$ rpki-client -vvf rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft File: hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft (raw, json) Hash identifier: M5ytWUDPMkGWcBerc3heobQ/aGJvyM0frITTgR8ngWI= Subject key identifier: 28:71:85:3E:04:5C:0F:A9:2E:71:3F:E6:41:87:26:D4:DE:68:F7:44 Authority key identifier: 84:E4:FF:B6:92:7F:77:F5:C3:F0:A2:52:68:2F:71:DD:B3:77:B1:1D Certificate issuer: /CN=A911C743/serialNumber=84E4FFB6927F77F5C3F0A252682F71DDB377B11D Certificate serial: 0EEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft Manifest number: 0EDB Signing time: Tue 24 Mar 2026 17:31:27 +0000 Manifest this update: Tue 24 Mar 2026 17:31:27 +0000 Manifest next update: Tue 31 Mar 2026 17:31:27 +0000 Files and hashes: 1: hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl (hash: 1w8cZZt5H2VYx59MwX1gH02VlxhvNFjVgINzfBqSAzA=) 2: 2B21EC2EE4E111E981365C17C4F9AE02.roa (hash: iut8EEVryRG83jh5a/5UJcx3oIfMx7vlVFCC3Vozxn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:31:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3823 (0xeef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C743, serialNumber=84E4FFB6927F77F5C3F0A252682F71DDB377B11D Validity Not Before: Mar 24 17:31:27 2026 GMT Not After : Mar 31 17:31:27 2026 GMT Subject: CN=69c2ca6f-ac88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:41:9f:09:46:db:53:1a:06:50:3a:cc:c4:f4: 18:06:8e:16:2c:d3:7e:c1:79:9e:0c:7c:1f:fe:76: 75:9c:ae:45:c1:68:d2:31:62:77:76:e7:59:23:4f: f5:1c:a5:74:bd:75:65:e4:ff:17:eb:10:cc:78:fe: 61:ea:71:f9:3b:78:1a:19:fb:5a:27:f3:96:0f:5d: cb:d2:93:ac:28:8c:10:ac:ff:ae:19:75:2a:dd:ff: f7:28:80:e3:90:90:c9:b8:20:c4:43:55:eb:bd:03: 8b:a0:dc:04:e4:9a:1c:9f:69:08:89:9b:11:e2:e7: 45:b2:dc:23:a1:c3:55:57:01:ce:98:d9:f6:59:5c: b4:e4:52:af:51:19:4d:83:19:ee:33:f1:aa:ba:5e: 9e:2b:5c:86:e2:e1:24:c7:7b:2b:f6:59:40:8f:a1: 6f:ab:24:e1:fd:b5:60:f8:a3:93:5f:16:0e:38:56: a6:08:df:73:f4:e0:85:b4:4b:81:6b:5c:98:73:ac: 8e:e8:8a:52:77:05:73:55:e9:5e:1f:3a:2a:88:45: 25:71:5e:2f:d8:54:28:5e:5a:9c:af:b6:58:ce:85: 6d:fb:9e:93:2c:32:b1:2e:ea:31:6a:9a:60:91:97: a0:df:d3:6c:0c:60:2c:93:59:c3:7d:05:77:1b:d6: a0:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:71:85:3E:04:5C:0F:A9:2E:71:3F:E6:41:87:26:D4:DE:68:F7:44 X509v3 Authority Key Identifier: keyid:84:E4:FF:B6:92:7F:77:F5:C3:F0:A2:52:68:2F:71:DD:B3:77:B1:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:46:fe:10:23:0c:ef:69:2f:df:fb:3f:16:3e:0d:b2:23:1a: 