$ rpki-client -vvf rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft File: fHxDqtDIa183jl18MzKgXeRhJ1A.mft (raw, json) Hash identifier: 2nm4GI8c0iFLVZPb3Q+4YW7kxYzK4QoMTMlmk5UqRB8= Subject key identifier: 8E:CF:37:FB:8B:4F:91:21:CF:84:E5:91:2C:3E:33:E2:16:56:B2:8E Authority key identifier: 7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 Certificate issuer: /CN=A912CA50/serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Certificate serial: 08AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft Manifest number: 0864 Signing time: Fri 20 Mar 2026 20:25:34 +0000 Manifest this update: Fri 20 Mar 2026 20:25:34 +0000 Manifest next update: Fri 27 Mar 2026 20:25:34 +0000 Files and hashes: 1: fHxDqtDIa183jl18MzKgXeRhJ1A.crl (hash: Nxme9jElkSHtfEclptn/m3909QeW8ZShINw6Pwca6cE=) 2: E897EA5A3EE411ED905A3415C4F9AE02.roa (hash: MaFJmDPMqlk1C6MUJjdtLiNgPwGqra//weYceabgP/k=) 3: E7EBC9003EE411ED905A3415C4F9AE02.roa (hash: N8OrGg15ZoxlIKz8paOj7jgooryKDtsZ+DLKkaeQezQ=) 4: 5035F194413211EDAAFCC96EC4F9AE02.roa (hash: kfnLo6TLNnxHzHz2hfx3dzeu6fOXlby4NhM/hMtaUog=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 20:25:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2223 (0x8af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CA50, serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Validity Not Before: Mar 20 20:25:34 2026 GMT Not After : Mar 27 20:25:34 2026 GMT Subject: CN=69bdad3e-2360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a7:12:75:0e:cd:98:d9:ef:f9:31:ec:4d:de: ca:3a:90:d0:1d:3f:7b:1c:5f:b4:76:12:98:43:0d: d9:54:18:a5:55:35:38:d4:0e:fc:53:84:d9:b2:2d: 94:91:7d:35:93:e5:62:78:13:fa:ea:04:fb:28:48: ad:02:6b:93:d0:93:cc:a4:da:88:cc:bd:d9:77:b8: f9:41:f8:35:39:e8:87:07:15:b0:09:4b:a2:5b:28: ad:50:64:97:0d:cd:e3:1c:af:9a:7e:00:eb:20:9b: e0:0b:62:c9:17:5d:eb:46:41:c4:10:81:0e:94:01: f7:94:fa:9f:14:40:70:e2:b5:7b:48:5c:15:52:5a: b5:50:6a:c8:9a:94:5c:6f:c4:a1:8a:ec:52:7a:89: 63:56:37:af:04:21:74:f9:94:3f:1b:fb:2c:c0:7a: 1b:5d:9a:35:d2:a9:99:ed:51:bd:eb:8c:2c:be:47: b3:04:a8:a8:18:fe:0d:48:84:b5:00:d7:89:02:1e: 14:c2:a2:cb:2a:87:61:0f:37:7d:9f:b2:36:2d:15: ba:53:06:70:99:30:a9:b5:4a:95:a9:62:89:cf:ae: 71:28:63:c0:dc:c6:06:4e:6d:55:16:11:1e:f9:cd: a7:ec:33:a2:40:6c:73:20:f0:a1:83:4b:3b:4c:7b: 36:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:CF:37:FB:8B:4F:91:21:CF:84:E5:91:2C:3E:33:E2:16:56:B2:8E X509v3 Authority Key Identifier: