$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft File: HWQu0o7OpfKqzzR7Fgl_nZJB120.mft (raw, json) Hash identifier: uRW8Rb8u/M00Rsl6JD7hVXlV3VKKixHKmykLhWuaVis= Subject key identifier: AA:2A:E6:80:5C:D6:39:08:53:84:B2:E7:71:2E:AC:A4:A5:CA:F4:BB Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D Certificate issuer: /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Certificate serial: 03F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft Manifest number: 03EA Signing time: Wed 25 Mar 2026 00:10:34 +0000 Manifest this update: Wed 25 Mar 2026 00:10:34 +0000 Manifest next update: Wed 01 Apr 2026 00:10:34 +0000 Files and hashes: 1: HWQu0o7OpfKqzzR7Fgl_nZJB120.crl (hash: diXSFUoeElDlt3ptnXMonz+gXPAbpA4XrTvO27mbyLk=) 2: 64197A380C4E11F1BFF51C3A113D8C67.roa (hash: SDIwrvKhvQfNC2FFKTmp/C4FfAE+5eImdfafppjPTLY=) 3: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (hash: fPiSn9EKp07Pksf7OzdvkznMDYTa4tFQoVJ+7TRcTvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:10:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1009 (0x3f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118E3A, serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Validity Not Before: Mar 25 00:10:34 2026 GMT Not After : Apr 1 00:10:34 2026 GMT Subject: CN=69c327fa-d9fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:25:b3:96:d9:5c:93:83:76:3a:c1:34:00:d3: 90:fb:29:fd:e9:04:25:68:25:cb:96:af:4a:9d:62: 8d:55:0d:fb:b2:6b:22:4e:13:c0:22:db:4d:8d:53: d2:90:e0:fe:12:8e:03:2a:c9:3b:a5:d3:fd:ca:94: a8:27:b6:5a:2c:ce:62:34:05:09:78:9c:8e:3e:0d: cf:19:40:71:bd:81:4d:3f:9d:46:27:37:3c:37:02: 4b:c9:da:45:48:31:08:fd:bd:49:85:48:bc:23:a4: 91:d3:0a:f8:47:79:42:6e:51:62:ee:ce:a6:60:86: 00:76:94:2f:00:8a:63:46:12:b8:9a:1e:a0:40:eb: 15:77:7b:09:9e:d5:2b:53:c4:7b:cb:ec:b8:ee:81: 6b:2d:26:9c:1c:a1:22:c7:91:30:04:7b:bd:e3:57: f4:5d:7e:0f:bb:7c:69:e3:5d:d2:40:3a:c2:1c:7b: 9f:df:cb:a9:b2:b5:c8:38:f0:d2:2f:69:51:6c:b7: 6d:5f:3e:01:f1:5d:13:ac:5a:ff:98:8a:83:be:ce: f0:dd:ba:60:ac:aa:02:00:33:b2:31:74:32:12:1e: 0e:fd:00:28:23:18:3c:6e:c0:c7:68:b4:40:5d:83: 93:87:ee:c5:f4:20:c2:1c:d7:b8:4a:9d:5a:a5:5f: bf:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:2A:E6:80:5C:D6:39:08:53:84:B2:E7:71:2E:AC:A4:A5:CA:F4:BB X509v3 Authority Key Identifier: keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:a1:2f:84:94:fd:90:68:17:cb:32:73:51:90:e2:2d:b2:60: 98:11:12:ee:80:af:00:4d:f0:56:93:14:c7:12:7d:99:45:e8: 16:d7:a6:8b:f0:1b:31:90:09:2e:28:ef:e5:0a:cf:9b:34:c9: 50:d2:cf:c3:b6:dc:61:ea:6f:01:ec:18:6d:bd:00:74:da:51: 47:9c:51:ae:58:e3:2a:15:54:20:76:eb:2f:5b:be:27:d7:da: 5c:fe:33:c5:43:dd:80:d4:1d:60:d3:44:d2:5e:a8:55:3b:ab: 20:bf:a0:8c:83:94:41:8f:63:8a:be:55:dc:a8:72:bb:61:34: e3:28:28:98:08:39:04:4b:a1:c3:71:e8:5e:55:1b:c8:20:ac: be:d6:8d:b9:be:18:1e:16:62:d9:14:02:45:48:eb:6e:8d:bb: 0d:93:ae:7e:c7:df:c7:f4:26:ed:b1:6b:60:7b:f5:d3:72:9c: f8:16:40:d1:fe:2d:79:02:71:2a:de:a7:7a:68:fb:72:d4:fb: 18:d0:2b:24:84:0c:4c:05:88:88:7e:80:eb:c6:f9:09:7b:09: 88:40:76:c2:5e:09:db:46:9c:0a:b9:24:ce:21:6a:53:53:c7: 16:31:a5:94:39:ca:68:6d:f9:57:d5:4d:0d:88:c9:e4:03:c9: 3a:16:64:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFM0ExMTAvBgNVBAUTKDFENjQyRUQyOEVDRUE1RjJBQUNGMzQ3QjE2MDk3RjlE OTI0MUQ3NkQwHhcNMjYwMzI1MDAxMDM0WhcNMjYwNDAxMDAxMDM0WjAYMRYwFAYD VQQDEw02OWMzMjdmYS1kOWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSWzltlck4N2OsE0ANOQ+yn96QQlaCXLlq9KnWKNVQ37smsiThPAIttNjVPS kOD+Eo4DKsk7pdP9ypSoJ7ZaLM5iNAUJeJyOPg3PGUBxvYFNP51GJzc8NwJLydpF SDEI/b1JhUi8I6SR0wr4R3lCblFi7s6mYIYAdpQvAIpjRhK4mh6gQOsVd3sJntUr U8R7y+y47oFrLSacHKEix5EwBHu941f0XX4Pu3xp413SQDrCHHuf38upsrXIOPDS L2lRbLdtXz4B8V0TrFr/mIqDvs7w3bpgrKoCADOyMXQyEh4O/QAoIxg8bsDHaLRA XYOTh+7F9CDCHNe4Sp1apV+/3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKoq5oBc 1jkIU4Sy53EurKSlyvS7MB8GA1UdIwQYMBaAFB1kLtKOzqXyqs80exYJf52SQddt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEUzQS9BN0FCMEE4QUI5 OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3BmS3F6elI3RmdsX25aSkIx MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXUXUwbzdPcGZLcXp6UjdGZ2xfblpKQjEyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEUzQS9BN0FCMEE4QUI5OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3Bm S3F6elI3RmdsX25aSkIxMjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPKEvhJT9kGgXyzJzUZDiLbJgmBES7oCvAE3wVpMUxxJ9mUXoFtemi/AbMZAJ Lijv5QrPmzTJUNLPw7bcYepvAewYbb0AdNpRR5xRrljjKhVUIHbrL1u+J9faXP4z xUPdgNQdYNNE0l6oVTurIL+gjIOUQY9jir5V3Khyu2E04ygomAg5BEuhw3HoXlUb yCCsvtaNub4YHhZi2RQCRUjrbo27DZOufsffx/Qm7bFrYHv103Kc+BZA0f4teQJx Kt6nemj7ctT7GNArJIQMTAWIiH6A68b5CXsJiEB2wl4J20acCrkkziFqU1PHFjGl lDnKaG35V9VNDYjJ5APJOhZkaQ== -----END CERTIFICATE-----Generated at Thu Mar 26 12:16:06 2026 by rpki-client