$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft File: HsyXilPvK-iOXyatm4q4g3PRl6Y.mft (raw, json) Hash identifier: Wq9as6IiqIOjB/QZbDWSNbdyK4viEBPmorTZSSpvFVw= Subject key identifier: F3:35:9B:2B:FD:4A:D5:5B:96:F1:8B:00:CD:78:9E:D1:BC:3D:BF:1B Authority key identifier: 1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 Certificate issuer: /CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Certificate serial: 353E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft Manifest number: 353E Signing time: Tue 24 Mar 2026 14:21:57 +0000 Manifest this update: Tue 24 Mar 2026 14:21:56 +0000 Manifest next update: Tue 31 Mar 2026 14:21:56 +0000 Files and hashes: 1: HsyXilPvK-iOXyatm4q4g3PRl6Y.crl (hash: /Y52YAsW2s7C9BG+Sl5UsrZUEVqcwDj3xBwbpf8dHPc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13630 (0x353e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Validity Not Before: Mar 24 14:21:56 2026 GMT Not After : Mar 31 14:21:56 2026 GMT Subject: CN=69c29e05-8be1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a6:9e:f2:d2:4c:a9:78:ac:37:37:72:92:24: 49:4c:b5:46:f2:59:5a:8a:10:59:ef:9c:5f:08:be: 88:e8:05:2c:fd:0f:58:7c:de:e3:bc:1e:9c:96:e5: 15:65:af:21:ab:56:56:6d:5c:6c:73:84:c7:a4:b3: 51:55:cf:cf:d0:30:8a:cd:20:90:d5:15:72:b0:40: 58:ab:d7:ae:52:0a:2a:a8:ca:a9:3a:f9:8f:aa:98: b7:3c:ab:e7:46:3a:96:1b:80:62:f9:64:ab:af:4b: 47:3d:74:d1:30:6d:79:80:90:95:85:8b:0d:41:e0: 1d:0b:b1:75:00:76:e6:b4:9d:5d:27:95:0e:e5:d0: 80:6b:cc:90:03:d4:a3:a3:9f:fb:fa:1f:68:0b:3e: 23:e0:5e:e1:86:c5:f6:16:c7:f4:d2:0c:7b:54:ef: 61:1e:f4:64:ce:b5:c8:90:18:04:1e:64:57:72:c1: 52:e3:8d:b7:e4:a1:4e:53:b1:5a:0a:78:c3:3a:a5: c3:fa:41:fb:f6:37:cc:1c:ab:c1:54:e6:8d:2c:9e: e2:17:04:24:b0:3e:ea:4a:f5:af:b2:5c:2c:a6:9a: e6:a1:c6:82:74:de:06:7a:4e:b3:8c:c6:3c:ad:0e: a5:18:10:75:4f:ac:16:e4:e5:04:92:ba:4e:9d:23: 4a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:35:9B:2B:FD:4A:D5:5B:96:F1:8B:00:CD:78:9E:D1:BC:3D:BF:1B X509v3 Authority Key Identifier: keyid:1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:21:21:b6:8a:d7:5d:ad:4f:43:7a:f8:91:b8:97:b0:d9:27: c3:80:32:c2:48:5f:75:f8:54:3c:0c:d0:41:f4:68:54:dd:8c: 7d:43:6b:30:d1:df:c8:97:b2:69:1a:30:f2:e4:f1:a1:18:e9: 2e:9a:0f:e5:b6:40:b5:07:a5:4e:ff:c7:17:04:ac:18:f8:6c: 92:1e:d3:2f:fc:cc:4c:d7:3f:b3:8b:d9:a4:bc:89:07:db:18: 1d:6b:56:a3:6b:fe:4e:c3:e4:8a:4b:4c:81:dd:1b:c2:ae:88: ee:ab:2a:18:cd:55:3d:bb:22:da:2f:59:ce:e6:6a:7e:1e:ce: 56:de:48:ad:f5:77:41:bf:1a:6f:c3:ce:c4:97:3b:3c:ba:fe: b4:c9:76:6b:56:d1:38:b5:82:9b:de:fc:c0:a3:74:0b:d9:00: 1b:da:10:68:fb:9e:04:cd:60:fa:98:28:61:85:a8:2d:3f:07: 35:b9:c1:f7:0c:7d:91:55:7b:05:51:a7:e1:02:31:66:46:75: 38:3a:ac:86:8a:c9:83:bb:2e:ab:0a:16:e9:ef:e7:e7:d3:c0: 33:45:1a:5c:b1:e3:bf:6a:a2:3a:e9:c9:c1:9b:0d:69:c0:02: d6:2c:9a:42:17:89:3d:6c:bb:87:34:91:ff:ff:45:ad:27:44: 39:98:39:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKDFFQ0M5NzhBNTNFRjJCRTg4RTVGMjZBRDlCOEFCODgz NzNEMTk3QTYwHhcNMjYwMzI0MTQyMTU2WhcNMjYwMzMxMTQyMTU2WjAYMRYwFAYD VQQDEw02OWMyOWUwNS04YmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaae8tJMqXisNzdykiRJTLVG8llaihBZ75xfCL6I6AUs/Q9YfN7jvB6cluUV Za8hq1ZWbVxsc4THpLNRVc/P0DCKzSCQ1RVysEBYq9euUgoqqMqpOvmPqpi3PKvn RjqWG4Bi+WSrr0tHPXTRMG15gJCVhYsNQeAdC7F1AHbmtJ1dJ5UO5dCAa8yQA9Sj o5/7+h9oCz4j4F7hhsX2Fsf00gx7VO9hHvRkzrXIkBgEHmRXcsFS44235KFOU7Fa CnjDOqXD+kH79jfMHKvBVOaNLJ7iFwQksD7qSvWvslwspprmocaCdN4Gek6zjMY8 rQ6lGBB1T6wW5OUEkrpOnSNKbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPM1myv9 StVblvGLAM14ntG8Pb8bMB8GA1UdIwQYMBaAFB7Ml4pT7yvojl8mrZuKuINz0Zem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9CRkVCMDAwODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkstaU9YeWF0bTRxNGczUFJs NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0hzeVhpbFB2Sy1pT1h5YXRtNHE0ZzNQUmw2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUYzRS9CRkVCMDAwODFEODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkst aU9YeWF0bTRxNGczUFJsNlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVSEhtorXXa1PQ3r4kbiXsNknw4AywkhfdfhUPAzQQfRoVN2MfUNrMNHfyJey aRow8uTxoRjpLpoP5bZAtQelTv/HFwSsGPhskh7TL/zMTNc/s4vZpLyJB9sYHWtW o2v+TsPkiktMgd0bwq6I7qsqGM1VPbsi2i9ZzuZqfh7OVt5IrfV3Qb8ab8POxJc7 PLr+tMl2a1bROLWCm978wKN0C9kAG9oQaPueBM1g+pgoYYWoLT8HNbnB9wx9kVV7 BVGn4QIxZkZ1ODqshorJg7suqwoW6e/n59PAM0UaXLHjv2qiOunJwZsNacAC1iya QheJPWy7hzSR//9FrSdEOZg5vQ== -----END CERTIFICATE-----Generated at Thu Mar 26 04:17:28 2026 by rpki-client