$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: CbdRtz2ZwIhrpUYH86E7NbOealvblGCmifP+EUe5PG4= Subject key identifier: A4:74:99:D0:35:F5:31:F0:CB:4B:83:64:30:5F:6D:68:C0:6D:26:F3 Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: C5 Signing time: Wed 25 Mar 2026 06:09:11 +0000 Manifest this update: Wed 25 Mar 2026 06:09:11 +0000 Manifest next update: Wed 01 Apr 2026 06:09:11 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: HDXNkItzYRzBEi7jVDhMSvq+89LL1pbpg5RJlxTpOxM=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: JXFvADq4YTaqaen/tnBh56vOg+t9TdkXrX7ZuGzAnPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:09:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Mar 25 06:09:11 2026 GMT Not After : Apr 1 06:09:11 2026 GMT Subject: CN=69c37c07-571b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:18:06:7a:3f:54:48:ab:fe:60:84:5f:b0:04: 4f:0d:7d:e1:bc:1e:75:43:04:1d:c6:a9:b7:3e:03: 82:15:63:6e:b2:e1:85:7d:ae:e5:59:3e:21:0d:78: fb:93:98:00:5c:b3:9e:56:0a:b2:7d:32:82:3d:c8: ef:1b:5b:6a:94:ba:25:50:c0:9c:89:68:4c:6a:59: 8f:11:a3:31:06:17:be:3c:ca:92:37:58:8d:a0:e7: 1f:f9:89:e2:b6:0e:01:f0:57:49:3e:21:6b:84:83: 67:38:4f:97:2b:de:0d:03:7b:df:1e:2b:26:f4:96: 02:16:15:10:78:2d:c0:50:33:49:87:e2:f5:22:c2: 46:12:c2:f6:42:39:be:6e:17:f1:aa:18:c8:f4:7f: c7:f5:1f:d0:54:ce:b0:39:48:ac:75:45:47:5c:26: 4b:4f:b1:07:12:13:17:8f:31:ca:46:d8:45:c6:44: 57:e9:df:d0:72:36:44:20:8f:73:73:25:89:84:da: 07:c3:66:d8:a1:6b:58:32:b4:bc:a7:71:76:0a:fd: 63:c0:d9:80:fa:e0:c5:9d:37:74:0c:1f:1a:36:e5: 1e:df:1e:e4:0f:fe:d0:f0:db:a1:bc:23:17:cc:aa: f5:0d:52:ec:e9:c3:af:9c:12:e6:aa:ec:e2:6e:70: b6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:74:99:D0:35:F5:31:F0:CB:4B:83:64:30:5F:6D:68:C0:6D:26:F3 X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:c4:ba:e2:ea:29:0d:7b:15:1a:65:2a:3b:77:be:ea:0c:46: ba:54:64:a7:af:56:dd:99:1b:de:1b:4d:f8:f0:51:a0:d6:77: 92:52:5d:51:80:52:33:7a:ec:29:7c:f7:8c:14:83:2d:f4:ed: 2f:09:d0:ad:88:8b:ca:0f:21:c7:0d:2c:fd:c3:97:a5:b2:f9: 18:92:6c:4e:84:ae:39:80:a2:47:5e:f7:ba:a9:8c:d1:ab:16: c9:7e:94:36:22:ed:bd:4e:59:ab:e0:93:5c:fa:c3:8b:18:e7: 6e:34:aa:cc:37:c4:f7:9d:a9:64:e7:f1:0f:94:0b:13:e1:4a: 30:18:4d:1a:95:34:ad:2b:6b:dd:5b:a8:1c:6b:31:f7:a5:3d: 64:bd:2d:49:1d:89:c3:67:ee:1c:d7:f8:46:87:97:59:f9:d7: 0a:12:2a:d3:2d:60:3c:4b:f4:57:58:b7:7f:46:a2:ff:b4:68: 7c:b5:4e:54:3f:79:7d:43:68:29:d3:b4:6d:4e:07:12:42:4c: 97:f7:24:d3:90:25:b8:10:84:9b:91:3b:ac:27:98:f1:b9:0c: 50:5c:39:8c:b6:6b:75:33:54:12:17:4c:41:b4:0b:6a:d9:28: 95:57:a0:d7:dc:12:96:11:62:5f:b2:be:87:fd:50:b7:14:58: c4:8e:ec:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3RkMxMTAvBgNVBAUTKDg1NzUwN0YxRDhCMzkxNUM5NTEwRDUwNDcwMEVDRTg5 MEIwNjY4NUYwHhcNMjYwMzI1MDYwOTExWhcNMjYwNDAxMDYwOTExWjAYMRYwFAYD VQQDEw02OWMzN2MwNy01NzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRgGej9USKv+YIRfsARPDX3hvB51QwQdxqm3PgOCFWNusuGFfa7lWT4hDXj7 k5gAXLOeVgqyfTKCPcjvG1tqlLolUMCciWhMalmPEaMxBhe+PMqSN1iNoOcf+Yni tg4B8FdJPiFrhINnOE+XK94NA3vfHism9JYCFhUQeC3AUDNJh+L1IsJGEsL2Qjm+ bhfxqhjI9H/H9R/QVM6wOUisdUVHXCZLT7EHEhMXjzHKRthFxkRX6d/QcjZEII9z cyWJhNoHw2bYoWtYMrS8p3F2Cv1jwNmA+uDFnTd0DB8aNuUe3x7kD/7Q8NuhvCMX zKr1DVLs6cOvnBLmquzibnC2GQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKR0mdA1 9THwy0uDZDBfbWjAbSbzMB8GA1UdIwQYMBaAFIV1B/HYs5FclRDVBHAOzokLBmhf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjdGQy9DNzNCQTE2NDAz QTcxMUYwQTdGRjlDODdDNEY5QUUwMi9oWFVIOGRpemtWeVZFTlVFY0E3T2lRc0dh RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjdGQy9DNzNCQTE2NDAzQTcxMUYwQTdGRjlDODdDNEY5QUUwMi9oWFVIOGRpemtW eVZFTlVFY0E3T2lRc0dhRjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADcS64uopDXsVGmUqO3e+6gxGulRkp69W3Zkb3htN+PBRoNZ3klJdUYBSM3rs KXz3jBSDLfTtLwnQrYiLyg8hxw0s/cOXpbL5GJJsToSuOYCiR173uqmM0asWyX6U NiLtvU5Zq+CTXPrDixjnbjSqzDfE952pZOfxD5QLE+FKMBhNGpU0rStr3VuoHGsx 96U9ZL0tSR2Jw2fuHNf4RoeXWfnXChIq0y1gPEv0V1i3f0ai/7RofLVOVD95fUNo KdO0bU4HEkJMl/ck05AluBCEm5E7rCeY8bkMUFw5jLZrdTNUEhdMQbQLatkolVeg 19wSlhFiX7K+h/1QtxRYxI7sgQ== -----END CERTIFICATE-----Generated at Thu Mar 26 12:41:58 2026 by rpki-client