$ rpki-client -vvf rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft File: T0h-_rfHeWiBVy2X1iVPot21qHw.mft (raw, json) Hash identifier: nUx37ZLr8V2ETOgaEGBzqPL/s19FrepARfeNbouBRu0= Subject key identifier: 0E:05:C5:8B:69:77:39:46:69:26:64:6D:50:D5:EE:52:3F:C7:F2:F7 Authority key identifier: 4F:48:7E:FE:B7:C7:79:68:81:57:2D:97:D6:25:4F:A2:DD:B5:A8:7C Certificate issuer: /CN=A91C32D9/serialNumber=4F487EFEB7C7796881572D97D6254FA2DDB5A87C Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft Manifest number: 12 Signing time: Sun 01 Mar 2026 10:33:16 +0000 Manifest this update: Sun 01 Mar 2026 10:33:15 +0000 Manifest next update: Sun 08 Mar 2026 10:33:15 +0000 Files and hashes: 1: T0h-_rfHeWiBVy2X1iVPot21qHw.crl (hash: 9McaubfIcjPFjWbG/GTApgYUmwtcNyV0L7PF8q5R8gs=) 2: 9DD3FFC6001111F18C67D2A9406F56BC.roa (hash: l4S9gMbXi+gUDu4apCdlLMULJuB61B4wV3lZ30Od2K0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.crl rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C32D9, serialNumber=4F487EFEB7C7796881572D97D6254FA2DDB5A87C Validity Not Before: Mar 1 10:33:15 2026 GMT Not After : Mar 8 10:33:15 2026 GMT Subject: CN=69a415ec-7579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a4:d5:86:04:a4:d5:28:b3:f7:3a:8a:ea:db: af:b5:5d:ca:78:16:4d:93:1d:09:ee:4f:6c:40:86: 27:f0:3a:2b:25:2c:1e:a9:1f:31:e9:c0:f7:d0:0f: 13:f5:71:5a:6c:1a:ef:93:03:e4:4b:4e:2b:02:62: 0b:4e:6c:a4:73:ba:09:24:9d:80:32:bb:1b:49:3d: 57:22:0a:ce:3f:9b:8c:69:7e:57:7d:70:fe:8f:3a: d6:2f:05:fb:a2:da:1e:5f:7d:37:58:67:8a:fe:24: 47:01:66:8c:fe:73:e1:c9:c9:47:ed:d7:21:09:ae: ed:68:fd:27:99:e8:ee:34:ee:c4:8f:17:d0:11:36: 52:15:3f:e2:80:11:76:db:1a:27:6b:48:cb:95:5d: 75:55:5f:12:35:63:a7:2c:7a:db:cb:4f:0b:44:74: d1:65:7a:74:5d:d9:4d:c5:ad:4d:db:97:5b:8d:45: 23:42:86:45:03:42:71:e4:ec:ad:ee:96:93:6f:6b: 2b:e6:27:9d:b7:32:2a:b4:4e:52:68:f2:b5:bb:ec: ed:c8:62:ea:bd:7e:1f:3c:8c:77:f1:c8:d2:24:f5: 81:51:17:33:77:36:29:02:2f:09:85:d4:49:aa:fb: b5:13:83:14:39:cd:c0:44:d9:d2:db:74:10:dd:47: 31:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:05:C5:8B:69:77:39:46:69:26:64:6D:50:D5:EE:52:3F:C7:F2:F7 X509v3 Authority Key Identifier: keyid:4F:48:7E:FE:B7:C7:79:68:81:57:2D:97:D6:25:4F:A2:DD:B5:A8:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:0b:14:b7:43:7e:cf:ab:a4:76:31:a3:18:d9:c7:c6:99:14: