$ rpki-client -vvf rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft File: hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft (raw, json) Hash identifier: upVEAJ0nC8y3A5+nYV6FpZEaWZPYCKUmwGhmzTAMzHs= Subject key identifier: 39:70:76:59:1B:87:65:32:4D:6A:E8:FC:8E:BD:5F:EB:77:0A:B6:B9 Authority key identifier: 86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 Certificate issuer: /CN=A91973D2/serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Certificate serial: 0672 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft Manifest number: 0665 Signing time: Thu 26 Mar 2026 22:27:49 +0000 Manifest this update: Thu 26 Mar 2026 22:27:48 +0000 Manifest next update: Thu 02 Apr 2026 22:27:48 +0000 Files and hashes: 1: hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl (hash: uY0Plm80RRi4Fp4d84uDiqkDYbsRE0E05UjhP145WeA=) 2: 6959BDA8C05B11EB9540776AC4F9AE02.roa (hash: o9LJvDAWoOpgjlM3ZhhTsc5yhOvJHm6q+nsIvmgifUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1650 (0x672) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91973D2, serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Validity Not Before: Mar 26 22:27:48 2026 GMT Not After : Apr 2 22:27:48 2026 GMT Subject: CN=69c5b2e5-6d17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:43:7e:b1:0c:c5:62:95:23:4b:4a:26:95:c6: 6d:60:98:e9:e2:9b:3e:55:af:e1:dc:98:8a:c7:8f: 30:1f:64:b2:98:67:be:e1:4f:3b:26:14:c3:70:22: 8a:62:9d:fb:3b:73:db:f3:44:e0:a4:b1:d7:6f:3b: 33:6a:b8:0b:08:39:11:71:74:fa:c2:06:a0:c8:08: 55:e6:c9:5c:99:54:c6:97:39:df:71:33:d4:f4:8c: de:88:19:94:65:09:e1:23:f2:42:2e:ec:d7:38:b4: e7:09:19:da:ab:2d:6e:9d:c9:be:bb:cf:a5:9a:e6: c6:f8:6e:79:1a:b0:cc:fa:a8:42:34:4f:db:ad:77: 19:6f:cf:42:15:03:71:eb:71:f1:06:97:34:44:99: 11:cd:95:75:51:98:c9:5d:95:aa:07:0f:7c:3a:53: b7:98:ca:8d:f3:98:aa:9b:e4:b5:ce:d3:90:0e:d1: ab:d9:0b:9c:7f:e5:23:4d:32:92:76:78:f7:96:10: 09:10:87:49:5b:06:0e:fb:fa:8f:8f:fc:12:79:11: a7:b7:1f:e3:76:70:fb:22:32:33:c0:cc:44:11:ce: 4c:54:5b:b8:17:ea:bc:d3:de:02:27:5a:40:f6:33: ce:8f:0e:5e:b2:f5:4b:6d:d5:7f:aa:59:51:da:b8: 84:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:70:76:59:1B:87:65:32:4D:6A:E8:FC:8E:BD:5F:EB:77:0A:B6:B9 X509v3 Authority Key Identifier: keyid:86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:01:6c:a0:6a:ed:78:9f:a3:a9:13:91:89:01:10:25:cb:7a: 04:0b:00:ba:e2:53:b4:45:e4:e0:60:64:ae:e3:39:07:f7:45: 61:71:10:01:53:d9:6c:7d:d8:07:53:61:e7:25:c3:3b:90:20: 05:1d:71:e7:97:a2:5b:d6:69:bd:c5:dd:8e:d1:5c:61:70:b2: 56:22:6e:f7:e9:8d:32:13:32:ba:63:a2:c9:f7:c4:29:a5:00: 76:59:8a:6c:02:53:3e:d7:4f:3f:f0:7f:03:8d:7f:d6:de:8c: da:60:2d:8d:c7:d1:59:38:a3:70:db:3f:68:f2:cd:10:3f:a1: 4b:09:4a:2c:18:a5:c1:b7:a9:83:35:f7:bc:38:9c:71:0f:e0: 45:f6:b7:6e:1c:29:89:73:f9:c0:a7:a8:92:b8:cf:32:5f:92: 59:e7:81:51:29:5d:98:dd:1b:7f:22:9c:b3:3f:7b:5f:c1:4b: a3:97:0f:74:42:d1:7a:b7:7a:d2:ad:dd:f5:c2:9e:62:ab:43: 90:10:ab:2d:bc:ef:06:19:ec:1b:e5:e3:88:10:2b:ec:25:b4: 40:3f:e3:9f:79:b6:09:00:33:d4:30:4c:dc:1a:40:a5:d6:a9: 12:f4:f2:d5:6a:a3:51:31:78:10:c8:8e:3d:47:91:d6:01:68: f1:16:c9:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczRDIxMTAvBgNVBAUTKDg2QUIzRUJEN0M0MUU2NTZDQ0VFQ0RCNUE4NTBDN0E0 QjFFMjY3RTMwHhcNMjYwMzI2MjIyNzQ4WhcNMjYwNDAyMjIyNzQ4WjAYMRYwFAYD VQQDEw02OWM1YjJlNS02ZDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA30N+sQzFYpUjS0omlcZtYJjp4ps+Va/h3JiKx48wH2SymGe+4U87JhTDcCKK Yp37O3Pb80TgpLHXbzszargLCDkRcXT6wgagyAhV5slcmVTGlznfcTPU9IzeiBmU ZQnhI/JCLuzXOLTnCRnaqy1uncm+u8+lmubG+G55GrDM+qhCNE/brXcZb89CFQNx 63HxBpc0RJkRzZV1UZjJXZWqBw98OlO3mMqN85iqm+S1ztOQDtGr2Qucf+UjTTKS dnj3lhAJEIdJWwYO+/qPj/wSeRGntx/jdnD7IjIzwMxEEc5MVFu4F+q8094CJ1pA 9jPOjw5esvVLbdV/qllR2riEBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDlwdlkb h2UyTWro/I69X+t3Cra5MB8GA1UdIwQYMBaAFIarPr18QeZWzO7NtahQx6Sx4mfj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzNEMi9EQTgzOUM5NEJG QzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVsYk03czIxcUZESHBMSGla LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hxcy12WHhCNWxiTTdzMjFxRkRIcExIaVotTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzNEMi9EQTgzOUM5NEJGQzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVs Yk03czIxcUZESHBMSGlaLU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgwFsoGrteJ+jqRORiQEQJct6BAsAuuJTtEXk4GBkruM5B/dFYXEQAVPZbH3Y B1Nh5yXDO5AgBR1x55eiW9ZpvcXdjtFcYXCyViJu9+mNMhMyumOiyffEKaUAdlmK bAJTPtdPP/B/A41/1t6M2mAtjcfRWTijcNs/aPLNED+hSwlKLBilwbepgzX3vDic cQ/gRfa3bhwpiXP5wKeokrjPMl+SWeeBUSldmN0bfyKcsz97X8FLo5cPdELRerd6 0q3d9cKeYqtDkBCrLbzvBhnsG+XjiBAr7CW0QD/jn3m2CQAz1DBM3BpApdapEvTy 1WqjUTF4EMiOPUeR1gFo8RbJ7g== -----END CERTIFICATE-----Generated at Sat Mar 28 10:35:10 2026 by rpki-client