$ rpki-client -vvf rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft File: hQaYWfujzd6OwbgaHgTdYFCzgRM.mft (raw, json) Hash identifier: wfi4vyjQgQUg3NnXxmKt4/kqyir5YU19qT3icIClGGE= Subject key identifier: 4C:E1:FD:45:55:62:3C:6D:06:7B:96:9D:59:A6:4D:09:37:6B:FC:D9 Authority key identifier: 85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 Certificate issuer: /CN=A91509C4/serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Certificate serial: 3523 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft Manifest number: 3523 Signing time: Tue 24 Mar 2026 14:34:39 +0000 Manifest this update: Tue 24 Mar 2026 14:34:38 +0000 Manifest next update: Tue 31 Mar 2026 14:34:38 +0000 Files and hashes: 1: hQaYWfujzd6OwbgaHgTdYFCzgRM.crl (hash: KgtfeFhun763TIE2JGEaS3w/+mBiV/yeEwkPsf9wnwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13603 (0x3523) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509C4, serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Validity Not Before: Mar 24 14:34:38 2026 GMT Not After : Mar 31 14:34:38 2026 GMT Subject: CN=69c2a0ff-808e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d6:8a:cc:9b:c5:da:1f:a3:8b:5f:93:d6:3f: 18:5d:7a:af:b8:e0:c8:58:ca:34:57:fd:76:f3:bc: f3:f4:ff:d2:66:8a:07:da:c6:19:cb:f1:1f:5a:ef: 2b:d5:81:af:5e:2d:24:f0:44:19:b9:c0:fd:b3:3f: 04:65:aa:f9:92:55:e4:18:aa:ad:60:d3:cd:a0:30: d8:3b:46:20:5b:73:6f:a2:5e:6d:86:7a:1c:31:47: 5d:2e:6d:fa:8c:be:8c:df:55:d9:e4:16:19:1a:a7: 22:0e:e4:fd:4f:19:5d:20:b4:b8:f2:3d:78:c3:87: f0:4d:ef:d4:79:de:82:a5:35:16:a0:8a:7f:d9:ae: 9e:cc:3d:0d:81:e4:3e:96:d5:c0:4c:d6:a8:94:b7: e3:4c:c8:e9:a2:f6:85:9f:3d:01:82:db:93:41:e4: 5b:da:03:e3:94:f7:d7:9d:e8:58:1a:8b:94:41:21: 5d:92:6b:09:37:b0:55:4e:3d:53:89:c9:2f:2b:df: 77:8e:10:66:1e:c6:4e:76:d1:b1:8d:7c:b9:48:57: 74:d5:de:e7:2f:af:b0:e7:21:89:cf:ac:49:7d:f8: d6:5e:72:f6:14:e7:b0:87:d1:78:e0:53:37:ec:7e: 8c:b3:8d:17:42:c4:41:94:1b:f6:27:f8:91:bb:9e: 7c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:E1:FD:45:55:62:3C:6D:06:7B:96:9D:59:A6:4D:09:37:6B:FC:D9 X509v3 Authority Key Identifier: keyid:85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:74:97:ef:05:76:3a:e1:b7:2a:d4:94:a0:91:f9:2b:42:f6: 2a:5f:18:60:64:04:a5:ba:0e:25:38:94:19:3a:ad:c8:3b:d9: 85:e9:18:b6:c7:0b:68:d6:c8:f4:40:b5:b0:fd:6a:c3:37:46: 00:1c:c6:0a:0b:8b:3a:b9:08:9d:e4:9a:67:3e:31:b6:32:4f: 6c:1a:27:88:f1:02:bb:da:6c:58:94:66:0c:be:ed:cb:bc:2e: db:b6:0e:db:c2:63:36:fd:9e:d3:e1:a0:c7:f6:9f:40:57:20: bc:bb:be:04:8c:3b:79:ad:0b:a3:07:94:e9:f4:f6:85:c2:48: a8:4c:20:e1:ff:31:17:cb:ab:32:32:25:0e:b6:4e:1f:70:65: db:0c:0a:70:ef:12:11:3e:7c:12:d2:b2:19:9c:52:e9:eb:f3: f2:c2:14:cc:ce:11:53:d1:be:e7:9a:b7:a9:06:ee:27:27:44: 87:cc:af:18:fe:86:db:72:c0:4c:c5:c8:ca:bf:9e:1f:a1:9e: 7d:78:78:8c:78:0a:c1:85:b2:28:aa:14:7e:6a:83:54:5d:a5: 32:3c:ff:d2:9d:31:33:23:0a:6c:e4:3a:31:10:8f:d9:2f:7f: e5:28:a4:9b:05:98:c4:10:ea:f8:c1:d6:6a:14:90:27:c5:1f: 67:59:fb:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA5QzQxMTAvBgNVBAUTKDg1MDY5ODU5RkJBM0NEREU4RUMxQjgxQTFFMDRERDYw NTBCMzgxMTMwHhcNMjYwMzI0MTQzNDM4WhcNMjYwMzMxMTQzNDM4WjAYMRYwFAYD VQQDEw02OWMyYTBmZi04MDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9aKzJvF2h+ji1+T1j8YXXqvuODIWMo0V/1287zz9P/SZooH2sYZy/EfWu8r 1YGvXi0k8EQZucD9sz8EZar5klXkGKqtYNPNoDDYO0YgW3Nvol5thnocMUddLm36 jL6M31XZ5BYZGqciDuT9TxldILS48j14w4fwTe/Ued6CpTUWoIp/2a6ezD0NgeQ+ ltXATNaolLfjTMjpovaFnz0BgtuTQeRb2gPjlPfXnehYGouUQSFdkmsJN7BVTj1T ickvK993jhBmHsZOdtGxjXy5SFd01d7nL6+w5yGJz6xJffjWXnL2FOewh9F44FM3 7H6Ms40XQsRBlBv2J/iRu558bQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEzh/UVV YjxtBnuWnVmmTQk3a/zZMB8GA1UdIwQYMBaAFIUGmFn7o83ejsG4Gh4E3WBQs4ET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDlDNC80Qjg5NjEzODFE OEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpkNk93YmdhSGdUZFlGQ3pn Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hRYVlXZnVqemQ2T3diZ2FIZ1RkWUZDemdSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDlDNC80Qjg5NjEzODFEOEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpk Nk93YmdhSGdUZFlGQ3pnUk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIXSX7wV2OuG3KtSUoJH5K0L2Kl8YYGQEpboOJTiUGTqtyDvZhekYtscLaNbI 9EC1sP1qwzdGABzGCguLOrkIneSaZz4xtjJPbBoniPECu9psWJRmDL7ty7wu27YO 28JjNv2e0+Ggx/afQFcgvLu+BIw7ea0LoweU6fT2hcJIqEwg4f8xF8urMjIlDrZO H3Bl2wwKcO8SET58EtKyGZxS6evz8sIUzM4RU9G+55q3qQbuJydEh8yvGP6G23LA TMXIyr+eH6GefXh4jHgKwYWyKKoUfmqDVF2lMjz/0p0xMyMKbOQ6MRCP2S9/5Sik mwWYxBDq+MHWahSQJ8UfZ1n76A== -----END CERTIFICATE-----Generated at Thu Mar 26 06:07:44 2026 by rpki-client