d6:07:a5:b6:db:dc:fc:63:ee:11:0b:f8:66:39:80:8a:fd:23: eb:20:69:58:7b:f5:36:2f:e7:8a:ba:b2:ca:85:2f:3a:d5:a6: e6:b1:2f:a4:2e:fa:66:0d:08:54:05:52:57:97:fa:b9:a0:4d: b2:94:2c:f8:de:62:d9:6f:59:90:6d:a1:f7:e7:96:b1:d5:1c: 1d:3b:fe:b3:f6:91:67:19:f3:bc:84:cb:14:fa:d4:c4:f2:a6: 65:dc:b3:05:95:e1:5e:e2:a3:9b:d0:6b:d8:9f:65:c7:06:17: 19:54:4d:17:b5:ce:6f:d1:2f:e3:b8:cc:56:0c:41:4f:63:b6: 9f:d8:f4:be:a2:e7:9a:0a:00:27:d3:c5:50:73:0c:d5:87:5d: 3a:6e:5b:eb:f4:c6:3b:3e:14:ed:70:b2:aa:f0:6d:d2:83:06: 45:ff:7f:66:8a:0f:5b:4b:03:27:92:fa:98:a4:c2:90:98:c6: 47:48:26:09:a1:39:01:b5:a2:20:7b:5f:18:14:08:8f:62:da: fd:f7:a2:f4:43:d3:0b:4a:9b:4f:a2:86:24:14:52:0d:ce:75: 0f:60:f4:62:4c:44:fa:c1:31:92:71:e3:47:ba:15:d1:5c:7b: 89:37:62:d2 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MzJEOTExMC8GA1UEBRMoNEY0ODdFRkVCN0M3Nzk2ODgxNTcyRDk3RDYyNTRGQTJE REI1QTg3QzAeFw0yNjAzMDExMDMzMTVaFw0yNjAzMDgxMDMzMTVaMBgxFjAUBgNV BAMTDTY5YTQxNWVjLTc1NzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCopNWGBKTVKLP3Oorq26+1Xcp4Fk2THQnuT2xAhifwOislLB6pHzHpwPfQDxP1 cVpsGu+TA+RLTisCYgtObKRzugkknYAyuxtJPVciCs4/m4xpfld9cP6POtYvBfui 2h5ffTdYZ4r+JEcBZoz+c+HJyUft1yEJru1o/SeZ6O407sSPF9ARNlIVP+KAEXbb GidrSMuVXXVVXxI1Y6csetvLTwtEdNFlenRd2U3FrU3bl1uNRSNChkUDQnHk7K3u lpNvayvmJ523Miq0TlJo8rW77O3IYuq9fh88jHfxyNIk9YFRFzN3NikCLwmF1Emq +7UTgxQ5zcBE2dLbdBDdRzGzAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUDgXFi2l3 OUZpJmRtUNXuUj/H8vcwHwYDVR0jBBgwFoAUT0h+/rfHeWiBVy2X1iVPot21qHww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMzMkQ5LzY0REYxMzJDMDAx MTExRjFBQjI3RUQ4MDQwNkY1NkJDL1QwaC1fcmZIZVdpQlZ5MlgxaVZQb3QyMXFI dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVDBoLV9yZkhlV2lCVnkyWDFpVlBvdDIxcUh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMz MkQ5LzY0REYxMzJDMDAxMTExRjFBQjI3RUQ4MDQwNkY1NkJDL1QwaC1fcmZIZVdp QlZ5MlgxaVZQb3QyMXFIdy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCJCxS3Q37Pq6R2MaMY2cfGmRTWB6W229z8Y+4RC/hmOYCK/SPrIGlYe/U2L+eK urLKhS861abmsS+kLvpmDQhUBVJXl/q5oE2ylCz43mLZb1mQbaH355ax1RwdO/6z 9pFnGfO8hMsU+tTE8qZl3LMFleFe4qOb0GvYn2XHBhcZVE0Xtc5v0S/juMxWDEFP Y7af2PS+oueaCgAn08VQcwzVh106blvr9MY7PhTtcLKq8G3SgwZF/39mig9bSwMn kvqYpMKQmMZHSCYJoTkBtaIge18YFAiPYtr996L0Q9MLSptPooYkFFINznUPYPRi TET6wTGSceNHuhXRXHuJN2LS -----END CERTIFICATE-----Generated at Mon Mar 2 08:56:05 2026 by rpki-client