$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft File: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft (raw, json) Hash identifier: enTyR5+X/9jMEyXvlgQO+yxB9L/OM9P4Und4llYyDu4= Subject key identifier: 2A:0A:51:06:52:85:75:6F:95:52:22:A6:FB:7C:E8:B3:14:38:FB:67 Authority key identifier: 86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 Certificate issuer: /CN=A91A1EE0/serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Certificate serial: 3588 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft Manifest number: 3556 Signing time: Tue 24 Mar 2026 14:34:02 +0000 Manifest this update: Tue 24 Mar 2026 14:34:01 +0000 Manifest next update: Tue 31 Mar 2026 14:34:01 +0000 Files and hashes: 1: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl (hash: /DKEBTvT+Cik9ZVXJzP/h/Q6mMYakAFplEyJrl4bemk=) 2: 4EF85CFEEE4211E9B52B674DC4F9AE02.roa (hash: Ehg/3ByY4in17WS9HIHSCx7iYIaT6e+zSPAMzsvhayg=) 3: 44E2CCAEBA9811EFBA471E62C4F9AE02.roa (hash: mYW3nKsnG4GE83HF25tjaBek0p6fEGk2hgZHM+Eo7hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:34:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13704 (0x3588) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1EE0, serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Validity Not Before: Mar 24 14:34:01 2026 GMT Not After : Mar 31 14:34:01 2026 GMT Subject: CN=69c2a0d9-e567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:45:76:85:67:09:14:f8:45:82:71:ee:4f:88: d0:9a:bb:06:2f:f0:18:49:ca:6c:43:c4:69:1e:07: 93:5c:6d:0f:7c:6c:66:4f:4d:62:45:ec:d2:b1:c1: 2e:31:3e:18:a8:d1:c0:93:33:55:28:90:19:61:3e: 93:12:5c:03:29:ff:95:26:38:e0:0a:de:5c:f3:31: ce:02:22:f4:ef:90:b3:cd:96:7f:17:95:4b:b7:6b: ab:72:3e:41:f5:d5:c6:c2:5b:2a:6b:e0:7d:88:ed: 9a:4c:44:8b:a3:75:95:58:b2:5a:69:41:f9:dd:1f: 2a:c2:5f:b4:c5:5f:fe:c2:13:fb:38:6e:a6:de:1c: dc:13:80:11:e3:3f:4a:4c:ba:ea:e4:79:57:bb:0d: 73:4d:e5:ec:6e:12:02:5a:83:83:63:37:f0:89:dc: 0b:2e:16:e5:9a:5a:d0:52:90:a0:3b:12:7e:5a:ea: b1:d4:d8:b8:a4:4a:08:42:f8:49:08:7f:18:f7:91: cb:3d:ca:0e:8e:7f:6f:ec:ee:32:72:00:e1:20:d7: 26:62:ea:ce:34:b8:90:1e:68:d5:29:56:2c:21:ff: 7d:8c:c8:16:64:3f:c1:c2:eb:d9:90:2d:30:a8:db: 3b:c6:be:0a:0f:14:b1:d3:38:f4:00:00:cb:ff:1d: 47:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:0A:51:06:52:85:75:6F:95:52:22:A6:FB:7C:E8:B3:14:38:FB:67 X509v3 Authority Key Identifier: keyid:86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:61:32:45:61:e2:ec:89:b2:ec:c2:88:3d:11:71:4f:c8:e1: 15:dc:94:3e:65:e9:35:22:e7:df:c8:e9:f2:b3:6d:fc:74:50: f2:ae:44:67:f1:2a:6a:9e:1d:a2:b6:fa:7a:4d:04:a0:30:dd: ff:b1:08:3d:29:ad:ff:ac:59:6e:7c:b2:98:e4:8c:06:7b:b9: e1:0c:1b:de:a3:f4:ab:77:9b:dc:b2:9c:35:c3:0d:c5:25:22: 55:c1:cb:96:41:9c:d4:e0:0e:db:bf:e2:69:55:9c:7e:f7:12: d6:90:52:72:72:99:51:6a:91:90:67:cf:01:f2:ae:b9:65:43: 1d:16:69:b1:ba:64:cb:03:ff:31:71:68:c0:5d:ae:54:d2:94: 1a:9c:ae:a7:b2:2b:54:33:0f:93:9f:1b:67:80:08:08:d2:17: 15:87:df:7a:82:0a:83:1e:c4:9c:b8:70:ec:3c:72:c1:53:4d: 01:26:16:51:e1:ff:44:84:5b:60:b2:30:2c:47:50:5e:97:34: b8:c3:59:0f:00:5e:90:5b:62:80:c8:fe:10:11:30:bc:44:fd: 0a:3b:a1:07:47:d3:a2:09:c3:c8:89:6e:87:1b:db:ed:d8:19: 6d:1d:6a:98:af:cb:dc:d5:e6:4f:8e:18:8f:56:d5:f8:13:cf: ff:8e:14:6b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFFRTAxMTAvBgNVBAUTKDg2MEMwOTA0Q0VEN0JCMEQxRDk3QjI5MkZEQjY2MkU4 QjlBOEFGRjAwHhcNMjYwMzI0MTQzNDAxWhcNMjYwMzMxMTQzNDAxWjAYMRYwFAYD VQQDEw02OWMyYTBkOS1lNTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0V2hWcJFPhFgnHuT4jQmrsGL/AYScpsQ8RpHgeTXG0PfGxmT01iRezSscEu MT4YqNHAkzNVKJAZYT6TElwDKf+VJjjgCt5c8zHOAiL075CzzZZ/F5VLt2urcj5B 9dXGwlsqa+B9iO2aTESLo3WVWLJaaUH53R8qwl+0xV/+whP7OG6m3hzcE4AR4z9K TLrq5HlXuw1zTeXsbhICWoODYzfwidwLLhblmlrQUpCgOxJ+Wuqx1Ni4pEoIQvhJ CH8Y95HLPcoOjn9v7O4ycgDhINcmYurONLiQHmjVKVYsIf99jMgWZD/BwuvZkC0w qNs7xr4KDxSx0zj0AADL/x1HqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCoKUQZS hXVvlVIipvt86LMUOPtnMB8GA1UdIwQYMBaAFIYMCQTO17sNHZeykv22Yui5qK/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUVFMC9EMjM2MzQ0NjFE OEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3MGRsN0tTX2JaaTZMbW9y X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnd0pCTTdYdXcwZGw3S1NfYlppNkxtb3JfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUVFMC9EMjM2MzQ0NjFEOEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3 MGRsN0tTX2JaaTZMbW9yX0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdmEyRWHi7Imy7MKIPRFxT8jhFdyUPmXpNSLn38jp8rNt/HRQ8q5EZ/Eqap4d orb6ek0EoDDd/7EIPSmt/6xZbnyymOSMBnu54Qwb3qP0q3eb3LKcNcMNxSUiVcHL lkGc1OAO27/iaVWcfvcS1pBScnKZUWqRkGfPAfKuuWVDHRZpsbpkywP/MXFowF2u VNKUGpyup7IrVDMPk58bZ4AICNIXFYffeoIKgx7EnLhw7DxywVNNASYWUeH/RIRb YLIwLEdQXpc0uMNZDwBekFtigMj+EBEwvET9CjuhB0fTognDyIluhxvb7dgZbR1q mK/L3NXmT44Yj1bV+BPP/44Uaw== -----END CERTIFICATE-----Generated at Thu Mar 26 15:30:04 2026 by rpki-client