$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft File: 8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft (raw, json) Hash identifier: UH2Bb8jbk1CwuxH8ZDvHnwLSuAAnmJ0vVag6c96hwOw= Subject key identifier: D1:C2:DB:FF:8B:B0:73:76:53:D6:9B:F0:16:61:EA:A6:BC:C4:A6:73 Authority key identifier: F0:72:8E:ED:2D:4F:8F:FD:8C:FE:5F:87:F6:1B:EC:04:34:51:41:29 Certificate issuer: /CN=A9146A02/serialNumber=F0728EED2D4F8FFD8CFE5F87F61BEC0434514129 Certificate serial: 0CEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft Manifest number: 0CE1 Signing time: Tue 24 Mar 2026 18:03:48 +0000 Manifest this update: Tue 24 Mar 2026 18:03:48 +0000 Manifest next update: Tue 31 Mar 2026 18:03:48 +0000 Files and hashes: 1: 8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl (hash: /5IjWh0B6L4asSqkqCoUiC7/22+Ol+A5e2I6EZoI32w=) 2: 3F1B0EF2045F11EA87A3BD3BC4F9AE02.roa (hash: UfHKPMUY6EmaHpXY4OrXsN6dBJ4bjLIXmajgIcZM4a8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:03:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3306 (0xcea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A02, serialNumber=F0728EED2D4F8FFD8CFE5F87F61BEC0434514129 Validity Not Before: Mar 24 18:03:48 2026 GMT Not After : Mar 31 18:03:48 2026 GMT Subject: CN=69c2d204-d5da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a9:32:96:3d:ae:a6:89:b9:ce:cc:a9:a7:9a: 4d:97:e4:2e:97:a8:ac:f8:76:2a:aa:af:ac:48:7d: 80:95:ef:0b:b8:dd:69:0e:c2:a7:69:6b:ae:57:76: 5b:4e:41:c4:dd:c4:3c:60:42:10:3c:5d:86:be:0d: 82:91:c9:4c:a7:e4:b2:b0:e9:5c:85:58:ca:ec:b9: 75:c5:8c:99:67:11:1f:09:81:87:ab:00:a4:f2:74: 07:18:4a:bb:01:26:bd:cc:fe:a9:1c:f9:b1:e4:d3: aa:89:e4:3f:5e:03:eb:6c:f0:9d:23:87:bf:7e:70: 3c:ea:72:bc:68:4b:21:a2:63:7c:1d:6f:c2:37:f4: e2:d9:b0:2b:ae:37:b7:4d:1f:f6:92:ff:c8:00:57: 10:3c:5b:a2:42:12:be:52:a5:3e:78:ee:ce:4a:cc: bd:f3:d9:3e:83:2f:56:12:ec:92:ad:c5:5a:5e:c5: 5a:f8:fd:c8:ec:3c:af:4d:71:98:9e:4e:b4:b2:18: f1:1e:c5:da:9e:71:ae:25:78:9a:9f:89:ba:81:58: 15:3d:14:da:7c:8e:07:8a:02:e8:57:70:48:53:57: 7c:f8:eb:82:47:7f:e3:b0:5c:17:05:8c:4f:7f:1d: ab:ca:6d:90:a0:08:4c:85:c6:c2:6c:4d:fc:00:0c: b6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:C2:DB:FF:8B:B0:73:76:53:D6:9B:F0:16:61:EA:A6:BC:C4:A6:73 X509v3 Authority Key Identifier: keyid:F0:72:8E:ED:2D:4F:8F:FD:8C:FE:5F:87:F6:1B:EC:04:34:51:41:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:1b:a8:cf:e9:12:6d:35:bb:2f:89:5a:a9:0a:35:40:2a:e9: