$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft File: hy5atTm-Q4V0A9T11FpUcrsgem0.mft (raw, json) Hash identifier: DPl+Ar2Pk7IEvGpiXjUVgPYIAhctHhOTsXBHB6XBlq4= Subject key identifier: 86:AB:36:53:BE:BC:9C:AB:8E:B6:E4:58:BA:D1:AE:F7:3F:2A:39:C2 Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Certificate serial: 0417 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft Manifest number: 03FF Signing time: Fri 27 Mar 2026 00:14:42 +0000 Manifest this update: Fri 27 Mar 2026 00:14:41 +0000 Manifest next update: Fri 03 Apr 2026 00:14:41 +0000 Files and hashes: 1: hy5atTm-Q4V0A9T11FpUcrsgem0.crl (hash: cG7mijKXMhKHjA7UyTmDEFyKx4yN7Y50RD3w5kd+TvY=) 2: 2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa (hash: oMimkeYYl7dxiacxecAGj8I+bq56ZODIoHCIkyIFzMU=) 3: A445EAA0B5B911EC8AADD413C4F9AE02.roa (hash: H8iyGcp2slRPrtqT5icu1v/N051MgbZlmONF3nH7f+s=) 4: 1D171A58C76211EC95B63648C4F9AE02.roa (hash: 4RqePFXcxznoJVl6w8IMckwXSaVn5QEpwopGGGBw+nA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:14:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193339, serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Validity Not Before: Mar 27 00:14:41 2026 GMT Not After : Apr 3 00:14:41 2026 GMT Subject: CN=69c5cbf1-9536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:63:d7:d2:51:0f:bc:db:fe:e3:f7:6a:06:87: ac:a5:f9:31:15:f6:e6:97:33:60:c5:fa:4a:d5:8d: f9:33:97:57:40:34:03:eb:b7:91:09:7c:ce:1b:0c: 26:03:aa:56:9f:2d:00:05:99:0d:52:af:3a:67:73: 90:14:55:b1:19:ae:b4:71:66:6a:b6:07:9b:53:a5: 1e:08:62:63:cd:af:26:8c:07:ce:e5:f4:24:7e:56: 81:8b:9c:2c:90:bf:4b:69:a1:1b:d0:fa:dd:ec:28: f4:92:8c:42:da:ed:24:fb:8e:6b:07:2a:7c:36:f7: 2f:3a:01:44:0b:87:81:c7:60:3d:d0:d7:b8:28:17: b0:43:be:b2:bd:b7:3f:55:7d:97:ec:40:ff:fc:c9: d7:f2:15:ed:ac:5b:ae:59:3a:bb:45:0b:c5:c6:a9: 8b:99:1f:cd:46:39:e7:6b:47:33:59:29:82:21:de: 95:df:e2:b9:f4:3a:e4:08:94:cf:e2:10:cc:fc:8c: f0:75:ea:f3:09:05:90:e6:ea:73:c9:68:88:a0:ee: 70:92:d2:9b:34:5b:54:cb:16:6e:74:ec:17:e0:37: c9:72:64:88:eb:6d:d9:17:e2:fd:e2:00:45:45:ae: cd:91:e5:d2:0d:1a:f4:a2:d9:dc:0a:fc:8e:9b:dc: 19:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:AB:36:53:BE:BC:9C:AB:8E:B6:E4:58:BA:D1:AE:F7:3F:2A:39:C2 X509v3 Authority Key Identifier: keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:9a:69:96:66:72:a2:d4:03:90:1c:ad:b8:c5:99:a1:fe:12: 40:89:db:07:b3:82:40:20:75:60:ae:7a:38:a1:81:52:0a:8d: 9f:66:3f:67:82:43:5d:92:ed:0d:9c:61:5b:f0:13:53:7a:0e: e3:0e:27:57:3b:6f:37:d1:9f:d5:e1:86:6a:69:4b:e5:24:5c: 68:46:1e:51:98:4d:a0:7b:1c:33:01:25:ff:75:88:b0:50:1b: 8f:b3:fe:2d:36:03:d1:08:80:9d:1e:b5:54:eb:9a:b4:a8:7a: c8:14:bf:d6:bb:b6:07:f8:28:c6:67:d4:9c:91:45:31:04:d7: 9a:ed:84:cb:b3:3f:b2:b6:df:39:27:b9:60:d8:ec:57:02:95: 01:84:e9:1e:dc:d8:f4:94:6d:72:22:c6:79:cb:1e:41:cc:7c: e4:f0:e1:47:9a:02:47:d7:c5:33:a7:d1:b3:80:fd:ec:b2:6f: ef:2b:30:31:31:45:f2:39:32:f9:13:f3:68:ee:72:3a:9b:8d: e4:34:6a:f8:f7:19:ca:9f:d9:69:37:9e:35:85:5c:99:f8:67: 0d:5d:0f:31:cd:d6:83:c7:c0:3d:3f:5e:b1:0a:03:3c:47:a3: 98:2a:8b:94:e0:73:17:aa:58:a2:63:5a:72:51:99:59:92:c8: ae:49:a8:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzMzkxMTAvBgNVBAUTKDg3MkU1QUI1MzlCRTQzODU3NDAzRDRGNUQ0NUE1NDcy QkIyMDdBNkQwHhcNMjYwMzI3MDAxNDQxWhcNMjYwNDAzMDAxNDQxWjAYMRYwFAYD VQQDEw02OWM1Y2JmMS05NTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2PX0lEPvNv+4/dqBoespfkxFfbmlzNgxfpK1Y35M5dXQDQD67eRCXzOGwwm A6pWny0ABZkNUq86Z3OQFFWxGa60cWZqtgebU6UeCGJjza8mjAfO5fQkflaBi5ws kL9LaaEb0Prd7Cj0koxC2u0k+45rByp8NvcvOgFEC4eBx2A90Ne4KBewQ76yvbc/ VX2X7ED//MnX8hXtrFuuWTq7RQvFxqmLmR/NRjnna0czWSmCId6V3+K59DrkCJTP 4hDM/IzwderzCQWQ5upzyWiIoO5wktKbNFtUyxZudOwX4DfJcmSI623ZF+L94gBF Ra7NkeXSDRr0otncCvyOm9wZKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIarNlO+ vJyrjrbkWLrRrvc/KjnCMB8GA1UdIwQYMBaAFIcuWrU5vkOFdAPU9dRaVHK7IHpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzMzOS80NTI2Nzk3MEIy RkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0VjBBOVQxMUZwVWNyc2dl bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5NWF0VG0tUTRWMEE5VDExRnBVY3JzZ2VtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzMzOS80NTI2Nzk3MEIyRkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0 VjBBOVQxMUZwVWNyc2dlbTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAZpplmZyotQDkBytuMWZof4SQInbB7OCQCB1YK56OKGBUgqNn2Y/Z4JDXZLt DZxhW/ATU3oO4w4nVztvN9Gf1eGGamlL5SRcaEYeUZhNoHscMwEl/3WIsFAbj7P+ LTYD0QiAnR61VOuatKh6yBS/1ru2B/goxmfUnJFFMQTXmu2Ey7M/srbfOSe5YNjs VwKVAYTpHtzY9JRtciLGecseQcx85PDhR5oCR9fFM6fRs4D97LJv7yswMTFF8jky +RPzaO5yOpuN5DRq+PcZyp/ZaTeeNYVcmfhnDV0PMc3Wg8fAPT9esQoDPEejmCqL lOBzF6pYomNaclGZWZLIrkmokg== -----END CERTIFICATE-----Generated at Sat Mar 28 10:41:13 2026 by rpki-client