$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft File: h7HuPp7irRoRPyeipU4sC41a-zQ.mft (raw, json) Hash identifier: mH3CnuZaX6sLNuVf+JbythYiUIsHYvRckL3Q+bqSw6E= Subject key identifier: C2:9B:40:8A:CA:6B:96:47:CD:02:B9:F4:65:AB:B0:75:9B:F7:2C:1A Authority key identifier: 87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 Certificate issuer: /CN=A91CF9F5/serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft Manifest number: 0127 Signing time: Sun 01 Mar 2026 07:25:05 +0000 Manifest this update: Sun 01 Mar 2026 07:25:04 +0000 Manifest next update: Sun 08 Mar 2026 07:25:04 +0000 Files and hashes: 1: h7HuPp7irRoRPyeipU4sC41a-zQ.crl (hash: Surim7/+fspFYOaeDwwM7HQY96cJFgUAMs3tn6nDzDU=) 2: 2FAD450250E411F0A6B4892AC4F9AE02.roa (hash: nSGDtntTI10V99CiLXg25N7qck9wAUFqZHUSobcXLhM=) 3: 56EC0F5EABD411F0ADCDD73CC4F9AE02.roa (hash: hEapceNdpD29oYtj8D5vFPRo3w56yQR+tNzjULP+xIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:25:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9F5, serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Validity Not Before: Mar 1 07:25:04 2026 GMT Not After : Mar 8 07:25:04 2026 GMT Subject: CN=69a3e9d0-2561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:84:d9:ca:54:2c:32:ba:84:1f:d2:ad:74:83: a2:91:1c:65:54:88:78:cd:2b:f0:78:e0:c7:39:a1: eb:68:7e:cf:0c:77:44:97:8f:80:f2:b6:fd:b5:f7: 42:38:74:46:59:b8:32:ca:6a:f7:ea:7c:d6:d1:ce: 89:74:ef:7a:a4:49:31:e9:ad:c4:bf:9b:c6:b3:6b: 0c:ec:69:77:40:b5:3f:ec:36:14:1d:41:70:74:b8: 41:d9:4a:72:0f:4a:f8:d2:bf:e6:bf:cb:53:da:d8: 12:b6:5d:64:a1:0e:03:93:87:0c:b8:dd:5c:c4:72: 97:97:b9:e2:88:b0:b6:1d:ad:bc:4f:6f:50:1d:d4: e7:e0:57:e5:e6:5e:93:74:00:96:1b:f1:51:b6:36: 38:e6:b5:a5:b9:cc:31:3e:20:b2:97:41:98:b4:9b: 4f:95:9c:7d:9f:43:74:70:4a:10:82:ec:1f:82:6c: 36:3a:6b:d0:f5:8d:10:f7:af:fe:f4:07:82:a8:f3: be:7b:22:5e:ec:f5:72:89:9f:cd:f2:9f:a4:89:77: bd:df:bb:e3:60:f4:35:d1:b9:40:ec:49:57:54:71: 4d:37:ff:68:7a:24:98:29:df:b5:ea:77:47:e3:54: 5d:19:08:59:25:8f:52:7e:07:40:e0:5f:0c:75:3b: 44:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:9B:40:8A:CA:6B:96:47:CD:02:B9:F4:65:AB:B0:75:9B:F7:2C:1A X509v3 Authority Key Identifier: keyid:87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:4f:3e:ef:30:ed:f7:58:14:f6:a8:d4:6d:f4:f0:8c:64:9e: