$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: pDnA7e9UYfUJOGBax45qZdqKeDsEB2KMglE9JmwsRvQ= Subject key identifier: 26:62:55:B7:3D:7F:76:35:08:5F:7B:CA:8F:4A:5B:E2:61:A7:6B:11 Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 03E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 03D5 Signing time: Wed 25 Mar 2026 00:14:15 +0000 Manifest this update: Wed 25 Mar 2026 00:14:15 +0000 Manifest next update: Wed 01 Apr 2026 00:14:15 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: AAEwu5bQUrNSHCuYwswZGvx47GKpA8K2v1oeTXPmrgc=) 2: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: vU/0sCO+F2+gmxcvidyq9+M7kV+eHGWZ8IbirsSlbG8=) 3: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: TagOD3ZDqaOoAVz4NHmUoadFGOSc1C7/yOL765hn6Do=) 4: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: W1I0qwQLpYviXsJHxjtUW+8G8aD5Cp7wKSmeeq2TDCw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:14:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 996 (0x3e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Mar 25 00:14:15 2026 GMT Not After : Apr 1 00:14:15 2026 GMT Subject: CN=69c328d7-25a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f5:0d:66:0c:ae:1a:d8:35:74:e2:f8:34:13: f7:d9:3c:a5:78:66:69:e5:c8:1d:fa:89:58:1d:8f: 08:d1:ac:a8:87:29:40:89:58:e6:a0:53:ae:a5:4d: c0:09:44:b2:e9:5f:c3:fc:82:40:73:cd:ef:89:ec: bc:92:7e:ca:b6:67:99:c5:28:e6:01:fd:8a:ea:b8: 4e:65:dc:c6:27:24:a1:cc:37:91:78:b3:52:88:fb: eb:76:41:cb:72:95:06:c8:63:45:ab:5c:c6:97:60: 28:4d:c2:b1:30:d3:e4:ed:89:c4:07:03:56:1d:80: 97:05:75:ab:bc:d7:69:f0:25:ae:1c:6e:20:29:31: 1d:d1:74:be:2c:2f:ec:6a:73:d9:87:e8:76:8b:49: 25:32:22:02:3c:60:40:ea:6c:b9:2f:ba:f0:6c:01: 43:f1:26:41:3f:d0:5b:b5:12:66:d2:40:f7:4e:84: c1:01:01:91:ee:25:df:0e:44:fe:0f:45:3a:be:9a: 60:d8:7a:59:0e:03:e2:95:38:93:8e:13:86:d7:7a: 2b:25:90:7c:fc:1d:40:d0:41:1f:ef:69:41:dc:4b: 9b:7a:98:8e:49:a8:8a:0e:07:b2:d7:9d:7d:51:9a: 28:76:3a:05:bc:f5:c7:53:d9:12:d2:c3:6e:5a:3b: 9d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:62:55:B7:3D:7F:76:35:08:5F:7B:CA:8F:4A:5B:E2:61:A7:6B:11 X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:90:fd:e1:11:3d:01:0e:a4:e3:e0:3b:78:ba:81:93:6e:fb: 47:08:65:64:6b:78:4e:02:7d:82:3c:ce:1c:66:d2:88:25:b7: 18:2f:45:c9:60:bb:1e:0b:55:fc:72:af:91:a1:3b:ac:87:0d: da:10:d6:3e:84:cb:7f:3f:8c:55:81:4c:7d:cb:64:59:bf:f9: db:36:43:73:27:7e:ad:ab:5c:e2:3d:41:9d:e8:7c:cd:3f:e2: 22:58:63:4d:a5:70:92:76:5d:d5:36:68:9e:45:7f:f4:30:b7: 45:8d:f1:4f:91:aa:62:a8:71:98:13:dc:24:01:5e:50:c4:7b: ac:ff:96:d3:3e:c3:98:ae:16:6d:1a:ce:ed:99:1a:dc:d3:82: 38:29:d7:5c:6d:1b:a0:17:71:53:57:83:64:ee:65:07:78:d6: e6:a9:65:69:41:2e:e9:f9:0c:1d:6c:a2:c3:20:e8:6a:30:7b: a7:92:29:88:f6:89:63:68:4c:e8:a8:5b:a5:72:57:59:fc:b1: c1:6c:5d:13:4f:ed:66:17:b2:7a:a8:86:56:e6:3a:04:e2:8e: 3b:57:92:91:ce:75:5e:32:62:a6:0c:97:ab:3f:c7:e3:e1:80: b0:94:3f:d7:61:de:0e:aa:a7:26:d0:5e:0c:d6:d1:2e:46:08: 03:ed:75:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjYwMzI1MDAxNDE1WhcNMjYwNDAxMDAxNDE1WjAYMRYwFAYD VQQDEw02OWMzMjhkNy0yNWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2fUNZgyuGtg1dOL4NBP32TyleGZp5cgd+olYHY8I0ayohylAiVjmoFOupU3A CUSy6V/D/IJAc83viey8kn7KtmeZxSjmAf2K6rhOZdzGJyShzDeReLNSiPvrdkHL cpUGyGNFq1zGl2AoTcKxMNPk7YnEBwNWHYCXBXWrvNdp8CWuHG4gKTEd0XS+LC/s anPZh+h2i0klMiICPGBA6my5L7rwbAFD8SZBP9BbtRJm0kD3ToTBAQGR7iXfDkT+ D0U6vppg2HpZDgPilTiTjhOG13orJZB8/B1A0EEf72lB3EubepiOSaiKDgey1519 UZoodjoFvPXHU9kS0sNuWjudqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCZiVbc9 f3Y1CF97yo9KW+Jhp2sRMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADpD94RE9AQ6k4+A7eLqBk277RwhlZGt4TgJ9gjzOHGbSiCW3GC9FyWC7HgtV /HKvkaE7rIcN2hDWPoTLfz+MVYFMfctkWb/52zZDcyd+ratc4j1Bneh8zT/iIlhj TaVwknZd1TZonkV/9DC3RY3xT5GqYqhxmBPcJAFeUMR7rP+W0z7DmK4WbRrO7Zka 3NOCOCnXXG0boBdxU1eDZO5lB3jW5qllaUEu6fkMHWyiwyDoajB7p5IpiPaJY2hM 6KhbpXJXWfyxwWxdE0/tZheyeqiGVuY6BOKOO1eSkc51XjJipgyXqz/H4+GAsJQ/ 12HeDqqnJtBeDNbRLkYIA+11qg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:25:52 2026 by rpki-client