$ rpki-client -vvf rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft File: hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft (raw, json) Hash identifier: qrWieAk1ZpLDc8LvccBTF27FQ719DsI8LeVeLB9xmvk= Subject key identifier: 86:2E:6E:01:81:25:B0:25:C4:CC:40:59:25:D9:D2:B5:5C:B0:83:47 Authority key identifier: 85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF Certificate issuer: /CN=A911C9E8/serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Certificate serial: 01E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft Manifest number: 01DB Signing time: Wed 25 Mar 2026 02:52:29 +0000 Manifest this update: Wed 25 Mar 2026 02:52:29 +0000 Manifest next update: Wed 01 Apr 2026 02:52:29 +0000 Files and hashes: 1: hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl (hash: qXM7Z+9+wCMhxekK5GqKzbx4P/lePCQCr1H0nLbUiz0=) 2: E39F4ED65C2411EEB54C4F43C4F9AE02.roa (hash: pkyGN44AS4SLdJe1nEC0cgptqJqFo9Jz+8yVjeVwyog=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:52:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C9E8, serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Validity Not Before: Mar 25 02:52:29 2026 GMT Not After : Apr 1 02:52:29 2026 GMT Subject: CN=69c34ded-c248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:27:67:66:17:69:15:27:c9:94:b0:1e:58:0a: 15:85:61:b0:cb:37:68:51:cc:35:06:47:f9:83:35: 72:99:1b:72:11:76:87:55:bf:96:f6:64:63:ae:3d: ea:b4:ed:49:f1:fd:98:6a:a0:7a:0e:fb:7c:7a:1c: 4f:2b:ca:a8:92:b0:1a:9d:8d:a7:6e:2b:c8:69:78: cc:90:53:e5:b3:a9:c3:5a:11:68:2c:83:b6:2f:06: 2e:e7:91:6a:44:b8:fd:79:e6:fb:da:d3:af:88:4b: f3:16:41:30:2e:bf:a1:11:ca:d7:cc:29:62:65:6d: 69:65:af:21:dd:62:ad:91:a8:3a:92:3b:ed:bc:bc: f1:1c:3f:87:ee:cb:38:77:46:4b:b4:68:70:d2:f3: 7e:7b:7b:c1:6c:b1:39:eb:f3:bb:b7:18:60:c9:78: 69:16:65:e4:f7:78:38:88:07:d1:fb:fa:45:e8:7e: 8e:a1:d4:83:4e:95:d1:b7:da:48:ee:0f:b6:86:5b: 2a:90:06:53:c8:02:33:a3:5b:3f:19:e6:42:8d:26: c8:86:d1:c8:65:51:f6:bf:c9:fa:23:6a:69:02:b7: 1b:5a:66:df:e6:3c:bd:bc:6d:6d:37:07:1d:c3:c7: 6d:78:48:bd:aa:ef:78:9e:88:75:71:44:d6:8a:e0: 94:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:2E:6E:01:81:25:B0:25:C4:CC:40:59:25:D9:D2:B5:5C:B0:83:47 X509v3 Authority Key Identifier: keyid:85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:3f:9d:93:46:23:0a:6b:7e:ed:28:c2:30:d6:eb:f7:09:74: d0:b7:5d:05:34:37:ae:00:69:32:a0:ac:75:a3:dc:34:d1:a3: af:19:d9:25:a9:bb:48:06:0d:75:72:1e:da:c5:a6:7c:b9:5d: 93:7f:ce:6a:ae:fd:c4:7c:9f:5a:15:3a:4e:00:85:fc:3f:a4: d8:3f:b7:1c:d0:2e:53:bd:f2:c9:6c:43:6b:2f:21:f3:a1:cd: 48:f5:13:d1:38:b5:cc:d5:73:10:89:89:b5:50:3d:1a:b8:2c: 86:52:4f:11:57:69:01:bc:d9:92:9a:2e:48:c1:db:f1:85:38: f3:f8:51:8a:c5:22:87:6a:fd:30:14:fb:93:d5:ff:63:02:55: f2:21:e4:5f:1f:b5:e8:42:fd:1b:43:0a:05:33:2d:11:2c:df: 2a:f1:44:94:2f:88:84:a6:b8:07:0f:b9:f7:40:b5:a7:3c:4f: d2:ea:1e:47:f9:79:76:48:54:72:29:16:d5:a6:0b:4e:f7:cb: f0:69:39:11:e6:1c:38:e5:db:c7:fb:fe:1f:d6:a1:bb:9e:b9: 5e:e2:de:03:21:18:86:68:e6:7d:4a:e1:ed:db:a3:c3:c3:06: 1b:8f:8b:ff:ac:60:11:86:a5:ec:4f:fa:65:84:74:7f:8a:cf: 52:2a:d1:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM5RTgxMTAvBgNVBAUTKDg1Mjk5RjBEQjE0QzhGMEE1M0QyNDQ2RUZEQjBDQzA1 OUMxNTI0QkYwHhcNMjYwMzI1MDI1MjI5WhcNMjYwNDAxMDI1MjI5WjAYMRYwFAYD VQQDEw02OWMzNGRlZC1jMjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtidnZhdpFSfJlLAeWAoVhWGwyzdoUcw1Bkf5gzVymRtyEXaHVb+W9mRjrj3q tO1J8f2YaqB6Dvt8ehxPK8qokrAanY2nbivIaXjMkFPls6nDWhFoLIO2LwYu55Fq RLj9eeb72tOviEvzFkEwLr+hEcrXzCliZW1pZa8h3WKtkag6kjvtvLzxHD+H7ss4 d0ZLtGhw0vN+e3vBbLE56/O7txhgyXhpFmXk93g4iAfR+/pF6H6OodSDTpXRt9pI 7g+2hlsqkAZTyAIzo1s/GeZCjSbIhtHIZVH2v8n6I2ppArcbWmbf5jy9vG1tNwcd w8dteEi9qu94noh1cUTWiuCUXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIYubgGB JbAlxMxAWSXZ0rVcsINHMB8GA1UdIwQYMBaAFIUpnw2xTI8KU9JEbv2wzAWcFSS/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzlFOC9GREY2NzMwNjU4 RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3cFQwa1J1X2JETUJad1ZK TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hTbWZEYkZNandwVDBrUnVfYkRNQlp3VkpMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzlFOC9GREY2NzMwNjU4RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3 cFQwa1J1X2JETUJad1ZKTDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATT+dk0YjCmt+7SjCMNbr9wl00LddBTQ3rgBpMqCsdaPcNNGjrxnZJam7SAYN dXIe2sWmfLldk3/Oaq79xHyfWhU6TgCF/D+k2D+3HNAuU73yyWxDay8h86HNSPUT 0Ti1zNVzEImJtVA9GrgshlJPEVdpAbzZkpouSMHb8YU48/hRisUih2r9MBT7k9X/ YwJV8iHkXx+16EL9G0MKBTMtESzfKvFElC+IhKa4Bw+590C1pzxP0uoeR/l5dkhU cikW1aYLTvfL8Gk5EeYcOOXbx/v+H9ahu565XuLeAyEYhmjmfUrh7dujw8MGG4+L /6xgEYal7E/6ZYR0f4rPUirRRQ== -----END CERTIFICATE-----Generated at Thu Mar 26 14:02:46 2026 by rpki-client