$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: Nx0MWSfQ7ru1gapew1sIO6wHokSgOICAK5DG549lI8Q= Subject key identifier: ED:C2:B9:1E:01:08:57:22:F0:D5:E8:71:15:21:47:DB:45:46:98:BC Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 03D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 03C7 Signing time: Sun 01 Mar 2026 01:27:40 +0000 Manifest this update: Sun 01 Mar 2026 01:27:39 +0000 Manifest next update: Sun 08 Mar 2026 01:27:39 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: 5ScM4gJ5Mry8+QAq+xD+zbvG66AjYeN98lMI0NNwqmA=) 2: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: VWO2Uwwkr/UYdQgz95fDReq4DoMCxGn/P7kloeUMBUA=) 3: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: 3s6p6IHgZC45kvL23cNu0YXbOcuA1F+MQwPScSyDlKk=) 4: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: +5uBQt4gfgzj6gqFvILfpbTSJXasbFw4oq/rmtG7RAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:27:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 979 (0x3d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Mar 1 01:27:39 2026 GMT Not After : Mar 8 01:27:39 2026 GMT Subject: CN=69a3960c-3ac3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:7e:31:0a:17:18:8f:a8:b8:6f:28:06:6b:a8: dc:37:d6:ff:21:17:3b:5e:e6:9e:d8:75:fb:53:70: db:c1:53:cc:e0:bc:8e:02:c1:e3:11:4b:2b:9c:73: 29:41:e4:24:73:22:a3:e1:e1:08:39:86:76:57:d3: de:91:b3:84:b9:50:59:6f:f7:be:1b:5f:98:f7:7a: 32:b9:05:39:ff:26:0a:b6:20:da:d6:eb:4c:56:22: 0a:c1:5a:e0:16:aa:90:8e:b0:fd:ee:05:d9:ca:2a: 97:29:e8:ec:43:bb:4d:bc:82:34:14:24:cd:7c:c7: d8:0c:db:fd:c8:da:a8:b3:93:af:fe:ac:56:b6:4d: 97:a8:15:b4:f0:7e:e5:6a:e1:2f:8b:5b:1e:4a:43: 00:d4:95:8d:4b:10:61:da:87:71:51:e1:79:c5:34: 8e:d6:37:09:09:ac:7f:e7:e8:14:32:1c:56:cf:af: 72:c6:95:e6:13:cc:53:7a:74:21:69:5f:0b:37:a3: 73:a6:2f:b7:e7:2f:82:04:c2:fd:30:50:66:ac:14: 03:3b:16:38:88:80:5a:dd:fa:73:fe:6d:8a:5e:d3: 75:cd:e0:08:d8:ba:ce:0a:94:f6:46:02:33:32:16: ae:a6:b1:59:b7:c8:9f:67:68:82:25:b6:0c:83:dc: 57:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:C2:B9:1E:01:08:57:22:F0:D5:E8:71:15:21:47:DB:45:46:98:BC X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:a8:b4:bd:f0:e2:e4:2e:5e:4f:4a:62:01:8b:18:4b:f5:3e: f0:2f:23:37:3e:80:0a:75:01:73:d6:78:ca:d7:47:0b:5b:54: f0:ce:90:0d:33:d0:c5:17:35:6e:45:fd:71:42:2f:95:29:72: 91:44:0e:35:f9:b7:8b:46:8a:97:f9:eb:bf:f9:5c:af:b4:99: 7e:29:7b:9e:a6:3c:c5:d6:b3:36:14:4b:c1:2f:12:10:bc:2c: 4c:99:f3:66:9a:55:e5:af:0d:cd:25:b0:ae:6a:fe:c7:cd:c8: 1f:88:d4:8f:40:f3:13:75:a7:21:7a:92:eb:86:35:4d:00:eb: 85:a2:3f:f1:76:bf:8b:14:63:de:5f:2b:4c:84:77:32:87:1a: 7f:5e:06:68:8c:28:9d:47:d2:f6:04:06:97:fc:f4:01:3c:ee: 63:dc:2c:5b:e7:c3:bd:62:b2:8c:4e:ae:5b:1a:dc:6b:4e:90: 5e:08:ee:0d:77:09:29:e5:76:4c:10:23:c3:91:55:74:e8:5a: 87:94:7a:d8:d5:4b:99:0c:86:61:38:de:72:9b:ca:d6:e0:d8: 7a:e8:a9:f3:b5:9c:e4:dd:ff:86:86:6e:65:20:03:95:91:67: ed:b8:07:be:c2:71:3c:dd:cc:76:a7:e7:7b:e1:f8:e8:8a:ed: df:0d:46:a2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjYwMzAxMDEyNzM5WhcNMjYwMzA4MDEyNzM5WjAYMRYwFAYD VQQDDA02OWEzOTYwYy0zYWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmH4xChcYj6i4bygGa6jcN9b/IRc7Xuae2HX7U3DbwVPM4LyOAsHjEUsrnHMp QeQkcyKj4eEIOYZ2V9PekbOEuVBZb/e+G1+Y93oyuQU5/yYKtiDa1utMViIKwVrg FqqQjrD97gXZyiqXKejsQ7tNvII0FCTNfMfYDNv9yNqos5Ov/qxWtk2XqBW08H7l auEvi1seSkMA1JWNSxBh2odxUeF5xTSO1jcJCax/5+gUMhxWz69yxpXmE8xTenQh aV8LN6Nzpi+35y+CBML9MFBmrBQDOxY4iIBa3fpz/m2KXtN1zeAI2LrOCpT2RgIz MhauprFZt8ifZ2iCJbYMg9xXjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO3CuR4B CFci8NXocRUhR9tFRpi8MB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKai0vfDi5C5eT0piAYsYS/U+8C8jNz6ACnUBc9Z4ytdHC1tU8M6QDTPQxRc1 bkX9cUIvlSlykUQONfm3i0aKl/nrv/lcr7SZfil7nqY8xdazNhRLwS8SELwsTJnz ZppV5a8NzSWwrmr+x83IH4jUj0DzE3WnIXqS64Y1TQDrhaI/8Xa/ixRj3l8rTIR3 Mocaf14GaIwonUfS9gQGl/z0ATzuY9wsW+fDvWKyjE6uWxrca06QXgjuDXcJKeV2 TBAjw5FVdOhah5R62NVLmQyGYTjecpvK1uDYeuip87Wc5N3/hoZuZSADlZFn7bgH vsJxPN3Mdqfne+H46Irt3w1Gog== -----END CERTIFICATE-----Generated at Sun Mar 1 20:45:29 2026 by rpki-client