$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft File: hn09aLZZeAOvVkZcDptTq2Z7cqg.mft (raw, json) Hash identifier: BNRy6zOkRSXeb0yEeVzTif9zbNOV9idsVwbsWqTgr5M= Subject key identifier: 13:2F:90:08:F9:C7:B8:CA:9E:44:FD:2E:94:13:BF:56:07:B9:47:44 Authority key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 Certificate issuer: /CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Certificate serial: 070D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft Manifest number: 0705 Signing time: Tue 24 Mar 2026 21:42:37 +0000 Manifest this update: Tue 24 Mar 2026 21:42:36 +0000 Manifest next update: Tue 31 Mar 2026 21:42:36 +0000 Files and hashes: 1: hn09aLZZeAOvVkZcDptTq2Z7cqg.crl (hash: earFiMoUe4+O6caAmVMXRcukTsxlrzbBhbW5UrjljmQ=) 2: 4EC5B52480B811EBBEE2CA7FC4F9AE02.roa (hash: oGpaoJnN0XSnyU8TN0NZVM9McHxZfbUaTEUnM8LnSNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1805 (0x70d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDC5, serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Validity Not Before: Mar 24 21:42:36 2026 GMT Not After : Mar 31 21:42:36 2026 GMT Subject: CN=69c3054d-38a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a0:30:b8:fd:69:85:b4:fc:4b:34:bd:de:96: 75:86:db:b6:0b:4d:c3:73:ec:4f:f0:bf:43:e9:15: 5d:94:38:60:e1:a2:45:0b:86:d4:60:45:ee:ed:d1: 9f:49:88:cd:39:80:48:42:7a:b6:89:5e:cd:54:80: 53:e5:87:8c:4b:7a:e2:44:40:b2:f1:1e:7a:e1:c8: b8:5f:33:1b:43:65:a2:50:2a:65:47:72:87:1b:b8: 2b:3f:9a:0b:76:93:44:15:21:e7:46:3c:5b:f5:33: 3c:13:e5:12:e6:99:ae:f4:a4:59:ff:54:bc:1a:93: 47:17:b1:2b:87:0b:c3:5e:c6:50:99:c2:a6:dc:9b: 89:1b:a6:50:3f:8f:33:6d:07:f0:91:34:1d:64:8f: d2:ee:3c:5d:a8:ee:69:b9:f0:a2:4d:17:2c:8e:2e: 9c:b2:1d:cf:1b:8e:56:95:5f:72:62:77:ad:7e:8c: 51:c6:b7:5b:e6:8e:08:37:09:66:19:16:3e:be:71: 31:56:0e:b7:dc:38:92:d0:f6:4a:05:a4:21:b0:e5: 57:b7:96:a4:f2:f3:da:55:be:33:fc:fa:e8:da:10: 1e:da:38:91:43:40:e4:4e:fe:35:d0:e0:ab:af:8a: 9d:2b:95:9a:91:9e:54:03:26:3d:09:b2:2e:70:6a: fe:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:2F:90:08:F9:C7:B8:CA:9E:44:FD:2E:94:13:BF:56:07:B9:47:44 X509v3 Authority Key Identifier: keyid:86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:42:fc:24:55:b3:fe:00:c9:f8:69:69:55:9e:87:10:0b:c6: 00:ba:51:4c:93:1d:7d:f8:d5:c7:d1:a5:f0:d5:1a:25:35:c5: 78:39:dc:d8:98:54:50:3a:5f:89:9c:31:df:9c:a5:14:3b:54: 50:56:c7:09:f0:a3:69:62:48:e4:c2:c6:5e:8f:6a:29:3e:85: 1d:15:1b:a8:2e:be:0a:72:89:b4:3d:3f:e0:b8:c3:7d:34:3b: 70:c7:65:ac:83:ff:77:60:2b:73:d3:dc:d8:88:91:d2:f6:81: e8:04:c9:56:f3:f0:3c:8e:1e:d9:fe:c3:01:c5:9b:90:2e:bd: a1:fc:1b:4b:08:1a:1b:36:1e:22:72:98:a7:81:c5:a6:99:7f: 88:75:1f:37:56:9a:4b:38:73:b1:fa:f0:cd:6e:65:ec:31:38: 4b:a4:9a:ce:ea:37:f4:cd:83:b5:e6:9f:c0:36:27:d9:73:3d: 25:af:a4:ff:42:76:85:05:01:56:e4:61:66:a4:b1:9b:db:91: db:48:ad:2e:7d:be:61:fd:6f:01:8c:36:78:c5:d3:a8:ed:97: 0f:1c:d1:c4:81:dd:42:04:2d:19:78:88:4f:84:14:db:ba:39: 21:b5:c3:0a:50:03:79:26:76:d8:78:e8:3d:cd:9c:e9:ea:b6: 03:98:1c:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQzUxMTAvBgNVBAUTKDg2N0QzRDY4QjY1OTc4MDNBRjU2NDY1QzBFOUI1M0FC NjY3QjcyQTgwHhcNMjYwMzI0MjE0MjM2WhcNMjYwMzMxMjE0MjM2WjAYMRYwFAYD VQQDEw02OWMzMDU0ZC0zOGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6AwuP1phbT8SzS93pZ1htu2C03Dc+xP8L9D6RVdlDhg4aJFC4bUYEXu7dGf SYjNOYBIQnq2iV7NVIBT5YeMS3riRECy8R564ci4XzMbQ2WiUCplR3KHG7grP5oL dpNEFSHnRjxb9TM8E+US5pmu9KRZ/1S8GpNHF7ErhwvDXsZQmcKm3JuJG6ZQP48z bQfwkTQdZI/S7jxdqO5pufCiTRcsji6csh3PG45WlV9yYnetfoxRxrdb5o4INwlm GRY+vnExVg633DiS0PZKBaQhsOVXt5ak8vPaVb4z/Pro2hAe2jiRQ0DkTv410OCr r4qdK5WakZ5UAyY9CbIucGr+eQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBMvkAj5 x7jKnkT9LpQTv1YHuUdEMB8GA1UdIwQYMBaAFIZ9PWi2WXgDr1ZGXA6bU6tme3Ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDNS9FOUYyOTJDNjgw QjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVBT3ZWa1pjRHB0VHEyWjdj cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2huMDlhTFpaZUFPdlZrWmNEcHRUcTJaN2NxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDNS9FOUYyOTJDNjgwQjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVB T3ZWa1pjRHB0VHEyWjdjcWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAukL8JFWz/gDJ+GlpVZ6HEAvGALpRTJMdffjVx9Gl8NUaJTXFeDnc2JhUUDpf iZwx35ylFDtUUFbHCfCjaWJI5MLGXo9qKT6FHRUbqC6+CnKJtD0/4LjDfTQ7cMdl rIP/d2Arc9Pc2IiR0vaB6ATJVvPwPI4e2f7DAcWbkC69ofwbSwgaGzYeInKYp4HF ppl/iHUfN1aaSzhzsfrwzW5l7DE4S6Sazuo39M2DteafwDYn2XM9Ja+k/0J2hQUB VuRhZqSxm9uR20itLn2+Yf1vAYw2eMXTqO2XDxzRxIHdQgQtGXiIT4QU27o5IbXD ClADeSZ22HjoPc2c6eq2A5gc5g== -----END CERTIFICATE-----Generated at Thu Mar 26 23:18:19 2026 by rpki-client