$ rpki-client -vvf rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft File: hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft (raw, json) Hash identifier: gHyN+nqGVSsVlfmEZOvvfliHzvGxCLOSCukUCd06PFw= Subject key identifier: 43:4B:2B:4A:F3:B8:16:59:45:D0:C1:47:F9:AB:BD:0D:4C:86:F4:ED Authority key identifier: 84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D Certificate issuer: /CN=A9198767/serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft Manifest number: 01C0 Signing time: Wed 25 Mar 2026 03:12:26 +0000 Manifest this update: Wed 25 Mar 2026 03:12:25 +0000 Manifest next update: Wed 01 Apr 2026 03:12:25 +0000 Files and hashes: 1: hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl (hash: wGIhcIR5oaiYqV4Di+wjZp7//2VHdXPAR07fvvSxWsw=) 2: 7BABB4BE884C11EE81C71A38C4F9AE02.roa (hash: HevTC5ZTqWMZdb2lCr7Xxf/uzITO4Vvq7vTDaOoX1vI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:12:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198767, serialNumber=8468B02197FC9B770AF840557BF415A0B613820D Validity Not Before: Mar 25 03:12:25 2026 GMT Not After : Apr 1 03:12:25 2026 GMT Subject: CN=69c3529a-5afd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:93:5d:52:b1:51:73:c8:3f:95:2c:69:d5:db: 3a:35:b0:1a:84:05:75:e9:15:76:65:b5:b6:cc:f5: cb:5f:13:c5:67:67:06:83:f2:d1:14:93:05:ae:ed: c1:23:2b:23:4a:79:3b:c9:b0:1b:07:11:31:87:7b: 5d:cc:fa:6a:41:26:6b:cf:6a:37:97:e9:1e:39:7d: 9f:41:24:10:b0:eb:51:45:bc:9f:08:93:6e:4e:a6: 94:c5:da:3a:9b:51:22:5a:0f:39:d4:bc:84:35:cc: b3:f6:dc:23:42:81:ff:86:65:ff:8f:e4:2a:ba:3a: 8b:5e:56:81:f5:a6:ff:1c:aa:6b:1c:dc:1e:bc:52: 11:ab:d7:fe:5b:20:38:d1:92:92:96:1b:4a:49:0d: bb:b0:3c:67:99:df:e5:96:3e:03:f6:70:76:95:90: 0a:7b:5a:d9:eb:2e:59:8d:66:27:0d:cf:fe:bf:e5: 5b:82:29:76:30:13:5c:ff:dc:3e:0e:b6:1f:98:59: fe:b1:d8:d8:e0:06:5d:de:98:d1:b1:5d:1f:af:58: 9a:fa:b1:92:cd:09:3a:37:77:29:d5:6a:e6:6e:f2: 3b:7c:0f:6b:e0:3b:be:87:d0:26:68:b2:d9:74:bc: c5:93:39:54:02:b0:cb:5d:9d:c5:f2:a0:58:38:54: 77:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4B:2B:4A:F3:B8:16:59:45:D0:C1:47:F9:AB:BD:0D:4C:86:F4:ED X509v3 Authority Key Identifier: keyid:84:68:B0:21:97:FC:9B:77:0A:F8:40:55:7B:F4:15:A0:B6:13:82:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGiwIZf8m3cK-EBVe_QVoLYTgg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198767/7BC61D82884B11EE817FB67FC4F9AE02/hGiwIZf8m3cK-EBVe_QVoLYTgg0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:fa:64:08:e4:20:bc:a6:7e:81:c5:3a:d8:fe:58:c9:40:86: 