$ rpki-client -vvf rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft File: H8Tf0A2sNKjrhGPTlRwio0WDesk.mft (raw, json) Hash identifier: kZSybv+C1IlEkRWFNVwLxOZDZ+7cOLtQaStYJqYoPHg= Subject key identifier: 1D:76:C2:57:2B:F6:9E:53:BB:38:AA:EA:48:56:0E:53:B1:F6:D9:9F Authority key identifier: 1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 Certificate issuer: /CN=A91B477B/serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Certificate serial: 0737 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft Manifest number: 0725 Signing time: Sun 01 Mar 2026 23:49:52 +0000 Manifest this update: Sun 01 Mar 2026 23:49:50 +0000 Manifest next update: Sun 08 Mar 2026 23:49:50 +0000 Files and hashes: 1: H8Tf0A2sNKjrhGPTlRwio0WDesk.crl (hash: 47qlgcqyf/17C7XvquJaHGUs2UL1IxMiLHlXCa3pTJM=) 2: 22F72E28725311EBA9C51756C4F9AE02.roa (hash: POpr8wQqUbcrtsin7090l3LSjMlxCYgCxYONDuDwzEA=) 3: 535436609D0511F0BAF1837CC4F9AE02.roa (hash: 0A1AOVsjVRyjkOa0stdyBH8yBCmf007m2jZE8cgy4HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:49:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1847 (0x737) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B477B, serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Validity Not Before: Mar 1 23:49:50 2026 GMT Not After : Mar 8 23:49:50 2026 GMT Subject: CN=69a4d0a0-f15b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f5:2e:fd:c7:31:bb:3c:68:4a:dd:36:0c:71: aa:94:ef:66:aa:54:11:fa:d2:dd:bf:30:59:02:e8: 68:13:b1:39:90:bd:c6:3d:14:e6:ec:c2:a8:88:18: 2e:8a:fa:fc:58:97:4a:31:56:af:37:1b:a0:75:92: b5:6a:37:a1:a0:ad:de:08:7f:ca:c8:cc:26:95:ad: a1:64:17:e2:5f:98:51:cf:f2:20:ef:df:d7:9c:91: e8:15:51:bb:cc:b1:6b:32:4d:ba:89:33:fd:50:45: 3f:84:b9:ec:32:da:04:77:a8:cb:6b:39:63:66:3a: 41:3b:1e:60:60:49:1b:61:6e:cc:07:56:00:7a:39: 51:7e:29:34:00:29:82:5f:c2:b5:89:d4:2c:e6:9d: 75:0a:23:27:27:86:12:18:e5:de:16:c1:2e:bb:fb: ac:e1:95:ab:3d:35:99:b2:31:87:a3:11:8b:38:01: 25:2b:b6:1c:3f:93:0d:36:79:bf:9f:c1:0f:4c:f0: 5f:4c:09:49:20:9b:6a:38:34:f2:f8:9e:c7:7b:10: 08:4b:7e:c0:f7:11:e2:b9:62:3f:a7:eb:c0:b1:26: e7:34:46:02:3a:a8:f4:aa:22:78:53:de:ae:b9:da: b1:2d:1e:4f:8e:f6:77:23:6f:36:73:56:98:94:dc: 47:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:76:C2:57:2B:F6:9E:53:BB:38:AA:EA:48:56:0E:53:B1:F6:D9:9F X509v3 Authority Key Identifier: keyid:1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:8e:d9:ed:ea:8b:4a:6e:3e:3f:13:9a:72:63:2d:92:28:bf: 5f:83:4b:48:92:b2:92:e3:3c:49:fa:fb:93:01:48:98:dd:1f: 2d:20:bd:d8:c2:7d:f7:a4:ed:d5:fd:27:89:9e:80:f6:27:63: e0:ab:11:34:7a:cf:15:e4:23:b3:63:aa:99:92:65:a2:93:91: 49:4f:46:98:63:61:48:27:ec:6e:99:e3:bb:4f:7f:4c:56:b3: df:f3:21:d4:0c:d3:9b:a5:74:ef:7a:90:5f:d1:61:31:db:9f: a3:25:e6:4a:b2:b7:36:68:dc:7d:c0:9d:41:44:99:b6:97:01: 45:86:0b:b0:34:6d:7c:b3:5c:87:33:19:7c:51:3d:00:b6:37: e4:f4:f6:eb:4b:a3:8c:fb:4d:37:93:7d:3c:52:c7:04:5d:cd: b0:c9:f8:9f:55:82:52:a2:81:2c:5a:eb:03:83:14:4a:ac:81: 45:57:4f:e5:ea:71:0c:7f:93:f3:67:9b:79:a4:5b:a8:16:3d: 00:d5:29:a6:ae:87:c5:73:08:65:9d:bd:a8:31:f7:6a:87:aa: 45:27:47:cc:bc:34:c0:a3:b9:6a:57:cb:c2:b7:bf:f3:a3:23: 27:d6:f0:9b:47:4c:b4:d2:c9:d1:a9:ca:d6:51:4d:fd:6e:d3: f6:6b:9a:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3N0IxMTAvBgNVBAUTKDFGQzRERkQwMERBQzM0QThFQjg0NjNEMzk1MUMyMkEz NDU4MzdBQzkwHhcNMjYwMzAxMjM0OTUwWhcNMjYwMzA4MjM0OTUwWjAYMRYwFAYD VQQDEw02OWE0ZDBhMC1mMTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfUu/ccxuzxoSt02DHGqlO9mqlQR+tLdvzBZAuhoE7E5kL3GPRTm7MKoiBgu ivr8WJdKMVavNxugdZK1ajehoK3eCH/KyMwmla2hZBfiX5hRz/Ig79/XnJHoFVG7 zLFrMk26iTP9UEU/hLnsMtoEd6jLazljZjpBOx5gYEkbYW7MB1YAejlRfik0ACmC X8K1idQs5p11CiMnJ4YSGOXeFsEuu/us4ZWrPTWZsjGHoxGLOAElK7YcP5MNNnm/ n8EPTPBfTAlJIJtqODTy+J7HexAIS37A9xHiuWI/p+vAsSbnNEYCOqj0qiJ4U96u udqxLR5PjvZ3I282c1aYlNxHRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB12wlcr 9p5Tuziq6khWDlOx9tmfMB8GA1UdIwQYMBaAFB/E39ANrDSo64Rj05UcIqNFg3rJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDc3Qi8xQzI1NjI3MDcy NTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05LanJoR1BUbFJ3aW8wV0Rl c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g4VGYwQTJzTktqcmhHUFRsUndpbzBXRGVzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDc3Qi8xQzI1NjI3MDcyNTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05L anJoR1BUbFJ3aW8wV0Rlc2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXI7Z7eqLSm4+PxOacmMtkii/X4NLSJKykuM8Sfr7kwFImN0fLSC92MJ996Tt 1f0niZ6A9idj4KsRNHrPFeQjs2OqmZJlopORSU9GmGNhSCfsbpnju09/TFaz3/Mh 1AzTm6V073qQX9FhMdufoyXmSrK3NmjcfcCdQUSZtpcBRYYLsDRtfLNchzMZfFE9 ALY35PT260ujjPtNN5N9PFLHBF3NsMn4n1WCUqKBLFrrA4MUSqyBRVdP5epxDH+T 82ebeaRbqBY9ANUppq6HxXMIZZ29qDH3aoeqRSdHzLw0wKO5alfLwre/86MjJ9bw m0dMtNLJ0anK1lFN/W7T9muaSQ== -----END CERTIFICATE-----Generated at Mon Mar 2 12:18:59 2026 by rpki-client