08:70:c9:59:74:d4:9e:30:01:05:60:8e:2f:63:17:df:74:13: 98:e7:d1:7a:59:16:e1:a3:32:c1:57:72:6a:17:bf:5d:11:de: 4c:f6:bb:9f:a6:fc:6c:dc:b4:78:ca:48:a8:4e:55:dd:45:86: 6c:1a:8f:fd:25:20:8c:a8:8b:e5:6c:89:1c:57:10:4d:17:0c: 86:0e:6f:03:d2:6f:d8:83:23:09:36:8a:8a:ee:08:25:28:bd: ce:b7:ca:fc:2a:8b:79:f8:8b:d4:d7:7b:97:f3:ba:5f:63:17: df:18:d1:41:f7:b8:f5:9a:0a:12:07:98:63:4e:97:25:59:99: 30:ff:c9:65:58:7f:6d:54:b3:d5:27:dd:ef:04:ae:f6:5a:a5: ee:3f:fb:d9:36:5d:c8:2a:62:90:88:6d:7e:7b:2d:bf:5a:2a: ea:32:96:f9:9f:fe:52:13:b7:bb:00:6b:c4:dc:70:3d:c9:c0: 4b:39:38:aa:cd:84:b8:70:5d:e6:72:5d:9a:a2:96:30:6c:fb: c9:31:5d:94:11:4f:e1:6c:02:a9:ff:df:ae:27:60:6c:b7:09: 72:78:53:91:9a:14:5c:f6:08:fb:84:25:4c:a1:8b:56:27:88: 24:81:e5:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM3NDMxMTAvBgNVBAUTKDg0RTRGRkI2OTI3Rjc3RjVDM0YwQTI1MjY4MkY3MURE QjM3N0IxMUQwHhcNMjYwMzI0MTczMTI3WhcNMjYwMzMxMTczMTI3WjAYMRYwFAYD VQQDEw02OWMyY2E2Zi1hYzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kGfCUbbUxoGUDrMxPQYBo4WLNN+wXmeDHwf/nZ1nK5FwWjSMWJ3dudZI0/1 HKV0vXVl5P8X6xDMeP5h6nH5O3gaGftaJ/OWD13L0pOsKIwQrP+uGXUq3f/3KIDj kJDJuCDEQ1XrvQOLoNwE5Jocn2kIiZsR4udFstwjocNVVwHOmNn2WVy05FKvURlN gxnuM/Gqul6eK1yG4uEkx3sr9llAj6FvqyTh/bVg+KOTXxYOOFamCN9z9OCFtEuB a1yYc6yO6IpSdwVzVeleHzoqiEUlcV4v2FQoXlqcr7ZYzoVt+56TLDKxLuoxappg kZeg39NsDGAsk1nDfQV3G9agtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFChxhT4E XA+pLnE/5kGHJtTeaPdEMB8GA1UdIwQYMBaAFITk/7aSf3f1w/CiUmgvcd2zd7Ed MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzc0My9GOEFFMjg4MEEy MUQxMUU5ODI0MkFEODFDNEY5QUUwMi9oT1RfdHBKX2RfWEQ4S0pTYUM5eDNiTjNz UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hPVF90cEpfZF9YRDhLSlNhQzl4M2JOM3NSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Qzc0My9GOEFFMjg4MEEyMUQxMUU5ODI0MkFEODFDNEY5QUUwMi9oT1RfdHBKX2Rf WEQ4S0pTYUM5eDNiTjNzUjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHUb+ECMM72kv3/s/Fj4NsiMaCHDJWXTUnjABBWCOL2MX33QTmOfRelkW4aMy wVdyahe/XRHeTPa7n6b8bNy0eMpIqE5V3UWGbBqP/SUgjKiL5WyJHFcQTRcMhg5v A9Jv2IMjCTaKiu4IJSi9zrfK/CqLefiL1Nd7l/O6X2MX3xjRQfe49ZoKEgeYY06X JVmZMP/JZVh/bVSz1Sfd7wSu9lql7j/72TZdyCpikIhtfnstv1oq6jKW+Z/+UhO3 uwBrxNxwPcnASzk4qs2EuHBd5nJdmqKWMGz7yTFdlBFP4WwCqf/fridgbLcJcnhT kZoUXPYI+4QlTKGLVieIJIHl8Q== -----END CERTIFICATE-----Generated at Thu Mar 26 09:59:56 2026 by rpki-client