$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: gNQfRA4Q4VaPZ3FCkTkX6uFN2zQuiCe6y2MVvJXZ9s8= Subject key identifier: 16:D5:F7:4B:B8:58:BF:A9:EC:51:4F:A8:D4:7C:53:53:75:F7:67:08 Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 0988 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 0977 Signing time: Tue 24 Mar 2026 19:51:46 +0000 Manifest this update: Tue 24 Mar 2026 19:51:46 +0000 Manifest next update: Tue 31 Mar 2026 19:51:46 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: Cpl+TzHBgbpQ76mYfvxFYAhiDD6ljWCwSl8LZ4FPUbM=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: DRHD5xTVFWimAXAoILMZ1X9MVVZOC51/xO8I5gnlqy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:51:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2440 (0x988) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Mar 24 19:51:46 2026 GMT Not After : Mar 31 19:51:46 2026 GMT Subject: CN=69c2eb52-621a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9e:79:2a:dd:a7:60:76:31:b9:db:9d:e5:e2: 9a:cc:33:52:0d:c3:c2:79:ec:27:aa:e3:db:5c:60: 94:ba:12:da:74:ea:fd:f3:77:8d:a2:05:78:e0:68: 7f:5f:87:df:a2:01:fb:89:e1:38:58:96:ef:42:26: 23:6d:63:d9:a4:b2:a9:b8:e1:dc:cb:94:3a:a9:99: 90:73:ac:59:fc:9f:74:42:7a:2a:f2:38:e1:f2:30: f4:83:86:a3:26:1c:d6:8d:35:27:0c:df:cc:50:ad: ef:0d:48:cf:42:e4:12:f7:a6:bf:96:4d:f4:26:59: d5:46:de:55:33:df:40:30:aa:95:32:ef:aa:a8:f6: c0:8d:a1:b0:3b:d9:b4:09:cd:74:01:70:33:e5:fb: 05:e0:b9:15:1a:26:d9:3e:b2:6a:cb:3f:9c:ab:e5: e4:54:69:b9:6f:bd:25:98:00:d9:be:80:d1:54:a0: ca:af:73:f7:07:02:8a:8c:c9:bd:bf:b4:aa:aa:f4: ac:3e:fa:05:92:9f:de:72:ea:0a:37:dc:a0:58:8d: 0e:52:cc:63:84:42:8d:2c:3e:8c:04:b3:6f:49:d5: 72:ca:f5:7e:5f:fc:3f:40:04:d4:f9:a4:8d:28:6b: dd:f2:51:4a:74:8a:9b:ec:da:49:f5:b9:79:ea:a8: c1:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:D5:F7:4B:B8:58:BF:A9:EC:51:4F:A8:D4:7C:53:53:75:F7:67:08 X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:8f:1b:27:5f:37:59:c9:db:56:2e:0b:a4:89:0c:bf:96:b2: 39:96:d7:b3:e1:e4:73:dc:24:23:b5:6a:02:9f:fb:e0:a0:27: ac:97:3a:33:0a:f8:8a:72:56:be:fa:4e:a9:2c:4b:f9:88:47: 1f:b8:61:e5:e3:33:13:3f:60:f2:7f:2c:99:ed:7a:14:b1:27: ec:13:54:06:85:42:d6:61:23:04:63:74:29:5c:ed:45:dc:97: 82:68:77:b0:99:68:e1:b7:82:e8:ad:9c:0e:5d:6a:26:63:6a: 73:c5:e9:00:ed:f9:5b:73:03:4d:96:2f:fb:b9:3f:69:14:d8: 5e:2c:74:58:b8:39:be:af:f5:e2:a3:3d:7c:17:81:3d:84:61: 8d:a0:84:77:c8:e5:68:8b:0c:e3:d2:72:d5:6e:f3:8d:6a:17: 22:1f:53:0a:9e:81:f2:36:79:90:33:44:f4:0b:de:f0:7a:d6: 85:aa:a8:7b:66:a3:cf:70:73:7c:01:55:3b:5a:94:dc:be:11: e8:c4:f1:52:22:24:d4:a0:a0:d9:ea:a6:23:4f:7d:71:6c:c9: aa:9c:44:43:87:df:bb:c4:19:dc:8f:ca:52:9a:dc:7e:2d:98: de:f6:3e:7b:e3:4c:56:37:5a:3f:dd:db:1c:7f:ad:f2:1f:96: 40:39:51:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjYwMzI0MTk1MTQ2WhcNMjYwMzMxMTk1MTQ2WjAYMRYwFAYD VQQDEw02OWMyZWI1Mi02MjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3J55Kt2nYHYxudud5eKazDNSDcPCeewnquPbXGCUuhLadOr983eNogV44Gh/ X4ffogH7ieE4WJbvQiYjbWPZpLKpuOHcy5Q6qZmQc6xZ/J90Qnoq8jjh8jD0g4aj JhzWjTUnDN/MUK3vDUjPQuQS96a/lk30JlnVRt5VM99AMKqVMu+qqPbAjaGwO9m0 Cc10AXAz5fsF4LkVGibZPrJqyz+cq+XkVGm5b70lmADZvoDRVKDKr3P3BwKKjMm9 v7SqqvSsPvoFkp/ecuoKN9ygWI0OUsxjhEKNLD6MBLNvSdVyyvV+X/w/QATU+aSN KGvd8lFKdIqb7NpJ9bl56qjBKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBbV90u4 WL+p7FFPqNR8U1N192cIMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZo8bJ183WcnbVi4LpIkMv5ayOZbXs+Hkc9wkI7VqAp/74KAnrJc6Mwr4inJW vvpOqSxL+YhHH7hh5eMzEz9g8n8sme16FLEn7BNUBoVC1mEjBGN0KVztRdyXgmh3 sJlo4beC6K2cDl1qJmNqc8XpAO35W3MDTZYv+7k/aRTYXix0WLg5vq/14qM9fBeB PYRhjaCEd8jlaIsM49Jy1W7zjWoXIh9TCp6B8jZ5kDNE9Ave8HrWhaqoe2ajz3Bz fAFVO1qU3L4R6MTxUiIk1KCg2eqmI099cWzJqpxEQ4ffu8QZ3I/KUprcfi2Y3vY+ e+NMVjdaP93bHH+t8h+WQDlRkA== -----END CERTIFICATE-----Generated at Thu Mar 26 18:26:35 2026 by rpki-client