$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft File: vHENBWM8XhGwdEtxrruIriskRuM.mft (raw, json) Hash identifier: cGZrZscA10yNcTXPKGDFpwfaHfdpPLl0WNb5cnWUpGk= Subject key identifier: F2:83:BD:E8:8F:F2:E6:9A:32:B0:75:E9:19:A0:F3:C1:29:C2:BB:3C Authority key identifier: BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 Certificate issuer: /CN=A91AF406/serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Certificate serial: 13D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft Manifest number: 13CA Signing time: Sat 28 Feb 2026 17:00:48 +0000 Manifest this update: Sat 28 Feb 2026 17:00:48 +0000 Manifest next update: Sat 07 Mar 2026 17:00:48 +0000 Files and hashes: 1: vHENBWM8XhGwdEtxrruIriskRuM.crl (hash: ZOuMH9PNhDW1ZT6rKrJ+COFn8kdXBnaM60ZSYduav1E=) 2: C2065F2CA5F311E8B54BF03DC4F9AE02.roa (hash: c/V3Stz0hBoC77cDsx2sOFkExhPVs+UBbA7TaA5YseQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5074 (0x13d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF406, serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Validity Not Before: Feb 28 17:00:48 2026 GMT Not After : Mar 7 17:00:48 2026 GMT Subject: CN=69a31f40-5b4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:87:04:78:51:d9:b8:c6:74:53:b5:65:f4:19: 5c:63:7d:6a:26:01:00:04:76:92:7c:fc:58:f3:9f: 21:4e:56:0b:df:d4:0e:f3:1a:96:0e:c7:31:34:8c: 47:52:31:b5:ef:ac:e3:44:7f:b5:6c:e6:6b:35:ca: f6:11:5a:6a:49:30:5d:f7:62:e5:a6:ff:e0:d6:f7: 4e:27:0b:b9:7c:4a:36:f4:ed:65:a0:05:aa:75:49: 57:32:90:00:6a:38:f2:d1:cf:bd:24:7d:c8:fc:52: ad:c0:12:bd:ec:0a:f2:dc:9b:a6:cb:0a:b8:85:10: cf:c3:da:5b:6e:ff:34:d4:0a:18:c7:c8:80:d6:42: 80:34:56:5a:8e:ec:29:77:86:49:5b:d7:b3:fd:20: c5:09:43:65:08:92:fe:f6:06:33:d8:da:cc:f0:a7: 34:8d:96:a8:5d:10:eb:6d:61:08:45:25:0b:11:b6: 11:ed:d7:43:13:1f:fb:0e:70:2a:43:4a:4f:91:aa: 72:f7:b0:18:62:d6:f4:3c:e2:4a:80:f1:56:a9:34: 83:12:6b:05:ec:41:34:2e:24:27:5b:25:f5:c9:69: 6d:cf:04:88:ae:a5:59:9d:8a:28:8f:bc:fa:5f:c7: e0:e5:db:13:d5:8f:bb:ff:0b:86:e8:2b:a5:04:04: 30:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:83:BD:E8:8F:F2:E6:9A:32:B0:75:E9:19:A0:F3:C1:29:C2:BB:3C X509v3 Authority Key Identifier: keyid:BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:60:c0:7f:37:25:b2:10:04:8e:13:ce:83:8b:42:e2:c9:ed: 71:62:b4:06:ff:73:97:99:8f:2b:af:5c:7d:dc:d9:4c:11:c7: e5:78:70:a1:82:86:08:bf:58:af:52:f9:7c:c2:b0:91:ad:70: 6a:18:01:fd:9c:8e:1d:af:d5:aa:5a:1e:09:9d:5a:12:53:d9: 27:7f:7c:fa:7b:b3:c0:91:35:5c:17:d0:90:57:ca:18:61:92: 27:32:16:82:84:5d:e0:2d:a0:51:c4:51:2f:a2:2d:b2:09:89: cc:2e:aa:c3:a8:1f:73:ea:ee:3b:67:a6:5b:eb:1d:21:48:4e: e0:f0:d8:59:fb:f5:ed:da:86:4e:65:49:58:f5:54:3c:89:53: 5c:36:87:79:b1:46:9a:1e:f7:b0:69:b9:41:c3:2c:4e:10:17: 04:46:ed:29:ae:6f:52:2a:d0:b4:10:4c:3f:6e:e9:9d:b2:3d: 57:09:08:7a:93:b9:35:53:44:55:a2:76:e1:c9:65:0c:02:0b: cb:21:40:a6:56:f7:a9:10:16:c8:7e:7d:c9:4f:84:09:b1:68: a4:ff:fa:28:7f:97:a1:c3:16:70:ff:43:43:94:fb:8f:1d:77: 2c:57:40:80:9a:49:79:47:b6:59:78:6c:20:b5:26:6d:e7:cc: 22:92:a4:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY0MDYxMTAvBgNVBAUTKEJDNzEwRDA1NjMzQzVFMTFCMDc0NEI3MUFFQkI4OEFF MkIyNDQ2RTMwHhcNMjYwMjI4MTcwMDQ4WhcNMjYwMzA3MTcwMDQ4WjAYMRYwFAYD VQQDDA02OWEzMWY0MC01YjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ocEeFHZuMZ0U7Vl9BlcY31qJgEABHaSfPxY858hTlYL39QO8xqWDscxNIxH UjG176zjRH+1bOZrNcr2EVpqSTBd92Llpv/g1vdOJwu5fEo29O1loAWqdUlXMpAA ajjy0c+9JH3I/FKtwBK97Ary3Jumywq4hRDPw9pbbv801AoYx8iA1kKANFZajuwp d4ZJW9ez/SDFCUNlCJL+9gYz2NrM8Kc0jZaoXRDrbWEIRSULEbYR7ddDEx/7DnAq Q0pPkapy97AYYtb0POJKgPFWqTSDEmsF7EE0LiQnWyX1yWltzwSIrqVZnYooj7z6 X8fg5dsT1Y+7/wuG6CulBAQwwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPKDveiP 8uaaMrB16Rmg88Epwrs8MB8GA1UdIwQYMBaAFLxxDQVjPF4RsHRLca67iK4rJEbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjQwNi8zRjY3MEMwQ0E1 RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFhoR3dkRXR4cnJ1SXJpc2tS dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZIRU5CV004WGhHd2RFdHhycnVJcmlza1J1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjQwNi8zRjY3MEMwQ0E1RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFho R3dkRXR4cnJ1SXJpc2tSdU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmmDAfzclshAEjhPOg4tC4sntcWK0Bv9zl5mPK69cfdzZTBHH5XhwoYKGCL9Y r1L5fMKwka1wahgB/ZyOHa/VqloeCZ1aElPZJ398+nuzwJE1XBfQkFfKGGGSJzIW goRd4C2gUcRRL6ItsgmJzC6qw6gfc+ruO2emW+sdIUhO4PDYWfv17dqGTmVJWPVU PIlTXDaHebFGmh73sGm5QcMsThAXBEbtKa5vUirQtBBMP27pnbI9VwkIepO5NVNE VaJ24cllDAILyyFAplb3qRAWyH59yU+ECbFopP/6KH+XocMWcP9DQ5T7jx13LFdA gJpJeUe2WXhsILUmbefMIpKkng== -----END CERTIFICATE-----Generated at Sun Mar 1 22:57:15 2026 by rpki-client