$ rpki-client -vvf rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft File: iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft (raw, json) Hash identifier: hozktpKeu2oJgzW31kdbAgKH5NjCELK0CTbq/26B8Mc= Subject key identifier: 21:78:AF:AE:5A:C8:A5:C4:81:31:AA:B4:E0:B2:4F:E5:C4:BF:4D:C0 Authority key identifier: 88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 Certificate issuer: /CN=A919D588/serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft Manifest number: 67 Signing time: Sun 01 Mar 2026 09:18:15 +0000 Manifest this update: Sun 01 Mar 2026 09:18:15 +0000 Manifest next update: Sun 08 Mar 2026 09:18:15 +0000 Files and hashes: 1: iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl (hash: +Gk8GOXvCn/DoF1ELrUTOlEmUwxH9okamByHMhektr8=) 2: 8AF73C7E7BF511F0BEBF8326C4F9AE02.roa (hash: ccXunp3OE2ONSoYTGcr2m1hcygin6LHeeNQEO7if+44=) 3: 8A65797E7BF511F0BEBF8326C4F9AE02.roa (hash: 8VEPDf924YuQ0JrYCDPzrjF2qm9rSo7AZ2xnXGQmqpY=) 4: 8B58F72A7BF511F0BEBF8326C4F9AE02.roa (hash: DPudtrZt3zDLn6cOKt8G2uNXGPQUskKpTDxbAvt9zzA=) 5: 5C7DE69E7EFD11F0827C5F1DC4F9AE02.roa (hash: LhJsIUDxJjf34uwAXx8g7B6lkG4erRS20bGVNhkO1Ek=) 6: 8938B9DA7BF511F0BEBF8326C4F9AE02.roa (hash: vQ9ge67AKzH4HNbVsuxX3Mwi95vAo6POwUTMCo0fB8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:18:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D588, serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Validity Not Before: Mar 1 09:18:15 2026 GMT Not After : Mar 8 09:18:15 2026 GMT Subject: CN=69a40457-85b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:81:f1:6f:4b:c3:5e:62:51:e2:43:f0:32:88: a8:7b:f7:d7:63:52:88:71:0d:66:33:81:a4:7a:8a: d1:80:6b:e0:6c:db:1c:a2:99:34:fe:99:e8:23:6d: 20:c2:91:c4:9f:4b:22:8f:40:7d:53:dd:7e:e3:7b: ba:b0:4f:97:18:b4:cf:2c:02:b7:fd:cf:18:2d:8b: ec:d6:ea:ed:93:52:cc:54:a0:48:a6:8e:f8:a3:d6: 8f:d3:55:8a:09:7a:14:6e:eb:c5:96:5d:23:c5:a6: b5:e4:7a:9f:c3:d8:f8:07:40:a0:13:ea:5c:7e:03: 25:f8:68:fc:35:e7:73:6f:4b:09:08:cc:7b:57:b4: 09:ae:28:39:65:44:6b:79:aa:3a:dd:a1:99:e9:a9: 7d:7e:e5:93:78:19:b6:18:73:ed:18:43:d2:76:a1: 63:70:53:4a:37:62:bf:88:87:a8:0d:fa:69:8b:59: 57:d7:4b:a9:58:20:00:ef:a3:01:0e:79:a0:7c:53: bb:8a:a8:4e:19:10:a9:b9:06:75:31:ca:c6:77:44: 44:bf:28:13:22:ec:da:9e:2a:72:34:e0:56:8c:1a: ed:47:f7:93:0b:2b:00:5c:fd:19:0b:31:a0:a4:e7: 2a:fd:92:c1:73:e4:28:d9:29:8e:c8:f7:eb:07:30: 13:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:78:AF:AE:5A:C8:A5:C4:81:31:AA:B4:E0:B2:4F:E5:C4:BF:4D:C0 