$ rpki-client -vvf rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft File: hEIqhfpOTNTW7plGMaPQ8OboLTo.mft (raw, json) Hash identifier: YTz/3HvYkbbRR8Vjab7Y7OTLPM0t/Q7gzOxODEX2LEc= Subject key identifier: 5C:82:97:57:76:3E:40:DA:E5:DD:85:4E:74:3B:14:92:F9:69:E4:15 Authority key identifier: 84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A Certificate issuer: /CN=A911C61C/serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Certificate serial: 03FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft Manifest number: 03F5 Signing time: Wed 25 Mar 2026 00:08:46 +0000 Manifest this update: Wed 25 Mar 2026 00:08:45 +0000 Manifest next update: Wed 01 Apr 2026 00:08:45 +0000 Files and hashes: 1: hEIqhfpOTNTW7plGMaPQ8OboLTo.crl (hash: bshSr94rsrmfVluZsy1eKKc7SAZdA+EOjP73dtYj7zA=) 2: 214E0454B58A11ECAF32FE29C4F9AE02.roa (hash: DeN5+WLuYB95EX5XxNOKqEvwckp++ai7lfprhRYcj3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1021 (0x3fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C61C, serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Validity Not Before: Mar 25 00:08:45 2026 GMT Not After : Apr 1 00:08:45 2026 GMT Subject: CN=69c3278e-6ac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:01:a1:2d:6c:99:f1:27:48:38:0d:02:aa:60: 15:72:92:c2:c3:a3:27:43:cf:dc:78:19:ba:2f:af: e4:92:86:cb:7b:36:02:95:16:bf:e6:4c:c6:6f:33: f4:1e:12:74:a8:39:e5:24:f6:62:23:d0:f6:be:ce: 9f:a5:45:6c:a1:07:da:a1:c7:48:08:7a:47:f1:cf: ce:3d:0a:5e:b8:8c:bd:84:1b:24:d5:79:92:01:b0: aa:90:c1:18:de:b5:30:8b:89:6d:c7:d1:ff:0d:12: 48:57:d7:64:42:5d:c5:3e:e4:ec:75:4d:85:d2:f5: d9:d2:e4:4b:2c:4e:9c:7e:6f:db:c3:64:64:2a:03: 60:c9:93:b2:30:08:9e:61:09:09:f5:d5:35:0c:2e: cd:54:95:76:ca:2d:48:5c:b1:8b:61:70:99:96:85: b5:ba:57:1c:54:5f:e5:ac:0c:93:1f:e0:bb:29:32: 29:ff:fa:61:01:3b:98:81:9c:aa:02:5a:e6:40:e7: 43:28:83:07:8f:28:99:eb:4f:ea:9d:1f:cd:81:c8: 37:10:cc:41:d7:5b:6a:40:ba:aa:d1:6b:83:57:49: f0:fe:d9:84:cf:17:8c:ad:24:56:c7:b0:f3:ca:85: 96:e9:67:2d:ac:9d:4e:aa:52:47:e9:a2:ca:cc:17: 6a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:82:97:57:76:3E:40:DA:E5:DD:85:4E:74:3B:14:92:F9:69:E4:15 X509v3 Authority Key Identifier: keyid:84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:0b:7d:41:e4:7b:17:26:94:c2:72:c7:f1:d7:a3:bc:99:90: 