$ rpki-client -vvf rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft File: T4QeODPgrG_hvu69ABI10VKOzno.mft (raw, json) Hash identifier: p7t4uxe+xv9dURtMUewGHFXES+A3U4AewQ9Zp77xYy8= Subject key identifier: 36:3D:9E:38:E8:22:69:19:28:3E:2A:1E:12:47:54:58:E2:71:91:95 Authority key identifier: 4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A Certificate issuer: /CN=A913AF6A/serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Certificate serial: 01A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft Manifest number: 0199 Signing time: Tue 03 Mar 2026 03:56:42 +0000 Manifest this update: Tue 03 Mar 2026 03:56:42 +0000 Manifest next update: Tue 10 Mar 2026 03:56:42 +0000 Files and hashes: 1: T4QeODPgrG_hvu69ABI10VKOzno.crl (hash: lxS3PC8CpKQvORYJ2CxU464IY8EPpHHe9eJdIfnT7k0=) 2: D2FF8C06A92711F08CEB6934C4F9AE02.roa (hash: KRsNH66T+IbVfJVXh4HXcfnfG/XP7iz+CZYJM0ybrSQ=) 3: 2546725EA92811F0A138DF72C4F9AE02.roa (hash: ccOvd6OCJeS5Mo5TD4UA7bVIYTSRvb313FpwtTK7ruw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 03:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 419 (0x1a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AF6A, serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Validity Not Before: Mar 3 03:56:42 2026 GMT Not After : Mar 10 03:56:42 2026 GMT Subject: CN=69a65bfa-e91a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:28:a2:6f:a2:2c:85:b1:47:22:f0:3e:c3:99: 5f:b4:88:0f:42:c9:ee:01:43:01:f3:d9:7d:d7:ea: b8:cc:6b:b7:1d:fe:81:dd:05:3e:d6:3e:58:17:65: eb:9e:c4:ca:75:b6:78:7c:7b:92:9e:ff:0b:38:b5: 9d:e6:5b:17:49:96:af:55:7a:5c:77:55:b6:0b:bf: fd:b8:25:70:bf:f0:10:4d:98:3f:8c:d4:c2:dd:3c: 9b:00:30:8a:44:81:18:71:9e:b8:94:4b:6f:b5:bc: df:e4:60:bf:c4:37:0d:cc:9a:5b:a3:31:58:46:25: d6:83:21:8e:d4:88:7b:3a:57:b7:b8:45:e1:c7:27: 23:37:34:d3:f7:6e:37:4f:c7:13:f3:a9:78:b9:8f: 37:41:2c:ed:7e:67:eb:cd:bc:45:82:fa:b5:4f:f5: cb:f1:96:62:a1:39:e8:8d:f0:93:4b:cd:44:fd:06: a1:e9:8f:f7:cf:51:5c:b2:fe:cb:d1:16:68:ec:f8: d6:ae:6d:b5:30:4f:54:55:21:2e:f3:50:01:f0:df: 7c:39:f3:14:85:33:fc:6a:e9:2f:8d:66:e3:c7:13: 1c:a1:e2:99:50:ed:1d:65:6e:30:fd:d5:78:2f:a9: a4:41:c7:40:9b:7f:6c:07:68:cd:ff:6c:c0:9d:fe: 22:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:3D:9E:38:E8:22:69:19:28:3E:2A:1E:12:47:54:58:E2:71:91:95 X509v3 Authority Key Identifier: keyid:4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:4c:39:d4:dd:ca:8f:e5:9f:37:0d:19:18:64:7a:a1:8b:a0: