$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: 88qRnul0Jsdcsv8eoLmK4oZOoGKA/SfiGWlq+m+fLkk= Subject key identifier: C3:E6:CB:C0:D2:C8:26:A7:FC:FF:7E:AC:80:D9:F8:F4:C5:09:BC:44 Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0E45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0E0F Signing time: Tue 24 Mar 2026 17:42:48 +0000 Manifest this update: Tue 24 Mar 2026 17:42:48 +0000 Manifest next update: Tue 31 Mar 2026 17:42:48 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: 4pBhJwwiH/tQ2JPPiGSmhjnv+42yl6I8PbNqax10S+8=) 2: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: fHXngSTjkehnoyzfzZzWQmngco23iukL2koF5Ddr+ak=) 3: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: m40Au0D9D53HHKA3UY789RoJoXUIJ7gV5QbX6BIo4EU=) 4: F2826A504FCF11EB88444467C4F9AE02.roa (hash: Ucwe0TblfY65Z8jyUiAbiD9N4E5gQiucEqZR5BprIfA=) 5: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: hFX5YE8MCfCx/kmb790trFxkpl5n33coYoMd9aDEGes=) 6: D0551B50046411F09760073DC4F9AE02.roa (hash: rp8AtmMvaJKirkqtM8xsbLFfIx4jMN0u7R5/2vGn/yo=) 7: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: OYQ8Q3ql6qFWt6j+WB79+jUAS4lPKWiDOJJ6WWsPhFE=) 8: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: kuKfhwok7IV2xZV+q15Uru1Qvlc7Ty7LyqYda2rZjaY=) 9: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: bJa45JxM0BM6SHPylrF6iczdI3TR6YwWJGhmk5n+6Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3653 (0xe45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Mar 24 17:42:48 2026 GMT Not After : Mar 31 17:42:48 2026 GMT Subject: CN=69c2cd18-f695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ec:2f:0e:17:8b:a1:88:9c:33:a7:61:46:5a: 91:3f:c9:e1:48:30:73:95:aa:6c:75:8c:95:d3:a7: 52:70:fd:e5:cc:65:58:04:dd:10:9f:89:9b:5f:8a: d7:4d:3f:52:a3:98:c9:ee:bd:b2:0a:4a:b8:2f:f8: 44:ed:9a:f0:1d:d7:ab:f2:e1:ed:d5:99:94:3c:09: d3:07:5a:b8:1f:8e:ef:cf:81:a9:ed:5b:f2:10:8f: d1:c0:52:1c:91:06:33:37:aa:a9:af:95:88:f8:88: 2e:57:b1:05:40:2b:ae:a2:df:ca:c8:15:84:18:b6: 9b:8b:04:f0:d8:76:fd:90:8c:ae:01:c6:7d:4c:b0: 09:94:fe:53:fb:82:57:bc:76:9b:c1:ec:77:aa:76: 28:21:cc:19:36:e8:7c:61:da:4d:cf:3f:21:76:8a: 85:30:9d:0c:d9:25:6a:9c:23:10:33:6a:55:b2:3d: d8:ea:50:01:29:6c:7d:1c:eb:53:f8:ea:65:33:03: 5c:cf:7a:d2:45:55:84:c0:9a:2b:78:5b:f7:f7:fd: ed:12:05:68:e9:f8:92:66:9a:e2:00:2f:4b:f3:df: bc:8f:c4:6d:cf:35:ca:8f:05:3b:cd:41:b6:4b:a0: 4f:42:f6:a2:9d:a6:52:d9:be:3b:88:5c:35:70:75: ad:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E6:CB:C0:D2:C8:26:A7:FC:FF:7E:AC:80:D9:F8:F4:C5:09:BC:44 X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:44:47:61:fc:de:1b:79:53:4b:f3:16:b4:47:40:46:d9:e1: 8c:c0:21:98:8b:00:c8:b6:23:59:b5:a7:d0:ba:07:41:bf:09: 1e:21:5e:34:ab:e4:97:42:db:03:7c:dc:8f:ee:65:59:14:ad: 61:73:d4:36:d5:17:8a:35:4f:38:d3:3e:13:44:a1:0e:98:57: a1:34:3d:9b:0c:e6:52:1b:6e:8e:72:69:b4:a9:fc:aa:7a:bb: 81:c3:8a:db:17:64:0d:0a:cb:d1:60:2f:c5:3f:b6:2c:14:9a: 68:a6:3a:f0:c3:8e:53:03:3d:76:81:c4:f8:c6:ef:83:93:79: 60:66:24:62:43:c1:a3:62:06:e5:54:5a:e8:db:71:c4:be:27: 8d:85:01:ce:94:73:59:13:b5:b8:3f:e9:a8:30:22:53:f4:b7: 0d:e5:8f:84:1c:5e:13:a9:be:f7:66:3c:56:bd:32:9d:bb:03: d0:19:a0:13:2c:e5:c5:59:9a:b8:c8:45:6b:0e:cc:45:00:e6: 42:1d:b3:fb:f4:db:07:a3:cf:2e:c0:2e:70:bc:61:69:d7:e4: 48:39:7f:f8:87:31:0b:c7:37:ec:07:1f:f8:74:63:09:f1:67: 5e:56:3e:1c:a4:b9:ca:6f:57:72:bb:8e:5e:43:70:42:8a:49: 15:2d:79:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjYwMzI0MTc0MjQ4WhcNMjYwMzMxMTc0MjQ4WjAYMRYwFAYD VQQDEw02OWMyY2QxOC1mNjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6+wvDheLoYicM6dhRlqRP8nhSDBzlapsdYyV06dScP3lzGVYBN0Qn4mbX4rX TT9So5jJ7r2yCkq4L/hE7ZrwHder8uHt1ZmUPAnTB1q4H47vz4Gp7VvyEI/RwFIc kQYzN6qpr5WI+IguV7EFQCuuot/KyBWEGLabiwTw2Hb9kIyuAcZ9TLAJlP5T+4JX vHabwex3qnYoIcwZNuh8YdpNzz8hdoqFMJ0M2SVqnCMQM2pVsj3Y6lABKWx9HOtT +OplMwNcz3rSRVWEwJoreFv39/3tEgVo6fiSZpriAC9L89+8j8RtzzXKjwU7zUG2 S6BPQvainaZS2b47iFw1cHWtHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMPmy8DS yCan/P9+rIDZ+PTFCbxEMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAV0RHYfzeG3lTS/MWtEdARtnhjMAhmIsAyLYjWbWn0LoHQb8JHiFeNKvkl0Lb A3zcj+5lWRStYXPUNtUXijVPONM+E0ShDphXoTQ9mwzmUhtujnJptKn8qnq7gcOK 2xdkDQrL0WAvxT+2LBSaaKY68MOOUwM9doHE+Mbvg5N5YGYkYkPBo2IG5VRa6Ntx xL4njYUBzpRzWRO1uD/pqDAiU/S3DeWPhBxeE6m+92Y8Vr0ynbsD0BmgEyzlxVma uMhFaw7MRQDmQh2z+/TbB6PPLsAucLxhadfkSDl/+IcxC8c37Acf+HRjCfFnXlY+ HKS5ym9XcruOXkNwQopJFS15RQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:15:32 2026 by rpki-client