$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json) Hash identifier: OVbTePKzyOmj2mkNYHOha+lU1YgwVZUhtsJV/dGgHG4= Subject key identifier: 8E:B8:9A:04:35:D3:74:4E:21:54:BA:88:31:A4:0D:B1:9E:9E:E8:4D Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Certificate serial: 0C81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft Manifest number: 0C75 Signing time: Thu 26 Mar 2026 18:31:26 +0000 Manifest this update: Thu 26 Mar 2026 18:31:26 +0000 Manifest next update: Thu 02 Apr 2026 18:31:26 +0000 Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: LzjzMoV63NLhO2qk7eNv3C9ufR0KhLmz7ZBkfhi3zQs=) 2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: 7Dz9hu6gjsKF7rOCaXHWUeixpnR4qVyHb9xN6ykXLfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:31:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3201 (0xc81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FD74, serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Validity Not Before: Mar 26 18:31:26 2026 GMT Not After : Apr 2 18:31:26 2026 GMT Subject: CN=69c57b7e-3117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0d:ef:2b:7a:56:6d:15:ca:ab:5e:bd:cd:68: 8c:96:cc:8a:07:7d:0a:8e:2a:e8:cc:d6:cb:8c:30: 0e:31:db:e0:a3:7c:5f:75:af:97:b9:11:9e:8b:01: 59:a3:78:b7:17:ba:00:1d:a6:09:51:ee:35:26:67: 4f:17:93:21:3f:42:20:39:9f:e6:8c:76:c1:21:8a: ec:cd:f5:5b:5e:b6:b3:7c:46:62:f6:0a:26:ad:20: 9f:aa:eb:55:86:5b:55:53:bf:47:09:14:3e:17:78: 56:c7:43:cf:30:9f:ef:31:5f:cd:f6:da:f6:43:16: 78:59:86:ee:e1:55:96:e2:05:47:7b:ee:ad:11:4a: cb:e1:29:4e:29:80:c6:eb:d1:17:f5:8d:30:64:97: f7:ac:37:b4:a3:4c:51:34:1a:67:b4:6a:74:f2:15: cb:1a:27:d9:99:5e:16:d3:95:0e:33:6c:16:28:59: 24:41:09:2e:1d:49:83:13:2e:c6:97:80:9e:8d:ef: 7d:92:b5:fb:ab:be:bf:bc:5d:5a:25:17:cb:87:ff: fd:bc:14:97:dd:4b:86:6a:e3:91:0c:c4:48:3b:cf: eb:47:f8:14:b0:d7:00:45:4b:d6:2c:c1:8c:66:b2: 2f:6c:70:3d:88:45:66:b8:fd:d8:e8:40:38:76:8e: ac:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:B8:9A:04:35:D3:74:4E:21:54:BA:88:31:A4:0D:B1:9E:9E:E8:4D X509v3 Authority Key Identifier: keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:78:f7:e6:c2:c0:81:d7:6c:87:01:83:c7:11:db:5d:e7:ae: a8:d6:d6:c4:1c:5e:a3:28:cf:6c:c9:54:c9:ea:9d:e8:61:1d: 1f:00:76:92:df:c9:9c:97:0f:e5:9c:50:3e:ba:7f:c7:eb:9a: 54:23:8d:ef:9d:55:38:c4:c6:47:73:0f:22:0a:55:0e:52:69: 24:23:df:8d:b7:bf:73:69:91:d3:a7:86:79:78:bf:3a:e5:69: dd:87:53:16:e4:b9:56:8b:2c:c2:5a:36:8a:86:b6:78:43:0d: 8d:3a:bb:72:3f:7a:3a:75:c0:65:12:b6:e4:2f:68:55:ea:ae: ed:a5:41:43:76:66:f8:4d:18:a2:9d:e4:0e:74:9a:6e:7f:b6: 5e:c7:d6:1a:62:d4:81:18:eb:b7:26:43:44:9d:c9:04:8d:17: 14:79:89:44:65:19:2a:fa:2a:b2:94:77:d3:a2:47:7c:61:d4: 8c:80:5a:73:9d:f1:9b:51:ff:a6:ca:cf:8d:d0:4b:61:d4:06: 8d:71:1c:31:9b:21:27:5e:27:ea:fe:79:c5:04:0f:2d:45:4f: ee:59:de:e3:5c:da:5d:1a:6a:8e:e7:85:6f:3a:01:bd:d5:b0: cf:ee:25:52:ae:54:f7:76:87:f2:da:6d:13:e5:39:cd:f3:1d: 72:bb:31:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND MDJDMDM2MjcwHhcNMjYwMzI2MTgzMTI2WhcNMjYwNDAyMTgzMTI2WjAYMRYwFAYD VQQDEw02OWM1N2I3ZS0zMTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQ3vK3pWbRXKq169zWiMlsyKB30KjirozNbLjDAOMdvgo3xfda+XuRGeiwFZ o3i3F7oAHaYJUe41JmdPF5MhP0IgOZ/mjHbBIYrszfVbXrazfEZi9gomrSCfqutV hltVU79HCRQ+F3hWx0PPMJ/vMV/N9tr2QxZ4WYbu4VWW4gVHe+6tEUrL4SlOKYDG 69EX9Y0wZJf3rDe0o0xRNBpntGp08hXLGifZmV4W05UOM2wWKFkkQQkuHUmDEy7G l4Ceje99krX7q76/vF1aJRfLh//9vBSX3UuGauORDMRIO8/rR/gUsNcARUvWLMGM ZrIvbHA9iEVmuP3Y6EA4do6sMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI64mgQ1 03ROIVS6iDGkDbGenuhNMB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y MkxJQzM3SGVJaFBBTEFOaWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwHj35sLAgddshwGDxxHbXeeuqNbWxBxeoyjPbMlUyeqd6GEdHwB2kt/JnJcP 5ZxQPrp/x+uaVCON751VOMTGR3MPIgpVDlJpJCPfjbe/c2mR06eGeXi/OuVp3YdT FuS5Vosswlo2ioa2eEMNjTq7cj96OnXAZRK25C9oVequ7aVBQ3Zm+E0Yop3kDnSa bn+2XsfWGmLUgRjrtyZDRJ3JBI0XFHmJRGUZKvoqspR306JHfGHUjIBac53xm1H/ psrPjdBLYdQGjXEcMZshJ14n6v55xQQPLUVP7lne41zaXRpqjueFbzoBvdWwz+4l Uq5U93aH8tptE+U5zfMdcrsx6w== -----END CERTIFICATE-----Generated at Sat Mar 28 12:14:10 2026 by rpki-client