0a:96:6a:9d:6d:98:29:3e:53:56:b0:96:a1:b3:52:f5:34:b8: 4e:cd:66:7a:6e:59:39:9a:7e:2d:f7:b2:55:18:a2:46:7e:bc: 99:96:83:e1:f7:a3:87:39:60:25:38:9a:4b:09:72:0f:09:3c: 76:bf:46:a1:5b:03:ed:d3:c9:17:e8:db:bf:13:b9:18:5c:18: e4:27:0d:01:54:ea:b1:06:44:54:92:17:9b:64:9a:9b:31:1a: 83:6c:48:8b:da:b4:a9:ef:98:61:fe:aa:14:4a:51:04:e0:b6: 69:7b:9c:bc:5d:3d:84:fe:c8:8f:f9:eb:95:37:dc:d6:b5:c6: c1:ec:da:af:20:1e:e8:3f:70:39:8d:4f:9c:b4:b4:67:66:9a: 84:1e:fd:d6:5d:f8:32:8b:04:ed:a2:b6:9e:ac:6e:f5:38:7b: 52:6f:44:af:d5:b7:37:ae:00:26:a6:61:df:30:7b:1a:66:cc: 54:54:a4:7b:d8:9f:f6:d1:fd:01:32:c0:64:24:fd:5a:c8:e7: 4c:23:be:25:9c:82:f5:34:8a:83:97:9c:57:ad:e9:60:93:78: 31:cb:b8:a6:77:a9:1e:cd:5e:72:31:e3:0b:da:16:41:cf:2d: f3:42:98:ff -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MUMxMTAvBgNVBAUTKDg0NDIyQTg1RkE0RTRDRDRENkVFOTk0NjMxQTNEMEYw RTZFODJEM0EwHhcNMjYwMzI1MDAwODQ1WhcNMjYwNDAxMDAwODQ1WjAYMRYwFAYD VQQDEw02OWMzMjc4ZS02YWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjgGhLWyZ8SdIOA0CqmAVcpLCw6MnQ8/ceBm6L6/kkobLezYClRa/5kzGbzP0 HhJ0qDnlJPZiI9D2vs6fpUVsoQfaocdICHpH8c/OPQpeuIy9hBsk1XmSAbCqkMEY 3rUwi4ltx9H/DRJIV9dkQl3FPuTsdU2F0vXZ0uRLLE6cfm/bw2RkKgNgyZOyMAie YQkJ9dU1DC7NVJV2yi1IXLGLYXCZloW1ulccVF/lrAyTH+C7KTIp//phATuYgZyq AlrmQOdDKIMHjyiZ60/qnR/Ngcg3EMxB11tqQLqq0WuDV0nw/tmEzxeMrSRWx7Dz yoWW6WctrJ1OqlJH6aLKzBdq2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFyCl1d2 PkDa5d2FTnQ7FJL5aeQVMB8GA1UdIwQYMBaAFIRCKoX6TkzU1u6ZRjGj0PDm6C06 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYxQy8yQTcwOTBGQUI1 ODYxMUVDQUU4MUVEMjJDNEY5QUUwMi9oRUlxaGZwT1ROVFc3cGxHTWFQUThPYm9M VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hFSXFoZnBPVE5UVzdwbEdNYVBROE9ib0xUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzYxQy8yQTcwOTBGQUI1ODYxMUVDQUU4MUVEMjJDNEY5QUUwMi9oRUlxaGZwT1RO VFc3cGxHTWFQUThPYm9MVG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfgt9QeR7FyaUwnLH8dejvJmQCpZqnW2YKT5TVrCWobNS9TS4Ts1mem5ZOZp+ LfeyVRiiRn68mZaD4fejhzlgJTiaSwlyDwk8dr9GoVsD7dPJF+jbvxO5GFwY5CcN AVTqsQZEVJIXm2SamzEag2xIi9q0qe+YYf6qFEpRBOC2aXucvF09hP7Ij/nrlTfc 1rXGwezaryAe6D9wOY1PnLS0Z2aahB791l34MosE7aK2nqxu9Th7Um9Er9W3N64A JqZh3zB7GmbMVFSke9if9tH9ATLAZCT9WsjnTCO+JZyC9TSKg5ecV63pYJN4Mcu4 pnepHs1ecjHjC9oWQc8t80KY/w== -----END CERTIFICATE-----Generated at Thu Mar 26 02:27:39 2026 by rpki-client