$ rpki-client -vvf rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft File: hF2I4KIVFF82fZMEvz9xrujrTC0.mft (raw, json) Hash identifier: 3B8TzKG9QCwZdi1KEUK4exnvI54fQ0W2LU5iYGn1L5M= Subject key identifier: 10:C7:0C:56:34:68:5B:BD:6B:C0:C8:D8:8A:DC:40:11:25:CC:3A:B8 Authority key identifier: 84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D Certificate issuer: /CN=A9194AE2/serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft Manifest number: 014A Signing time: Wed 25 Mar 2026 04:30:18 +0000 Manifest this update: Wed 25 Mar 2026 04:30:17 +0000 Manifest next update: Wed 01 Apr 2026 04:30:17 +0000 Files and hashes: 1: hF2I4KIVFF82fZMEvz9xrujrTC0.crl (hash: IiXV7Ic8sbMR00PnmM9P8oIH/JR7xb8GIGwYNetdOf4=) 2: 2042987C6C4411EF9B263275C4F9AE02.roa (hash: 9GZpU2PHliAK9NY+OWOq5Tt+JHpwX/IWIj0455bKALU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194AE2, serialNumber=845D88E0A215145F367D9304BF3F71AEE8EB4C2D Validity Not Before: Mar 25 04:30:17 2026 GMT Not After : Apr 1 04:30:17 2026 GMT Subject: CN=69c364da-9a4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:99:34:f0:b1:23:d9:91:26:e4:fc:7d:6f:2a: df:26:c1:5d:0c:b2:dd:b2:e3:35:2c:bd:57:04:f9: c6:da:78:b7:49:7d:11:01:6c:78:6c:1b:da:1d:e2: 21:5e:01:6c:b0:33:25:4c:b9:50:c2:78:36:4e:52: c5:20:78:5d:94:45:1a:d2:34:97:2e:ad:3c:f4:cc: a2:4b:18:7f:2a:7f:95:97:c3:ab:7e:11:d1:53:e6: 60:be:a8:61:2a:c4:d6:c1:b9:5e:cb:eb:69:35:20: 68:3f:1e:a4:5f:6e:c6:8a:68:60:fd:e3:50:ff:c9: 41:d6:8e:9a:99:70:22:3b:ad:28:84:71:b0:6f:ad: d5:ea:7d:9a:48:75:9a:83:4c:44:3a:a3:3e:56:68: c5:08:37:eb:45:f8:55:53:30:0b:b6:f7:58:e6:8b: b7:c6:7b:77:b7:19:b6:29:4f:3d:8f:4d:1c:70:78: e0:43:b3:e4:8b:35:0a:57:29:a7:a9:ca:56:9d:73: e4:30:98:6f:66:a8:a0:f0:15:bc:ab:b8:45:c9:79: d6:fb:ee:c3:67:48:e8:0e:e8:67:b1:39:5c:7b:65: 10:6b:27:ab:87:0e:ec:64:f0:34:50:4e:72:93:8d: 7e:0e:20:e1:f5:25:c9:1d:9d:e2:44:2c:74:40:c3: 64:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:C7:0C:56:34:68:5B:BD:6B:C0:C8:D8:8A:DC:40:11:25:CC:3A:B8 X509v3 Authority Key Identifier: keyid:84:5D:88:E0:A2:15:14:5F:36:7D:93:04:BF:3F:71:AE:E8:EB:4C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hF2I4KIVFF82fZMEvz9xrujrTC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194AE2/26A6F44C3BAC11EF9D7EA871C4F9AE02/hF2I4KIVFF82fZMEvz9xrujrTC0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:c1:24:14:14:d8:12:3b:ad:83:bf:4b:b2:07:7e:b3:7c:13: e0:aa:e7:3b:d8:c6:5d:54:2d:7c:bf:62:3b:0b:04:1d:ea:0b: 02:6f:90:c5:84:2c:d6:4c:59:e9:a9:f3:98:5c:93:d4:f2:1a: 87:4a:fb:7f:1a:cd:57:68:14:47:b1:40:d5:56:52:80:d1:ab: 0b:0e:45:97:8f:6e:ae:ea:c7:9d:f8:fc:7e:86:fb:5f:af:98: 3b:0d:22:48:c4:87:55:55:e2:fc:90:4b:15:b6:bb:1e:40:9c: 92:c2:e2:05:a3:0d:44:ed:96:7d:e9:72:52:ae:d9:c9:89:6b: 34:2d:c9:37:28:98:a4:ef:be:16:c4:0e:10:18:fb:4e:73:d6: eb:9a:77:41:72:a0:da:61:bd:56:9e:5a:d6:5a:f3:f5:7a:a3: 89:1e:9e:8b:28:d6:51:51:13:02:18:75:f9:88:75:1a:f0:59: a7:42:ff:0e:ac:fb:30:81:1c:a3:6d:d9:c4:fa:3e:b3:ae:92: 13:5e:7a:f8:10:2b:27:ea:1f:2d:55:34:1a:fe:37:f0:70:25: bb:36:60:5d:d2:66:a9:d1:5b:0a:73:7a:5a:9d:8a:c3:18:6b: 20:7d:d6:3f:4f:e6:2d:6d:70:0a:29:03:a6:8b:39:c6:42:03: bb:24:f4:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBRTIxMTAvBgNVBAUTKDg0NUQ4OEUwQTIxNTE0NUYzNjdEOTMwNEJGM0Y3MUFF RThFQjRDMkQwHhcNMjYwMzI1MDQzMDE3WhcNMjYwNDAxMDQzMDE3WjAYMRYwFAYD VQQDEw02OWMzNjRkYS05YTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmZk08LEj2ZEm5Px9byrfJsFdDLLdsuM1LL1XBPnG2ni3SX0RAWx4bBvaHeIh XgFssDMlTLlQwng2TlLFIHhdlEUa0jSXLq089MyiSxh/Kn+Vl8OrfhHRU+Zgvqhh KsTWwbley+tpNSBoPx6kX27Gimhg/eNQ/8lB1o6amXAiO60ohHGwb63V6n2aSHWa g0xEOqM+VmjFCDfrRfhVUzALtvdY5ou3xnt3txm2KU89j00ccHjgQ7PkizUKVymn qcpWnXPkMJhvZqig8BW8q7hFyXnW++7DZ0joDuhnsTlce2UQayerhw7sZPA0UE5y k41+DiDh9SXJHZ3iRCx0QMNkawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBDHDFY0 aFu9a8DI2IrcQBElzDq4MB8GA1UdIwQYMBaAFIRdiOCiFRRfNn2TBL8/ca7o60wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEFFMi8yNkE2RjQ0QzNC QUMxMUVGOUQ3RUE4NzFDNEY5QUUwMi9oRjJJNEtJVkZGODJmWk1Fdno5eHJ1anJU QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hGMkk0S0lWRkY4MmZaTUV2ejl4cnVqclRDMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEFFMi8yNkE2RjQ0QzNCQUMxMUVGOUQ3RUE4NzFDNEY5QUUwMi9oRjJJNEtJVkZG ODJmWk1Fdno5eHJ1anJUQzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqMEkFBTYEjutg79Lsgd+s3wT4KrnO9jGXVQtfL9iOwsEHeoLAm+QxYQs1kxZ 6anzmFyT1PIah0r7fxrNV2gUR7FA1VZSgNGrCw5Fl49ururHnfj8fob7X6+YOw0i SMSHVVXi/JBLFba7HkCcksLiBaMNRO2WfelyUq7ZyYlrNC3JNyiYpO++FsQOEBj7 TnPW65p3QXKg2mG9Vp5a1lrz9XqjiR6eiyjWUVETAhh1+Yh1GvBZp0L/Dqz7MIEc o23ZxPo+s66SE156+BArJ+ofLVU0Gv438HAluzZgXdJmqdFbCnN6Wp2KwxhrIH3W P0/mLW1wCikDpos5xkIDuyT00Q== -----END CERTIFICATE-----Generated at Thu Mar 26 14:57:06 2026 by rpki-client