$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: RqfwMcKieTo8X2Sw0PeTZI+YYE62aEL1jih5rLt4KFc= Subject key identifier: AC:FE:02:AF:84:AB:3E:A8:CF:E4:1A:A3:EC:60:8D:77:65:1B:35:33 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 15A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 1594 Signing time: Mon 02 Mar 2026 02:32:49 +0000 Manifest this update: Mon 02 Mar 2026 02:32:47 +0000 Manifest next update: Mon 09 Mar 2026 02:32:47 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: cLiHjQiVKE/i35WOMfyLHDdrqI1daromOi009ck4Suk=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: szL4BZSbgcQY4LfE/szjKTFQSSHTkoZGzk2quRmWzfY=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: mjER69CRCpsMBjGIx0Q4yyRPRuK30idnlQajAiMsy6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:32:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5543 (0x15a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Mar 2 02:32:47 2026 GMT Not After : Mar 9 02:32:47 2026 GMT Subject: CN=69a4f6d1-db8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6b:0f:06:cd:99:60:a9:2e:bf:9a:38:4b:4a: 0f:30:9c:fe:7a:0f:5f:a6:8e:30:a5:f2:f0:ab:e8: 0c:ef:23:21:35:02:6a:f0:45:c6:20:2c:74:a6:8c: 36:42:9b:6d:4c:bd:8a:06:c4:dd:71:5f:4e:91:53: 92:2f:bf:77:52:76:8f:29:dd:92:e3:14:50:15:52: f5:bd:3e:1f:be:99:bd:8f:b5:89:69:25:84:14:a5: 64:99:50:2f:74:21:a8:14:5d:ce:6c:26:35:b5:9b: 71:e5:67:ac:7b:0b:ba:dc:f4:54:9d:7c:ca:81:eb: 36:84:64:00:2a:cd:2b:11:9c:ac:1f:03:ac:a2:f0: b8:b8:fe:12:e2:95:70:4a:69:62:07:09:82:b3:fc: 89:08:d3:cd:76:47:bc:0e:2f:02:f6:52:9e:9a:0e: 53:a1:01:82:51:70:1c:19:16:c0:a8:e0:bb:e6:91: ce:4d:c9:af:e7:93:ea:25:ab:fb:22:38:89:07:58: 36:33:91:a5:3d:fe:f5:a4:e2:82:f6:dd:2f:91:7d: bb:aa:60:b6:3f:19:6d:e7:60:5a:fb:10:44:b9:32: 8c:e4:20:fe:50:01:de:9d:b3:da:7b:b0:eb:05:21: 09:cc:2f:fd:17:b2:7d:51:c3:b8:15:71:2e:0e:e8: 33:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:FE:02:AF:84:AB:3E:A8:CF:E4:1A:A3:EC:60:8D:77:65:1B:35:33 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:3a:37:67:6a:f6:18:6b:74:8d:5d:99:2c:2f:b0:a8:00:08: 9f:db:f7:15:53:92:6e:cc:1d:d9:54:8d:d8:45:fe:67:70:96: c0:10:01:cb:33:22:84:ca:89:81:1d:8a:47:3d:80:7a:26:95: d5:77:90:50:fd:35:bd:e1:a3:0f:81:1a:f3:e5:27:83:2f:9f: 23:fe:d2:8f:74:c6:46:0f:34:d1:4d:6d:d8:f7:02:29:4b:ed: b7:cc:a5:ef:41:18:70:14:57:25:f0:f5:f6:bb:8e:bb:f1:52: 41:c2:9c:53:9a:ab:c3:17:72:e4:07:7a:25:ac:c4:4a:02:59: 7b:b1:9a:6f:13:23:9c:16:06:e4:2c:c8:60:cf:d9:fe:fb:1a: f6:47:49:06:9d:e6:ea:64:be:e6:9d:74:cc:63:86:50:bc:c0: 30:9e:89:39:72:01:45:b9:fb:fd:64:d2:42:6b:ee:cc:5b:d5: d0:0d:5c:d9:ca:59:89:a7:e2:54:da:fb:08:7b:98:2b:47:1e: 66:c7:2d:94:49:10:05:a4:d5:ba:6c:77:eb:09:8d:ce:17:af: 44:e8:00:a2:3f:b6:c4:03:66:f3:71:39:57:16:9e:9e:ba:56: 72:f7:19:47:31:90:00:31:ca:ba:b1:df:1a:58:33:15:b4:78: 1f:16:8c:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjYwMzAyMDIzMjQ3WhcNMjYwMzA5MDIzMjQ3WjAYMRYwFAYD VQQDEw02OWE0ZjZkMS1kYjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2sPBs2ZYKkuv5o4S0oPMJz+eg9fpo4wpfLwq+gM7yMhNQJq8EXGICx0pow2 QpttTL2KBsTdcV9OkVOSL793UnaPKd2S4xRQFVL1vT4fvpm9j7WJaSWEFKVkmVAv dCGoFF3ObCY1tZtx5Wesewu63PRUnXzKges2hGQAKs0rEZysHwOsovC4uP4S4pVw SmliBwmCs/yJCNPNdke8Di8C9lKemg5ToQGCUXAcGRbAqOC75pHOTcmv55PqJav7 IjiJB1g2M5GlPf71pOKC9t0vkX27qmC2Pxlt52Ba+xBEuTKM5CD+UAHenbPae7Dr BSEJzC/9F7J9UcO4FXEuDugzSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKz+Aq+E qz6oz+Qao+xgjXdlGzUzMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhTo3Z2r2GGt0jV2ZLC+wqAAIn9v3FVOSbswd2VSN2EX+Z3CWwBAByzMihMqJ gR2KRz2AeiaV1XeQUP01veGjD4Ea8+Ungy+fI/7Sj3TGRg800U1t2PcCKUvtt8yl 70EYcBRXJfD19ruOu/FSQcKcU5qrwxdy5Ad6JazESgJZe7GabxMjnBYG5CzIYM/Z /vsa9kdJBp3m6mS+5p10zGOGULzAMJ6JOXIBRbn7/WTSQmvuzFvV0A1c2cpZiafi VNr7CHuYK0ceZsctlEkQBaTVumx36wmNzhevROgAoj+2xANm83E5VxaenrpWcvcZ RzGQADHKurHfGlgzFbR4HxaMyw== -----END CERTIFICATE-----Generated at Mon Mar 2 08:18:46 2026 by rpki-client