$ rpki-client -vvf rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft File: HSQuN7enRsN-RUFFarAJiztXPPw.mft (raw, json) Hash identifier: PWjJCrsm6OneiV3Qqyoc/KOB8/r+d1OTVYciMwobcWQ= Subject key identifier: 2C:72:12:C4:5F:1E:2D:C7:C1:57:B5:A8:14:E0:4A:19:D0:C3:17:88 Authority key identifier: 1D:24:2E:37:B7:A7:46:C3:7E:45:41:45:6A:B0:09:8B:3B:57:3C:FC Certificate issuer: /CN=A9142EA4/serialNumber=1D242E37B7A746C37E4541456AB0098B3B573CFC Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSQuN7enRsN-RUFFarAJiztXPPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft Manifest number: 85 Signing time: Wed 25 Mar 2026 06:54:25 +0000 Manifest this update: Wed 25 Mar 2026 06:54:25 +0000 Manifest next update: Wed 01 Apr 2026 06:54:25 +0000 Files and hashes: 1: HSQuN7enRsN-RUFFarAJiztXPPw.crl (hash: DiH5aXFG4jrwLO3f3TVXi3jS2A+cM7yab83d9Gy99wE=) 2: 96E040E063B211F09B18DA38C4F9AE02.roa (hash: 5d4aR6+HPHTX5ownXdns+DgbYqzlnphA2XrLf07vUNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.crl rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSQuN7enRsN-RUFFarAJiztXPPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:54:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142EA4, serialNumber=1D242E37B7A746C37E4541456AB0098B3B573CFC Validity Not Before: Mar 25 06:54:25 2026 GMT Not After : Apr 1 06:54:25 2026 GMT Subject: CN=69c386a1-2dab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:8b:9b:5a:c6:f7:40:93:b9:d0:73:c1:e3:15: e4:8a:e8:70:f4:f9:53:2c:cb:12:97:59:bf:a2:ad: 2b:e0:a9:ae:28:13:48:dd:db:31:d5:5f:57:b7:de: 80:35:30:32:79:d3:1d:cc:3c:f1:df:2a:b0:84:a2: 81:e2:5b:5a:13:77:e5:5c:df:97:fa:08:fd:df:b5: f6:64:a7:a3:c3:05:27:90:4b:32:59:73:30:8c:b4: e7:05:37:7c:71:e7:ab:64:86:3b:6d:7a:f3:81:6d: fd:55:f8:e7:bc:13:0f:42:49:dd:7c:d3:39:63:06: 0e:01:53:d4:0a:9f:ee:c4:a5:56:27:b4:87:43:c9: bb:0d:c2:92:44:f9:0c:9a:8a:e3:d4:44:9a:0e:99: 43:08:60:99:81:f2:53:8c:09:e9:52:26:0a:3a:3e: f6:95:03:0f:8c:38:f0:90:92:62:0f:9c:f1:e9:86: 97:52:be:cf:64:35:9e:c8:9c:e7:95:52:83:dc:59: 0c:8a:4c:d3:f5:c8:51:a7:89:a7:99:36:39:32:2b: 0b:75:9e:b1:08:d5:86:a3:f9:c3:9e:23:bc:76:99: c1:aa:43:39:0c:fe:04:cd:f1:9f:0d:eb:20:56:1a: 9a:76:6b:c6:e2:f4:5a:48:90:4c:dc:72:b7:0d:69: c2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:72:12:C4:5F:1E:2D:C7:C1:57:B5:A8:14:E0:4A:19:D0:C3:17:88 X509v3 Authority Key Identifier: keyid:1D:24:2E:37:B7:A7:46:C3:7E:45:41:45:6A:B0:09:8B:3B:57:3C:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSQuN7enRsN-RUFFarAJiztXPPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142EA4/264DCF1C63AF11F08E002B4CC4F9AE02/HSQuN7enRsN-RUFFarAJiztXPPw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:62:13:f5:b9:3e:35:7d:c1:02:a7:32:31:1d:6e:95:fb:1e: cd:64:bd:45:c6:73:9a:c6:9a:ca:0c:55:2e:2a:0a:82:fb:b8: b7:d6:97:02:60:c1:79:a5:a9:53:3b:a5:55:d9:61:99:33:12: ae:01:eb:e0:4e:b3:f0:e1:8e:0d:fe:19:3c:ec:b6:70:0e:b6: 9f:44:f2:e4:17:4b:0b:ca:e2:bc:88:30:62:21:94:fb:f2:e6: 09:d2:55:57:d6:a2:bf:38:2e:5e:e8:e9:3f:4a:68:09:a5:2f: f5:59:ea:ec:0f:68:ea:eb:b1:72:39:10:65:fc:50:44:95:ea: 90:8b:bc:e8:49:be:52:c8:a3:ec:79:b1:c9:fe:1a:56:df:5b: 65:02:52:d4:be:7c:58:3c:da:2d:fb:a5:69:e5:00:0f:74:05: 0e:ef:cc:d2:82:51:b9:fd:64:56:bf:cc:4c:fa:c3:9e:9b:39: 68:cf:4a:38:74:d4:4f:18:7e:97:40:eb:3d:20:1d:17:6a:11: d2:2f:ad:e5:ba:25:ee:7c:c9:b8:18:8f:81:e7:48:95:2f:34: ac:71:6c:e0:df:95:61:ff:ba:52:95:b2:6c:94:dd:14:5b:46: 22:82:b9:1d:39:f8:82:3c:26:e0:37:26:8c:a6:0b:d2:fe:3f: be:2d:ae:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFQTQxMTAvBgNVBAUTKDFEMjQyRTM3QjdBNzQ2QzM3RTQ1NDE0NTZBQjAwOThC M0I1NzNDRkMwHhcNMjYwMzI1MDY1NDI1WhcNMjYwNDAxMDY1NDI1WjAYMRYwFAYD VQQDEw02OWMzODZhMS0yZGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7oubWsb3QJO50HPB4xXkiuhw9PlTLMsSl1m/oq0r4KmuKBNI3dsx1V9Xt96A NTAyedMdzDzx3yqwhKKB4ltaE3flXN+X+gj937X2ZKejwwUnkEsyWXMwjLTnBTd8 ceerZIY7bXrzgW39VfjnvBMPQkndfNM5YwYOAVPUCp/uxKVWJ7SHQ8m7DcKSRPkM morj1ESaDplDCGCZgfJTjAnpUiYKOj72lQMPjDjwkJJiD5zx6YaXUr7PZDWeyJzn lVKD3FkMikzT9chRp4mnmTY5MisLdZ6xCNWGo/nDniO8dpnBqkM5DP4EzfGfDesg VhqadmvG4vRaSJBM3HK3DWnCmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCxyEsRf Hi3HwVe1qBTgShnQwxeIMB8GA1UdIwQYMBaAFB0kLje3p0bDfkVBRWqwCYs7Vzz8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkVBNC8yNjREQ0YxQzYz QUYxMUYwOEUwMDJCNENDNEY5QUUwMi9IU1F1TjdlblJzTi1SVUZGYXJBSml6dFhQ UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hTUXVON2VuUnNOLVJVRkZhckFKaXp0WFBQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkVBNC8yNjREQ0YxQzYzQUYxMUYwOEUwMDJCNENDNEY5QUUwMi9IU1F1TjdlblJz Ti1SVUZGYXJBSml6dFhQUHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGWIT9bk+NX3BAqcyMR1ulfsezWS9RcZzmsaaygxVLioKgvu4t9aXAmDBeaWp UzulVdlhmTMSrgHr4E6z8OGODf4ZPOy2cA62n0Ty5BdLC8rivIgwYiGU+/LmCdJV V9aivzguXujpP0poCaUv9Vnq7A9o6uuxcjkQZfxQRJXqkIu86Em+Usij7Hmxyf4a Vt9bZQJS1L58WDzaLfulaeUAD3QFDu/M0oJRuf1kVr/MTPrDnps5aM9KOHTUTxh+ l0DrPSAdF2oR0i+t5bol7nzJuBiPgedIlS80rHFs4N+VYf+6UpWybJTdFFtGIoK5 HTn4gjwm4DcmjKYL0v4/vi2u9g== -----END CERTIFICATE-----Generated at Thu Mar 26 04:53:12 2026 by rpki-client