$ rpki-client -vvf rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft File: HTaU7xQhyRhUqIesqWELxWCucIQ.mft (raw, json) Hash identifier: tLDsZfO20W8BgNfTGNwJIsMhN8MBl38S14g+s0sKfig= Subject key identifier: 78:F1:28:F4:29:18:73:DD:41:AB:E6:A0:15:17:C2:A6:21:EE:AE:EF Authority key identifier: 1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 Certificate issuer: /CN=A919EB4E/serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Certificate serial: 0F57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft Manifest number: 0F2C Signing time: Tue 24 Mar 2026 17:28:00 +0000 Manifest this update: Tue 24 Mar 2026 17:28:00 +0000 Manifest next update: Tue 31 Mar 2026 17:28:00 +0000 Files and hashes: 1: HTaU7xQhyRhUqIesqWELxWCucIQ.crl (hash: 380DLZvGzq2GBtf8BHpqpEpSO7W1izicsdZbSDP2BHY=) 2: 7A40B730E2D811EBAB97665DC4F9AE02.roa (hash: CzoXjxwwafDE/0X1/IFRvm6Y/QHPkUJqqlhM2vR6GHQ=) 3: F73EFF46839211EEA1EC8A0EC4F9AE02.roa (hash: JnEr1ULSbKqalMG/ES7bWBOgeNVDSEEFX8LfergGB94=) 4: 89A93D5E971811E9AE51CA15C4F9AE02.roa (hash: HJroJ49BIbNGAuccbium1kEpSjVPB8qo4E6nRxSwoW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:27:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3927 (0xf57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EB4E, serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Validity Not Before: Mar 24 17:28:00 2026 GMT Not After : Mar 31 17:28:00 2026 GMT Subject: CN=69c2c9a0-f1c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a6:67:80:de:17:fd:32:1a:05:1b:d4:61:22: 2e:4e:ec:d1:f8:bf:60:8a:8b:a6:53:a9:eb:4b:53: 6c:46:d9:dd:6d:fa:8f:9d:d4:35:3a:d8:75:27:7f: da:1c:d8:3b:b2:1e:03:32:27:4c:ec:e2:43:4a:4b: 9e:c0:a1:8e:11:28:90:cd:0d:63:e2:a3:ff:25:24: 64:bf:4c:f5:fe:6c:0e:36:0d:c0:b5:a4:cb:89:50: e4:c1:c7:54:a9:f2:64:3c:06:b4:6f:38:a3:7b:c6: 4e:48:ad:7a:1e:6e:3e:bf:e4:40:5b:a5:f8:c0:eb: 30:22:5b:f0:77:23:e9:0d:59:4a:85:67:9e:dd:43: dc:30:e9:64:a9:93:24:5d:ac:d3:ec:77:ed:7c:54: 2e:72:eb:4e:ef:f7:92:17:1a:d4:60:18:9a:f0:72: ae:be:88:0d:9c:93:60:d1:b5:e5:70:eb:6b:38:7f: 8a:75:62:a6:c2:35:39:fd:77:24:83:f6:21:81:37: 0f:0b:21:1e:c4:2d:53:93:a9:97:48:e2:18:e3:b4: 03:b3:45:18:34:89:5a:52:e8:bc:9e:f4:7f:89:d4: 6c:d3:0c:fb:11:70:39:43:8d:6f:24:59:f2:2d:f1: 0f:86:7a:ec:3f:9e:e0:9b:cb:03:05:55:26:aa:1e: b9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F1:28:F4:29:18:73:DD:41:AB:E6:A0:15:17:C2:A6:21:EE:AE:EF X509v3 Authority Key Identifier: