$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: aX4/TUIAplzekviSEkj9NkuH936vZM5Xt8dbSFysWzI= Subject key identifier: DB:5D:25:33:3D:4D:91:E6:8D:34:8F:CB:1A:A4:B5:5F:5E:10:06:5E Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: F8 Signing time: Wed 04 Mar 2026 19:03:45 +0000 Manifest this update: Wed 04 Mar 2026 19:03:44 +0000 Manifest next update: Wed 11 Mar 2026 19:03:44 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: ugbi2WhZwHgxeiQR1a4azn3NXIL51X4NldUbM8yY97U=) 2: FD4056EC7CC411F0BAFA214CC4F9AE02.roa (hash: gyl8LKflFHTBaQXJC874/YdVBr+pHDAsrgRU8hn35pg=) 3: 245F176CA81311F0A8A82B85C4F9AE02.roa (hash: F14KsJqUIcD+JrlfVQCtSv295fN5cUWUmnl8lDM/lag=) 4: 7B73A414A81311F0A69E5E49C4F9AE02.roa (hash: vbUGM0rj13mOKDHrJjbm/2qq1K6gnIIlTesnUtvINDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Mar 2026 19:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Mar 4 19:03:44 2026 GMT Not After : Mar 11 19:03:44 2026 GMT Subject: CN=69a88211-f1e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7a:b1:8f:dd:4e:ee:c2:81:52:06:bc:3d:ab: bf:68:bb:23:d2:27:7d:db:b1:7b:05:ed:80:63:b4: 80:32:c6:3e:9d:cf:e6:b4:e8:8e:cf:9b:29:81:84: bb:20:9d:42:e8:78:d5:32:a1:02:88:0c:bb:e1:3c: a2:1f:42:5d:46:da:9a:7b:de:d0:22:7b:72:cf:46: 56:f3:17:4e:f7:c6:05:db:c6:78:1b:e0:f1:ab:4e: 46:ee:f7:92:08:a5:f7:0a:ab:cb:9f:04:34:1e:69: 26:8f:26:90:87:7d:cc:e0:d3:ba:48:4e:50:61:dc: 55:dc:f7:32:a3:71:5f:c2:19:72:08:c3:2d:6c:ad: 0f:ec:9a:1c:77:e9:23:df:d6:b9:cc:1f:ec:60:2e: ab:a1:74:89:23:ff:aa:25:f9:13:83:68:a3:4d:04: a9:0d:95:95:0c:e3:cf:8a:5b:55:3c:78:8c:81:88: 6e:f0:7d:80:a6:74:91:93:ff:a7:f7:bd:2c:b0:f3: 8d:00:04:96:57:1f:3e:14:ce:01:1c:81:51:73:79: 59:f5:26:38:15:2c:bf:01:dc:1e:95:10:7c:57:b8: d5:7f:b6:b7:b7:3a:7a:b2:94:15:a2:f6:76:48:ae: 6d:49:4b:77:44:c2:f7:3e:0b:d0:d4:96:41:78:d6: 70:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:5D:25:33:3D:4D:91:E6:8D:34:8F:CB:1A:A4:B5:5F:5E:10:06:5E X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:e6:ab:6a:38:1b:ba:9f:c8:3e:ac:14:f3:44:e8:8e:c7:61: 97:ef:17:2c:35:8c:51:4a:ed:fb:66:cd:03:74:79:65:cc:e3: 25:16:b2:dc:a1:24:86:74:00:5f:6d:e6:82:21:3a:bb:7a:73: 02:1a:0a:d1:2f:fe:4a:0e:c3:77:f5:82:bc:ba:17:88:ba:01: 02:2f:00:c6:48:fd:d2:b3:9a:2f:f9:c2:84:a6:33:9c:bd:95: ef:82:5d:16:f4:2e:e2:e8:bb:75:ee:29:6c:d5:ad:36:89:27: e8:df:63:e2:a0:c6:e9:95:00:49:28:fe:13:35:84:6e:98:28: 08:d7:4a:68:bb:99:c0:4b:40:78:b9:68:79:9c:86:46:27:a9: cb:2b:79:2d:eb:ca:82:c4:65:08:44:53:00:f7:28:8b:58:af: 04:79:95:ae:66:7d:82:23:71:a9:19:d9:63:fc:a9:e7:fd:65: 9a:79:51:7d:68:73:e0:3b:ae:ef:1c:bb:09:65:bf:88:3f:c9: f9:12:d4:d0:d4:8a:d5:66:8d:95:4f:28:92:1c:6f:3d:39:08: 17:4e:0d:c9:90:f1:05:e5:8b:c7:a9:10:d7:fe:cd:94:f2:fd: d2:39:f8:fa:ef:6f:15:87:40:0d:1c:ad:31:13:60:6f:ba:de: e7:61:1e:0b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDg0MEZENkY3RTg5MUUzODA0QTdEQjMwOUQwNENFODVD MUFGNzg2RDEwHhcNMjYwMzA0MTkwMzQ0WhcNMjYwMzExMTkwMzQ0WjAYMRYwFAYD VQQDEw02OWE4ODIxMS1mMWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHqxj91O7sKBUga8Pau/aLsj0id927F7Be2AY7SAMsY+nc/mtOiOz5spgYS7 IJ1C6HjVMqECiAy74TyiH0JdRtqae97QIntyz0ZW8xdO98YF28Z4G+Dxq05G7veS CKX3CqvLnwQ0HmkmjyaQh33M4NO6SE5QYdxV3Pcyo3FfwhlyCMMtbK0P7Jocd+kj 39a5zB/sYC6roXSJI/+qJfkTg2ijTQSpDZWVDOPPiltVPHiMgYhu8H2ApnSRk/+n 970ssPONAASWVx8+FM4BHIFRc3lZ9SY4FSy/AdwelRB8V7jVf7a3tzp6spQVovZ2 SK5tSUt3RML3PgvQ1JZBeNZwUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNtdJTM9 TZHmjTSPyxqktV9eEAZeMB8GA1UdIwQYMBaAFIQP1vfokeOASn2zCdBM6Fwa94bR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi8xOTdGRjdBMkI0 MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0QktmYk1KMEV6b1hCcjNo dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi8xOTdGRjdBMkI0MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0 QktmYk1KMEV6b1hCcjNodEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHuarajgbup/IPqwU80Tojsdhl+8XLDWMUUrt+2bNA3R5ZczjJRay3KEkhnQA X23mgiE6u3pzAhoK0S/+Sg7Dd/WCvLoXiLoBAi8Axkj90rOaL/nChKYznL2V74Jd FvQu4ui7de4pbNWtNokn6N9j4qDG6ZUASSj+EzWEbpgoCNdKaLuZwEtAeLloeZyG Riepyyt5LevKgsRlCERTAPcoi1ivBHmVrmZ9giNxqRnZY/yp5/1lmnlRfWhz4Duu 7xy7CWW/iD/J+RLU0NSK1WaNlU8okhxvPTkIF04NyZDxBeWLx6kQ1/7NlPL90jn4 +u9vFYdADRytMRNgb7re52EeCw== -----END CERTIFICATE-----Generated at Thu Mar 5 15:53:09 2026 by rpki-client