$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: zVzuOrLl2gZTdKnyBUjNTwHliQ4fEOz4d2nW1IeZ4F4= Subject key identifier: 83:1D:94:1B:F8:F3:8F:25:98:16:1A:FB:5F:49:EF:62:A9:80:68:B6 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 03DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 03D0 Signing time: Sun 15 Mar 2026 00:03:39 +0000 Manifest this update: Sun 15 Mar 2026 00:03:39 +0000 Manifest next update: Sun 22 Mar 2026 00:03:39 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: rQSCoB42earLXB3iIF8GNXeiZEL2lcse8JjbpvD3CLU=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: vU/0sCO+F2+gmxcvidyq9+M7kV+eHGWZ8IbirsSlbG8=) 3: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: W1I0qwQLpYviXsJHxjtUW+8G8aD5Cp7wKSmeeq2TDCw=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: TagOD3ZDqaOoAVz4NHmUoadFGOSc1C7/yOL765hn6Do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 00:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 991 (0x3df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Mar 15 00:03:39 2026 GMT Not After : Mar 22 00:03:39 2026 GMT Subject: CN=69b5f75b-e9bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:73:06:1b:36:51:ef:06:df:b6:05:9e:ee:56: 7b:89:78:0a:16:ea:b8:bc:86:f1:59:b9:29:74:b6: 44:b4:59:34:0d:d3:78:8f:4f:56:eb:68:7a:7f:fa: 55:ee:db:a4:b6:c4:d4:71:3a:2a:0a:1e:98:1f:eb: 3d:be:81:80:b4:57:25:50:b8:40:e7:02:34:bc:c8: c8:6d:5a:19:c1:14:08:9a:37:80:44:9b:f3:c5:56: 53:92:56:11:bf:de:87:d0:00:8c:f6:29:31:0e:d8: 99:e3:d2:6d:4b:6c:51:3f:21:48:7d:36:74:b6:58: 5d:84:47:d8:61:f2:cf:07:e7:3c:3c:5f:b7:85:08: a0:ed:77:59:d4:c3:48:6c:c9:c7:ca:c9:1a:dc:e0: 1e:9d:86:8c:5f:96:79:7e:41:2f:3d:12:a8:3c:7d: fb:93:ad:13:58:98:8c:7c:10:58:86:b5:f8:40:41: 69:5b:f1:7e:9d:c6:ab:fb:b5:97:fb:db:91:c9:7c: 99:e4:61:d6:c5:46:c3:20:b6:df:2e:78:cb:b5:30: 03:b1:9f:fb:20:2e:cf:49:1c:82:d7:db:bd:5c:ce: b4:ad:6c:6a:33:51:7c:dc:cc:fe:9b:a9:01:fc:6b: fc:75:3a:71:1e:8c:d1:f3:6c:ab:4a:89:c3:1f:36: c0:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:1D:94:1B:F8:F3:8F:25:98:16:1A:FB:5F:49:EF:62:A9:80:68:B6 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:a6:b4:5f:b5:17:df:53:ff:b7:91:d5:14:67:3e:90:5e:d6: 83:c4:6f:0c:f6:03:b6:80:81:c1:21:f9:ea:da:5e:20:82:ca: c1:8e:2e:ed:d8:98:29:e1:2d:b3:e8:cd:65:22:a4:95:e7:c4: ed:a0:c3:a1:70:a2:6c:5b:ad:f7:29:73:06:89:d4:cc:d8:83: 28:40:4a:76:b8:8c:3e:a5:ec:72:dc:a2:2d:c8:2c:ec:6d:4b: c9:b7:8e:0f:29:9a:97:a7:bb:85:62:b5:fb:d4:45:04:fb:9a: 37:94:12:5a:c4:a8:c9:da:3d:6f:28:2d:16:81:19:cd:b8:53: 53:df:eb:7d:64:df:b8:ab:0d:d7:c2:6d:92:cb:43:55:1e:b9: eb:eb:df:ae:f0:87:ca:7a:d7:07:51:a7:d9:20:f9:05:d6:68: f9:58:0d:d2:c0:ea:e7:61:f6:6f:e4:f1:97:1e:31:67:70:a3: f3:ef:fc:a0:f2:22:79:9f:cc:59:9b:74:84:11:4d:d0:12:03: b8:b7:16:97:dd:a6:bd:e0:36:a6:5d:a4:49:f8:f6:a5:5f:e6: 47:fa:c1:d1:0a:32:22:0a:61:09:e9:d3:4d:0c:41:1d:e1:1f: be:0f:9e:a5:f1:8f:bb:14:ea:d9:b3:d4:4c:5d:22:e6:3c:a3: e9:b8:42:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjYwMzE1MDAwMzM5WhcNMjYwMzIyMDAwMzM5WjAYMRYwFAYD VQQDEw02OWI1Zjc1Yi1lOWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA63MGGzZR7wbftgWe7lZ7iXgKFuq4vIbxWbkpdLZEtFk0DdN4j09W62h6f/pV 7tuktsTUcToqCh6YH+s9voGAtFclULhA5wI0vMjIbVoZwRQImjeARJvzxVZTklYR v96H0ACM9ikxDtiZ49JtS2xRPyFIfTZ0tlhdhEfYYfLPB+c8PF+3hQig7XdZ1MNI bMnHyska3OAenYaMX5Z5fkEvPRKoPH37k60TWJiMfBBYhrX4QEFpW/F+ncar+7WX +9uRyXyZ5GHWxUbDILbfLnjLtTADsZ/7IC7PSRyC19u9XM60rWxqM1F83Mz+m6kB /Gv8dTpxHozR82yrSonDHzbAVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIMdlBv4 848lmBYa+19J72KpgGi2MB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS6a0X7UX31P/t5HVFGc+kF7Wg8RvDPYDtoCBwSH56tpeIILKwY4u7diYKeEt s+jNZSKklefE7aDDoXCibFut9ylzBonUzNiDKEBKdriMPqXsctyiLcgs7G1LybeO Dymal6e7hWK1+9RFBPuaN5QSWsSoydo9bygtFoEZzbhTU9/rfWTfuKsN18JtkstD VR656+vfrvCHynrXB1Gn2SD5BdZo+VgN0sDq52H2b+Txlx4xZ3Cj8+/8oPIieZ/M WZt0hBFN0BIDuLcWl92mveA2pl2kSfj2pV/mR/rB0QoyIgphCenTTQxBHeEfvg+e pfGPuxTq2bPUTF0i5jyj6bhCVg== -----END CERTIFICATE-----Generated at Tue Mar 17 00:40:26 2026 by rpki-client