$ rpki-client -vvf rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft File: H7fzr2-da5fjcg7FSsv1iTrGk2g.mft (raw, json) Hash identifier: kN9Zj4wo+A7Ylmyb6LLRaE1qx/q4X0PSl/pfGg+U2ko= Subject key identifier: CE:16:B1:28:7A:28:56:B3:5D:A4:CC:D6:DF:72:B2:58:08:A2:24:CE Authority key identifier: 1F:B7:F3:AF:6F:9D:6B:97:E3:72:0E:C5:4A:CB:F5:89:3A:C6:93:68 Certificate issuer: /CN=A9117DD2/serialNumber=1FB7F3AF6F9D6B97E3720EC54ACBF5893AC69368 Certificate serial: 022F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft Manifest number: 0229 Signing time: Fri 13 Mar 2026 01:54:05 +0000 Manifest this update: Fri 13 Mar 2026 01:54:05 +0000 Manifest next update: Fri 20 Mar 2026 01:54:05 +0000 Files and hashes: 1: H7fzr2-da5fjcg7FSsv1iTrGk2g.crl (hash: zVuU5t0QkmMskqNnq1yChGeWlsHIgXRiukKhsrm5+Xs=) 2: 2871DB9ED1CB11EDBE2F0D7EC4F9AE02.roa (hash: ojeQEJwfkmkjsjTjJi7JxC/rYMjRAxyFan+n2ZkXfIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.crl rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 01:54:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117DD2, serialNumber=1FB7F3AF6F9D6B97E3720EC54ACBF5893AC69368 Validity Not Before: Mar 13 01:54:05 2026 GMT Not After : Mar 20 01:54:05 2026 GMT Subject: CN=69b36e3d-499d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:cd:63:e4:6b:e0:6c:dc:8d:e1:af:68:04:cb: cd:15:46:23:7e:b1:ec:8d:86:9e:aa:26:29:9e:81: 41:64:40:8d:d5:ed:ff:66:b9:b2:0c:ac:f4:4a:46: 32:83:be:9a:a5:ce:a7:1b:8c:6b:01:b2:c2:d9:84: ca:f3:b6:fc:ff:a3:91:cb:76:22:2e:5f:70:86:83: 01:7d:39:56:33:ed:11:8c:2f:ca:27:3e:14:ae:41: 94:af:75:41:cd:1c:ac:c3:d6:93:47:0b:3f:ab:83: 1e:fa:af:87:91:db:86:c6:8f:ab:29:d5:f8:ac:67: 23:dd:fb:8e:2e:73:39:59:dc:7e:83:de:82:5e:5d: 3f:a0:7d:7f:d7:b4:70:15:dc:75:d6:e0:8f:67:c6: 9f:72:16:c1:f3:07:30:8d:02:99:96:31:dc:83:6e: 31:29:70:ab:36:07:35:ce:22:7e:d9:b3:7f:79:0a: 12:79:50:af:12:0d:97:a9:13:17:c4:aa:23:43:51: 63:35:a8:0f:18:5e:7d:42:70:0e:80:98:84:bb:8c: da:8f:5e:03:4f:01:0c:0c:a9:77:22:dc:83:b6:40: fb:9e:9e:a3:34:12:f0:df:b0:8e:db:c2:b4:1e:03: d2:c6:8d:09:d8:e2:8f:d8:98:ae:4c:09:b8:4e:ee: cc:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:16:B1:28:7A:28:56:B3:5D:A4:CC:D6:DF:72:B2:58:08:A2:24:CE X509v3 Authority Key Identifier: keyid:1F:B7:F3:AF:6F:9D:6B:97:E3:72:0E:C5:4A:CB:F5:89:3A:C6:93:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:06:ab:dd:ad:45:29:d0:4c:fc:fc:1d:19:44:37:5a:41:5a: