$ rpki-client -vvf rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft File: hlMymlHbxnnxvxfXkdg-x2ib564.mft (raw, json) Hash identifier: agRXQ6jCIiQbXz6nP4u7Qt5cNj+atN5+OCr6sncaWZ8= Subject key identifier: EF:0D:9B:13:CF:EF:6F:26:F6:43:61:F5:C8:3D:5A:86:D6:66:FE:B1 Authority key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE Certificate issuer: /CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Certificate serial: 08D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft Manifest number: 08C7 Signing time: Thu 26 Mar 2026 20:18:18 +0000 Manifest this update: Thu 26 Mar 2026 20:18:18 +0000 Manifest next update: Thu 02 Apr 2026 20:18:18 +0000 Files and hashes: 1: hlMymlHbxnnxvxfXkdg-x2ib564.crl (hash: 7WuJVrlQ3knrRjVr6qr0UTreC32f20DE0K5Uy/eem4M=) 2: 2611C806D1AA11EA82C4313FC4F9AE02.roa (hash: 7N3nKDQ3w2NhBshlECEhRg3G3BG+HugNnq2CvYT6jGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:18:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2260 (0x8d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91177D4, serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Validity Not Before: Mar 26 20:18:18 2026 GMT Not After : Apr 2 20:18:18 2026 GMT Subject: CN=69c5948a-e1bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2f:c3:af:9d:7a:d0:29:bc:7f:96:e6:98:32: 7b:ee:ae:6f:d4:08:9f:4d:90:0e:f8:55:06:e4:7b: d2:d2:26:05:39:33:86:af:3f:8d:50:1e:39:10:d6: 45:58:a7:32:67:09:a3:75:65:4c:2a:ac:00:95:80: 42:5e:24:3e:76:dd:48:73:88:6f:0b:11:e2:13:d4: ec:e4:46:f1:69:39:29:56:61:04:a9:f1:e6:92:e4: 83:04:f2:9b:d4:b4:f1:9e:d3:7d:bf:ea:4a:2c:12: 41:ec:74:36:c4:f2:bf:b2:1f:cf:93:06:6d:15:12: de:f4:e4:78:2b:70:f1:a8:ce:f2:3d:20:71:39:bb: e1:75:73:12:38:56:8c:fb:d1:df:43:0b:18:88:54: 3e:94:12:f3:b7:2d:eb:58:7e:30:d1:fe:98:92:cc: 09:b4:f7:26:75:bf:81:1d:a7:aa:b9:7d:83:f2:5f: 23:25:21:f2:3e:f0:9b:2a:db:1b:fc:2d:c0:d2:61: f6:0c:29:4d:21:bb:aa:1b:be:6d:84:3f:79:d5:de: e0:20:1a:93:f7:f7:fe:6e:7e:93:ac:d8:a7:7e:7a: 34:7a:3d:12:05:1e:56:66:d7:87:ed:f5:9e:8f:e2: aa:76:6c:74:b2:d8:e3:58:d2:2d:99:95:1b:a5:38: c0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:0D:9B:13:CF:EF:6F:26:F6:43:61:F5:C8:3D:5A:86:D6:66:FE:B1 X509v3 Authority Key Identifier: keyid:86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:8e:6c:78:6f:9a:68:87:fd:71:ba:f8:d5:be:25:f7:6f:b0: 62:42:0a:16:21:ba:23:2d:9f:f6:a4:c6:ee:09:0f:68:75:0e: be:d9:ef:62:0c:74:0b:5e:11:d7:5d:f4:d0:ed:5c:6d:12:38: 1d:77:eb:0c:ee:d8:35:e7:46:91:03:5f:b8:6b:cd:d5:ed:e0: 27:5b:df:21:62:07:8d:64:b4:10:b9:80:f4:22:b1:7a:ee:bc: c9:39:f2:76:29:97:99:50:0c:0f:2d:9a:ed:8b:99:c0:63:96: d6:61:d1:e1:08:3b:f1:ab:08:12:42:e1:50:ce:90:f0:73:c4: ff:f4:ba:88:31:3e:4a:f3:3d:22:ea:7f:32:dc:63:4d:7f:62: b5:b3:3b:3c:77:14:51:99:99:51:bc:db:cf:1f:ff:0e:b2:e7: 3a:03:5b:fa:27:cc:ae:7f:f4:dd:69:84:a3:8c:50:9b:7c:1b: e9:f5:58:0c:20:14:a3:a2:52:8b:31:c3:4c:f8:36:e1:20:a1: d5:73:b8:9f:02:5f:45:90:43:dc:df:7f:a3:57:53:83:4d:54: 42:14:f0:6e:7b:1e:d0:10:50:ea:a1:6b:35:22:f5:46:03:50: e3:97:6c:01:cc:34:a8:5c:4a:aa:ca:01:b3:58:12:24:ac:bb: 6b:b7:d4:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdENzkxRDgzRUM3 Njg5QkU3QUUwHhcNMjYwMzI2MjAxODE4WhcNMjYwNDAyMjAxODE4WjAYMRYwFAYD VQQDEw02OWM1OTQ4YS1lMWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4y/Dr5160Cm8f5bmmDJ77q5v1AifTZAO+FUG5HvS0iYFOTOGrz+NUB45ENZF WKcyZwmjdWVMKqwAlYBCXiQ+dt1Ic4hvCxHiE9Ts5EbxaTkpVmEEqfHmkuSDBPKb 1LTxntN9v+pKLBJB7HQ2xPK/sh/PkwZtFRLe9OR4K3DxqM7yPSBxObvhdXMSOFaM +9HfQwsYiFQ+lBLzty3rWH4w0f6YkswJtPcmdb+BHaequX2D8l8jJSHyPvCbKtsb /C3A0mH2DClNIbuqG75thD951d7gIBqT9/f+bn6TrNinfno0ej0SBR5WZteH7fWe j+Kqdmx0stjjWNItmZUbpTjAjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO8NmxPP 728m9kNh9cg9WobWZv6xMB8GA1UdIwQYMBaAFIZTMppR28Z58b8X15HYPsdom+eu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzdENC8yQ0VFRkUzNEQx QTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhubnh2eGZYa2RnLXgyaWI1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hsTXltbEhieG5ueHZ4ZlhrZGcteDJpYjU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzdENC8yQ0VFRkUzNEQxQTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhu bnh2eGZYa2RnLXgyaWI1NjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfY5seG+aaIf9cbr41b4l92+wYkIKFiG6Iy2f9qTG7gkPaHUOvtnvYgx0C14R 11300O1cbRI4HXfrDO7YNedGkQNfuGvN1e3gJ1vfIWIHjWS0ELmA9CKxeu68yTny dimXmVAMDy2a7YuZwGOW1mHR4Qg78asIEkLhUM6Q8HPE//S6iDE+SvM9Iup/Mtxj TX9itbM7PHcUUZmZUbzbzx//DrLnOgNb+ifMrn/03WmEo4xQm3wb6fVYDCAUo6JS izHDTPg24SCh1XO4nwJfRZBD3N9/o1dTg01UQhTwbnse0BBQ6qFrNSL1RgNQ45ds Acw0qFxKqsoBs1gSJKy7a7fUgQ== -----END CERTIFICATE-----Generated at Fri Mar 27 07:49:37 2026 by rpki-client