$ rpki-client -vvf rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft File: HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft (raw, json) Hash identifier: xlRnWixQaIw1vX6T1nfWw2fHuCkQNATAKb0fr0ByM0A= Subject key identifier: 9E:EB:8F:83:A6:C4:C8:94:92:07:FD:57:DC:B6:A8:1D:FE:04:4F:09 Authority key identifier: 1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 Certificate issuer: /CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Certificate serial: 0BBE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft Manifest number: 0B8D Signing time: Thu 26 Mar 2026 19:08:10 +0000 Manifest this update: Thu 26 Mar 2026 19:08:09 +0000 Manifest next update: Thu 02 Apr 2026 19:08:09 +0000 Files and hashes: 1: HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl (hash: I0uWu561RjUeEeLC9iMv5FzERCfO16fhfZZScSYjhIY=) 2: 1AB6B24A502211F0AFF2E30FC4F9AE02.roa (hash: kwJXUdIWIULcdvXnSltjD9IlKYTAbUqSYuR8m6iq46w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:08:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3006 (0xbbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F721, serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Validity Not Before: Mar 26 19:08:09 2026 GMT Not After : Apr 2 19:08:09 2026 GMT Subject: CN=69c5841a-2973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2e:6d:bc:7e:89:99:33:13:d5:fe:73:b9:5e: fe:cc:35:04:17:db:18:6f:74:65:06:c0:2b:37:55: 06:45:31:19:86:c3:c0:9b:fc:c9:ea:0d:30:1d:ea: 02:4a:07:39:11:dd:8f:d5:b4:6e:42:aa:35:21:2c: 8d:2d:a7:4f:30:58:56:dc:87:17:a0:0a:82:96:63: d8:d6:25:33:64:47:42:71:95:b4:d7:0f:b0:20:4a: e5:9e:ee:34:cd:60:bc:6d:d5:d5:84:78:28:32:ea: 41:f6:b5:3e:a3:04:29:a2:e2:36:bc:96:3f:d7:b8: 44:48:93:44:8b:3f:e1:f5:e0:6b:7f:26:f2:e0:6b: ff:3f:78:a7:ba:c1:24:88:27:11:2a:7a:46:31:02: 23:94:52:2a:d5:18:08:6c:d7:01:02:e1:dc:fb:6b: c2:db:83:3f:7c:7a:ac:36:69:d6:a7:78:ad:8b:a9: fe:96:f0:38:b2:9b:d0:5b:fa:5b:95:09:7e:b5:32: 8c:bc:a2:26:f0:9a:e0:bd:9c:bb:44:0f:3a:17:83: 43:a6:8c:18:0a:4e:3f:3c:2c:b7:47:7f:ab:c4:56: ed:42:80:2d:2b:c1:96:b6:5c:e2:3a:ef:c6:22:62: c0:b2:14:a7:1b:29:02:ad:e0:a8:8e:a0:f2:66:17: e5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:EB:8F:83:A6:C4:C8:94:92:07:FD:57:DC:B6:A8:1D:FE:04:4F:09 X509v3 Authority Key Identifier: keyid:1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:d8:44:38:74:5d:a6:22:d0:44:89:97:f7:6e:51:90:25:12: 8f:65:d5:92:1f:60:c0:12:89:16:0b:a6:84:ef:b8:31:3e:b0: 6b:7f:4d:70:9b:0e:b8:4c:78:84:27:81:2b:28:17:20:99:01: 61:1c:31:cd:90:31:d5:ac:a2:48:5b:d9:71:9f:25:8a:00:69: 7b:5b:18:39:a0:55:97:51:03:ad:db:3b:61:7c:c7:48:6d:80: da:c3:4c:43:fe:fd:35:2d:39:2e:85:9d:ac:9e:6c:c0:32:a9: ea:ac:73:e5:6f:e2:12:22:4c:d2:50:ff:00:68:3f:46:30:25: 07:1b:9d:39:21:ad:35:fe:6e:d3:ef:5f:12:08:94:fe:0d:50: 49:16:b1:3c:af:fa:39:d4:67:6a:ac:ba:91:c1:56:8a:50:06: 48:d2:8d:ce:c2:57:23:5d:ae:8c:bc:7f:bc:80:e1:9c:c1:74: ef:47:f4:fb:ca:03:e7:05:50:77:b1:99:02:b6:89:a6:43:a2: 41:53:c2:62:4a:3e:31:8c:de:04:8f:0e:a2:c7:55:72:dd:c6: 64:4c:b6:fa:8c:58:13:dc:0f:57:58:b4:26:74:60:a8:35:38: 3e:4f:0a:ac:0a:5c:d8:f6:8d:0d:68:b1:d9:00:fa:51:d1:80: 76:ac:5a:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y3MjExMTAvBgNVBAUTKDFERDcxN0IyMjk5MzYxOTBDRUI2NjdDN0NFMUNBOUY5 QkZCNUZBQzQwHhcNMjYwMzI2MTkwODA5WhcNMjYwNDAyMTkwODA5WjAYMRYwFAYD VQQDEw02OWM1ODQxYS0yOTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoC5tvH6JmTMT1f5zuV7+zDUEF9sYb3RlBsArN1UGRTEZhsPAm/zJ6g0wHeoC Sgc5Ed2P1bRuQqo1ISyNLadPMFhW3IcXoAqClmPY1iUzZEdCcZW01w+wIErlnu40 zWC8bdXVhHgoMupB9rU+owQpouI2vJY/17hESJNEiz/h9eBrfyby4Gv/P3inusEk iCcRKnpGMQIjlFIq1RgIbNcBAuHc+2vC24M/fHqsNmnWp3iti6n+lvA4spvQW/pb lQl+tTKMvKIm8JrgvZy7RA86F4NDpowYCk4/PCy3R3+rxFbtQoAtK8GWtlziOu/G ImLAshSnGykCreCojqDyZhflXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ7rj4Om xMiUkgf9V9y2qB3+BE8JMB8GA1UdIwQYMBaAFB3XF7Ipk2GQzrZnx84cqfm/tfrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjcyMS82NDQyNDM3QTUz QUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFlaRE90bWZIemh5cC1iLTEt c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkY1hzaW1UWVpET3RtZkh6aHlwLWItMS1zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjcyMS82NDQyNDM3QTUzQUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFla RE90bWZIemh5cC1iLTEtc1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHdhEOHRdpiLQRImX925RkCUSj2XVkh9gwBKJFgumhO+4MT6wa39NcJsOuEx4 hCeBKygXIJkBYRwxzZAx1ayiSFvZcZ8ligBpe1sYOaBVl1EDrds7YXzHSG2A2sNM Q/79NS05LoWdrJ5swDKp6qxz5W/iEiJM0lD/AGg/RjAlBxudOSGtNf5u0+9fEgiU /g1QSRaxPK/6OdRnaqy6kcFWilAGSNKNzsJXI12ujLx/vIDhnMF070f0+8oD5wVQ d7GZAraJpkOiQVPCYko+MYzeBI8OosdVct3GZEy2+oxYE9wPV1i0JnRgqDU4Pk8K rApc2PaNDWix2QD6UdGAdqxaAg== -----END CERTIFICATE-----Generated at Sat Mar 28 13:22:49 2026 by rpki-client