$ rpki-client -vvf rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft File: HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft (raw, json) Hash identifier: hciVwz4Qwc+mRhH/ulR2gaL9gYmE4elp3V5++/JWCgA= Subject key identifier: 8C:18:5D:0F:72:DA:14:98:8A:43:76:A7:41:8D:30:CE:73:0F:DA:32 Authority key identifier: 1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E Certificate issuer: /CN=A911D848/serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft Manifest number: 0116 Signing time: Fri 27 Mar 2026 05:34:01 +0000 Manifest this update: Fri 27 Mar 2026 05:34:00 +0000 Manifest next update: Fri 03 Apr 2026 05:34:00 +0000 Files and hashes: 1: HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl (hash: vNtnwc85ubOIWqQlPU5NF9be2DYmyZHFMuwhw+bPE0o=) 2: F0C8DB1CA54E11EF8592FD66C4F9AE02.roa (hash: Fu99K4NOtn2+BNW4pRMbgb3TXtpkuT6kgxDZJ7yt25U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 05:34:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D848, serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Validity Not Before: Mar 27 05:34:00 2026 GMT Not After : Apr 3 05:34:00 2026 GMT Subject: CN=69c616c9-d6b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:24:d8:63:d7:49:78:5e:f9:c2:d8:56:3d:b3: 2c:52:b1:76:42:17:90:97:75:a4:3c:69:2f:e8:88: 2c:a0:a8:d7:e9:63:a0:ed:ab:00:16:ea:ac:50:b5: 08:47:fb:59:2d:b8:fa:de:92:48:51:b3:15:00:2d: 00:c9:cd:ec:8f:1a:fa:4d:da:ab:70:01:17:ee:3f: 4c:65:bf:28:fd:1f:c7:76:f6:43:2e:6b:44:79:84: fe:9a:62:50:f1:21:88:08:f0:02:9c:65:0b:73:2c: 74:79:e9:55:55:2c:27:45:07:16:9b:a1:6f:4a:21: d2:7a:af:01:e1:87:60:db:07:a1:d7:9b:63:b2:1b: 36:1e:a6:ed:a6:26:66:4c:92:17:d2:14:50:bd:97: 3a:b9:16:a7:7e:c6:e7:48:10:9f:35:f3:29:ca:46: bd:65:cb:8c:76:39:f7:ec:38:c1:09:e0:64:94:a6: ed:2c:f6:a0:5e:9c:e0:4f:89:20:a4:63:30:4a:9d: 38:7c:ab:db:70:74:4e:6e:9b:5e:19:13:da:c5:fb: e4:f4:0a:fb:64:02:97:33:9b:05:f3:2b:dd:99:03: 00:5b:e8:6d:06:a8:a4:59:0e:49:65:52:ff:ec:73: ac:c8:e7:74:e0:32:51:44:e7:a3:2a:4a:dd:f7:0d: 11:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:18:5D:0F:72:DA:14:98:8A:43:76:A7:41:8D:30:CE:73:0F:DA:32 X509v3 Authority Key Identifier: keyid:1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:23:b9:8e:f0:b6:c8:b8:c0:a4:1d:80:26:c2:31:1c:22:c7: 1f:ae:e5:45:ec:6b:e6:7d:93:b3:95:44:b0:81:a4:f5:ea:39: 68:10:65:ac:fd:66:da:5c:99:ef:77:ba:ea:1e:fa:aa:99:17: 70:b5:93:19:de:af:90:58:79:f7:c7:e7:9d:97:9b:ac:8c:89: 4d:e4:fe:69:37:0f:86:2f:41:e8:82:29:73:3d:c7:43:2b:63: 37:28:0b:9b:3a:d3:1d:e1:1a:73:3e:0f:91:6c:18:9c:2d:91: c4:b5:89:1d:92:5e:c6:77:f3:48:56:f7:60:51:ac:51:6a:79: af:94:83:17:49:d3:e7:10:ec:e9:3e:59:54:9c:ae:a7:53:02: f6:46:af:40:5d:a2:f3:f1:a0:c0:d4:7d:ad:08:ee:b7:53:f5: a9:69:c4:3d:a8:45:86:ad:3c:fd:b0:9d:38:d5:af:e7:47:ce: ed:ff:c9:77:27:b5:b8:0d:07:28:b8:0a:51:8f:a9:5a:56:b4: 9d:1a:18:05:bf:10:6c:06:2f:9d:25:b8:84:0e:d2:74:ea:e4: de:76:c9:ba:b7:3c:e0:85:06:a5:cf:5e:30:1e:0b:c4:03:f7: cd:b9:54:1d:0c:2d:3f:55:8f:aa:cc:a2:52:0c:28:45:08:c2: d9:bd:44:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ4NDgxMTAvBgNVBAUTKDFERDFCODY4Nzg4NjkyNEM0NjEzMTE2MDUwRUU5MEU5 RDQ5NDI2OUUwHhcNMjYwMzI3MDUzNDAwWhcNMjYwNDAzMDUzNDAwWjAYMRYwFAYD VQQDEw02OWM2MTZjOS1kNmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSTYY9dJeF75wthWPbMsUrF2QheQl3WkPGkv6IgsoKjX6WOg7asAFuqsULUI R/tZLbj63pJIUbMVAC0Ayc3sjxr6TdqrcAEX7j9MZb8o/R/HdvZDLmtEeYT+mmJQ 8SGICPACnGULcyx0eelVVSwnRQcWm6FvSiHSeq8B4Ydg2weh15tjshs2HqbtpiZm TJIX0hRQvZc6uRanfsbnSBCfNfMpyka9ZcuMdjn37DjBCeBklKbtLPagXpzgT4kg pGMwSp04fKvbcHRObpteGRPaxfvk9Ar7ZAKXM5sF8yvdmQMAW+htBqikWQ5JZVL/ 7HOsyOd04DJRROejKkrd9w0RTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIwYXQ9y 2hSYikN2p0GNMM5zD9oyMB8GA1UdIwQYMBaAFB3RuGh4hpJMRhMRYFDukOnUlCae MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDg0OC9DMjUxQjVCMjlC MTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2treEdFeEZnVU82UTZkU1VK cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkRzRhSGlHa2t4R0V4RmdVTzZRNmRTVUpwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDg0OC9DMjUxQjVCMjlCMTAxMUVGQTcyQkEwMjBDNEY5QUUwMi9IZEc0YUhpR2tr eEdFeEZnVU82UTZkU1VKcDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIiO5jvC2yLjApB2AJsIxHCLHH67lRexr5n2Ts5VEsIGk9eo5aBBlrP1m2lyZ 73e66h76qpkXcLWTGd6vkFh598fnnZebrIyJTeT+aTcPhi9B6IIpcz3HQytjNygL mzrTHeEacz4PkWwYnC2RxLWJHZJexnfzSFb3YFGsUWp5r5SDF0nT5xDs6T5ZVJyu p1MC9kavQF2i8/GgwNR9rQjut1P1qWnEPahFhq08/bCdONWv50fO7f/Jdye1uA0H KLgKUY+pWla0nRoYBb8QbAYvnSW4hA7SdOrk3nbJurc84IUGpc9eMB4LxAP3zblU HQwtP1WPqsyiUgwoRQjC2b1Evw== -----END CERTIFICATE-----Generated at Sat Mar 28 13:36:24 2026 by rpki-client