$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: YafiYxq4k4p3+DSeLRyt7IiJ9zn0ozBwhvgQqT9OZk0= Subject key identifier: 83:82:06:7C:02:1B:B5:8C:54:5B:2F:8A:FA:23:F4:08:2F:5C:1A:41 Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: 0102 Signing time: Tue 24 Mar 2026 19:07:14 +0000 Manifest this update: Tue 24 Mar 2026 19:07:14 +0000 Manifest next update: Tue 31 Mar 2026 19:07:14 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: lqJjirvF9/SllUxSIXdh71F0carmNfWvh3wYa133GDA=) 2: 245F176CA81311F0A8A82B85C4F9AE02.roa (hash: F14KsJqUIcD+JrlfVQCtSv295fN5cUWUmnl8lDM/lag=) 3: FD4056EC7CC411F0BAFA214CC4F9AE02.roa (hash: gyl8LKflFHTBaQXJC874/YdVBr+pHDAsrgRU8hn35pg=) 4: 7B73A414A81311F0A69E5E49C4F9AE02.roa (hash: vbUGM0rj13mOKDHrJjbm/2qq1K6gnIIlTesnUtvINDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:07:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Mar 24 19:07:14 2026 GMT Not After : Mar 31 19:07:14 2026 GMT Subject: CN=69c2e0e2-e5f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cf:1d:f7:e0:cb:80:4c:5e:82:93:09:03:21: 1b:83:58:68:bb:52:18:38:27:4a:5e:b8:79:63:82: cf:fa:80:69:d9:f7:7d:12:2a:4a:fc:5f:e3:f6:dd: b0:78:dd:bd:04:a1:7d:4e:4c:b7:87:1d:8e:17:8b: 58:35:43:38:a4:2a:c1:bb:23:75:27:b4:68:48:05: a9:ee:a3:9f:53:6a:e4:11:4a:c3:d1:3a:41:c8:5b: 74:c5:c8:3f:a2:84:46:12:7e:ca:6b:03:5e:91:40: 09:88:8a:46:a2:8b:67:b8:b4:2b:50:3e:71:d3:0c: 00:59:8c:63:e0:dd:03:14:ec:59:3e:17:8b:42:28: 8b:63:39:a9:5f:f6:aa:8b:96:d0:0d:6e:df:05:4b: 39:da:e1:77:d1:3b:a4:3e:ba:e3:e1:c5:7f:57:50: 83:ad:22:68:ee:75:bf:23:77:5d:dc:a3:27:68:d9: d6:f1:93:03:61:fc:cf:b1:5e:96:a8:d1:be:0f:8b: 2b:36:f0:b6:4e:8d:a8:ef:d4:a8:f2:b5:5c:71:52: 45:6a:59:1d:32:4a:65:88:06:36:af:4e:7b:7d:a4: b4:8c:2d:cf:ea:db:1a:f1:74:ea:db:13:b0:71:5b: 08:26:3f:82:01:8b:33:c0:65:59:68:eb:79:fc:36: 5d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:82:06:7C:02:1B:B5:8C:54:5B:2F:8A:FA:23:F4:08:2F:5C:1A:41 X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:0c:bf:7f:ac:89:c1:24:53:64:af:50:6e:1c:ad:f0:f6:dc: e3:42:c4:18:b1:d6:65:29:51:a6:4d:85:4d:cf:27:5a:0f:10: 51:45:3c:42:43:46:f5:45:e4:22:42:57:35:a5:be:4d:7a:20: ec:67:e2:c8:f3:aa:cb:44:ce:7a:c1:89:9d:05:f0:f0:4d:dd: 4c:8e:1d:c5:fc:d9:b2:37:eb:18:29:73:0e:73:51:32:0f:27: aa:61:78:47:55:88:19:ce:b5:53:66:61:81:d1:ce:98:2e:09: d3:da:cb:67:33:a9:1d:f0:55:0a:e0:dd:88:44:b9:4a:c3:21: 1d:f5:3a:ca:17:21:a1:72:7f:0e:9f:2d:f0:5a:84:14:5b:e6: e5:73:96:ab:f7:18:0f:5f:f6:3d:88:9f:aa:ec:93:51:63:75: a3:5c:cd:76:94:b5:02:29:ce:80:c0:5b:71:9f:e8:fd:63:54: b2:ba:6d:53:bc:37:e3:08:64:ec:e2:60:34:bd:a9:49:4d:19: 3a:4f:de:28:0e:96:f5:76:cc:14:93:97:2c:7e:c7:48:fa:2e: 27:a7:e2:96:a2:73:77:cb:5e:79:ae:4f:68:4a:80:68:c7:11: 2d:13:45:57:89:e9:30:71:47:cc:ae:b0:b4:3c:5c:b3:46:1c: 2f:76:28:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDg0MEZENkY3RTg5MUUzODA0QTdEQjMwOUQwNENFODVD MUFGNzg2RDEwHhcNMjYwMzI0MTkwNzE0WhcNMjYwMzMxMTkwNzE0WjAYMRYwFAYD VQQDEw02OWMyZTBlMi1lNWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwM8d9+DLgExegpMJAyEbg1hou1IYOCdKXrh5Y4LP+oBp2fd9EipK/F/j9t2w eN29BKF9Tky3hx2OF4tYNUM4pCrBuyN1J7RoSAWp7qOfU2rkEUrD0TpByFt0xcg/ ooRGEn7KawNekUAJiIpGootnuLQrUD5x0wwAWYxj4N0DFOxZPheLQiiLYzmpX/aq i5bQDW7fBUs52uF30TukPrrj4cV/V1CDrSJo7nW/I3dd3KMnaNnW8ZMDYfzPsV6W qNG+D4srNvC2To2o79So8rVccVJFalkdMkpliAY2r057faS0jC3P6tsa8XTq2xOw cVsIJj+CAYszwGVZaOt5/DZdiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIOCBnwC G7WMVFsvivoj9AgvXBpBMB8GA1UdIwQYMBaAFIQP1vfokeOASn2zCdBM6Fwa94bR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi8xOTdGRjdBMkI0 MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0QktmYk1KMEV6b1hCcjNo dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi8xOTdGRjdBMkI0MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0 QktmYk1KMEV6b1hCcjNodEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPQy/f6yJwSRTZK9Qbhyt8Pbc40LEGLHWZSlRpk2FTc8nWg8QUUU8QkNG9UXk IkJXNaW+TXog7GfiyPOqy0TOesGJnQXw8E3dTI4dxfzZsjfrGClzDnNRMg8nqmF4 R1WIGc61U2ZhgdHOmC4J09rLZzOpHfBVCuDdiES5SsMhHfU6yhchoXJ/Dp8t8FqE FFvm5XOWq/cYD1/2PYifquyTUWN1o1zNdpS1AinOgMBbcZ/o/WNUsrptU7w34whk 7OJgNL2pSU0ZOk/eKA6W9XbMFJOXLH7HSPouJ6filqJzd8teea5PaEqAaMcRLRNF V4npMHFHzK6wtDxcs0YcL3YoqA== -----END CERTIFICATE-----Generated at Thu Mar 26 09:22:23 2026 by rpki-client