$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft File: hRAOWh-65f4aZcvxVzQTCo5UG7I.mft (raw, json) Hash identifier: IB5dZ3XXm+4qYx24Z8OxXOHCVUmBOeOgE+bumM36Wf4= Subject key identifier: EE:FA:78:8C:8B:0B:AA:7D:82:63:52:3A:F2:3C:DC:D0:64:12:8F:3E Authority key identifier: 85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 Certificate issuer: /CN=A91B3087/serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft Manifest number: 6E Signing time: Wed 25 Mar 2026 07:10:23 +0000 Manifest this update: Wed 25 Mar 2026 07:10:23 +0000 Manifest next update: Wed 01 Apr 2026 07:10:23 +0000 Files and hashes: 1: hRAOWh-65f4aZcvxVzQTCo5UG7I.crl (hash: 1iKDJfSwUnd/l80EufaODW/pmeMKijuPuPefTqjH4Is=) 2: 1F578DB08F0111F0BF750433C4F9AE02.roa (hash: hmo0JZjqsUcXR1CeyKb5AUyvewOo9tGw1tDFanCmkiU=) 3: 8F35765ACF5811F085DD836EC4F9AE02.roa (hash: Rt4TGbr/K+WJ5nQlhD3lcCPl9EyJK1zP7OfMfktiw14=) 4: 3D51EF7C8F0111F087307F35C4F9AE02.roa (hash: ZTYnYrXftu4EMVac2jtmasDDa1311QW4YkSq9Et/mjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3087, serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Validity Not Before: Mar 25 07:10:23 2026 GMT Not After : Apr 1 07:10:23 2026 GMT Subject: CN=69c38a5f-9fa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:06:08:5e:50:4d:ec:d2:da:bb:4d:97:f3:2f: ec:e6:16:27:c4:4b:df:a4:44:6d:3d:0c:bd:2e:b4: 4b:d5:84:71:83:ab:d7:68:f9:19:29:77:0a:4c:59: 9b:02:62:38:1d:bd:ca:8a:99:be:d9:50:36:c2:a8: 3c:e5:20:ba:9d:40:4e:1c:cb:c8:aa:5c:e6:d8:67: 52:a1:f7:60:9b:ec:dc:f5:3c:2c:66:dd:0d:5f:78: 21:a9:e7:33:5c:fb:4d:2d:fa:cb:d6:68:f9:0d:04: 4a:c9:31:e5:03:2f:0f:aa:8c:b1:a0:e8:d0:44:1b: 2d:03:9d:5f:ef:6f:55:a1:73:4a:d9:cd:d6:52:ee: 3b:33:b7:ab:62:90:4d:b2:06:19:be:bc:a6:35:14: c0:2a:d4:17:e8:18:99:ea:31:20:28:72:b9:f3:41: 8d:d0:f1:f5:5b:46:af:b2:85:08:18:17:28:b9:30: 62:ab:f5:6e:2f:51:c3:ec:14:a3:5b:fd:0c:a4:76: 12:98:56:22:cd:a7:36:a0:8b:bd:5d:3f:f5:e5:18: e7:5b:bb:8a:70:16:5b:5e:37:4c:25:3d:c2:6c:eb: c0:27:d2:58:c1:30:7f:9e:6e:58:02:30:95:7d:df: ef:7f:5a:88:4e:20:28:39:0f:45:8a:9c:08:9c:58: f7:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:FA:78:8C:8B:0B:AA:7D:82:63:52:3A:F2:3C:DC:D0:64:12:8F:3E X509v3 Authority Key Identifier: keyid:85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:d0:d2:6f:fe:7b:4a:54:f7:97:1f:c3:25:88:31:21:a7:59: d0:80:0d:47:62:2d:63:01:5f:39:19:be:16:2e:bf:e3:88:20: 47:39:c8:a7:72:31:a2:84:e6:90:be:5d:13:66:22:a4:78:d6: 18:53:21:b6:db:b9:33:13:89:29:bd:bf:e1:dc:ff:83:4e:cf: 36:9e:a3:5a:b7:e4:96:ce:14:10:4a:d1:a7:d0:7e:ee:ad:cf: ff:d4:0d:90:82:3f:22:e5:14:9c:18:5e:ce:82:0d:45:1c:4e: 73:3e:9c:86:6f:9a:d4:0a:97:04:92:4f:14:c6:97:71:1c:ff: 43:d7:d3:cb:28:d1:96:f5:73:96:e6:82:f1:7f:79:e3:64:da: 10:ab:2f:9d:63:bd:20:53:ca:4e:4a:b3:a5:7c:19:78:a0:e9: d3:98:25:fe:d2:05:cc:4e:53:cb:1e:cc:13:d7:1d:8d:53:07: ef:37:34:b5:ef:62:59:ef:45:a5:c1:51:af:e0:9a:a1:b3:8a: 0c:fc:56:47:83:fa:07:f0:88:00:f8:09:ea:d8:3e:32:fb:bc: d4:50:7a:33:be:3f:ee:db:bc:5c:51:51:9e:5c:44:0b:0c:72: cb:f0:79:8d:4c:b9:81:16:33:0a:a3:ab:63:f0:f9:87:47:4b: c2:ef:58:aa -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzA4NzExMC8GA1UEBRMoODUxMDBFNUExRkJBRTVGRTFBNjVDQkYxNTczNDEzMEE4 RTU0MUJCMjAeFw0yNjAzMjUwNzEwMjNaFw0yNjA0MDEwNzEwMjNaMBgxFjAUBgNV BAMTDTY5YzM4YTVmLTlmYTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYBgheUE3s0tq7TZfzL+zmFifES9+kRG09DL0utEvVhHGDq9do+RkpdwpMWZsC YjgdvcqKmb7ZUDbCqDzlILqdQE4cy8iqXObYZ1Kh92Cb7Nz1PCxm3Q1feCGp5zNc +00t+svWaPkNBErJMeUDLw+qjLGg6NBEGy0DnV/vb1Whc0rZzdZS7jszt6tikE2y Bhm+vKY1FMAq1BfoGJnqMSAocrnzQY3Q8fVbRq+yhQgYFyi5MGKr9W4vUcPsFKNb /QykdhKYViLNpzagi71dP/XlGOdbu4pwFlteN0wlPcJs68An0ljBMH+eblgCMJV9 3+9/WohOICg5D0WKnAicWPfzAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU7vp4jIsL qn2CY1I68jzc0GQSjz4wHwYDVR0jBBgwFoAUhRAOWh+65f4aZcvxVzQTCo5UG7Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzMDg3LzQ4ODgzMTMyOEVB QTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0YVpjdnhWelFUQ281VUc3 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFJBT1doLTY1ZjRhWmN2eFZ6UVRDbzVVRzdJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz MDg3LzQ4ODgzMTMyOEVBQTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0 YVpjdnhWelFUQ281VUc3SS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBD0NJv/ntKVPeXH8MliDEhp1nQgA1HYi1jAV85Gb4WLr/jiCBHOcincjGihOaQ vl0TZiKkeNYYUyG227kzE4kpvb/h3P+DTs82nqNat+SWzhQQStGn0H7urc//1A2Q gj8i5RScGF7Ogg1FHE5zPpyGb5rUCpcEkk8UxpdxHP9D19PLKNGW9XOW5oLxf3nj ZNoQqy+dY70gU8pOSrOlfBl4oOnTmCX+0gXMTlPLHswT1x2NUwfvNzS172JZ70Wl wVGv4Jqhs4oM/FZHg/oH8IgA+Anq2D4y+7zUUHozvj/u27xcUVGeXEQLDHLL8HmN TLmBFjMKo6tj8PmHR0vC71iq -----END CERTIFICATE-----Generated at Thu Mar 26 19:41:54 2026 by rpki-client