X509v3 Authority Key Identifier: keyid:88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:70:22:c8:33:76:8d:42:fc:ba:8c:57:4f:3d:80:e3:44:41: 74:83:40:7d:b5:ee:81:58:10:7b:9b:70:11:46:78:14:4a:bf: bd:bc:e4:4f:73:c8:85:4c:b9:95:16:da:84:78:ec:48:8b:b1: ba:cf:84:e6:ae:0a:ab:3b:f3:24:50:ba:2f:91:af:22:c4:6e: 54:25:f0:02:86:f2:66:72:61:49:c6:23:8d:6c:f6:ff:e5:7c: 29:92:76:2c:83:fe:27:f8:6e:38:08:17:20:c8:dc:8c:19:5f: d2:05:86:60:8c:34:74:17:3e:2a:cb:98:7c:d1:ac:d8:78:9d: b6:12:86:d9:06:00:f9:c0:42:46:1d:7d:57:41:38:29:3a:9c: 25:30:cc:c2:5e:a9:3d:69:0a:e8:0a:e5:71:56:f6:ed:c5:a8: f1:d2:31:80:83:48:98:97:9a:6d:08:4f:7d:27:0f:ff:2a:ac: 5a:6b:28:a5:32:be:1e:f4:4d:4c:96:ac:3d:a4:8e:f2:71:b5: 0c:4a:01:6b:ee:00:63:a7:5f:36:e0:ae:75:3b:8a:03:67:94: 0a:1b:97:67:cf:0b:33:df:2e:ac:8a:c1:9b:83:82:4e:37:0b: d4:62:08:f7:0f:28:69:8b:0a:ed:26:80:9d:e8:1d:76:72:2e: 30:ff:c5:c1 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDU4ODExMC8GA1UEBRMoODgyODU5RDUyMzAxRjAxNTcxRDlENENGOTUzRjQ1RTA3 NUUwOUE5ODAeFw0yNjAzMDEwOTE4MTVaFw0yNjAzMDgwOTE4MTVaMBgxFjAUBgNV BAMTDTY5YTQwNDU3LTg1YjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTgfFvS8NeYlHiQ/AyiKh799djUohxDWYzgaR6itGAa+Bs2xyimTT+megjbSDC kcSfSyKPQH1T3X7je7qwT5cYtM8sArf9zxgti+zW6u2TUsxUoEimjvij1o/TVYoJ ehRu68WWXSPFprXkep/D2PgHQKAT6lx+AyX4aPw153NvSwkIzHtXtAmuKDllRGt5 qjrdoZnpqX1+5ZN4GbYYc+0YQ9J2oWNwU0o3Yr+Ih6gN+mmLWVfXS6lYIADvowEO eaB8U7uKqE4ZEKm5BnUxysZ3RES/KBMi7NqeKnI04FaMGu1H95MLKwBc/RkLMaCk 5yr9ksFz5CjZKY7I9+sHMBONAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUIXivrlrI pcSBMaq04LJP5cS/TcAwHwYDVR0jBBgwFoAUiChZ1SMB8BVx2dTPlT9F4HXgmpgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlENTg4L0JGN0Q1RTc2N0JG MzExRjBBMDVGQUQ4MkM0RjlBRTAyL2lDaFoxU01COEJWeDJkVFBsVDlGNEhYZ21w Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUNoWjFTTUI4QlZ4MmRUUGxUOUY0SFhnbXBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE NTg4L0JGN0Q1RTc2N0JGMzExRjBBMDVGQUQ4MkM0RjlBRTAyL2lDaFoxU01COEJW eDJkVFBsVDlGNEhYZ21wZy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAOcCLIM3aNQvy6jFdPPYDjREF0g0B9te6BWBB7m3ARRngUSr+9vORPc8iFTLmV FtqEeOxIi7G6z4TmrgqrO/MkULovka8ixG5UJfAChvJmcmFJxiONbPb/5XwpknYs g/4n+G44CBcgyNyMGV/SBYZgjDR0Fz4qy5h80azYeJ22EobZBgD5wEJGHX1XQTgp OpwlMMzCXqk9aQroCuVxVvbtxajx0jGAg0iYl5ptCE99Jw//KqxaayilMr4e9E1M lqw9pI7ycbUMSgFr7gBjp1824K51O4oDZ5QKG5dnzwsz3y6sisGbg4JONwvUYgj3 DyhpiwrtJoCd6B12ci4w/8XB -----END CERTIFICATE-----Generated at Sun Mar 1 20:56:15 2026 by rpki-client