5a:22:c8:85:f7:60:e1:38:c3:c3:4f:ac:3c:ea:2c:83:b5:ce: ae:c3:ba:34:1e:38:25:29:64:5c:c9:5a:b1:ce:4c:dc:64:85: c6:cd:38:2a:e7:05:8d:9a:3f:87:b7:79:a1:88:8a:56:81:55: 94:e5:12:e5:b9:64:32:d0:5a:40:fc:23:6b:93:99:c5:cb:4f: d4:33:85:10:51:b2:de:9e:d6:1a:7c:d6:8f:10:31:6c:53:cd: de:0b:59:f6:bb:2c:67:3d:3b:5e:3e:13:03:78:e9:47:0a:9e: 0c:7c:44:94:b4:73:e3:3b:b5:b4:88:34:2b:a8:33:41:9b:f5: 0c:1d:76:07:b7:30:58:89:a0:8c:ae:89:3f:c4:5e:e0:9b:da: 56:0b:19:d2:9a:b2:db:6c:48:b4:70:1c:18:65:3d:17:f0:67: 09:eb:7c:a9:80:90:f9:6c:0b:bf:a4:3c:10:01:b6:9c:22:5a: 1d:3f:4b:c3:f5:ab:76:73:88:b8:6e:ad:cc:b5:db:fc:f9:a8: 4e:32:db:ea:db:46:a3:71:db:05:99:f3:f2:04:65:a5:51:aa: 1d:25:ab:d9:5a:ed:aa:46:f9:98:a1:f6:48:d6:16:0e:c2:6c: 90:ce:45:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3NjcxMTAvBgNVBAUTKDg0NjhCMDIxOTdGQzlCNzcwQUY4NDA1NTdCRjQxNUEw QjYxMzgyMEQwHhcNMjYwMzI1MDMxMjI1WhcNMjYwNDAxMDMxMjI1WjAYMRYwFAYD VQQDEw02OWMzNTI5YS01YWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpNdUrFRc8g/lSxp1ds6NbAahAV16RV2ZbW2zPXLXxPFZ2cGg/LRFJMFru3B IysjSnk7ybAbBxExh3tdzPpqQSZrz2o3l+keOX2fQSQQsOtRRbyfCJNuTqaUxdo6 m1EiWg851LyENcyz9twjQoH/hmX/j+QqujqLXlaB9ab/HKprHNwevFIRq9f+WyA4 0ZKSlhtKSQ27sDxnmd/llj4D9nB2lZAKe1rZ6y5ZjWYnDc/+v+Vbgil2MBNc/9w+ DrYfmFn+sdjY4AZd3pjRsV0fr1ia+rGSzQk6N3cp1WrmbvI7fA9r4Du+h9AmaLLZ dLzFkzlUArDLXZ3F8qBYOFR35wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFENLK0rz uBZZRdDBR/mrvQ1MhvTtMB8GA1UdIwQYMBaAFIRosCGX/Jt3CvhAVXv0FaC2E4IN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc2Ny83QkM2MUQ4Mjg4 NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0zY0stRUJWZV9RVm9MWVRn ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hHaXdJWmY4bTNjSy1FQlZlX1FWb0xZVGdnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc2Ny83QkM2MUQ4Mjg4NEIxMUVFODE3RkI2N0ZDNEY5QUUwMi9oR2l3SVpmOG0z Y0stRUJWZV9RVm9MWVRnZzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEfpkCOQgvKZ+gcU62P5YyUCGWiLIhfdg4TjDw0+sPOosg7XOrsO6NB44JSlk XMlasc5M3GSFxs04KucFjZo/h7d5oYiKVoFVlOUS5blkMtBaQPwja5OZxctP1DOF EFGy3p7WGnzWjxAxbFPN3gtZ9rssZz07Xj4TA3jpRwqeDHxElLRz4zu1tIg0K6gz QZv1DB12B7cwWImgjK6JP8Re4JvaVgsZ0pqy22xItHAcGGU9F/BnCet8qYCQ+WwL v6Q8EAG2nCJaHT9Lw/WrdnOIuG6tzLXb/PmoTjLb6ttGo3HbBZnz8gRlpVGqHSWr 2Vrtqkb5mKH2SNYWDsJskM5FUA== -----END CERTIFICATE-----Generated at Thu Mar 26 18:49:46 2026 by rpki-client