$ rpki-client -vvf rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft File: hseUaUaypXsFbwKyeTQNMMLOSbQ.mft (raw, json) Hash identifier: +1foO4HFWTmYHoznMhleNnRU9ybSAAFsVMe1qcy+XFA= Subject key identifier: AF:1E:A2:59:D2:F3:52:F8:EA:0F:AD:28:84:3F:8C:3D:55:F7:40:65 Authority key identifier: 86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4 Certificate issuer: /CN=A9120B99/serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4 Certificate serial: 35C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft Manifest number: 3587 Signing time: Tue 24 Mar 2026 14:23:19 +0000 Manifest this update: Tue 24 Mar 2026 14:23:18 +0000 Manifest next update: Tue 31 Mar 2026 14:23:18 +0000 Files and hashes: 1: hseUaUaypXsFbwKyeTQNMMLOSbQ.crl (hash: vDw1fDzzEekUONfcXou6ompjAJtfU3q3ds4epB+SwaQ=) 2: 1BC70FAEDBF011F092B3F5D0536F56BC.roa (hash: Cb0WTT8AKl4UE3/5l6qXIuWV17KOgvKYJVQ6UOAz2fU=) 3: 42CB3D60E49611F098414B07486F56BC.roa (hash: SGAgqirlOlukBT4xNGwk4j92LJxLiy55yPX+tQxiKJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13760 (0x35c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120B99, serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4 Validity Not Before: Mar 24 14:23:18 2026 GMT Not After : Mar 31 14:23:18 2026 GMT Subject: CN=69c29e56-ef21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d5:2e:1b:46:f1:1c:5f:b0:df:a5:8c:9c:40: 53:e7:13:45:4a:0c:11:c4:2f:53:6b:5e:10:99:87: c9:6f:6b:a2:ed:c2:d3:9a:64:92:bd:31:40:63:4c: 1c:01:f3:49:f7:bd:b0:83:e1:23:19:2b:8a:03:66: fc:e8:ac:31:e9:44:93:ac:1b:ee:ea:cb:df:0f:6f: f7:6f:69:a0:5a:d4:e2:11:44:5a:15:bf:2a:82:cc: e9:88:6a:07:9b:6e:2f:b6:4f:02:4f:24:38:02:4c: 0d:19:d7:c6:75:e0:d8:ed:38:e1:03:7c:1e:fd:f9: c3:2d:39:4e:a9:0f:a3:cf:96:ab:88:b7:95:73:8c: e7:af:d9:73:80:6a:82:da:00:78:9c:72:6d:e9:f1: a6:31:55:c0:2c:35:52:fa:8b:9c:51:08:56:c1:c7: a3:95:3b:44:38:06:6d:85:30:bb:e9:cb:3d:4c:bc: d7:88:30:9d:f3:6b:d8:1d:e9:bb:aa:21:c6:81:15: 0f:cb:8a:3e:2c:29:32:98:ea:5f:bf:fb:44:78:a0: a3:b0:55:c6:91:82:b5:fa:34:21:29:11:0b:a7:31: 0e:29:87:8f:ec:50:b4:39:5b:98:52:9a:95:a5:8a: 75:06:b0:74:85:06:8e:a2:d2:38:e7:ce:b6:f1:15: 01:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:1E:A2:59:D2:F3:52:F8:EA:0F:AD:28:84:3F:8C:3D:55:F7:40:65 X509v3 Authority Key Identifier: keyid:86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:f0:1a:13:fa:e9:95:77:8f:bb:c9:f8:17:74:f4:63:9f:44: 