$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: PepMhTad4LXBiy1J6EZKVv7tQtrZSSgpuqheMTCbBQE= Subject key identifier: 48:92:38:ED:70:36:D7:EA:58:E7:7F:09:9C:73:D7:1F:AB:78:81:A3 Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 0879 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 0865 Signing time: Sat 28 Mar 2026 20:36:46 +0000 Manifest this update: Sat 28 Mar 2026 20:36:45 +0000 Manifest next update: Sat 04 Apr 2026 20:36:45 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: U+/oCjlJOxiqVnukJRqEBhBfCBLagkx8kgdl3JULAvM=) 2: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: /xCNBqLNz0L8cDqpYEQMnHLgfzVahak+S8dk9Uan5oM=) 3: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: IxYVxX1BoFCHdIOrjAwAEmnCO+dNiZSE2wEYWsIxYD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 20:36:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2169 (0x879) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Mar 28 20:36:45 2026 GMT Not After : Apr 4 20:36:45 2026 GMT Subject: CN=69c83bde-49ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b0:21:6b:45:aa:ee:62:ff:4b:1a:01:4f:44: 4d:60:f4:b0:18:a2:c8:ff:f5:04:a0:c4:97:cf:ca: c1:85:89:68:30:5d:a6:60:09:69:31:f2:dd:2e:4c: 31:28:4b:b0:e6:7a:e5:bb:1b:0e:5c:1b:f5:05:8d: aa:03:b6:cb:62:a9:33:55:98:f4:5e:8a:b0:3a:9c: d3:00:fd:ee:b8:b9:91:ea:16:93:46:ff:42:0c:c2: 9a:90:56:2b:7a:10:b9:68:e8:58:44:a6:32:31:b7: ab:40:e1:3b:82:72:25:cd:ec:1a:61:bf:35:ea:5e: c9:15:f7:fb:25:d1:db:60:d1:1c:40:30:60:38:ba: 2a:ac:7e:38:37:bc:81:1c:b1:2b:bf:60:11:20:e7: 74:e4:3e:89:c8:ae:0b:74:08:e5:29:67:02:2c:73: a3:00:4a:0c:35:27:f0:e0:54:54:1d:01:e2:04:15: f9:69:a8:db:07:9d:8a:cb:b3:0c:1b:57:34:7a:3b: 58:96:33:75:ba:b5:e3:a0:83:df:93:0b:0d:ac:9f: 21:12:fe:9f:4c:cd:67:d5:2c:90:1b:8b:64:ae:54: f7:9f:9b:27:2a:d6:2a:c7:7b:dc:7a:af:67:d7:21: a1:1f:4e:55:eb:5f:b9:33:b5:18:8b:ed:28:2a:d2: 37:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:92:38:ED:70:36:D7:EA:58:E7:7F:09:9C:73:D7:1F:AB:78:81:A3 X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:66:5b:43:cb:7b:b7:83:fc:a7:05:79:ff:ae:59:f3:72:3f: 47:ed:ed:12:f9:83:a2:bd:d4:21:c9:36:55:1d:e1:1b:43:7a: ee:59:7a:90:cf:05:bb:e8:d4:cf:6d:f9:04:59:bb:8d:09:8a: 25:81:bc:eb:32:2c:49:da:6b:32:99:91:76:33:68:85:38:d1: 05:59:9f:d2:b1:5a:97:bd:d6:48:e9:e5:e9:3c:85:d8:a3:b2: 65:45:57:d5:58:e6:57:c6:f0:ff:e9:8f:a1:12:5d:0a:ec:0b: a8:79:d0:57:fb:dc:f6:44:c1:3a:b1:de:80:97:15:ff:16:c8: da:0c:bf:52:2e:4f:26:43:1c:c7:1f:6c:a1:e3:9c:41:85:9c: 3d:50:c9:dd:1e:86:c8:da:be:51:bb:9f:96:2c:ef:5b:54:57: 69:73:3b:ea:e4:c4:28:36:22:46:7b:d0:66:2e:f6:0b:c7:e8: 32:02:a2:af:11:44:c4:41:d4:ce:4a:06:4c:eb:ac:9b:79:1d: 47:de:64:b5:c4:34:d7:67:ee:9d:c2:94:a0:92:4a:2f:36:a3: 98:ae:fb:97:61:90:2d:e4:76:e2:24:55:9d:91:4e:8e:19:c6: 4e:c1:6f:1b:66:02:51:52:ce:3e:fe:73:0b:fe:59:ba:94:73: d8:c6:7c:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjYwMzI4MjAzNjQ1WhcNMjYwNDA0MjAzNjQ1WjAYMRYwFAYD VQQDEw02OWM4M2JkZS00OWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbAha0Wq7mL/SxoBT0RNYPSwGKLI//UEoMSXz8rBhYloMF2mYAlpMfLdLkwx KEuw5nrluxsOXBv1BY2qA7bLYqkzVZj0XoqwOpzTAP3uuLmR6haTRv9CDMKakFYr ehC5aOhYRKYyMberQOE7gnIlzewaYb816l7JFff7JdHbYNEcQDBgOLoqrH44N7yB HLErv2ARIOd05D6JyK4LdAjlKWcCLHOjAEoMNSfw4FRUHQHiBBX5aajbB52Ky7MM G1c0ejtYljN1urXjoIPfkwsNrJ8hEv6fTM1n1SyQG4tkrlT3n5snKtYqx3vceq9n 1yGhH05V61+5M7UYi+0oKtI3+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEiSOO1w NtfqWOd/CZxz1x+reIGjMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOmZbQ8t7t4P8pwV5/65Z83I/R+3tEvmDor3UIck2VR3hG0N67ll6kM8Fu+jU z235BFm7jQmKJYG86zIsSdprMpmRdjNohTjRBVmf0rFal73WSOnl6TyF2KOyZUVX 1VjmV8bw/+mPoRJdCuwLqHnQV/vc9kTBOrHegJcV/xbI2gy/Ui5PJkMcxx9soeOc QYWcPVDJ3R6GyNq+UbuflizvW1RXaXM76uTEKDYiRnvQZi72C8foMgKirxFExEHU zkoGTOusm3kdR95ktcQ012funcKUoJJKLzajmK77l2GQLeR24iRVnZFOjhnGTsFv G2YCUVLOPv5zC/5ZupRz2MZ8IA== -----END CERTIFICATE-----Generated at Sun Mar 29 20:01:38 2026 by rpki-client