$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft File: HaAa_AiIyqYXHgoOdBz8kE7S328.mft (raw, json) Hash identifier: L0p28mH3d9imZUYXtPYrginaKetJ8m5YKcxQH3RS1V4= Subject key identifier: D9:C0:72:A4:D0:60:59:50:7F:09:C4:56:F0:F5:AD:F6:88:A1:45:E8 Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 096D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft Manifest number: 0966 Signing time: Tue 24 Mar 2026 19:52:27 +0000 Manifest this update: Tue 24 Mar 2026 19:52:26 +0000 Manifest next update: Tue 31 Mar 2026 19:52:26 +0000 Files and hashes: 1: HaAa_AiIyqYXHgoOdBz8kE7S328.crl (hash: Qpi2pXlQTL94iDqcSorMbTkMDO4BKPBAgfBu+kOxD+o=) 2: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (hash: +DpHFB50fImEl6Y9RzefeEY4U7OoTyTS990Apq9JdK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:52:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2413 (0x96d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Mar 24 19:52:26 2026 GMT Not After : Mar 31 19:52:26 2026 GMT Subject: CN=69c2eb7a-5b60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:16:c5:4d:e1:b1:8a:52:19:36:7c:64:4f:9d: 29:35:12:ba:25:86:41:73:a1:61:17:69:ba:ae:e7: ac:6a:18:76:67:8d:ac:36:b6:bd:98:cb:b9:bc:c2: 25:ab:57:0f:a1:22:3c:55:b7:77:c0:a2:88:01:79: ba:9d:5c:89:74:0f:a9:23:81:7d:7c:cd:fb:c1:f8: b9:b3:e4:cf:ca:dd:f6:86:12:b4:14:8b:ee:b0:07: 04:57:d7:b7:4a:d4:4c:fc:97:e7:e2:5c:a5:21:ff: 1b:82:6a:f8:5b:26:ad:66:62:8b:46:2f:51:a2:f7: f3:c3:2a:d3:87:bc:13:29:55:dd:15:84:6f:cc:b0: e3:02:30:6d:61:95:6e:8a:b8:a4:36:8c:1c:fa:f5: f8:b7:7e:36:4b:a0:75:23:e6:20:a0:70:34:1a:30: a3:4a:68:e6:26:c1:5a:b6:84:70:5e:81:4e:7a:f8: 18:5e:b0:78:5c:84:5f:02:0c:d6:4f:83:13:54:58: dc:51:1a:b7:c2:23:b4:a6:c7:0c:72:81:33:f8:4c: 5f:51:dd:f5:e9:cc:0c:df:4d:c0:bc:1c:8b:53:55: d2:9e:3a:6e:4c:cc:8c:8d:cb:af:d7:d7:ac:1a:86: b9:25:e4:e1:e2:aa:fb:42:7e:61:49:9f:86:e1:69: 68:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:C0:72:A4:D0:60:59:50:7F:09:C4:56:F0:F5:AD:F6:88:A1:45:E8 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:03:e1:db:c1:09:8f:12:b4:ab:a7:b9:3a:61:42:ed:19:e5: 90:d9:f7:e8:c1:77:1e:85:e5:26:51:2d:d8:60:16:0b:2f:64: 53:33:67:80:7c:a2:15:22:f9:da:4d:c3:c0:b7:f5:b0:5b:bd: 9e:c6:68:81:20:90:2e:04:16:6e:d4:87:22:cf:74:4d:ef:71: b9:df:c2:7c:ed:d1:38:ee:89:38:f6:26:bb:17:a5:03:03:f4: de:53:8a:4a:1b:09:dc:d2:dc:d8:a5:2c:a2:09:7e:ea:3e:7e: 7f:00:dd:27:dc:13:6b:e5:d4:a6:9f:bf:b3:62:ca:4a:f2:1e: 7c:5d:a5:c1:ab:da:5e:02:84:6d:09:91:eb:47:d9:b5:94:ae: 19:8e:80:54:36:76:42:c3:6e:a1:cd:8d:8d:0b:f3:54:91:f4: 31:79:05:cc:65:12:82:25:6a:62:71:bf:0c:5a:42:7a:14:7c: 38:19:5f:04:8e:03:03:5d:24:37:74:43:0d:43:da:66:1d:50: 69:2d:91:c6:fa:d3:fc:cf:0f:d1:52:a2:db:db:d5:0c:01:8f: 11:fa:83:14:24:4b:1c:8f:ba:24:ea:89:0f:13:f3:76:18:3e: d6:e8:38:7b:4a:a8:25:61:e4:b6:41:ce:c4:93:fc:fe:49:13: 11:07:1b:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjYwMzI0MTk1MjI2WhcNMjYwMzMxMTk1MjI2WjAYMRYwFAYD VQQDEw02OWMyZWI3YS01YjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRbFTeGxilIZNnxkT50pNRK6JYZBc6FhF2m6ruesahh2Z42sNra9mMu5vMIl q1cPoSI8Vbd3wKKIAXm6nVyJdA+pI4F9fM37wfi5s+TPyt32hhK0FIvusAcEV9e3 StRM/Jfn4lylIf8bgmr4WyatZmKLRi9RovfzwyrTh7wTKVXdFYRvzLDjAjBtYZVu irikNowc+vX4t342S6B1I+YgoHA0GjCjSmjmJsFatoRwXoFOevgYXrB4XIRfAgzW T4MTVFjcURq3wiO0pscMcoEz+ExfUd316cwM303AvByLU1XSnjpuTMyMjcuv19es Goa5JeTh4qr7Qn5hSZ+G4WlogwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNnAcqTQ YFlQfwnEVvD1rfaIoUXoMB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlx WVhIZ29PZEJ6OGtFN1MzMjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZwPh28EJjxK0q6e5OmFC7RnlkNn36MF3HoXlJlEt2GAWCy9kUzNngHyiFSL5 2k3DwLf1sFu9nsZogSCQLgQWbtSHIs90Te9xud/CfO3ROO6JOPYmuxelAwP03lOK ShsJ3NLc2KUsogl+6j5+fwDdJ9wTa+XUpp+/s2LKSvIefF2lwavaXgKEbQmR60fZ tZSuGY6AVDZ2QsNuoc2NjQvzVJH0MXkFzGUSgiVqYnG/DFpCehR8OBlfBI4DA10k N3RDDUPaZh1QaS2RxvrT/M8P0VKi29vVDAGPEfqDFCRLHI+6JOqJDxPzdhg+1ug4 e0qoJWHktkHOxJP8/kkTEQcbew== -----END CERTIFICATE-----Generated at Thu Mar 26 14:44:37 2026 by rpki-client