40:4f:7c:24:ed:75:fc:6f:af:a2:cd:16:f8:0a:e6:4d:22:4f: 4b:0f:a3:3f:5e:cf:64:65:03:79:16:de:60:7b:21:1a:e0:06: c1:c4:37:48:31:3f:9b:ef:5e:2e:b8:3d:c2:4a:a4:d9:19:12: ab:c7:15:41:ff:82:01:58:92:b6:80:70:7a:84:ef:b4:ee:78: 20:ab:00:b0:ef:32:00:9c:f5:23:ef:07:89:2f:17:45:a2:9d: 0e:40:fd:92:e8:0e:35:96:29:88:01:f6:c0:8b:80:7c:55:14: 45:5f:45:07:22:75:7e:10:56:4c:7c:07:c5:59:cb:02:95:b5: af:2b:2f:6a:76:6e:c9:2b:f8:64:f7:c0:df:c6:55:a5:d6:6c: 90:a8:24:63:e5:14:d6:14:cc:18:5f:76:56:fa:62:17:a8:74: 2d:9e:0f:9e:bc:35:3a:ff:d9:23:84:79:2c:47:9f:af:ef:63: ce:67:dc:e2:8a:e2:4e:d0:e8:d8:25:d5:c4:8a:04:e8:4b:14: 0e:e9:a0:3f:b3:73:ee:89:a2:9c:af:85:5d:5b:16:4d:90:41: 06:29:e6:1f:4d:48:6b:30:76:47:9f:b8:f5:06:5c:f9:ea:40: 53:dd:0c:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBCOTkxMTAvBgNVBAUTKDg2Qzc5NDY5NDZCMkE1N0IwNTZGMDJCMjc5MzQwRDMw QzJDRTQ5QjQwHhcNMjYwMzI0MTQyMzE4WhcNMjYwMzMxMTQyMzE4WjAYMRYwFAYD VQQDEw02OWMyOWU1Ni1lZjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tUuG0bxHF+w36WMnEBT5xNFSgwRxC9Ta14QmYfJb2ui7cLTmmSSvTFAY0wc AfNJ972wg+EjGSuKA2b86Kwx6USTrBvu6svfD2/3b2mgWtTiEURaFb8qgszpiGoH m24vtk8CTyQ4AkwNGdfGdeDY7TjhA3we/fnDLTlOqQ+jz5ariLeVc4znr9lzgGqC 2gB4nHJt6fGmMVXALDVS+oucUQhWwcejlTtEOAZthTC76cs9TLzXiDCd82vYHem7 qiHGgRUPy4o+LCkymOpfv/tEeKCjsFXGkYK1+jQhKRELpzEOKYeP7FC0OVuYUpqV pYp1BrB0hQaOotI458628RUBHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK8eolnS 81L46g+tKIQ/jD1V90BlMB8GA1UdIwQYMBaAFIbHlGlGsqV7BW8Csnk0DTDCzkm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEI5OS9EM0Y5MDUxQzFE ODMxMUUyQjRFRDVDRDkwOEIwMkNEMi9oc2VVYVVheXBYc0Zid0t5ZVRRTk1NTE9T YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzZVVhVWF5cFhzRmJ3S3llVFFOTU1MT1NiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEI5OS9EM0Y5MDUxQzFEODMxMUUyQjRFRDVDRDkwOEIwMkNEMi9oc2VVYVVheXBY c0Zid0t5ZVRRTk1NTE9TYlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAR/AaE/rplXePu8n4F3T0Y59EQE98JO11/G+vos0W+ArmTSJPSw+jP17PZGUD eRbeYHshGuAGwcQ3SDE/m+9eLrg9wkqk2RkSq8cVQf+CAViStoBweoTvtO54IKsA sO8yAJz1I+8HiS8XRaKdDkD9kugONZYpiAH2wIuAfFUURV9FByJ1fhBWTHwHxVnL ApW1rysvanZuySv4ZPfA38ZVpdZskKgkY+UU1hTMGF92VvpiF6h0LZ4Pnrw1Ov/Z I4R5LEefr+9jzmfc4oriTtDo2CXVxIoE6EsUDumgP7Nz7ominK+FXVsWTZBBBinm H01IazB2R5+49QZc+epAU90M5g== -----END CERTIFICATE-----Generated at Thu Mar 26 14:11:58 2026 by rpki-client