$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: o4koO7d3MppGzWBSv/LTymCNAzRujvJZnTNVpM9lBqY= Subject key identifier: 24:71:9D:3A:54:1E:21:EA:F2:40:9F:5D:67:F3:8A:9A:0B:2F:3D:B1 Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: BA Signing time: Tue 03 Mar 2026 06:39:56 +0000 Manifest this update: Tue 03 Mar 2026 06:39:56 +0000 Manifest next update: Tue 10 Mar 2026 06:39:56 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: PwYP9Zc9z/N6XVJGnel2VZ5aHM0RZaa6j4fu+7RfAZ4=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: JXFvADq4YTaqaen/tnBh56vOg+t9TdkXrX7ZuGzAnPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 06:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Mar 3 06:39:56 2026 GMT Not After : Mar 10 06:39:56 2026 GMT Subject: CN=69a6823c-493e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:03:7e:1e:92:db:f0:89:f9:ff:6f:18:c9:54: 59:4f:19:e8:de:d8:8f:ed:09:16:2d:6d:dd:e4:84: 91:3f:59:f0:4c:7e:2f:26:77:66:dd:b4:d8:00:fc: f8:d9:d2:3c:49:33:3b:05:06:9e:f4:59:88:89:c9: df:8b:8c:6f:e9:da:d8:39:dc:28:4c:ac:25:61:e6: b6:73:76:98:9b:80:38:19:d3:57:db:61:de:ba:dc: 81:d1:62:fe:2f:f5:4e:c1:f7:7b:b8:7c:c8:55:a7: a7:e5:0e:f4:01:f1:fb:55:3a:3a:1e:db:0f:db:c6: 6b:0c:f3:fd:41:09:a7:dd:2d:c1:cf:22:d6:4a:aa: bb:4d:84:0e:cc:30:9d:dc:dd:f6:44:f8:46:86:24: 95:ef:50:0a:82:a4:99:7d:9c:9f:f6:98:dc:b3:a0: 3d:31:81:eb:9e:a7:09:8d:0a:0b:d1:39:bd:cd:8d: a7:41:b3:50:8f:98:3e:5d:fc:0f:74:98:cc:88:97: 6d:c2:5f:15:4a:df:97:8a:d4:69:35:55:9b:c3:ca: c4:bb:e8:24:88:4f:76:73:92:88:bc:95:95:0c:6c: e3:c3:13:88:72:69:06:57:42:05:e0:c6:8e:9f:19: c3:9a:89:fd:0d:15:0f:ba:5e:cc:a1:46:15:8c:e9: f1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:71:9D:3A:54:1E:21:EA:F2:40:9F:5D:67:F3:8A:9A:0B:2F:3D:B1 X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:63:7f:ad:4a:40:47:6e:d6:75:a8:33:36:3c:9e:b5:12:cf: 4f:24:6a:00:fc:bc:40:66:de:40:52:93:f9:26:ad:14:d3:0e: 5d:42:39:d6:cf:9b:06:28:13:0f:5d:12:ea:02:4b:b6:20:c8: ce:2c:9e:ad:0b:3f:1d:c1:ca:ea:5c:f0:e2:35:9b:7e:01:06: d0:07:ae:0c:f7:72:5f:14:5c:b3:fa:14:2d:05:7c:72:97:8a: 1c:e9:00:01:30:1a:1c:d2:c5:89:ae:cc:5b:c1:5b:6d:42:fa: 2b:f9:bc:f2:2e:b6:0c:7a:95:17:2b:82:1d:b9:8f:4f:e8:8d: 20:58:e7:51:1c:18:06:35:df:db:1b:05:ee:b6:3f:f2:eb:e7: d2:d9:6a:26:d3:9f:36:f6:3d:21:05:fc:f2:ea:81:f8:0f:ee: ec:08:22:81:44:52:cb:55:48:67:65:1d:74:d2:0d:4b:bd:df: a0:a6:e8:22:f5:29:28:1d:8d:5e:22:1d:e3:92:4c:2b:61:90: 6d:d2:05:26:d2:8f:1a:eb:70:c2:59:ea:f1:e6:c8:ae:4b:f9: 45:42:10:69:56:a9:1c:e9:4a:d3:a3:ae:8b:7b:bb:74:9b:eb: 3f:f0:7f:8d:a6:4a:77:8f:63:31:ee:b1:02:90:38:40:bd:8b: 8b:f8:54:4b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3RkMxMTAvBgNVBAUTKDg1NzUwN0YxRDhCMzkxNUM5NTEwRDUwNDcwMEVDRTg5 MEIwNjY4NUYwHhcNMjYwMzAzMDYzOTU2WhcNMjYwMzEwMDYzOTU2WjAYMRYwFAYD VQQDEw02OWE2ODIzYy00OTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8QN+HpLb8In5/28YyVRZTxno3tiP7QkWLW3d5ISRP1nwTH4vJndm3bTYAPz4 2dI8STM7BQae9FmIicnfi4xv6drYOdwoTKwlYea2c3aYm4A4GdNX22HeutyB0WL+ L/VOwfd7uHzIVaen5Q70AfH7VTo6HtsP28ZrDPP9QQmn3S3BzyLWSqq7TYQOzDCd 3N32RPhGhiSV71AKgqSZfZyf9pjcs6A9MYHrnqcJjQoL0Tm9zY2nQbNQj5g+XfwP dJjMiJdtwl8VSt+XitRpNVWbw8rEu+gkiE92c5KIvJWVDGzjwxOIcmkGV0IF4MaO nxnDmon9DRUPul7MoUYVjOnxMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCRxnTpU HiHq8kCfXWfzipoLLz2xMB8GA1UdIwQYMBaAFIV1B/HYs5FclRDVBHAOzokLBmhf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjdGQy9DNzNCQTE2NDAz QTcxMUYwQTdGRjlDODdDNEY5QUUwMi9oWFVIOGRpemtWeVZFTlVFY0E3T2lRc0dh RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjdGQy9DNzNCQTE2NDAzQTcxMUYwQTdGRjlDODdDNEY5QUUwMi9oWFVIOGRpemtW eVZFTlVFY0E3T2lRc0dhRjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc2N/rUpAR27WdagzNjyetRLPTyRqAPy8QGbeQFKT+SatFNMOXUI51s+bBigT D10S6gJLtiDIziyerQs/HcHK6lzw4jWbfgEG0AeuDPdyXxRcs/oULQV8cpeKHOkA ATAaHNLFia7MW8FbbUL6K/m88i62DHqVFyuCHbmPT+iNIFjnURwYBjXf2xsF7rY/ 8uvn0tlqJtOfNvY9IQX88uqB+A/u7AgigURSy1VIZ2UddNINS73foKboIvUpKB2N XiId45JMK2GQbdIFJtKPGutwwlnq8ebIrkv5RUIQaVapHOlK06Oui3u7dJvrP/B/ jaZKd49jMe6xApA4QL2Li/hUSw== -----END CERTIFICATE-----Generated at Wed Mar 4 08:20:45 2026 by rpki-client