$ rpki-client -vvf rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft File: HKNtz8PAQzP4g7g18sjd0CXVQQY.mft (raw, json) Hash identifier: OKlZSfYMFnnmLHFbE7hgq9phd+Swq5rcPEpbu8VqOHQ= Subject key identifier: 43:BD:90:9D:73:A9:87:E8:55:A2:50:7F:E5:F9:73:84:EF:3D:38:96 Authority key identifier: 1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 Certificate issuer: /CN=A9142F59/serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft Manifest number: 8B Signing time: Wed 25 Mar 2026 06:53:44 +0000 Manifest this update: Wed 25 Mar 2026 06:53:44 +0000 Manifest next update: Wed 01 Apr 2026 06:53:44 +0000 Files and hashes: 1: HKNtz8PAQzP4g7g18sjd0CXVQQY.crl (hash: mvJS4LcIFb2H3eqKWIMm0/LxnqvzYH6d2S9RR1fXjaA=) 2: C7A29726A65311F091E2CF10C4F9AE02.roa (hash: RXr/2IJ/9MWQk0OdqW4xmP/C7ZFOJQkVQv3V5AO424U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142F59, serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Validity Not Before: Mar 25 06:53:44 2026 GMT Not After : Apr 1 06:53:44 2026 GMT Subject: CN=69c38678-889e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:49:e8:58:7d:27:48:67:d8:25:a4:7d:32:0d: b2:06:20:a4:e6:4d:32:6b:46:1f:ff:5b:b9:a4:c1: 4c:06:49:c9:99:5b:57:95:f1:d1:07:60:d3:fd:aa: e6:20:07:40:d3:48:57:f2:3d:41:b5:62:0f:52:95: 0a:17:cd:77:f9:45:ef:21:b3:5a:b8:1c:79:06:98: e8:ef:18:d7:63:64:cd:8a:a9:1f:66:e2:d6:dd:14: bc:f0:ad:6f:99:d2:8e:ec:34:b4:7a:91:d0:c2:18: 3e:8e:b9:04:2f:bc:ec:f4:ba:c9:c4:53:1d:40:1a: a1:7a:d5:8c:e1:56:a2:45:ec:19:f3:da:59:30:51: cd:2c:3f:54:de:81:b4:99:5b:f0:0f:71:e9:18:f2: 4a:93:fc:7a:e7:3d:57:b4:93:b1:1f:c4:e6:c5:4a: 5a:9d:ac:98:c0:26:88:2c:25:70:64:ea:9b:6e:a8: 01:12:9b:7a:fd:41:77:d9:7c:e6:08:4e:1c:2c:5f: 17:85:1c:fa:e1:33:ab:08:5c:60:aa:18:a1:4b:c9: 89:b5:ff:38:f5:f5:ab:78:ea:05:42:3a:47:24:e7: 74:39:9a:83:6e:d2:23:0b:71:90:cf:52:2a:05:2d: 25:06:d7:a1:d3:a1:c0:cd:27:5c:c6:fa:cb:e7:eb: ee:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:BD:90:9D:73:A9:87:E8:55:A2:50:7F:E5:F9:73:84:EF:3D:38:96 X509v3 Authority Key Identifier: keyid:1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:be:e3:d2:7e:54:09:25:a1:d4:00:76:fc:c6:39:47:1e:6f: 5a:71:c9:5a:34:81:62:1a:10:3e:71:7a:9e:b3:70:c3:06:90: 5b:f8:a4:36:0d:3e:8a:4d:69:56:75:20:48:13:be:f7:c9:dd: a7:0f:d6:74:ee:5c:6c:fd:fd:f7:c4:dd:9c:4c:00:2f:79:86: 5d:c8:37:8d:64:93:d5:f0:e8:42:b9:58:dc:89:14:33:06:22: 30:ed:09:60:be:40:82:10:94:da:06:97:9f:57:8c:60:f8:3e: 08:16:e8:ad:62:f8:64:4b:d0:6e:35:07:5f:f1:8c:24:d7:fd: ff:cf:c6:72:f0:cb:73:62:49:a7:65:45:3c:cf:12:99:1c:5c: cb:13:c6:64:4e:24:92:b1:81:5d:85:ab:d3:87:ab:59:fd:49: 93:e4:3d:38:36:10:d1:1b:77:d3:a3:6f:44:76:c2:b4:e9:e4: fb:26:9d:e7:8e:57:33:be:79:ce:bc:fc:b4:b3:ef:86:22:28: bb:10:9d:aa:fa:f3:c4:6c:c9:1d:89:2c:95:02:02:9a:ee:de: 0c:fa:c8:33:55:8f:a3:fa:e4:d2:3d:47:94:73:6a:6e:16:b8: d9:63:10:98:02:60:a9:d6:ca:4a:d5:9e:e4:e1:e4:13:44:eb: b7:45:8a:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJGNTkxMTAvBgNVBAUTKDFDQTM2RENGQzNDMDQzMzNGODgzQjgzNUYyQzhEREQw MjVENTQxMDYwHhcNMjYwMzI1MDY1MzQ0WhcNMjYwNDAxMDY1MzQ0WjAYMRYwFAYD VQQDEw02OWMzODY3OC04ODllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuknoWH0nSGfYJaR9Mg2yBiCk5k0ya0Yf/1u5pMFMBknJmVtXlfHRB2DT/arm IAdA00hX8j1BtWIPUpUKF813+UXvIbNauBx5Bpjo7xjXY2TNiqkfZuLW3RS88K1v mdKO7DS0epHQwhg+jrkEL7zs9LrJxFMdQBqhetWM4VaiRewZ89pZMFHNLD9U3oG0 mVvwD3HpGPJKk/x65z1XtJOxH8TmxUpanayYwCaILCVwZOqbbqgBEpt6/UF32Xzm CE4cLF8XhRz64TOrCFxgqhihS8mJtf849fWreOoFQjpHJOd0OZqDbtIjC3GQz1Iq BS0lBteh06HAzSdcxvrL5+vuAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEO9kJ1z qYfoVaJQf+X5c4TvPTiWMB8GA1UdIwQYMBaAFByjbc/DwEMz+IO4NfLI3dAl1UEG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkY1OS8wNTI2RDYyRTYy MzAxMUYwQTAyMDc2MzBDNEY5QUUwMi9IS050ejhQQVF6UDRnN2cxOHNqZDBDWFZR UVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hLTnR6OFBBUXpQNGc3ZzE4c2pkMENYVlFRWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkY1OS8wNTI2RDYyRTYyMzAxMUYwQTAyMDc2MzBDNEY5QUUwMi9IS050ejhQQVF6 UDRnN2cxOHNqZDBDWFZRUVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeL7j0n5UCSWh1AB2/MY5Rx5vWnHJWjSBYhoQPnF6nrNwwwaQW/ikNg0+ik1p VnUgSBO+98ndpw/WdO5cbP3998TdnEwAL3mGXcg3jWST1fDoQrlY3IkUMwYiMO0J YL5AghCU2gaXn1eMYPg+CBborWL4ZEvQbjUHX/GMJNf9/8/GcvDLc2JJp2VFPM8S mRxcyxPGZE4kkrGBXYWr04erWf1Jk+Q9ODYQ0Rt306NvRHbCtOnk+yad545XM755 zrz8tLPvhiIouxCdqvrzxGzJHYkslQICmu7eDPrIM1WPo/rk0j1HlHNqbha42WMQ mAJgqdbKStWe5OHkE0Trt0WKCA== -----END CERTIFICATE-----Generated at Thu Mar 26 17:43:56 2026 by rpki-client