$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: JZrzLHxJeuT272QiuLP6Lqe8KjR3JwyNrUGzsng7hwE= Subject key identifier: 66:0A:85:48:74:18:6B:A8:18:9D:44:E1:01:80:BE:8E:17:2A:1A:A5 Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 1620 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 15C4 Signing time: Tue 24 Mar 2026 16:44:21 +0000 Manifest this update: Tue 24 Mar 2026 16:44:21 +0000 Manifest next update: Tue 31 Mar 2026 16:44:21 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: +2Swv5nkO+G/wMP3xmHakXDL1gMmsrawb7k0QEvn9pA=) 2: C5C8F29AFFE711F09EC342C9756F56BC.roa (hash: j07fKwZtLRciT6NFGCe/+nPRJNggQVvYMx63JVztzcI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:44:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5664 (0x1620) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: Mar 24 16:44:21 2026 GMT Not After : Mar 31 16:44:21 2026 GMT Subject: CN=69c2bf65-4fd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3d:e4:39:4b:a2:cc:bc:bd:e3:d2:01:04:ca: 08:06:8e:88:78:9d:2a:bb:48:9c:c2:6f:e2:9b:fa: 79:56:7c:94:30:fb:a4:e2:34:2a:e1:9f:9a:22:01: 2d:2b:33:04:26:94:79:77:6f:de:33:a6:23:d4:6b: 2d:19:1c:6c:7c:36:b0:06:c2:6d:81:ed:7e:74:97: 4f:f3:14:1b:d7:53:73:fd:ad:66:d0:5b:00:57:21: 10:10:a0:52:d5:6e:dd:9d:49:58:a0:a7:e3:3a:7f: 12:23:c5:b8:65:41:17:9e:fb:97:0b:f6:dc:6a:29: 4a:07:c9:ee:16:0c:51:23:8a:d8:86:18:4b:15:14: c9:8d:02:4e:c0:85:24:6c:ae:64:3a:37:91:49:2d: e3:3a:88:9a:dc:84:dd:fd:58:32:36:95:d4:4c:3e: f7:e5:0e:b8:ee:bc:a8:2b:3e:e2:02:4a:f9:f1:fb: 89:52:4a:96:b5:b7:f8:aa:3d:bf:85:a5:1b:46:3e: 4d:b8:eb:08:95:b6:eb:90:f1:8d:a5:27:e0:d2:12: d3:42:ef:c7:55:10:26:53:42:d7:ef:8e:ab:3d:e8: 9c:c5:a1:e3:a6:aa:5b:89:86:47:80:d5:64:33:e1: 76:d3:4b:ea:5e:4c:dd:72:85:8d:3a:1b:bf:1d:00: 03:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:0A:85:48:74:18:6B:A8:18:9D:44:E1:01:80:BE:8E:17:2A:1A:A5 X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:75:fd:00:5f:15:d0:f1:8e:b8:4a:fb:1e:eb:da:53:36:28: 0d:dc:6e:8a:75:50:c6:d2:09:7f:66:43:fe:32:00:23:53:28: c0:2e:c4:9f:eb:42:e5:55:c8:93:7a:d9:24:13:d0:c8:96:f6: 8e:d8:a5:f8:bb:9d:9f:af:0f:67:ee:73:de:ed:5a:ab:28:92: 59:f6:67:f3:6e:91:a5:10:31:b8:09:00:3d:ed:7d:c1:89:85: ef:60:46:1b:c1:be:61:a6:d8:79:cc:fe:ca:e8:f4:d4:75:8e: fd:23:33:2e:97:50:25:1e:58:a6:d2:93:e1:28:a8:2f:47:ba: 1e:9d:9c:ee:23:a4:55:04:74:2e:28:c7:f1:83:e9:b1:a9:06: c7:1b:11:57:e0:a4:10:bf:83:65:b2:98:b1:e2:a2:da:f7:91: e5:d2:93:25:c2:86:ee:5b:00:fe:a6:8e:c8:cf:c3:a1:f1:d8: e5:c9:e1:3e:41:33:a7:5c:fd:f6:1c:4b:f7:70:6e:c6:17:94: ea:c5:19:c2:11:65:b0:d2:6b:37:99:ba:e3:2a:95:e7:11:d2: c0:e5:cc:ac:b1:3a:81:34:ac:bc:c0:ab:03:73:8b:eb:09:0e: eb:a4:44:48:dd:fd:ad:c7:31:62:05:40:a3:e3:41:60:7d:25: a6:61:4a:c7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjYwMzI0MTY0NDIxWhcNMjYwMzMxMTY0NDIxWjAYMRYwFAYD VQQDEw02OWMyYmY2NS00ZmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvj3kOUuizLy949IBBMoIBo6IeJ0qu0icwm/im/p5VnyUMPuk4jQq4Z+aIgEt KzMEJpR5d2/eM6Yj1GstGRxsfDawBsJtge1+dJdP8xQb11Nz/a1m0FsAVyEQEKBS 1W7dnUlYoKfjOn8SI8W4ZUEXnvuXC/bcailKB8nuFgxRI4rYhhhLFRTJjQJOwIUk bK5kOjeRSS3jOoia3ITd/VgyNpXUTD735Q647ryoKz7iAkr58fuJUkqWtbf4qj2/ haUbRj5NuOsIlbbrkPGNpSfg0hLTQu/HVRAmU0LX746rPeicxaHjpqpbiYZHgNVk M+F200vqXkzdcoWNOhu/HQAD7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGYKhUh0 GGuoGJ1E4QGAvo4XKhqlMB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAa3X9AF8V0PGOuEr7HuvaUzYoDdxuinVQxtIJf2ZD/jIAI1MowC7En+tC5VXI k3rZJBPQyJb2jtil+Ludn68PZ+5z3u1aqyiSWfZn826RpRAxuAkAPe19wYmF72BG G8G+YabYecz+yuj01HWO/SMzLpdQJR5YptKT4SioL0e6Hp2c7iOkVQR0LijH8YPp sakGxxsRV+CkEL+DZbKYseKi2veR5dKTJcKG7lsA/qaOyM/DofHY5cnhPkEzp1z9 9hxL93BuxheU6sUZwhFlsNJrN5m64yqV5xHSwOXMrLE6gTSsvMCrA3OL6wkO66RE SN39rccxYgVAo+NBYH0lpmFKxw== -----END CERTIFICATE-----Generated at Thu Mar 26 19:49:05 2026 by rpki-client