a6:69:fb:6f:38:fd:d1:9a:b2:1c:05:25:97:f1:d6:bb:c6:6f: 84:87:34:b2:47:86:55:a5:2d:16:1c:2c:83:27:ff:06:31:ab: c6:da:20:f7:e2:32:63:97:41:ea:cf:7a:c0:19:f5:9c:41:8b: 2d:b9:d7:7f:32:39:16:f8:d5:cb:aa:e1:78:17:e7:a0:39:d3: 52:2f:dd:9d:13:93:02:ae:b6:58:7f:85:fd:bf:17:f3:13:ce: ec:bd:30:3f:bb:8f:b8:7a:12:c8:73:21:c1:21:00:1f:bf:0a: 8c:40:bf:0c:4a:84:9a:25:ac:f5:18:15:a7:62:9a:d4:3f:aa: 4a:d0:b5:9f:fc:fe:7c:88:25:1f:09:77:76:64:73:46:7f:4e: 65:16:c2:f9:56:25:93:ae:d3:5a:53:dc:d8:70:7a:d6:e2:0a: c0:f8:05:52:0a:31:af:b5:ef:64:61:87:9e:d8:d8:38:cc:44: b7:ca:03:cc:69:48:fe:f3:76:17:4a:48:b6:18:54:14:a6:cb: 80:38:2a:db:6f:67:05:52:a6:77:38:43:04:01:d9:50:f5:cf: f8:2a:51:c7:8a:53:d4:e1:1c:e5:25:b0:97:98:37:1e:88:80: f3:4f:66:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdERDIxMTAvBgNVBAUTKDFGQjdGM0FGNkY5RDZCOTdFMzcyMEVDNTRBQ0JGNTg5 M0FDNjkzNjgwHhcNMjYwMzEzMDE1NDA1WhcNMjYwMzIwMDE1NDA1WjAYMRYwFAYD VQQDEw02OWIzNmUzZC00OTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm81j5GvgbNyN4a9oBMvNFUYjfrHsjYaeqiYpnoFBZECN1e3/ZrmyDKz0SkYy g76apc6nG4xrAbLC2YTK87b8/6ORy3YiLl9whoMBfTlWM+0RjC/KJz4UrkGUr3VB zRysw9aTRws/q4Me+q+HkduGxo+rKdX4rGcj3fuOLnM5Wdx+g96CXl0/oH1/17Rw Fdx11uCPZ8afchbB8wcwjQKZljHcg24xKXCrNgc1ziJ+2bN/eQoSeVCvEg2XqRMX xKojQ1FjNagPGF59QnAOgJiEu4zaj14DTwEMDKl3ItyDtkD7np6jNBLw37CO28K0 HgPSxo0J2OKP2JiuTAm4Tu7MBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM4WsSh6 KFazXaTM1t9yslgIoiTOMB8GA1UdIwQYMBaAFB+3869vnWuX43IOxUrL9Yk6xpNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0REMi8xMDFFREFFQUQx QzgxMUVEQUNDODFCN0NDNEY5QUUwMi9IN2Z6cjItZGE1ZmpjZzdGU3N2MWlUckdr MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g3ZnpyMi1kYTVmamNnN0ZTc3YxaVRyR2syZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0REMi8xMDFFREFFQUQxQzgxMUVEQUNDODFCN0NDNEY5QUUwMi9IN2Z6cjItZGE1 ZmpjZzdGU3N2MWlUckdrMmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPgar3a1FKdBM/PwdGUQ3WkFapmn7bzj90ZqyHAUll/HWu8ZvhIc0skeGVaUt Fhwsgyf/BjGrxtog9+IyY5dB6s96wBn1nEGLLbnXfzI5FvjVy6rheBfnoDnTUi/d nROTAq62WH+F/b8X8xPO7L0wP7uPuHoSyHMhwSEAH78KjEC/DEqEmiWs9RgVp2Ka 1D+qStC1n/z+fIglHwl3dmRzRn9OZRbC+VYlk67TWlPc2HB61uIKwPgFUgoxr7Xv ZGGHntjYOMxEt8oDzGlI/vN2F0pIthhUFKbLgDgq229nBVKmdzhDBAHZUPXP+CpR x4pT1OEc5SWwl5g3HoiA809mYg== -----END CERTIFICATE-----Generated at Fri Mar 13 12:11:31 2026 by rpki-client