd7vJ 0xUXxrmIzHgdfC+acp8w8Y8JMw5xOq5O40Vo0iaXr7p/UZ7Li/yseCXqfKUs3KJ4 b5BU/eU6P8IBCnEJBE1piSOmkf1B4vo+j2/8a/RSLYwEB/C62/6SjQnp1PQdkICf bRBXktMVxJbj2w8GpemL8NjyxA== -----END CERTIFICATE-----Generated at Sun Mar 1 23:11:47 2026 by rpki-client