d1:a5:80:58:39:dd:c1:e1:2d:c6:20:11:80:5c:5e:7d:b5:a5: e5:e4:44:66:e4:cb:f8:2c:b3:23:d1:ac:b8:08:32:52:6d:e7: 13:c8:f5:4f:c7:9f:db:ba:c9:3c:ad:51:d2:af:2e:61:18:e8: cd:3a:f7:e1:3c:1a:20:4a:11:8f:9c:74:36:d5:93:12:70:fd: 22:34:2e:db:13:0f:3b:88:a9:7d:24:b4:5d:77:d5:06:69:b6: 99:fc:e0:03:d9:7e:70:48:6f:69:aa:93:e2:c7:f2:86:0c:f4: bb:66:e2:2d:64:2f:71:c6:5c:15:c5:e3:5e:b9:8d:a2:2a:8b: e6:26:9f:e3:71:5f:76:45:5a:95:3b:fc:55:f3:a0:e4:b1:08: b0:48:e4:d0:cb:0e:97:c8:84:59:a2:03:ca:d0:bb:03:42:a4: 5c:8b:79:d6:b1:28:bc:34:59:90:07:17:f8:fa:8f:f7:ce:83: 2c:c7:3d:97:1f:7a:67:2c:1b:10:e3:ef:40:bf:07:8d:02:e3: 7b:bd:66:f7:47:2a:e2:b4:2b:86:c6:98:5a:b4:a5:7a:b0:cd: a1:a1:67:3e:cc:31:5d:b7:84:10:7f:bd:f4:ee:27:a2:88:74: f9:88:6e:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FGNkExMTAvBgNVBAUTKDRGODQxRTM4MzNFMEFDNkZFMUJFRUVCRDAwMTIzNUQx NTI4RUNFN0EwHhcNMjYwMzAzMDM1NjQyWhcNMjYwMzEwMDM1NjQyWjAYMRYwFAYD VQQDEw02OWE2NWJmYS1lOTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriiib6IshbFHIvA+w5lftIgPQsnuAUMB89l91+q4zGu3Hf6B3QU+1j5YF2Xr nsTKdbZ4fHuSnv8LOLWd5lsXSZavVXpcd1W2C7/9uCVwv/AQTZg/jNTC3TybADCK RIEYcZ64lEtvtbzf5GC/xDcNzJpbozFYRiXWgyGO1Ih7Ole3uEXhxycjNzTT9243 T8cT86l4uY83QSztfmfrzbxFgvq1T/XL8ZZioTnojfCTS81E/Qah6Y/3z1Fcsv7L 0RZo7PjWrm21ME9UVSEu81AB8N98OfMUhTP8aukvjWbjxxMcoeKZUO0dZW4w/dV4 L6mkQcdAm39sB2jN/2zAnf4i4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDY9njjo ImkZKD4qHhJHVFjicZGVMB8GA1UdIwQYMBaAFE+EHjgz4Kxv4b7uvQASNdFSjs56 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUY2QS84MzdDRDM0NkFF NDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JHX2h2dTY5QUJJMTBWS096 bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1Q0UWVPRFBnckdfaHZ1NjlBQkkxMFZLT3puby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUY2QS84MzdDRDM0NkFFNDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JH X2h2dTY5QUJJMTBWS096bm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX0w51N3Kj+WfNw0ZGGR6oYug0aWAWDndweEtxiARgFxefbWl5eREZuTL+Cyz I9GsuAgyUm3nE8j1T8ef27rJPK1R0q8uYRjozTr34TwaIEoRj5x0NtWTEnD9IjQu 2xMPO4ipfSS0XXfVBmm2mfzgA9l+cEhvaaqT4sfyhgz0u2biLWQvccZcFcXjXrmN oiqL5iaf43FfdkValTv8VfOg5LEIsEjk0MsOl8iEWaIDytC7A0KkXIt51rEovDRZ kAcX+PqP986DLMc9lx96ZywbEOPvQL8HjQLje71m90cq4rQrhsaYWrSlerDNoaFn PswxXbeEEH+99O4nooh0+YhuhQ== -----END CERTIFICATE-----Generated at Wed Mar 4 08:20:30 2026 by rpki-client