$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: 8seW9e/7AXsRLulgA4nde4s1EKgQyKBKAnlbc7daC0k= Subject key identifier: 28:7A:49:C5:CE:43:D0:5B:DF:2B:B8:DC:56:5B:F1:A6:9E:89:BF:90 Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 0877 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 0863 Signing time: Tue 24 Mar 2026 20:29:24 +0000 Manifest this update: Tue 24 Mar 2026 20:29:24 +0000 Manifest next update: Tue 31 Mar 2026 20:29:24 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: 6hP8+VeSlYokQMTiOHx2Dq0CPetfF/94ThycgmMAYSk=) 2: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: /xCNBqLNz0L8cDqpYEQMnHLgfzVahak+S8dk9Uan5oM=) 3: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: IxYVxX1BoFCHdIOrjAwAEmnCO+dNiZSE2wEYWsIxYD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:29:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2167 (0x877) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Mar 24 20:29:24 2026 GMT Not After : Mar 31 20:29:24 2026 GMT Subject: CN=69c2f424-e3be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:0a:9c:7e:3b:2d:07:40:81:36:b2:1c:a6:9b: e9:1b:be:b9:37:69:13:ff:1f:cc:fc:3f:f8:5c:b0: 76:8d:c7:ac:52:66:19:69:5b:b9:11:8a:28:b1:e2: 51:9f:78:a0:4b:74:c6:95:43:c3:f4:eb:83:ac:b2: f7:a5:6b:18:df:c2:1d:e7:6c:72:e9:1b:a0:6e:9f: 2f:92:f9:3d:fd:9c:4d:14:17:f3:9b:5f:7f:5a:a8: 61:22:75:f6:e4:5a:39:0c:4a:ed:39:c6:b1:f9:a9: 01:e2:d6:8c:4f:7b:56:d9:01:e3:50:36:bf:ca:ba: 46:44:ae:4e:a8:a6:af:07:b2:f4:dc:1a:cb:59:b2: 46:92:e4:58:d3:5d:b7:e1:9d:46:41:55:56:14:61: 19:1a:aa:13:11:76:2a:12:b1:54:65:8c:48:3f:02: 4a:10:cd:c5:d4:d8:57:25:45:80:79:85:1d:34:e5: 95:c2:50:9b:c0:64:7f:06:45:0d:68:f6:d5:fd:78: 22:5e:62:46:6d:db:a6:2a:a8:cb:c9:ed:cc:29:57: eb:8c:37:bf:6b:6f:ff:fd:b5:a1:0f:59:0a:68:7f: df:ab:47:6e:d4:0d:e6:ad:f8:56:fc:b7:65:54:d4: b7:05:4d:19:ff:97:80:1b:b1:0c:db:e8:26:f2:a6: 6b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:7A:49:C5:CE:43:D0:5B:DF:2B:B8:DC:56:5B:F1:A6:9E:89:BF:90 X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:24:fe:6a:37:42:60:1c:bb:c7:83:81:f8:ca:c8:8c:3a:3a: a2:61:a0:c6:c8:4e:4e:0e:69:1c:a1:1b:f2:60:7e:5c:16:b0: 39:13:9e:af:e0:2b:7f:76:43:06:d3:0c:63:ba:cc:f0:92:f9: 56:16:2c:79:75:49:66:7b:f1:61:58:61:88:2f:00:ba:6b:8b: 32:a4:da:a6:a8:7e:b3:1c:7f:cc:43:3d:65:e7:15:e1:1c:55: 13:e3:3b:1f:dd:81:f5:e1:82:32:58:d0:5a:ec:b7:c3:23:a6: 8c:0d:75:74:1f:b6:33:af:a0:34:e4:b5:91:17:e5:68:da:8c: 43:b9:8c:6d:61:33:8d:2d:bd:1a:1d:7d:8f:7c:03:2c:b1:69: 69:df:00:a3:fc:19:b4:d5:4f:7b:51:f6:0b:22:f2:80:24:d9: 59:d3:89:aa:d3:4c:13:be:ff:e7:42:34:cd:f1:98:c3:be:10: 10:01:f6:56:fb:af:93:3c:7d:f4:a0:5b:5d:e5:3a:51:9b:62: d8:ef:78:c1:a1:0c:6f:9b:03:aa:fb:db:1c:88:e2:3e:be:d7: 4e:47:c5:e9:61:ae:61:c0:3e:22:17:bf:9f:07:fd:d9:48:94: e2:75:47:ad:0c:50:77:21:7a:60:65:3c:9f:e5:58:3a:01:ce: 18:6a:ab:c8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjYwMzI0MjAyOTI0WhcNMjYwMzMxMjAyOTI0WjAYMRYwFAYD VQQDEw02OWMyZjQyNC1lM2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8AqcfjstB0CBNrIcppvpG765N2kT/x/M/D/4XLB2jcesUmYZaVu5EYooseJR n3igS3TGlUPD9OuDrLL3pWsY38Id52xy6Rugbp8vkvk9/ZxNFBfzm19/WqhhInX2 5Fo5DErtOcax+akB4taMT3tW2QHjUDa/yrpGRK5OqKavB7L03BrLWbJGkuRY0123 4Z1GQVVWFGEZGqoTEXYqErFUZYxIPwJKEM3F1NhXJUWAeYUdNOWVwlCbwGR/BkUN aPbV/XgiXmJGbdumKqjLye3MKVfrjDe/a2///bWhD1kKaH/fq0du1A3mrfhW/Ldl VNS3BU0Z/5eAG7EM2+gm8qZrLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCh6ScXO Q9Bb3yu43FZb8aaeib+QMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcST+ajdCYBy7x4OB+MrIjDo6omGgxshOTg5pHKEb8mB+XBawOROer+Arf3ZD BtMMY7rM8JL5VhYseXVJZnvxYVhhiC8AumuLMqTapqh+sxx/zEM9ZecV4RxVE+M7 H92B9eGCMljQWuy3wyOmjA11dB+2M6+gNOS1kRflaNqMQ7mMbWEzjS29Gh19j3wD LLFpad8Ao/wZtNVPe1H2CyLygCTZWdOJqtNME77/50I0zfGYw74QEAH2Vvuvkzx9 9KBbXeU6UZti2O94waEMb5sDqvvbHIjiPr7XTkfF6WGuYcA+Ihe/nwf92UiU4nVH rQxQdyF6YGU8n+VYOgHOGGqryA== -----END CERTIFICATE-----Generated at Thu Mar 26 12:29:08 2026 by rpki-client