e0:f9:ab:5f:51:49:ac:9c:4f:e1:c0:4f:0e:63:64:f4:44:38: e9:85:e9:eb:10:4c:60:3c:2a:98:d9:33:97:03:24:fd:52:3f: 1e:ab:bb:10:6d:9f:0e:97:71:fd:ef:b9:de:b8:7b:ff:a1:d4: 0a:a4:42:aa:a0:45:89:ea:a4:db:23:e4:00:c3:cd:a5:55:f5: 33:46:70:cd:a2:27:ea:88:1b:a1:84:79:d4:82:49:c1:b5:5b: b1:72:28:5a:a6:35:02:03:d1:16:e8:28:30:0b:72:85:9f:6c: dd:70:15:f4:d0:09:c7:79:ea:e1:fe:99:b3:cc:b6:9f:dd:7b: 8f:a8:02:6c:6f:81:c3:de:52:a2:a4:5e:80:ab:e9:f8:c3:66: 16:41:45:60:df:0d:5f:b1:f2:32:68:90:02:3d:fb:82:00:33: b2:9d:57:7a:c5:16:94:ca:6b:60:ed:d6:28:bb:03:0e:07:71: 21:c3:06:02:15:f2:a1:a3:cc:b4:a8:9d:5e:e8:63:3d:63:68: 9c:ca:3a:96:0d:5a:09:12:16:86:7c:6b:41:7f:60:c1:70:52: 5f:d5:c3:46:89:15:7e:a9:68:86:16:5f:94:55:50:9c:75:c0: 21:46:e2:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5RjUxMTAvBgNVBAUTKDg3QjFFRTNFOUVFMkFEMUExMTNGMjdBMkE1NEUyQzBC OEQ1QUZCMzQwHhcNMjYwMzAxMDcyNTA0WhcNMjYwMzA4MDcyNTA0WjAYMRYwFAYD VQQDEw02OWEzZTlkMC0yNTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4TZylQsMrqEH9KtdIOikRxlVIh4zSvweODHOaHraH7PDHdEl4+A8rb9tfdC OHRGWbgyymr36nzW0c6JdO96pEkx6a3Ev5vGs2sM7Gl3QLU/7DYUHUFwdLhB2Upy D0r40r/mv8tT2tgStl1koQ4Dk4cMuN1cxHKXl7niiLC2Ha28T29QHdTn4Ffl5l6T dACWG/FRtjY45rWlucwxPiCyl0GYtJtPlZx9n0N0cEoQguwfgmw2OmvQ9Y0Q96/+ 9AeCqPO+eyJe7PVyiZ/N8p+kiXe937vjYPQ10blA7ElXVHFNN/9oeiSYKd+16ndH 41RdGQhZJY9SfgdA4F8MdTtElQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMKbQIrK a5ZHzQK59GWrsHWb9ywaMB8GA1UdIwQYMBaAFIex7j6e4q0aET8noqVOLAuNWvs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlGNS84QjkyNkQyQTVC OUUxMUVGOEJGOTE3NUJDNEY5QUUwMi9oN0h1UHA3aXJSb1JQeWVpcFU0c0M0MWEt elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3SHVQcDdpclJvUlB5ZWlwVTRzQzQxYS16US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlGNS84QjkyNkQyQTVCOUUxMUVGOEJGOTE3NUJDNEY5QUUwMi9oN0h1UHA3aXJS b1JQeWVpcFU0c0M0MWEtelEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOk8+7zDt91gU9qjUbfTwjGSe4PmrX1FJrJxP4cBPDmNk9EQ46YXp6xBMYDwq mNkzlwMk/VI/Hqu7EG2fDpdx/e+53rh7/6HUCqRCqqBFieqk2yPkAMPNpVX1M0Zw zaIn6ogboYR51IJJwbVbsXIoWqY1AgPRFugoMAtyhZ9s3XAV9NAJx3nq4f6Zs8y2 n917j6gCbG+Bw95SoqRegKvp+MNmFkFFYN8NX7HyMmiQAj37ggAzsp1XesUWlMpr YO3WKLsDDgdxIcMGAhXyoaPMtKidXuhjPWNonMo6lg1aCRIWhnxrQX9gwXBSX9XD RokVfqlohhZflFVQnHXAIUbi1Q== -----END CERTIFICATE-----Generated at Mon Mar 2 10:25:17 2026 by rpki-client