keyid:7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:da:6e:11:21:46:da:6d:c8:18:63:d2:ca:a2:fa:d5:38:46: 23:e9:0b:b3:1b:a7:cb:37:ee:08:d2:20:29:6f:a0:f8:f9:fa: be:4a:19:50:31:b4:db:52:19:a2:8b:2f:bd:0a:fa:64:ab:0b: 00:b6:94:8b:e3:a4:6a:1b:48:84:a0:24:ee:51:bf:92:a0:2c: 38:04:b5:ed:cf:b2:64:f3:34:82:6c:c7:3a:95:1e:81:0b:b2: 1b:b9:f3:2c:c6:31:80:81:9b:aa:a4:b9:fc:58:4a:f9:f8:fd: 55:1a:ec:ef:75:93:47:b6:6b:b9:5a:ad:c3:67:e7:47:8f:1c: d6:26:e1:f7:5b:09:29:e3:e3:2a:b0:a0:d9:4b:13:4f:05:a5: 4b:1e:bd:c8:4f:20:9d:b0:e5:e0:88:f7:2f:24:df:7b:47:b0: 3f:28:e2:68:03:be:eb:cf:df:a8:06:a1:d1:9e:21:d5:ee:a2: 16:3e:fe:9d:eb:c5:1e:6c:4d:87:97:1d:bb:15:06:20:f2:14: 7e:fe:34:32:14:d6:35:e4:42:2f:f9:62:52:49:a5:c6:d7:65: 16:85:1f:a0:4e:aa:88:ce:2f:5f:66:b5:1c:7d:c4:d2:50:2f: 9a:9c:1a:6f:af:f7:1f:b6:35:c4:c3:35:2d:5c:00:73:50:f5: 93:19:ce:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNBNTAxMTAvBgNVBAUTKDdDN0M0M0FBRDBDODZCNUYzNzhFNUQ3QzMzMzJBMDVE RTQ2MTI3NTAwHhcNMjYwMzIwMjAyNTM0WhcNMjYwMzI3MjAyNTM0WjAYMRYwFAYD VQQDEw02OWJkYWQzZS0yMzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6cSdQ7NmNnv+THsTd7KOpDQHT97HF+0dhKYQw3ZVBilVTU41A78U4TZsi2U kX01k+VieBP66gT7KEitAmuT0JPMpNqIzL3Zd7j5Qfg1OeiHBxWwCUuiWyitUGSX Dc3jHK+afgDrIJvgC2LJF13rRkHEEIEOlAH3lPqfFEBw4rV7SFwVUlq1UGrImpRc b8ShiuxSeoljVjevBCF0+ZQ/G/sswHobXZo10qmZ7VG964wsvkezBKioGP4NSIS1 ANeJAh4UwqLLKodhDzd9n7I2LRW6UwZwmTCptUqVqWKJz65xKGPA3MYGTm1VFhEe +c2n7DOiQGxzIPChg0s7THs21QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI7PN/uL T5Ehz4TlkSw+M+IWVrKOMB8GA1UdIwQYMBaAFHx8Q6rQyGtfN45dfDMyoF3kYSdQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0E1MC8zODFDMTcxNkZC QTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWExODNqbDE4TXpLZ1hlUmhK MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZIeERxdERJYTE4M2psMThNektnWGVSaEoxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0E1MC8zODFDMTcxNkZCQTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWEx ODNqbDE4TXpLZ1hlUmhKMUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbtpuESFG2m3IGGPSyqL61ThGI+kLsxunyzfuCNIgKW+g+Pn6vkoZUDG021IZ oosvvQr6ZKsLALaUi+OkahtIhKAk7lG/kqAsOAS17c+yZPM0gmzHOpUegQuyG7nz LMYxgIGbqqS5/FhK+fj9VRrs73WTR7ZruVqtw2fnR48c1ibh91sJKePjKrCg2UsT TwWlSx69yE8gnbDl4Ij3LyTfe0ewPyjiaAO+68/fqAah0Z4h1e6iFj7+nevFHmxN h5cduxUGIPIUfv40MhTWNeRCL/liUkmlxtdlFoUfoE6qiM4vX2a1HH3E0lAvmpwa b6/3H7Y1xMM1LVwAc1D1kxnOkw== -----END CERTIFICATE-----Generated at Sat Mar 21 13:17:25 2026 by rpki-client