$ rpki-client -vvf rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft File: hav4SAyQlji9zKZTrx5pD1crI-E.mft (raw, json) Hash identifier: qWrt9Z6AfOivukkF4Ibuxmq0hI/qRCHrc5iEBCZG+ks= Subject key identifier: AC:93:56:F1:F4:82:8C:DE:D8:CF:62:DC:19:D3:CD:32:D8:8D:3E:25 Authority key identifier: 85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 Certificate issuer: /CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Certificate serial: 353C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft Manifest number: 3530 Signing time: Tue 24 Mar 2026 14:49:36 +0000 Manifest this update: Tue 24 Mar 2026 14:49:36 +0000 Manifest next update: Tue 31 Mar 2026 14:49:36 +0000 Files and hashes: 1: hav4SAyQlji9zKZTrx5pD1crI-E.crl (hash: 0vbmz9SLeWt0T9WJE9kNr2Pov7bw/NeVu3qNiJjMiVQ=) 2: ABF3C76E0C4B11EF87D4886FC4F9AE02.roa (hash: r4Nk4/HNlZ5UILj9rqZCLRnsXQwXsj9IgRSHKtUZq+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13628 (0x353c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A03CB, serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Validity Not Before: Mar 24 14:49:36 2026 GMT Not After : Mar 31 14:49:36 2026 GMT Subject: CN=69c2a480-50a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:15:6f:6f:e5:14:75:5f:d9:a5:a2:31:15:ff: 18:e5:80:32:d0:92:f9:0b:15:72:fd:e6:a8:e4:fa: bc:ef:9d:49:c0:73:58:28:b4:73:4f:c9:99:fe:6e: d8:e7:7d:b0:88:ca:37:bc:c6:c4:5c:24:83:ce:bb: ae:0f:5b:92:7c:34:92:60:cf:29:b5:11:13:1e:2c: 28:0c:d2:58:10:9d:39:31:58:1a:26:73:9d:9f:e5: 70:39:fc:8a:84:e7:b0:58:b9:f5:51:b3:89:10:d5: 63:ed:3c:70:e2:12:e2:20:55:67:61:38:6c:7e:0f: 7d:ec:be:19:22:86:4b:40:d4:8a:9b:de:fa:fe:d1: 93:28:1c:a2:c5:74:fa:0b:7a:55:ed:60:0c:8f:f8: 51:cb:2f:09:e5:0d:1f:1c:92:a2:de:5c:0a:8e:98: b6:f3:9e:11:49:e0:e0:2d:07:9c:52:87:ab:16:38: da:68:a1:f2:e5:ee:f7:11:f9:32:9e:56:d8:e4:40: ea:7b:1e:b1:cd:f4:87:02:8b:0c:bb:31:e5:c1:5c: a8:69:d1:28:4e:7c:f6:2d:3c:a7:5a:bd:a0:03:cf: e1:13:0b:33:a1:cd:fd:10:7c:a2:1c:3d:6d:53:8a: e1:6b:ac:13:33:22:26:9c:cf:46:41:59:71:ec:ae: c4:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:93:56:F1:F4:82:8C:DE:D8:CF:62:DC:19:D3:CD:32:D8:8D:3E:25 X509v3 Authority Key Identifier: keyid:85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:72:72:e9:28:fe:40:32:bd:4e:9c:c4:5d:4b:4b:51:60:d0: f6:88:80:b9:da:4a:38:ef:5e:72:e8:61:0b:c6:17:9b:80:b5: 0f:0c:ed:d5:b7:6d:67:ef:4d:28:12:cc:72:dc:20:4c:c5:c1: 3d:cd:4f:50:70:13:9c:50:35:e7:82:c2:8c:7e:f2:05:95:a0: 6c:e6:16:06:27:d5:3e:83:75:ba:f8:f1:61:51:8d:66:9c:73: f5:28:29:76:65:51:51:3d:fd:96:e3:e5:79:7e:f1:e7:1f:ba: 5f:d2:58:95:da:05:dc:95:36:88:fc:45:73:c3:b2:31:6c:41: b9:bf:a3:b2:c9:f8:d1:62:35:60:9d:49:80:83:6d:35:e8:29: 70:f8:fc:71:80:6e:0d:cc:b6:47:63:ad:86:1e:a9:1e:8f:6a: 10:35:cd:a0:90:08:6b:03:82:a1:1f:be:5c:e1:a0:da:4e:b7: 88:18:1d:22:b3:49:15:4b:84:b1:f0:f7:e8:92:c9:ed:65:fe: a0:6a:68:eb:53:34:4c:a1:69:9a:96:a2:a4:b5:5e:44:47:50: df:b4:44:27:f4:2f:3c:96:e3:80:91:ec:0e:8a:5f:ef:c0:b2: 14:88:33:7a:63:b5:98:9f:21:4b:6e:a9:cf:3d:b4:cc:4c:90: b4:a2:b9:c0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAzQ0IxMTAvBgNVBAUTKDg1QUJGODQ4MEM5MDk2MzhCRENDQTY1M0FGMUU2OTBG NTcyQjIzRTEwHhcNMjYwMzI0MTQ0OTM2WhcNMjYwMzMxMTQ0OTM2WjAYMRYwFAYD VQQDEw02OWMyYTQ4MC01MGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxVvb+UUdV/ZpaIxFf8Y5YAy0JL5CxVy/eao5Pq8751JwHNYKLRzT8mZ/m7Y 532wiMo3vMbEXCSDzruuD1uSfDSSYM8ptRETHiwoDNJYEJ05MVgaJnOdn+VwOfyK hOewWLn1UbOJENVj7Txw4hLiIFVnYThsfg997L4ZIoZLQNSKm976/tGTKByixXT6 C3pV7WAMj/hRyy8J5Q0fHJKi3lwKjpi2854RSeDgLQecUoerFjjaaKHy5e73Efky nlbY5EDqex6xzfSHAosMuzHlwVyoadEoTnz2LTynWr2gA8/hEwszoc39EHyiHD1t U4rha6wTMyImnM9GQVlx7K7EcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKyTVvH0 goze2M9i3BnTzTLYjT4lMB8GA1UdIwQYMBaAFIWr+EgMkJY4vcymU68eaQ9XKyPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDNDQi84MUQ5RTRBMDFE OTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxqaTl6S1pUcng1cEQxY3JJ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhdjRTQXlRbGppOXpLWlRyeDVwRDFjckktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDNDQi84MUQ5RTRBMDFEOTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxq aTl6S1pUcng1cEQxY3JJLUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFnJy6Sj+QDK9TpzEXUtLUWDQ9oiAudpKOO9ecuhhC8YXm4C1Dwzt1bdtZ+9N KBLMctwgTMXBPc1PUHATnFA154LCjH7yBZWgbOYWBifVPoN1uvjxYVGNZpxz9Sgp dmVRUT39luPleX7x5x+6X9JYldoF3JU2iPxFc8OyMWxBub+jssn40WI1YJ1JgINt NegpcPj8cYBuDcy2R2Othh6pHo9qEDXNoJAIawOCoR++XOGg2k63iBgdIrNJFUuE sfD36JLJ7WX+oGpo61M0TKFpmpaipLVeREdQ37REJ/QvPJbjgJHsDopf78CyFIgz emO1mJ8hS26pzz20zEyQtKK5wA== -----END CERTIFICATE-----Generated at Thu Mar 26 17:44:43 2026 by rpki-client