$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft File: H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft (raw, json) Hash identifier: GBm0fLXKCy4oJBs06vWDsC8otydeeJyuYQhJ07BYxrc= Subject key identifier: FF:FA:6F:64:09:5E:F7:F8:14:57:B7:D4:D9:0B:A8:8D:A7:5B:0C:2D Authority key identifier: 1F:4D:CE:34:39:B1:F4:03:5F:FF:8C:71:CE:35:9E:5D:20:E6:9A:24 Certificate issuer: /CN=A91F8282/serialNumber=1F4DCE3439B1F4035FFF8C71CE359E5D20E69A24 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft Manifest number: BA Signing time: Sun 01 Mar 2026 08:16:42 +0000 Manifest this update: Sun 01 Mar 2026 08:16:41 +0000 Manifest next update: Sun 08 Mar 2026 08:16:41 +0000 Files and hashes: 1: H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl (hash: hf3Ki6qaUaKV49MnwtbnsnhcFI4qJs5pwMvLW1fNMis=) 2: 0664C974FEF811EFB0C52572C4F9AE02.roa (hash: qw98EXKpwezEJaUdjFxnME0guuBGI/INe4GkxMZV/98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:16:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8282, serialNumber=1F4DCE3439B1F4035FFF8C71CE359E5D20E69A24 Validity Not Before: Mar 1 08:16:41 2026 GMT Not After : Mar 8 08:16:41 2026 GMT Subject: CN=69a3f5ea-8de5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:51:e4:af:39:07:3e:6d:a5:5f:f3:52:26:b5: d8:77:44:4e:63:9a:48:af:83:5f:fc:e6:59:cf:cd: b5:4f:77:dc:15:f7:8e:7f:f9:c1:3e:61:e2:78:f0: 74:79:30:2b:90:1d:34:dd:b4:e4:25:fa:4a:5f:c8: b9:d6:f2:9c:4e:a9:8b:ba:04:95:f9:48:40:8f:8f: 91:cd:6b:dc:df:62:68:91:d5:03:8d:cf:c0:e3:63: 8c:e8:6e:1b:20:62:80:fd:85:65:23:61:af:b4:a7: 6d:a7:6a:91:57:85:29:24:4a:34:05:fd:fa:16:5a: ae:ea:d7:91:b9:af:ca:86:92:bd:1e:76:66:40:88: 6a:15:5d:84:2a:79:b0:41:82:4e:e4:dd:57:ff:31: 48:23:ad:59:c5:cc:82:74:ac:04:65:ab:45:e8:c5: 97:59:cc:7a:e5:47:c3:0a:4f:f9:a1:f0:fc:bc:35: d6:99:d9:f7:f7:78:50:9d:49:af:43:b3:37:b4:f1: e2:50:63:f4:bb:c7:b9:00:fb:95:4a:06:17:0c:a1: 1e:10:fa:35:0d:07:12:ce:4f:30:86:e0:ce:8b:04: ae:e4:95:a7:da:47:2d:51:3f:f0:35:dd:ab:42:c4: 3e:cd:fb:9d:58:84:90:af:05:5b:4f:e7:10:1f:5b: 81:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:FA:6F:64:09:5E:F7:F8:14:57:B7:D4:D9:0B:A8:8D:A7:5B:0C:2D X509v3 Authority Key Identifier: keyid:1F:4D:CE:34:39:B1:F4:03:5F:FF:8C:71:CE:35:9E:5D:20:E6:9A:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:c0:50:f3:f2:ea:b4:5d:51:c0:af:cf:59:38:a9:a8:36:9c: f7:94:bf:62:ac:34:41:36:9e:e2:80:77:fa:50:33:10:16:84: d4:b9:4b:1e:13:99:15:59:7e:84:a1:98:90:76:ad:df:8b:62: 3f:21:b3:b0:da:84:5d:80:47:b0:01:f3:f5:66:06:f9:fa:bc: fe:09:d9:bf:7f:7f:f0:ee:24:6f:88:14:76:b6:b9:8e:b0:01: 1f:75:99:14:91:c8:70:80:74:4d:6d:77:2f:9c:ed:82:bb:21: 90:f2:47:55:79:62:69:68:84:6e:c5:a8:9a:48:fb:51:be:cd: 21:9b:3b:5f:0a:77:89:d7:2b:58:79:00:38:76:dc:4e:ef:63: 58:1b:99:5d:5c:3a:6b:5c:e9:77:42:8b:42:b4:66:37:d7:98: d0:10:d2:b9:1d:8c:2a:69:29:2a:6e:e6:6f:be:2e:0b:42:3c: 4b:f0:4d:46:de:63:44:16:57:53:42:5a:6c:1e:c5:36:1a:a7: c6:ae:25:d0:c3:1a:93:ee:3b:48:55:a7:1d:d3:a6:2d:49:68: bf:6a:f2:e5:b8:1b:9b:c6:e9:03:18:66:87:a3:e3:71:4a:28: 1e:59:8f:ca:3c:b7:cc:e2:e4:6b:5c:e8:2b:6c:cf:85:45:13: 29:64:cd:7e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgyODIxMTAvBgNVBAUTKDFGNERDRTM0MzlCMUY0MDM1RkZGOEM3MUNFMzU5RTVE MjBFNjlBMjQwHhcNMjYwMzAxMDgxNjQxWhcNMjYwMzA4MDgxNjQxWjAYMRYwFAYD VQQDEw02OWEzZjVlYS04ZGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVHkrzkHPm2lX/NSJrXYd0ROY5pIr4Nf/OZZz821T3fcFfeOf/nBPmHiePB0 eTArkB003bTkJfpKX8i51vKcTqmLugSV+UhAj4+RzWvc32JokdUDjc/A42OM6G4b IGKA/YVlI2GvtKdtp2qRV4UpJEo0Bf36Flqu6teRua/KhpK9HnZmQIhqFV2EKnmw QYJO5N1X/zFII61ZxcyCdKwEZatF6MWXWcx65UfDCk/5ofD8vDXWmdn393hQnUmv Q7M3tPHiUGP0u8e5APuVSgYXDKEeEPo1DQcSzk8whuDOiwSu5JWn2kctUT/wNd2r QsQ+zfudWISQrwVbT+cQH1uB7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP/6b2QJ Xvf4FFe31NkLqI2nWwwtMB8GA1UdIwQYMBaAFB9NzjQ5sfQDX/+Mcc41nl0g5pok MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODI4Mi8yRjI1M0MxQUZC RkUxMUVGQjU1MjBBMTJDNEY5QUUwMi9IMDNPTkRteDlBTmZfNHh4empXZVhTRG1t aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0gwM09ORG14OUFOZl80eHh6aldlWFNEbW1pUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODI4Mi8yRjI1M0MxQUZCRkUxMUVGQjU1MjBBMTJDNEY5QUUwMi9IMDNPTkRteDlB TmZfNHh4empXZVhTRG1taVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFcBQ8/LqtF1RwK/PWTipqDac95S/Yqw0QTae4oB3+lAzEBaE1LlLHhOZFVl+ hKGYkHat34tiPyGzsNqEXYBHsAHz9WYG+fq8/gnZv39/8O4kb4gUdra5jrABH3WZ FJHIcIB0TW13L5ztgrshkPJHVXliaWiEbsWomkj7Ub7NIZs7Xwp3idcrWHkAOHbc Tu9jWBuZXVw6a1zpd0KLQrRmN9eY0BDSuR2MKmkpKm7mb74uC0I8S/BNRt5jRBZX U0JabB7FNhqnxq4l0MMak+47SFWnHdOmLUlov2ry5bgbm8bpAxhmh6PjcUooHlmP yjy3zOLka1zoK2zPhUUTKWTNfg== -----END CERTIFICATE-----Generated at Sun Mar 1 20:43:55 2026 by rpki-client