keyid:1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:d1:eb:cc:84:7e:26:cd:20:6e:8b:d0:02:79:6c:a3:0a:5a: ba:6a:c0:f2:6f:8e:05:ae:2e:27:b9:d7:39:69:4e:b0:8d:9c: 8b:6b:98:93:89:55:61:9d:27:78:46:38:a2:c2:b8:f6:1d:4c: c8:3e:39:1e:c9:3b:58:a4:c7:bb:6d:1b:23:29:e2:c4:dd:3b: 61:f9:64:a5:6a:96:c7:c6:6d:3f:f4:54:c8:a7:74:1e:fc:59: 82:d9:75:e8:74:7e:7a:fc:a7:4a:26:65:88:3e:3b:1e:67:5c: 07:02:94:18:42:fb:87:97:75:0d:a5:d8:e4:da:8e:f0:67:2a: b9:5d:38:4b:a1:7e:06:25:cd:e8:9a:b9:e7:3a:fa:6d:76:d9: f7:03:ad:55:33:6a:9c:08:ba:d2:68:db:72:1d:8d:10:c8:b6: aa:1c:cb:90:8c:e2:8a:b7:55:53:45:1c:07:48:13:5f:1c:de: 4e:7f:7b:e6:8a:b1:50:c7:42:42:82:cb:e5:b1:92:be:ce:5b: 03:7d:11:a5:b1:df:c1:75:26:4a:8f:7e:f1:a9:8d:91:43:60: 0c:ea:99:e6:24:3d:7b:78:6b:87:a0:01:56:5b:b1:ad:5c:ee: 15:cb:59:b3:ec:8f:90:eb:68:d5:ca:72:d6:23:f8:05:b2:d8: e0:34:42:4a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVCNEUxMTAvBgNVBAUTKDFEMzY5NEVGMTQyMUM5MTg1NEE4ODdBQ0E5NjEwQkM1 NjBBRTcwODQwHhcNMjYwMzI0MTcyODAwWhcNMjYwMzMxMTcyODAwWjAYMRYwFAYD VQQDEw02OWMyYzlhMC1mMWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoaZngN4X/TIaBRvUYSIuTuzR+L9gioumU6nrS1NsRtndbfqPndQ1Oth1J3/a HNg7sh4DMidM7OJDSkuewKGOESiQzQ1j4qP/JSRkv0z1/mwONg3AtaTLiVDkwcdU qfJkPAa0bzije8ZOSK16Hm4+v+RAW6X4wOswIlvwdyPpDVlKhWee3UPcMOlkqZMk XazT7HftfFQucutO7/eSFxrUYBia8HKuvogNnJNg0bXlcOtrOH+KdWKmwjU5/Xck g/YhgTcPCyEexC1Tk6mXSOIY47QDs0UYNIlaUui8nvR/idRs0wz7EXA5Q41vJFny LfEPhnrsP57gm8sDBVUmqh65gwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHjxKPQp GHPdQavmoBUXwqYh7q7vMB8GA1UdIwQYMBaAFB02lO8UIckYVKiHrKlhC8VgrnCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUI0RS9BMjg0M0MwODk3 MTcxMUU5ODVGQ0FCMTRDNEY5QUUwMi9IVGFVN3hRaHlSaFVxSWVzcVdFTHhXQ3Vj SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hUYVU3eFFoeVJoVXFJZXNxV0VMeFdDdWNJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUI0RS9BMjg0M0MwODk3MTcxMUU5ODVGQ0FCMTRDNEY5QUUwMi9IVGFVN3hRaHlS aFVxSWVzcVdFTHhXQ3VjSVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3dHrzIR+Js0gbovQAnlsowpaumrA8m+OBa4uJ7nXOWlOsI2ci2uYk4lVYZ0n eEY4osK49h1MyD45Hsk7WKTHu20bIynixN07YflkpWqWx8ZtP/RUyKd0HvxZgtl1 6HR+evynSiZliD47HmdcBwKUGEL7h5d1DaXY5NqO8GcquV04S6F+BiXN6Jq55zr6 bXbZ9wOtVTNqnAi60mjbch2NEMi2qhzLkIziirdVU0UcB0gTXxzeTn975oqxUMdC QoLL5bGSvs5bA30RpbHfwXUmSo9+8amNkUNgDOqZ5iQ9e3hrh6ABVluxrVzuFctZ s+yPkOto1cpy1iP4BbLY4DRCSg== -----END CERTIFICATE-----Generated at Thu Mar 26 12:19:22 2026 by rpki-client