$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: SM2o3XaQSzizOvZXlyYYpMIOY3wJUR4AyZ76iACUx58= Subject key identifier: 93:68:C2:52:E0:D3:F0:40:EE:0C:A9:83:D6:8D:67:67:1D:1B:02:2C Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 142B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 1414 Signing time: Tue 24 Mar 2026 16:49:10 +0000 Manifest this update: Tue 24 Mar 2026 16:49:10 +0000 Manifest next update: Tue 31 Mar 2026 16:49:10 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: aQMTyt7O09NZb443wvJMEpaWZIZyBOhPMSEtKDlmqog=) 2: 813A255423A611F09025FC11C4F9AE02.roa (hash: RaOIdSyJbLBmHHTBAcqvM2xNuH84JM4tWrC9RYmAhrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5163 (0x142b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Mar 24 16:49:10 2026 GMT Not After : Mar 31 16:49:10 2026 GMT Subject: CN=69c2c086-b056 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ce:10:a9:a8:96:a4:b8:fb:49:ea:fe:5e:97: 70:05:64:87:93:1e:4f:a8:76:e4:32:d4:72:a8:bd: bc:67:51:c0:c8:9e:1c:26:0c:63:be:7d:c6:5c:80: 8f:e5:03:7c:98:0e:95:2b:45:6f:ed:0e:bb:72:45: 38:59:b5:05:3a:32:f7:c6:fd:96:15:f7:8d:ad:0d: 8e:f7:fe:42:fc:bb:ff:47:3c:9f:a3:10:ee:74:13: 4a:c6:78:a0:fd:ca:39:90:d0:8e:70:1d:44:07:cc: 0a:f3:5c:ec:c2:27:ad:8e:5d:5f:89:67:5c:70:7f: 1d:dd:3f:be:c3:49:1a:52:23:8f:ea:a2:0e:97:73: a3:d6:71:6a:5e:0f:36:0e:1d:d7:82:58:8a:ff:e9: da:a1:87:ee:b9:24:e3:66:d0:9d:4a:cd:cd:03:21: 28:32:ab:38:84:c8:ad:02:38:58:87:77:22:5f:1e: 1e:ea:ce:69:36:7d:bb:74:f3:62:97:48:b6:a6:d3: f0:98:b2:3e:91:ba:d3:44:d6:dc:a5:24:f0:e2:c8: b9:28:3a:5a:bc:61:51:44:2f:a8:97:e0:82:d7:07: d1:84:92:1d:93:d8:60:68:80:c0:09:32:56:3e:28: df:12:c9:24:6e:88:27:9f:1e:e6:21:9f:d9:de:99: f7:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:68:C2:52:E0:D3:F0:40:EE:0C:A9:83:D6:8D:67:67:1D:1B:02:2C X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b9:6e:9f:66:8d:dc:9f:4f:22:73:fe:ac:d4:d6:cf:c6:5e: 0b:c3:c9:be:0e:66:7d:e2:33:30:7d:35:18:02:9c:3c:d3:54: c0:cf:14:28:35:14:72:42:06:a4:4b:39:a4:c8:98:54:fc:b1: 85:47:80:ff:5b:57:58:42:8d:32:d3:6d:48:a9:d5:e3:58:0c: 0a:ed:70:8c:a7:a2:4f:41:c7:78:94:8f:9a:79:3f:5a:c7:42: 72:47:8e:bd:33:41:46:cd:cc:4d:8f:65:d9:bd:d7:aa:df:41: 37:d9:50:34:b1:ea:75:d6:48:ff:53:49:f1:91:b0:ed:55:7d: 0c:f0:95:66:cb:22:8e:28:14:a2:74:fc:4b:d0:2c:00:0e:c0: 60:aa:35:8d:da:86:c6:e2:d6:22:a0:1b:58:25:a2:04:9c:71: 91:d1:00:ce:8a:c4:bf:43:bf:e7:06:0c:73:87:6d:a5:84:27: 0c:9b:1b:5d:2f:76:7a:6a:1f:d0:ff:ee:cf:05:3d:3e:68:d2: 60:e0:34:5b:fd:ba:01:cc:42:30:7f:b2:ca:79:41:b2:fd:0a: 64:43:2b:39:ba:c8:97:2b:e0:e8:9c:df:f2:aa:92:41:4f:20: 2c:97:dc:5a:c0:30:e4:5c:ef:a1:90:bc:fc:33:23:1e:d3:d2: 6b:f2:43:c5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjYwMzI0MTY0OTEwWhcNMjYwMzMxMTY0OTEwWjAYMRYwFAYD VQQDEw02OWMyYzA4Ni1iMDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv84QqaiWpLj7Ser+XpdwBWSHkx5PqHbkMtRyqL28Z1HAyJ4cJgxjvn3GXICP 5QN8mA6VK0Vv7Q67ckU4WbUFOjL3xv2WFfeNrQ2O9/5C/Lv/RzyfoxDudBNKxnig /co5kNCOcB1EB8wK81zswietjl1fiWdccH8d3T++w0kaUiOP6qIOl3Oj1nFqXg82 Dh3XgliK/+naoYfuuSTjZtCdSs3NAyEoMqs4hMitAjhYh3ciXx4e6s5pNn27dPNi l0i2ptPwmLI+kbrTRNbcpSTw4si5KDpavGFRRC+ol+CC1wfRhJIdk9hgaIDACTJW PijfEskkbognnx7mIZ/Z3pn3qwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJNowlLg 0/BA7gypg9aNZ2cdGwIsMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIrlun2aN3J9PInP+rNTWz8ZeC8PJvg5mfeIzMH01GAKcPNNUwM8UKDUUckIG pEs5pMiYVPyxhUeA/1tXWEKNMtNtSKnV41gMCu1wjKeiT0HHeJSPmnk/WsdCckeO vTNBRs3MTY9l2b3Xqt9BN9lQNLHqddZI/1NJ8ZGw7VV9DPCVZssijigUonT8S9As AA7AYKo1jdqGxuLWIqAbWCWiBJxxkdEAzorEv0O/5wYMc4dtpYQnDJsbXS92emof 0P/uzwU9PmjSYOA0W/26AcxCMH+yynlBsv0KZEMrObrIlyvg6Jzf8qqSQU8gLJfc WsAw5FzvoZC8/DMjHtPSa/JDxQ== -----END CERTIFICATE-----Generated at Thu Mar 26 13:04:55 2026 by rpki-client