$ rpki-client -vvf rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft File: HN4SRMu7llQubIsJo9rBwbRDaNc.mft (raw, json) Hash identifier: 8dV1IghnRNTFBB4qlLRlxXKMPDYbcGVvXi2XKLUEKps= Subject key identifier: 73:A5:2A:38:58:9D:14:D7:A0:7D:36:4E:7F:64:FC:DB:FE:C0:8D:82 Authority key identifier: 1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 Certificate issuer: /CN=A918A498/serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft Manifest number: C8 Signing time: Wed 25 Mar 2026 06:02:47 +0000 Manifest this update: Wed 25 Mar 2026 06:02:46 +0000 Manifest next update: Wed 01 Apr 2026 06:02:46 +0000 Files and hashes: 1: HN4SRMu7llQubIsJo9rBwbRDaNc.crl (hash: hd3/p/AJldryZMfHc8EmDvhaMUpBYNU9t5vGWZEjgQA=) 2: 62C86698F80A11EFA400AC2FC4F9AE02.roa (hash: U4LLMJ0m7hitnKHAojnOcr6u6PFK2WR9WUoRdlPrdFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A498, serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Validity Not Before: Mar 25 06:02:46 2026 GMT Not After : Apr 1 06:02:46 2026 GMT Subject: CN=69c37a87-3685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9f:67:62:1e:87:05:19:5c:63:f9:d2:33:ac: 37:ee:02:4f:29:05:f7:6a:11:92:14:90:be:8a:bc: 1d:4c:c2:d4:f5:ad:fc:06:8a:58:be:d1:91:21:1a: cc:14:ca:81:ff:22:fc:fb:88:1e:d6:8f:02:c7:71: 0e:fa:a9:fa:08:04:df:c6:37:2e:c1:70:38:88:66: b7:0d:e0:48:e6:c0:e9:79:c7:66:e1:1c:4b:22:d4: da:60:14:20:cf:1b:18:6a:1b:71:76:dc:c0:5d:99: 09:2e:4b:d6:c6:09:12:e7:b9:6b:e1:88:88:49:24: cb:24:67:cc:90:88:66:9b:53:91:35:94:11:b4:6a: 48:4f:22:34:4f:00:f9:dd:96:f1:44:ac:d3:ac:eb: 76:3b:b1:2c:24:df:58:32:d9:9b:ef:72:fc:c5:fc: f9:89:b0:6e:57:8f:ac:b4:58:08:53:26:88:dc:bf: c7:fc:19:31:a6:3f:76:3e:61:58:a9:e7:a1:b8:fb: 8d:eb:59:e4:56:c7:27:70:4c:5e:d6:db:a3:25:6e: 99:ee:e4:60:84:69:57:cd:00:82:84:9a:15:67:b6: b7:06:25:28:00:37:23:da:98:09:bd:1b:3b:eb:ac: fb:d4:07:ff:20:d9:40:b9:86:18:79:66:1c:57:fd: 28:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A5:2A:38:58:9D:14:D7:A0:7D:36:4E:7F:64:FC:DB:FE:C0:8D:82 X509v3 Authority Key Identifier: keyid:1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:ce:c3:f3:c0:5b:d1:03:a1:56:6d:20:4e:76:75:50:bf:04: 0a:7a:6a:2f:a1:24:7d:03:42:b6:92:ed:8e:0a:09:0b:85:52: c8:86:ea:23:24:a8:9a:dc:7a:62:f7:52:a5:f2:19:4a:86:54: 93:4f:02:53:d1:c7:86:39:e0:20:4f:c9:65:f5:f5:71:a2:5a: bf:f1:64:81:49:ae:4b:fc:8e:26:9e:e1:f0:56:19:91:a6:eb: 73:81:ae:1c:d7:d8:3d:37:92:bb:e4:e5:7a:d2:62:23:96:cf: 48:2c:2c:65:db:c6:d2:7a:c4:f8:17:e8:81:c1:10:d4:a4:5c: 85:a5:cf:fa:2f:b2:3b:e1:f6:1d:3b:7d:e9:53:99:4a:fb:5c: e1:f2:e9:73:23:ab:34:49:52:23:d1:e4:47:81:0c:34:54:57: 82:78:1a:60:ad:3f:8c:9e:a6:c3:4f:bd:05:24:38:d7:a2:3c: 8d:6d:7e:b0:57:d8:7a:7f:0b:cb:ba:09:96:20:51:62:bc:c6: 84:d4:79:1f:17:61:74:71:f0:e0:1d:0f:8a:fe:32:91:cf:8e: da:0c:da:d8:16:6e:b6:9d:f9:a4:56:2c:17:6c:c6:a1:85:2c: 75:3a:d9:e5:57:38:ff:6c:1c:76:0d:0f:85:f7:8d:81:f0:a3: f3:ea:79:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0OTgxMTAvBgNVBAUTKDFDREUxMjQ0Q0JCQjk2NTQyRTZDOEIwOUEzREFDMUMx QjQ0MzY4RDcwHhcNMjYwMzI1MDYwMjQ2WhcNMjYwNDAxMDYwMjQ2WjAYMRYwFAYD VQQDEw02OWMzN2E4Ny0zNjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqp9nYh6HBRlcY/nSM6w37gJPKQX3ahGSFJC+irwdTMLU9a38BopYvtGRIRrM FMqB/yL8+4ge1o8Cx3EO+qn6CATfxjcuwXA4iGa3DeBI5sDpecdm4RxLItTaYBQg zxsYahtxdtzAXZkJLkvWxgkS57lr4YiISSTLJGfMkIhmm1ORNZQRtGpITyI0TwD5 3ZbxRKzTrOt2O7EsJN9YMtmb73L8xfz5ibBuV4+stFgIUyaI3L/H/Bkxpj92PmFY qeehuPuN61nkVscncExe1tujJW6Z7uRghGlXzQCChJoVZ7a3BiUoADcj2pgJvRs7 66z71Af/INlAuYYYeWYcV/0otQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHOlKjhY nRTXoH02Tn9k/Nv+wI2CMB8GA1UdIwQYMBaAFBzeEkTLu5ZULmyLCaPawcG0Q2jX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ5OC9EMkRFRDM0NkY4 MDkxMUVGQTUyODFCMTZDNEY5QUUwMi9ITjRTUk11N2xsUXViSXNKbzlyQndiUkRh TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hONFNSTXU3bGxRdWJJc0pvOXJCd2JSRGFOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ5OC9EMkRFRDM0NkY4MDkxMUVGQTUyODFCMTZDNEY5QUUwMi9ITjRTUk11N2xs UXViSXNKbzlyQndiUkRhTmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxc7D88Bb0QOhVm0gTnZ1UL8ECnpqL6EkfQNCtpLtjgoJC4VSyIbqIySomtx6 YvdSpfIZSoZUk08CU9HHhjngIE/JZfX1caJav/FkgUmuS/yOJp7h8FYZkabrc4Gu HNfYPTeSu+TletJiI5bPSCwsZdvG0nrE+BfogcEQ1KRchaXP+i+yO+H2HTt96VOZ Svtc4fLpcyOrNElSI9HkR4EMNFRXgngaYK0/jJ6mw0+9BSQ416I8jW1+sFfYen8L y7oJliBRYrzGhNR5HxdhdHHw4B0Piv4ykc+O2gza2BZutp35pFYsF2zGoYUsdTrZ 5Vc4/2wcdg0PhfeNgfCj8+p5UQ== -----END CERTIFICATE-----Generated at Thu Mar 26 09:56:31 2026 by rpki-client