$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json) Hash identifier: zFAZ8diE1AD6mSUwUYTiAlrJWjfultM5kdktOUqxfMk= Subject key identifier: D0:33:C5:F2:85:90:43:D9:BD:86:79:11:14:27:39:39:9E:6E:9F:DA Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 03DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft Manifest number: 03D0 Signing time: Wed 25 Mar 2026 00:13:37 +0000 Manifest this update: Wed 25 Mar 2026 00:13:36 +0000 Manifest next update: Wed 01 Apr 2026 00:13:36 +0000 Files and hashes: 1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: C8O9I6vACINrtRWrButTx/q30yrgxR9/Z/KGPwD3osM=) 2: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: d2IO53QQHp9HhXVDc1CoUGPFf1YUTdGHgG7B3UV4InA=) 3: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: Yt0TqJaTmIJd27cHaCbpte8qJaUobmzMaQoo+mme+Sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:13:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 986 (0x3da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: Mar 25 00:13:36 2026 GMT Not After : Apr 1 00:13:36 2026 GMT Subject: CN=69c328b1-7929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d0:46:cc:64:8f:0a:ba:fe:8a:9f:ad:52:ac: 0c:18:29:6b:99:c2:4e:29:6f:3f:ca:88:ce:92:71: 37:7c:f2:1e:6e:6f:9f:13:23:57:55:88:d9:83:c6: 14:d0:2f:43:35:6e:1c:09:8f:f4:fc:24:7a:bf:eb: 4d:45:95:ed:1a:1a:24:2a:83:23:56:37:f0:59:6b: c9:ab:c5:2e:23:4b:35:58:b0:0c:b1:8d:5c:80:56: 60:25:1d:b7:f9:5c:ab:d5:5a:69:51:a3:5e:a4:21: 93:e7:58:41:e8:af:0e:ab:3b:be:06:14:b3:db:a8: 7f:46:7b:3c:d0:a8:4d:74:20:8d:77:c6:a5:25:7d: 85:ea:af:a6:b0:55:44:54:a5:5c:6f:38:bf:49:17: 74:e1:3a:d8:f3:f1:0e:c4:ba:3a:9d:6c:a4:30:c2: 47:17:df:aa:69:a9:e5:a2:ee:d0:cb:57:b0:23:bc: 2d:4e:f2:01:e3:b7:ef:83:a0:ff:2d:8d:ec:f1:d9: f9:ca:61:82:5c:fb:b2:df:39:c0:d2:a3:eb:b5:3b: 8a:3e:f8:c2:01:31:bc:9d:4b:41:03:67:63:4f:55: 5e:01:b8:af:82:80:1c:a7:fd:73:e7:7f:08:7a:ae: d0:4a:b7:08:c3:e4:06:ec:fa:c9:82:84:b9:99:df: e7:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:33:C5:F2:85:90:43:D9:BD:86:79:11:14:27:39:39:9E:6E:9F:DA X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption eb:a6:3a:ed:42:d5:64:a4:d0:d1:8e:bd:84:49:d7:3d:26:cd: db:01:10:57:99:4f:81:7a:8f:d0:be:39:74:30:d4:da:a7:20: ee:6c:48:12:80:1e:ed:1a:1a:3f:bf:6f:c4:89:36:d2:b5:60: 70:17:fe:4c:5c:dc:21:41:c5:f5:34:13:d6:bc:8d:86:14:f6: aa:1e:bb:49:76:b9:f4:fa:e2:8d:a0:f4:ec:f6:5e:5a:37:86: ca:ac:15:ec:5d:83:e1:0d:02:09:42:0a:8b:cc:f6:7f:52:d7: 6e:11:b3:3a:8a:ba:20:1c:49:4f:60:33:b9:29:73:42:de:cb: ba:f7:23:1f:4f:cc:d1:8e:bc:36:ee:7d:0a:42:b5:fe:79:84: e0:c7:3c:ab:99:31:26:31:5f:21:0b:b7:4b:f1:64:e1:97:72: 3a:c2:98:5d:b1:5d:0a:a2:4b:9d:71:cc:42:c3:63:b5:c0:d6: 6b:64:63:75:c6:a5:c3:6a:cc:50:36:05:0f:24:3f:c4:67:8c: e1:65:b6:f5:a5:32:c4:31:b5:d4:22:b4:2b:c4:20:76:d5:5e: 2c:ea:e7:6e:cc:25:13:4c:a4:ec:31:27:7e:31:94:71:4c:79: 34:6b:b2:d8:c3:dd:e7:e4:75:35:56:59:e5:be:39:1d:d2:32: df:16:53:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjYwMzI1MDAxMzM2WhcNMjYwNDAxMDAxMzM2WjAYMRYwFAYD VQQDEw02OWMzMjhiMS03OTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdBGzGSPCrr+ip+tUqwMGClrmcJOKW8/yojOknE3fPIebm+fEyNXVYjZg8YU 0C9DNW4cCY/0/CR6v+tNRZXtGhokKoMjVjfwWWvJq8UuI0s1WLAMsY1cgFZgJR23 +Vyr1VppUaNepCGT51hB6K8Oqzu+BhSz26h/Rns80KhNdCCNd8alJX2F6q+msFVE VKVcbzi/SRd04TrY8/EOxLo6nWykMMJHF9+qaanlou7Qy1ewI7wtTvIB47fvg6D/ LY3s8dn5ymGCXPuy3znA0qPrtTuKPvjCATG8nUtBA2djT1VeAbivgoAcp/1z538I eq7QSrcIw+QG7PrJgoS5md/nMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNAzxfKF kEPZvYZ5ERQnOTmebp/aMB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDM5Qi85OUY1NDQ3OEMxMzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUt V0ttYUhtYzlPdUhGMzl5NGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA66Y67ULVZKTQ0Y69hEnXPSbN2wEQV5lPgXqP0L45dDDU2qcg7mxIEoAe7Roa P79vxIk20rVgcBf+TFzcIUHF9TQT1ryNhhT2qh67SXa59PrijaD07PZeWjeGyqwV 7F2D4Q0CCUIKi8z2f1LXbhGzOoq6IBxJT2AzuSlzQt7LuvcjH0/M0Y68Nu59CkK1 /nmE4Mc8q5kxJjFfIQu3S/Fk4ZdyOsKYXbFdCqJLnXHMQsNjtcDWa2Rjdcalw2rM UDYFDyQ/xGeM4WW29aUyxDG11CK0K8QgdtVeLOrnbswlE0yk7DEnfjGUcUx5NGuy 2MPd5+R1NVZZ5b45HdIy3xZTDw== -----END CERTIFICATE-----Generated at Thu Mar 26 00:57:51 2026 by rpki-client