$ rpki-client -vvf rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft File: hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft (raw, json) Hash identifier: 55RcAN9dl0ZlziZZWiv/RxLcSmhYsMYjDh/Y5obIG3Y= Subject key identifier: B8:FC:2E:2E:61:16:55:FC:E4:B5:7D:D8:62:5F:64:C0:82:7A:A3:8C Authority key identifier: 87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 Certificate issuer: /CN=A919AC9A/serialNumber=8728B828F318603E44711070C24ECC088A190060 Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft Manifest number: 01AE Signing time: Wed 25 Mar 2026 03:20:50 +0000 Manifest this update: Wed 25 Mar 2026 03:20:50 +0000 Manifest next update: Wed 01 Apr 2026 03:20:50 +0000 Files and hashes: 1: hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl (hash: Dg0juNkQxSFkWkDXCgZtNT55pwfSnM72XgynRNxQ1eo=) 2: F0D7EB5097FA11EE90066875C4F9AE02.roa (hash: 6vqRkfNyBAwDiXHf3koAV6uBX2r6Cd6TaI9BMlOpzvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:20:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AC9A, serialNumber=8728B828F318603E44711070C24ECC088A190060 Validity Not Before: Mar 25 03:20:50 2026 GMT Not After : Apr 1 03:20:50 2026 GMT Subject: CN=69c35492-4eb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:df:e6:9e:a9:9c:55:80:8a:12:27:55:3a:e0: c8:72:3f:d8:97:08:0b:c8:51:a2:96:e6:9c:16:4a: 4a:c9:e7:cc:de:87:89:f6:94:a6:72:63:94:39:22: be:88:da:4e:81:5d:5f:ed:b8:16:bd:83:b1:7d:4a: b1:8e:c7:46:be:ad:ed:63:99:de:32:53:25:d4:31: 08:ef:83:54:1c:7e:af:c9:27:51:64:02:5b:ab:49: 3c:88:c5:22:0a:4e:e5:12:4c:eb:a8:71:11:0a:a1: 2d:34:f6:17:f2:71:25:f8:86:2c:93:43:7a:77:a7: 60:fa:93:a6:40:1f:50:3d:4f:bf:97:23:3c:8a:90: 9f:0c:04:f6:3f:5e:66:08:1a:f2:5a:b0:54:78:d6: aa:95:25:5f:98:fb:36:4c:ae:34:af:66:e1:3c:be: 2e:ad:47:4b:4f:95:b1:d2:bd:b6:48:cb:d2:f8:f5: e2:bd:2f:cd:5d:d1:31:f3:3b:39:87:1e:d4:4e:5a: f8:14:91:9d:bf:6b:93:12:13:90:f0:d6:6a:8d:9a: 1d:6d:ab:49:35:22:de:e5:f4:f9:c7:0b:77:76:dd: 1f:3f:cb:6c:77:85:1a:b6:92:4e:68:bc:e8:4a:43: fb:5e:4c:25:69:f6:c4:c4:17:51:ce:4a:1e:9b:71: 7e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:FC:2E:2E:61:16:55:FC:E4:B5:7D:D8:62:5F:64:C0:82:7A:A3:8C X509v3 Authority Key Identifier: keyid:87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:79:63:9a:7d:e8:8d:0e:90:66:ec:4c:5c:44:a3:e1:64:59: 55:7d:01:cb:d2:7d:a5:89:36:9d:08:68:52:9b:e5:18:f0:55: ce:19:18:ef:d3:ad:72:93:27:4c:66:01:b9:5f:77:e6:16:9a: 09:6e:85:7f:df:86:46:2e:55:dd:66:a2:fb:0d:e8:42:23:cf: 59:fe:94:31:04:a3:21:7d:1e:bb:92:3d:15:c9:f5:23:f0:1b: 7d:f1:2d:da:07:8b:fc:0c:f9:1c:3e:2b:77:06:b0:32:71:81: df:de:a2:9a:81:88:a1:04:1a:54:10:15:df:0c:ff:ef:34:50: 1c:ae:8f:ac:47:23:bc:d6:9b:9e:9a:87:5f:5b:e6:66:83:21: 60:30:5d:ce:63:68:fb:a3:95:79:84:ef:d1:4d:f3:e9:9c:73: 76:91:26:b2:65:2f:a7:8c:1c:02:51:cd:c5:f0:c3:80:68:b2: 21:7d:96:25:cc:08:b9:ef:dc:02:eb:7c:f4:cb:f0:19:3c:5c: ab:08:9d:f3:50:e2:5c:7b:b5:71:91:b6:72:ca:aa:13:b6:88: a0:a4:21:d9:bf:5d:80:f0:55:df:b1:89:40:61:56:d2:ea:2d: 02:9a:ad:34:9c:db:13:04:8b:89:f4:4a:ea:b3:d5:5c:5f:fe: ac:d7:32:9c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFDOUExMTAvBgNVBAUTKDg3MjhCODI4RjMxODYwM0U0NDcxMTA3MEMyNEVDQzA4 OEExOTAwNjAwHhcNMjYwMzI1MDMyMDUwWhcNMjYwNDAxMDMyMDUwWjAYMRYwFAYD VQQDEw02OWMzNTQ5Mi00ZWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzN/mnqmcVYCKEidVOuDIcj/YlwgLyFGiluacFkpKyefM3oeJ9pSmcmOUOSK+ iNpOgV1f7bgWvYOxfUqxjsdGvq3tY5neMlMl1DEI74NUHH6vySdRZAJbq0k8iMUi Ck7lEkzrqHERCqEtNPYX8nEl+IYsk0N6d6dg+pOmQB9QPU+/lyM8ipCfDAT2P15m CBryWrBUeNaqlSVfmPs2TK40r2bhPL4urUdLT5Wx0r22SMvS+PXivS/NXdEx8zs5 hx7UTlr4FJGdv2uTEhOQ8NZqjZodbatJNSLe5fT5xwt3dt0fP8tsd4UatpJOaLzo SkP7XkwlafbExBdRzkoem3F+ywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLj8Li5h FlX85LV92GJfZMCCeqOMMB8GA1UdIwQYMBaAFIcouCjzGGA+RHEQcMJOzAiKGQBg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUM5QS9FMTlBMjU3ODk3 RjQxMUVFQkNFREMzNEZDNEY5QUUwMi9oeWk0S1BNWVlENUVjUkJ3d2s3TUNJb1pB R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5aTRLUE1ZWUQ1RWNSQnd3azdNQ0lvWkFHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUM5QS9FMTlBMjU3ODk3RjQxMUVFQkNFREMzNEZDNEY5QUUwMi9oeWk0S1BNWVlE NUVjUkJ3d2s3TUNJb1pBR0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqXljmn3ojQ6QZuxMXESj4WRZVX0By9J9pYk2nQhoUpvlGPBVzhkY79OtcpMn TGYBuV935haaCW6Ff9+GRi5V3Wai+w3oQiPPWf6UMQSjIX0eu5I9Fcn1I/AbffEt 2geL/Az5HD4rdwawMnGB396imoGIoQQaVBAV3wz/7zRQHK6PrEcjvNabnpqHX1vm ZoMhYDBdzmNo+6OVeYTv0U3z6ZxzdpEmsmUvp4wcAlHNxfDDgGiyIX2WJcwIue/c Aut89MvwGTxcqwid81DiXHu1cZG2csqqE7aIoKQh2b9dgPBV37GJQGFW0uotApqt NJzbEwSLifRK6rPVXF/+rNcynA== -----END CERTIFICATE-----Generated at Thu Mar 26 12:00:44 2026 by rpki-client