$ rpki-client -vvf rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft File: h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft (raw, json) Hash identifier: Kx4xO+BhqC/F1ehc54xVoztgg1ixboInvsOEToptbpc= Subject key identifier: D5:E7:91:8F:BE:FC:11:3F:BB:47:50:32:65:D4:25:E4:D8:11:AF:64 Authority key identifier: 87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 Certificate issuer: /CN=A91D226F/serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Certificate serial: 0228 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft Manifest number: 0218 Signing time: Sun 01 Mar 2026 03:47:32 +0000 Manifest this update: Sun 01 Mar 2026 03:47:32 +0000 Manifest next update: Sun 08 Mar 2026 03:47:32 +0000 Files and hashes: 1: h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl (hash: zW937LxwnkV7DC+pw+QMMrrUUoxVMkOwQXQEKYdiYL8=) 2: 3681B720B2D611EF9B481340C4F9AE02.roa (hash: Aaq+TCQ/KTzVoqOiGqBuyk59qeKatX9nZx11XR64nYI=) 3: 3C4FDE3C0FCA11F18E293E94403D8C67.roa (hash: fOXCF0RUcBS2WppEheAPevwlRNjVib7QCUtwexEM+Lg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:47:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D226F, serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Validity Not Before: Mar 1 03:47:32 2026 GMT Not After : Mar 8 03:47:32 2026 GMT Subject: CN=69a3b6d4-39ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e6:bf:38:4d:04:36:96:c0:0f:bd:e5:4f:bc: 36:61:58:6b:e2:96:03:d2:12:3a:28:6e:ed:07:70: 69:c8:0c:80:13:f2:d8:43:dd:9c:77:3e:74:73:b1: 7b:85:55:b2:fa:5f:73:87:43:f1:ee:08:22:03:26: 1c:f5:35:3f:9a:a5:cf:71:72:ad:70:92:bf:17:8e: d1:6d:13:d4:37:83:a5:2a:3f:40:06:ed:59:85:c6: 44:92:e8:a3:d9:13:d5:3b:54:c0:a3:d7:3d:f6:4c: 3f:83:4d:de:7d:1f:96:41:b6:de:a5:3d:86:4e:1e: 91:41:28:ae:59:ca:dc:fb:01:81:25:21:00:34:73: cd:12:4d:df:ce:0f:ad:d8:81:96:df:37:f2:66:35: 43:df:e2:07:3d:19:00:10:17:3e:ee:cd:f3:af:97: 82:19:55:b9:f0:ac:41:e7:8d:ed:89:6b:25:71:1d: 11:ff:2c:d0:d3:db:68:54:8e:41:22:20:eb:d1:46: 69:12:e3:80:31:57:c4:49:d1:55:50:be:4e:27:f2: d3:3b:2d:c6:d9:2d:e9:5b:82:13:18:99:8e:75:a3: 42:64:c0:ab:79:24:27:bb:29:30:9d:51:50:89:87: 52:79:cd:89:69:44:ce:fd:a5:75:66:34:d1:08:e1: 4d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:E7:91:8F:BE:FC:11:3F:BB:47:50:32:65:D4:25:E4:D8:11:AF:64 X509v3 Authority Key Identifier: keyid:87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:f9:78:b4:4d:ac:b2:b4:04:c5:22:56:56:cc:f3:9c:33:21: 1d:5a:b2:d5:0d:0f:cc:b5:8e:28:f1:34:2b:de:70:f5:60:10: 6b:cf:12:d0:35:35:c2:bd:7d:6d:5d:e2:4a:38:cd:c5:14:b3: 73:83:76:3f:67:66:55:11:51:47:e4:6f:0d:90:b6:ee:66:a5: e1:d2:3f:eb:c7:e5:24:53:c8:5c:61:49:f3:89:ef:62:1e:13: a6:08:b5:73:b8:8e:13:fe:62:86:92:5a:44:e0:02:16:43:bc: 9a:91:5c:3d:54:a9:0f:50:ae:7b:70:47:27:e2:d8:ec:1a:c6: 1d:ba:96:a3:89:34:bc:16:a1:91:07:d7:cc:55:3c:4a:ea:0f: 6f:17:23:02:8d:5d:78:00:e1:61:ba:86:df:31:4a:57:84:0e: 5f:95:a1:25:21:c5:5c:e6:44:c8:d3:b7:de:f8:ef:58:1e:03: ff:7d:a0:e9:3f:11:a6:91:0b:c9:2a:4a:67:5f:7a:d2:cf:f2: a4:a1:c2:c9:84:11:d7:5d:ab:da:2e:a9:d1:b4:c3:5c:45:00: 23:f7:9c:22:00:e3:54:4f:7e:ff:bc:ec:0d:84:f5:c9:8a:28: da:66:0e:bb:16:5d:4d:3b:25:dd:4a:f9:80:d6:7a:f5:98:df: 7e:58:a7:74 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIyNkYxMTAvBgNVBAUTKDg3RjA1OTY4NzFCNTE1QkJCM0QyOTgyREM2RkI5QzEy REVGNEMyMzQwHhcNMjYwMzAxMDM0NzMyWhcNMjYwMzA4MDM0NzMyWjAYMRYwFAYD VQQDDA02OWEzYjZkNC0zOWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+a/OE0ENpbAD73lT7w2YVhr4pYD0hI6KG7tB3BpyAyAE/LYQ92cdz50c7F7 hVWy+l9zh0Px7ggiAyYc9TU/mqXPcXKtcJK/F47RbRPUN4OlKj9ABu1ZhcZEkuij 2RPVO1TAo9c99kw/g03efR+WQbbepT2GTh6RQSiuWcrc+wGBJSEANHPNEk3fzg+t 2IGW3zfyZjVD3+IHPRkAEBc+7s3zr5eCGVW58KxB543tiWslcR0R/yzQ09toVI5B IiDr0UZpEuOAMVfESdFVUL5OJ/LTOy3G2S3pW4ITGJmOdaNCZMCreSQnuykwnVFQ iYdSec2JaUTO/aV1ZjTRCOFNbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNXnkY++ /BE/u0dQMmXUJeTYEa9kMB8GA1UdIwQYMBaAFIfwWWhxtRW7s9KYLcb7nBLe9MI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjI2Ri9ENUM1NkUyOEZB RDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZidXowcGd0eHZ1Y0V0NzB3 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfQlphSEcxRmJ1ejBwZ3R4dnVjRXQ3MHdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjI2Ri9ENUM1NkUyOEZBRDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZi dXowcGd0eHZ1Y0V0NzB3alEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWfl4tE2ssrQExSJWVszznDMhHVqy1Q0PzLWOKPE0K95w9WAQa88S0DU1wr19 bV3iSjjNxRSzc4N2P2dmVRFRR+RvDZC27mal4dI/68flJFPIXGFJ84nvYh4Tpgi1 c7iOE/5ihpJaROACFkO8mpFcPVSpD1Cue3BHJ+LY7BrGHbqWo4k0vBahkQfXzFU8 SuoPbxcjAo1deADhYbqG3zFKV4QOX5WhJSHFXOZEyNO33vjvWB4D/32g6T8RppEL ySpKZ1960s/ypKHCyYQR112r2i6p0bTDXEUAI/ecIgDjVE9+/7zsDYT1yYoo2mYO uxZdTTsl3Ur5gNZ69ZjfflindA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:24:58 2026 by rpki-client