$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft File: htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft (raw, json) Hash identifier: wEaPnkEul2n8k9oFoZ2ZhUg0N8mlBe5mEuSd9s+N2Ss= Subject key identifier: 75:F7:D5:42:3A:AB:C6:5B:69:23:DD:B8:F1:FF:6E:A9:93:66:DC:87 Authority key identifier: 86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D Certificate issuer: /CN=A91A99C5/serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft Manifest number: 87 Signing time: Wed 25 Mar 2026 06:49:51 +0000 Manifest this update: Wed 25 Mar 2026 06:49:50 +0000 Manifest next update: Wed 01 Apr 2026 06:49:50 +0000 Files and hashes: 1: htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl (hash: H9Mg4WZRS0PGCFJSD/xNrKZoaP21QI6snVlUSSWIOQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99C5, serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D Validity Not Before: Mar 25 06:49:50 2026 GMT Not After : Apr 1 06:49:50 2026 GMT Subject: CN=69c3858f-55a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:22:9f:70:37:b6:1f:fb:e4:7f:cd:99:1d:35: de:96:38:53:73:f6:f6:f7:cc:d2:91:b9:95:06:18: ba:b5:05:a2:46:e1:d0:a8:1c:fa:ca:87:ef:ec:7c: 78:b8:4b:a6:7e:81:10:ba:da:11:f5:e1:82:ba:44: 78:2d:d6:12:88:db:f4:12:7f:ab:e3:a4:42:81:6d: 21:11:30:dd:e8:d1:d7:3d:40:5b:00:a7:fb:15:a5: 8b:5f:07:9a:aa:a2:fc:d7:07:68:a6:aa:6c:49:f7: 28:63:a0:9b:c0:14:e7:15:5b:22:ac:db:e4:48:76: c3:16:ae:96:c0:b5:65:ac:fa:4e:51:f7:13:7f:d9: e9:74:cb:2d:d0:2c:6f:06:8e:d6:2e:c2:ec:fa:f1: 87:7a:f3:9f:8d:7c:10:2a:fa:d7:49:a9:45:27:68: 37:96:27:b9:bb:56:4b:2d:c2:4d:14:77:32:30:ea: dd:e9:70:00:bf:31:f4:a2:b0:98:8e:f0:5b:1f:c8: 16:53:5c:b2:dc:86:82:c9:d6:4e:63:03:c4:5c:0f: 3b:b7:31:f6:30:27:59:98:bd:66:82:87:26:51:06: b2:fc:70:95:fc:5a:90:08:f1:94:25:0a:7d:31:89: e9:7d:22:f6:40:e2:27:a6:c4:f1:f6:be:23:94:31: d7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:F7:D5:42:3A:AB:C6:5B:69:23:DD:B8:F1:FF:6E:A9:93:66:DC:87 X509v3 Authority Key Identifier: keyid:86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:49:1a:47:a8:7b:58:08:60:81:69:a4:e3:df:9b:84:ff:1c: 24:40:5d:ac:ae:74:ab:e0:33:f3:e5:a7:16:f8:a9:57:bf:fd: b5:1b:65:0f:8b:4b:d3:c6:ab:d6:3f:8f:ee:b4:f9:87:3d:8f: 3e:70:e7:cc:20:8b:ce:4d:d9:67:a4:82:9b:28:f0:9e:32:93: c1:02:b8:38:c3:aa:a8:5b:df:73:2b:f8:c0:fd:69:d3:34:39: a4:db:83:90:cc:1d:56:e8:0b:7c:6f:21:89:21:82:94:b0:84: 02:ba:8c:ee:b2:8b:ce:51:7f:03:61:5b:04:04:bb:71:9e:10: f5:09:13:97:c9:6b:a9:62:10:d3:63:5b:e4:0b:b0:d3:11:8c: b1:75:15:41:7a:26:de:08:08:f1:2f:90:61:8c:c1:19:94:4b: dc:e7:3a:6d:17:4d:6a:15:22:d7:29:c0:24:15:08:1b:e6:4d: 49:94:fb:84:5d:3f:bd:b7:ff:b7:ba:d9:35:b6:bc:dd:1c:d1: 19:a8:2a:68:f1:0a:10:fe:ff:f8:0b:17:8e:ec:a0:39:88:10: 09:d6:96:0a:5f:5c:af:2e:33:41:14:29:13:54:2f:32:4a:30: 43:a2:2f:60:a4:61:fa:0e:bf:a5:9a:12:a1:20:cf:91:73:de: f1:b9:37:a1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk5QzUxMTAvBgNVBAUTKDg2RDk1RjQxRUQxOTgxRkE4RDBCNTkwOEQ2NDQ0NjUx MEU2RUFDN0QwHhcNMjYwMzI1MDY0OTUwWhcNMjYwNDAxMDY0OTUwWjAYMRYwFAYD VQQDEw02OWMzODU4Zi01NWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CKfcDe2H/vkf82ZHTXeljhTc/b298zSkbmVBhi6tQWiRuHQqBz6yofv7Hx4 uEumfoEQutoR9eGCukR4LdYSiNv0En+r46RCgW0hETDd6NHXPUBbAKf7FaWLXwea qqL81wdopqpsSfcoY6CbwBTnFVsirNvkSHbDFq6WwLVlrPpOUfcTf9npdMst0Cxv Bo7WLsLs+vGHevOfjXwQKvrXSalFJ2g3lie5u1ZLLcJNFHcyMOrd6XAAvzH0orCY jvBbH8gWU1yy3IaCydZOYwPEXA87tzH2MCdZmL1mgocmUQay/HCV/FqQCPGUJQp9 MYnpfSL2QOInpsTx9r4jlDHXOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHX31UI6 q8ZbaSPduPH/bqmTZtyHMB8GA1UdIwQYMBaAFIbZX0HtGYH6jQtZCNZERlEObqx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTlDNS8wNjAzRTVCRTVE QkMxMUYwOUFBMTc4NTBDNEY5QUUwMi9odGxmUWUwWmdmcU5DMWtJMWtSR1VRNXVy SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h0bGZRZTBaZ2ZxTkMxa0kxa1JHVVE1dXJIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTlDNS8wNjAzRTVCRTVEQkMxMUYwOUFBMTc4NTBDNEY5QUUwMi9odGxmUWUwWmdm cU5DMWtJMWtSR1VRNXVySDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABkkaR6h7WAhggWmk49+bhP8cJEBdrK50q+Az8+WnFvipV7/9tRtlD4tL08ar 1j+P7rT5hz2PPnDnzCCLzk3ZZ6SCmyjwnjKTwQK4OMOqqFvfcyv4wP1p0zQ5pNuD kMwdVugLfG8hiSGClLCEArqM7rKLzlF/A2FbBAS7cZ4Q9QkTl8lrqWIQ02Nb5Auw 0xGMsXUVQXom3ggI8S+QYYzBGZRL3Oc6bRdNahUi1ynAJBUIG+ZNSZT7hF0/vbf/ t7rZNba83RzRGagqaPEKEP7/+AsXjuygOYgQCdaWCl9cry4zQRQpE1QvMkowQ6Iv YKRh+g6/pZoSoSDPkXPe8bk3oQ== -----END CERTIFICATE-----Generated at Thu Mar 26 20:41:37 2026 by rpki-client