f2:ab:d8:78:5f:0a:28:77:e0:56:69:c1:50:e7:66:36:27:92: 7b:b1:e5:3a:8a:3b:25:6f:07:07:02:13:c8:40:08:ba:bd:21: 55:a3:48:b8:1f:4d:04:cb:d2:0b:f7:1d:79:98:56:9c:73:d4: 61:ff:55:f3:c9:3e:b8:1a:09:c2:02:6b:12:a6:7f:2f:1d:54: 17:a2:e3:6b:c1:84:76:77:75:a1:4a:44:aa:76:7a:b5:17:32: 0e:2a:c5:13:49:37:f5:c8:53:bc:65:05:1c:86:a3:69:9e:a5: 57:cf:f6:9e:fd:f1:e8:84:60:42:1d:f3:97:48:43:28:51:ed: 90:ba:76:9e:84:87:e5:70:67:0c:88:07:01:4f:ba:9e:6a:f5: 34:41:4e:ab:1a:7f:73:0b:4e:cb:d2:26:99:7b:a3:04:6b:72: 1c:c6:2c:64:94:dc:de:e4:8b:10:0a:f2:b6:09:8a:eb:6e:df: 33:58:26:48:83:6c:1f:a1:29:1a:ba:1c:0c:68:73:7e:26:01: 3a:d6:db:4f:3a:38:f8:1e:31:f1:ee:42:c4:c9:ef:e0:0e:2d: a8:0a:52:46:44:62:4f:21:d4:f6:38:db:0d:76:33:17:85:88: 25:69:9a:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBMDIxMTAvBgNVBAUTKEYwNzI4RUVEMkQ0RjhGRkQ4Q0ZFNUY4N0Y2MUJFQzA0 MzQ1MTQxMjkwHhcNMjYwMzI0MTgwMzQ4WhcNMjYwMzMxMTgwMzQ4WjAYMRYwFAYD VQQDEw02OWMyZDIwNC1kNWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqkylj2upom5zsypp5pNl+Qul6is+HYqqq+sSH2Ale8LuN1pDsKnaWuuV3Zb TkHE3cQ8YEIQPF2Gvg2CkclMp+SysOlchVjK7Ll1xYyZZxEfCYGHqwCk8nQHGEq7 ASa9zP6pHPmx5NOqieQ/XgPrbPCdI4e/fnA86nK8aEshomN8HW/CN/Ti2bArrje3 TR/2kv/IAFcQPFuiQhK+UqU+eO7OSsy989k+gy9WEuySrcVaXsVa+P3I7DyvTXGY nk60shjxHsXannGuJXian4m6gVgVPRTafI4HigLoV3BIU1d8+OuCR3/jsFwXBYxP fx2rym2QoAhMhcbCbE38AAy2xwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNHC2/+L sHN2U9ab8BZh6qa8xKZzMB8GA1UdIwQYMBaAFPByju0tT4/9jP5fh/Yb7AQ0UUEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkEwMi84RENFRTlGQzA0 NUUxMUVBQURCN0RGM0FDNEY5QUUwMi84SEtPN1MxUGpfMk1fbC1IOWh2c0JEUlJR U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIS083UzFQal8yTV9sLUg5aHZzQkRSUlFTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkEwMi84RENFRTlGQzA0NUUxMUVBQURCN0RGM0FDNEY5QUUwMi84SEtPN1MxUGpf Mk1fbC1IOWh2c0JEUlJRU2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIxuoz+kSbTW7L4laqQo1QCrp8qvYeF8KKHfgVmnBUOdmNieSe7HlOoo7JW8H BwITyEAIur0hVaNIuB9NBMvSC/cdeZhWnHPUYf9V88k+uBoJwgJrEqZ/Lx1UF6Lj a8GEdnd1oUpEqnZ6tRcyDirFE0k39chTvGUFHIajaZ6lV8/2nv3x6IRgQh3zl0hD KFHtkLp2noSH5XBnDIgHAU+6nmr1NEFOqxp/cwtOy9ImmXujBGtyHMYsZJTc3uSL EArytgmK627fM1gmSINsH6EpGrocDGhzfiYBOtbbTzo4+B4x8e5CxMnv4A4tqApS RkRiTyHU9jjbDXYzF4WIJWmaqA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:26 2026 by rpki-client