$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: OE3E79NWNsQW5aWwaF0vRzJVPeNIELYe40cGYHZJK6w= Subject key identifier: F0:F5:09:A1:53:CC:B8:68:BE:93:46:AD:22:48:10:93:2F:7E:B1:99 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 0882 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 0869 Signing time: Tue 24 Mar 2026 20:29:31 +0000 Manifest this update: Tue 24 Mar 2026 20:29:31 +0000 Manifest next update: Tue 31 Mar 2026 20:29:31 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: 5n9ZAluwucuDnilkwM+cgu9tGXKlVKuxE+MK8mx/Ri4=) 2: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: DHN4e0JrosxaWqhhvniYwJn8xIsHqQd0pj3UDSpuBlo=) 3: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: n2hlAVM9PTTT2Scjp8/RzlDa+bb55gqeGOADAsXpei0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2178 (0x882) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Mar 24 20:29:31 2026 GMT Not After : Mar 31 20:29:31 2026 GMT Subject: CN=69c2f42b-efe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bc:b9:77:8a:5c:70:08:74:ea:b8:ac:36:d5: ea:61:e8:23:71:0a:0b:05:30:c7:40:49:e8:14:2a: 57:11:0c:b5:57:14:4e:39:1a:8a:11:bf:b4:d8:2f: 68:0c:cc:07:b0:d9:3a:53:b1:4a:98:68:df:d6:82: ca:79:f2:ce:80:a2:4d:b1:43:cf:1d:e5:32:c8:57: 33:86:92:3c:53:ca:28:45:2d:30:92:e9:7e:11:e8: e6:89:6e:05:b4:a5:c2:a2:89:d0:e4:c7:29:b5:bc: 91:7f:00:31:20:95:5a:21:0f:ff:52:83:93:e0:31: f4:df:a2:e5:eb:7f:84:c5:27:25:ed:ac:69:2c:55: f9:e1:20:8e:f9:af:35:35:c4:37:2a:7a:c9:ce:f4: 2f:55:d2:26:a2:9f:9f:c5:ca:c5:54:de:2c:65:57: b2:f1:10:f7:c0:cb:44:38:f8:ff:dd:b0:dd:b4:12: d8:74:78:e6:c1:1a:cd:07:b6:fe:ee:6d:24:9a:cf: 4f:33:5c:a6:6f:b1:13:bb:fa:3b:00:64:47:2b:6e: 9b:4a:c8:7f:4c:af:63:e7:53:99:56:0b:59:22:82: 8b:7b:4a:bd:34:fd:5a:95:88:7e:b1:41:dc:13:4b: 62:95:d6:8f:58:43:79:5c:7d:a1:35:9b:21:25:be: 2f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F5:09:A1:53:CC:B8:68:BE:93:46:AD:22:48:10:93:2F:7E:B1:99 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:a2:06:21:8d:e8:ce:5f:43:d3:6d:2f:fb:4e:ec:ee:ef:b4: 51:aa:9d:4a:a2:fa:73:ad:cb:d0:a7:91:fe:8e:d1:e7:5b:73: 9c:ec:44:6d:3a:17:79:ba:1a:3a:9e:fb:14:1b:9d:29:af:17: 6b:48:9a:fc:e2:31:0e:83:7d:e4:40:54:ed:c9:7d:f2:1b:47: 4a:ad:8b:63:1d:0f:9a:61:7c:c8:cb:92:32:68:29:e3:3b:b4: ae:ca:3e:4b:9d:65:e6:11:d5:18:a5:58:a0:9f:10:01:52:4d: 0d:2c:bc:6a:a1:3a:09:cc:79:78:e4:ce:5f:eb:76:e6:7b:55: 9b:d5:52:de:81:59:e2:4a:6a:d9:02:c6:44:01:20:ee:16:53: 5a:8a:ab:3d:ff:85:87:ec:80:c2:80:97:62:bc:be:c6:2c:69: 87:cd:d9:b7:27:84:f4:ac:bb:b5:f2:58:3e:87:de:1c:5e:96: f9:fc:eb:40:82:4b:fc:df:2c:77:9e:42:2f:52:2a:b2:7b:4a: ae:60:c3:f1:65:42:e7:09:a5:cf:01:2d:4b:d0:a2:10:82:4f: da:fd:c4:2a:46:ae:b2:12:f3:a7:3b:fa:d5:03:e6:83:8d:d9: e2:37:76:20:24:e2:b8:7d:1c:1c:da:bf:6a:ef:a2:c0:11:ba: 26:bc:c4:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjYwMzI0MjAyOTMxWhcNMjYwMzMxMjAyOTMxWjAYMRYwFAYD VQQDEw02OWMyZjQyYi1lZmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLy5d4pccAh06risNtXqYegjcQoLBTDHQEnoFCpXEQy1VxROORqKEb+02C9o DMwHsNk6U7FKmGjf1oLKefLOgKJNsUPPHeUyyFczhpI8U8ooRS0wkul+EejmiW4F tKXCoonQ5McptbyRfwAxIJVaIQ//UoOT4DH036Ll63+ExScl7axpLFX54SCO+a81 NcQ3KnrJzvQvVdImop+fxcrFVN4sZVey8RD3wMtEOPj/3bDdtBLYdHjmwRrNB7b+ 7m0kms9PM1ymb7ETu/o7AGRHK26bSsh/TK9j51OZVgtZIoKLe0q9NP1alYh+sUHc E0tildaPWEN5XH2hNZshJb4veQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPD1CaFT zLhovpNGrSJIEJMvfrGZMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVqIGIY3ozl9D020v+07s7u+0UaqdSqL6c63L0KeR/o7R51tznOxEbToXeboa Op77FBudKa8Xa0ia/OIxDoN95EBU7cl98htHSq2LYx0PmmF8yMuSMmgp4zu0rso+ S51l5hHVGKVYoJ8QAVJNDSy8aqE6Ccx5eOTOX+t25ntVm9VS3oFZ4kpq2QLGRAEg 7hZTWoqrPf+Fh+yAwoCXYry+xixph83ZtyeE9Ky7tfJYPofeHF6W+fzrQIJL/N8s d55CL1IqsntKrmDD8WVC5wmlzwEtS9CiEIJP2v3EKkaushLzpzv61QPmg43Z4jd2 ICTiuH0cHNq/au+iwBG6JrzExg== -----END CERTIFICATE-----Generated at Thu Mar 26 07:23:08 2026 by rpki-client