$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft File: HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft (raw, json) Hash identifier: 1CUoFtsaNP64hv9i7VamuVu/mSZT92ACnbgaKjzMnCQ= Subject key identifier: 47:3E:85:48:14:2A:74:84:40:15:E6:04:E9:A1:2A:0D:56:2B:F2:2C Authority key identifier: 1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB Certificate issuer: /CN=A91B0770/serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Certificate serial: 35C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft Manifest number: 3575 Signing time: Tue 24 Mar 2026 14:39:16 +0000 Manifest this update: Tue 24 Mar 2026 14:39:16 +0000 Manifest next update: Tue 31 Mar 2026 14:39:16 +0000 Files and hashes: 1: HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl (hash: b6JW1/5PpUnTgoSeK9PW6pzw+UFLK7F1rElxncXXq5I=) 2: 87EFB95AC01811EF90CE8B0EC4F9AE02.roa (hash: C9kDwfmBiY6vCRGQDDyB4fRaHn0qARnsMTPVrfiPE3w=) 3: 725D1810BD0E11EA8CEF0681C4F9AE02.roa (hash: KXODx+nI9I+IBelGkGtFFlSKzu6f9jybWi8Lv3W1Fu8=) 4: 0FCDEA68113B11F09E3A4157C4F9AE02.roa (hash: 1QTKJD4vqX7bem3GLJ46R87e+RPm3/ksMd9HYKhn61A=) 5: 2B622E1282F511EF9090F681C4F9AE02.roa (hash: ASkZLn/NWBAwVh59cVjcukQp4AEdjyXM88LF9t8bVkY=) 6: C2DFDA20DE0611EF9DC6A135C4F9AE02.roa (hash: yHM3DnwjT+cPJR9y5D69EEWvn7HmBwkRwxEMyaTJ7Sc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:39:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13763 (0x35c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0770, serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Validity Not Before: Mar 24 14:39:16 2026 GMT Not After : Mar 31 14:39:16 2026 GMT Subject: CN=69c2a214-2cde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:10:9c:db:27:3e:d8:db:ca:80:92:7a:66:df: 68:d0:45:4c:be:7c:5c:e4:69:7d:d2:1c:72:9f:9c: 58:6b:53:0b:40:a3:7f:6d:e9:93:0b:d7:cc:df:e4: ef:fe:76:f5:cd:5f:9a:36:d7:ca:ec:88:f0:ef:0d: 23:aa:5c:87:57:21:ac:e1:1b:ac:8a:5f:7e:c7:21: a2:37:89:78:59:da:f2:90:e9:7f:b0:98:90:3d:4f: 31:38:32:6d:ad:cb:7b:44:2b:d5:29:ab:8d:63:d4: 1b:66:af:99:af:5a:fa:67:cf:61:4b:37:57:77:a6: b9:4e:bd:25:0d:69:e0:38:22:b4:55:bf:ee:18:77: 00:8a:2d:0f:4d:45:9b:1e:d2:85:41:81:19:45:41: 2b:37:74:af:21:66:01:77:e8:a9:d3:90:23:42:0d: 80:3a:51:d8:51:92:c2:5b:79:f9:72:34:b4:3d:5f: 61:4b:45:0a:fb:f4:49:1d:db:4b:aa:a8:17:b7:b3: b4:9b:8d:c9:57:56:5f:4f:50:e2:76:e3:b6:2a:0a: 7b:84:d0:05:f6:5b:29:dc:31:17:83:e9:ae:f8:67: 6a:99:1b:1e:9c:7c:a4:8c:fb:43:e7:8d:b0:78:a7: 8b:ad:8b:e3:27:a5:ec:0a:ac:ca:72:07:a8:a4:f6: a7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:3E:85:48:14:2A:74:84:40:15:E6:04:E9:A1:2A:0D:56:2B:F2:2C X509v3 Authority Key Identifier: keyid:1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:6e:a8:07:49:29:8e:cf:7a:da:0b:48:e3:53:e3:e3:33:8a: 2f:eb:26:47:df:f8:69:6c:f9:10:8f:23:89:eb:2e:23:85:10: 89:04:da:d5:6f:fd:30:1f:2d:c2:73:f4:30:89:0e:b3:b4:ea: cc:6c:36:35:31:c4:58:cd:85:12:8f:a0:51:b3:2d:d2:e8:c3: d2:a8:21:b5:56:e1:5c:b2:ae:09:49:82:eb:a5:88:3c:fd:d1: fa:e9:57:31:59:f3:f6:bb:27:0e:54:ec:02:b3:e2:3c:cf:bd: fb:01:77:14:c6:4e:de:ee:41:3a:bb:0a:7d:77:c6:47:dd:e7: 7e:cd:01:db:dd:9f:e3:f5:2e:28:0c:ba:5d:dc:c2:d9:4c:30: 63:81:d9:9b:f7:a2:f3:c5:d5:02:98:1f:e0:2c:fa:78:f2:e0: 5d:59:72:f4:5b:02:83:93:5a:ff:00:80:7d:0a:0b:5f:76:4b: 3d:7f:ff:15:b4:40:eb:1f:3d:9b:00:ae:b2:b5:9d:8f:29:40: 29:74:e3:f8:78:bd:c4:98:ff:73:54:43:b6:48:92:25:cd:41: 7a:1f:f6:29:8b:3c:a4:93:b1:4c:7e:46:0b:f7:8d:bb:3b:87: ad:ac:9a:2d:e5:cf:de:56:7b:76:c1:7f:37:bc:c7:70:73:2b: 40:45:79:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NzAxMTAvBgNVBAUTKDFENjIyNUFEOTQzRUNBMzg5RkE0QjY2QzE5NzQzNTFF MzRDNDI4RkIwHhcNMjYwMzI0MTQzOTE2WhcNMjYwMzMxMTQzOTE2WjAYMRYwFAYD VQQDEw02OWMyYTIxNC0yY2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRCc2yc+2NvKgJJ6Zt9o0EVMvnxc5Gl90hxyn5xYa1MLQKN/bemTC9fM3+Tv /nb1zV+aNtfK7Ijw7w0jqlyHVyGs4Rusil9+xyGiN4l4WdrykOl/sJiQPU8xODJt rct7RCvVKauNY9QbZq+Zr1r6Z89hSzdXd6a5Tr0lDWngOCK0Vb/uGHcAii0PTUWb HtKFQYEZRUErN3SvIWYBd+ip05AjQg2AOlHYUZLCW3n5cjS0PV9hS0UK+/RJHdtL qqgXt7O0m43JV1ZfT1DiduO2Kgp7hNAF9lsp3DEXg+mu+GdqmRsenHykjPtD542w eKeLrYvjJ6XsCqzKcgeopPanoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEc+hUgU KnSEQBXmBOmhKg1WK/IsMB8GA1UdIwQYMBaAFB1iJa2UPso4n6S2bBl0NR40xCj7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc3MC9DMzM2ODNCNjFE OEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlqaWZwTFpzR1hRMUhqVEVL UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXSWxyWlEteWppZnBMWnNHWFExSGpURUtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDc3MC9DMzM2ODNCNjFEOEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlq aWZwTFpzR1hRMUhqVEVLUHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIG6oB0kpjs962gtI41Pj4zOKL+smR9/4aWz5EI8jiesuI4UQiQTa1W/9MB8t wnP0MIkOs7TqzGw2NTHEWM2FEo+gUbMt0ujD0qghtVbhXLKuCUmC66WIPP3R+ulX MVnz9rsnDlTsArPiPM+9+wF3FMZO3u5BOrsKfXfGR93nfs0B292f4/UuKAy6XdzC 2UwwY4HZm/ei88XVApgf4Cz6ePLgXVly9FsCg5Na/wCAfQoLX3ZLPX//FbRA6x89 mwCusrWdjylAKXTj+Hi9xJj/c1RDtkiSJc1Beh/2KYs8pJOxTH5GC/eNuzuHraya LeXP3lZ7dsF/N7zHcHMrQEV5vw== -----END CERTIFICATE-----Generated at Thu Mar 26 05:12:35 2026 by rpki-client