$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft File: 4hHNheByVQ4z5MyGpj-8360dNTI.mft (raw, json) Hash identifier: W8zRGbDR4+hjCFu24O8OGElWu24URe9wnqpmEmIXt74= Subject key identifier: 41:41:C7:76:74:47:32:6C:07:F0:3D:BA:E1:09:4F:72:28:6A:84:64 Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Certificate serial: 08AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft Manifest number: 08A0 Signing time: Mon 02 Mar 2026 02:34:02 +0000 Manifest this update: Mon 02 Mar 2026 02:34:01 +0000 Manifest next update: Mon 09 Mar 2026 02:34:01 +0000 Files and hashes: 1: 4hHNheByVQ4z5MyGpj-8360dNTI.crl (hash: IjwvhDHawvSw0vzalnOyRZgaVUm1QfyiJ75IhZmKGao=) 2: CEDD71FAE48811F09BEEC367446F56BC.roa (hash: n4+tu4whf2PQeZcNUGvCEnzwL08T5EGFFqHM2nYkstI=) 3: 624086E2E99611EA930A5B74C4F9AE02.roa (hash: KkfurgFgQaSiOoD1DoZqsh9tHMcIVcJW+jsOCJRRuvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2223 (0x8af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F85CD, serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Validity Not Before: Mar 2 02:34:01 2026 GMT Not After : Mar 9 02:34:01 2026 GMT Subject: CN=69a4f71a-d036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ac:d6:d1:9f:0c:30:42:80:ec:71:21:0b:6d: 57:fa:20:b3:78:52:fe:df:c4:c2:be:a5:2f:1e:d6: 09:56:e4:81:0e:0c:81:5c:35:19:27:72:13:8b:98: 62:7e:50:1a:30:b2:d7:04:74:b6:21:7c:07:be:7a: 5f:92:3a:16:3d:2e:f8:bd:13:b5:22:20:1f:ad:fe: 31:95:f6:96:7f:f0:b5:75:07:20:5a:ad:cf:6f:bf: 57:72:cd:7c:21:a4:5a:0e:9f:fd:bb:6b:c1:2a:04: bd:0f:2e:75:25:1e:9c:9a:21:dc:ef:4d:3f:e0:6f: e8:ba:e2:7c:a9:65:7e:38:8e:42:81:f8:84:92:aa: 93:fc:ba:ac:00:10:f0:3b:20:28:15:c0:38:b5:e6: 34:8c:8d:d1:96:ef:7c:c3:5e:ea:be:40:1e:5c:a2: 15:8c:e4:f5:2f:bd:8f:2e:d2:9a:6d:93:bf:1a:3c: 53:b7:ab:55:f8:de:ba:0f:46:36:4d:b4:16:ef:1b: af:92:3b:98:a7:a3:16:f8:ef:19:e0:ec:f9:54:07: b6:15:53:85:71:7f:7f:4d:de:7f:40:f4:d0:ed:b8: 9a:41:58:6c:0d:b7:c1:85:df:11:9b:62:df:dc:02: 94:5a:fd:bd:c3:13:c5:44:6c:36:90:7b:30:7b:6a: 14:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:41:C7:76:74:47:32:6C:07:F0:3D:BA:E1:09:4F:72:28:6A:84:64 X509v3 Authority Key Identifier: keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:ab:85:b0:e4:90:6d:4e:d0:35:5e:6f:6a:95:a3:ac:94:39: 20:cb:c7:be:f0:cb:87:0f:aa:23:22:61:bb:76:c1:d2:4d:69: 7c:13:39:09:b8:96:af:1e:68:59:5a:97:e8:f9:29:f8:c2:06: 04:b2:d3:0d:ea:61:c0:a2:97:8f:92:e9:be:46:42:74:3f:9c: cc:67:f9:4d:17:27:b3:70:4d:2f:9e:0d:de:a2:92:e0:d7:74: 0e:4d:d2:86:8a:28:83:52:b6:39:75:fd:30:96:fb:fd:ec:9a: 8a:c8:f6:9e:28:7a:d9:df:28:02:09:1c:51:f6:77:20:e5:6c: f9:14:83:a1:64:1b:ee:c6:35:79:6f:22:17:93:ea:c0:e4:d8: b5:35:66:41:71:60:5c:ee:7d:aa:0e:5c:f0:96:a5:fb:71:94: ec:5d:2f:4d:ec:37:7f:d3:6d:87:21:74:e0:05:30:34:c3:8c: 5e:1d:41:dd:58:d9:70:ff:38:63:1a:06:96:da:23:82:ef:b3: 30:c7:76:cd:5b:8f:ee:20:bd:5b:a8:1e:03:52:b0:a6:c0:83: 9f:73:2c:8e:5e:68:d1:b0:2f:27:2c:bb:c8:74:a1:07:0b:56: 98:9a:94:e6:c0:9d:45:1c:cc:5f:0d:f4:0b:3a:49:b8:c3:85: 55:51:d5:a1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG QUQxRDM1MzIwHhcNMjYwMzAyMDIzNDAxWhcNMjYwMzA5MDIzNDAxWjAYMRYwFAYD VQQDEw02OWE0ZjcxYS1kMDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA46zW0Z8MMEKA7HEhC21X+iCzeFL+38TCvqUvHtYJVuSBDgyBXDUZJ3ITi5hi flAaMLLXBHS2IXwHvnpfkjoWPS74vRO1IiAfrf4xlfaWf/C1dQcgWq3Pb79Xcs18 IaRaDp/9u2vBKgS9Dy51JR6cmiHc700/4G/ouuJ8qWV+OI5CgfiEkqqT/LqsABDw OyAoFcA4teY0jI3Rlu98w17qvkAeXKIVjOT1L72PLtKabZO/GjxTt6tV+N66D0Y2 TbQW7xuvkjuYp6MW+O8Z4Oz5VAe2FVOFcX9/Td5/QPTQ7biaQVhsDbfBhd8Rm2Lf 3AKUWv29wxPFRGw2kHswe2oUjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEFBx3Z0 RzJsB/A9uuEJT3IoaoRkMB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODVDRC84QTUwNTU4OEREMTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZR NHo1TXlHcGotODM2MGROVEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI6uFsOSQbU7QNV5vapWjrJQ5IMvHvvDLhw+qIyJhu3bB0k1pfBM5CbiWrx5o WVqX6Pkp+MIGBLLTDephwKKXj5LpvkZCdD+czGf5TRcns3BNL54N3qKS4Nd0Dk3S hooog1K2OXX9MJb7/eyaisj2nih62d8oAgkcUfZ3IOVs+RSDoWQb7sY1eW8iF5Pq wOTYtTVmQXFgXO59qg5c8Jal+3GU7F0vTew3f9NthyF04AUwNMOMXh1B3VjZcP84 YxoGltojgu+zMMd2zVuP7iC9W6geA1KwpsCDn3Msjl5o0bAvJyy7yHShBwtWmJqU 5sCdRRzMXw30CzpJuMOFVVHVoQ== -----END CERTIFICATE-----Generated at Mon Mar 2 11:25:24 2026 by rpki-client