$ rpki-client -vvf rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft File: H8Tf0A2sNKjrhGPTlRwio0WDesk.mft (raw, json) Hash identifier: d4oD8ZmX3H+YadURHHYnEizDvEbMroVhQ726aty99GE= Subject key identifier: B6:3A:6E:DD:E2:9B:FF:67:DC:91:BC:2E:2E:34:94:89:84:92:BD:62 Authority key identifier: 1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 Certificate issuer: /CN=A91B477B/serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Certificate serial: 0743 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft Manifest number: 0731 Signing time: Tue 24 Mar 2026 21:32:50 +0000 Manifest this update: Tue 24 Mar 2026 21:32:49 +0000 Manifest next update: Tue 31 Mar 2026 21:32:49 +0000 Files and hashes: 1: H8Tf0A2sNKjrhGPTlRwio0WDesk.crl (hash: jBUBr+2WPsyi5EEZBzd6WbO7aeT472P0lPoIqCF9OKE=) 2: 535436609D0511F0BAF1837CC4F9AE02.roa (hash: 0A1AOVsjVRyjkOa0stdyBH8yBCmf007m2jZE8cgy4HM=) 3: 22F72E28725311EBA9C51756C4F9AE02.roa (hash: POpr8wQqUbcrtsin7090l3LSjMlxCYgCxYONDuDwzEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:32:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1859 (0x743) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B477B, serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Validity Not Before: Mar 24 21:32:49 2026 GMT Not After : Mar 31 21:32:49 2026 GMT Subject: CN=69c30302-2c73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:40:22:4d:7f:8e:41:cb:3e:28:bf:5b:84:6c: d1:89:d8:bf:06:0e:26:8c:73:79:80:4c:db:75:20: 46:0a:53:0b:d5:e4:ec:19:c9:f7:76:f7:ea:db:f4: 6b:2e:77:3c:90:db:5f:96:c6:be:27:50:5d:e3:fe: c6:82:bb:8d:d1:ad:58:e9:23:23:7e:29:6b:e6:45: 5a:fa:0b:d2:ac:9a:eb:b6:bb:58:a3:98:48:2e:57: 7f:0a:b3:ce:2b:99:f7:24:33:c7:72:54:be:81:28: b4:c0:13:9b:09:e1:cb:19:d6:b6:8b:4b:60:ba:52: 2a:98:e4:23:88:85:2c:e6:a4:8e:e1:c5:a6:33:f4: bb:4d:44:95:ba:b5:9d:8d:d2:1a:2d:ea:69:8b:9a: ff:ba:18:5d:4b:6f:6a:38:34:52:ed:75:b6:28:e8: 7b:4f:56:ec:e8:44:68:03:9c:50:21:ef:3c:96:dc: 2a:91:64:d9:17:fa:93:d1:ca:ae:0e:af:18:f1:a1: 94:70:30:a9:32:cd:89:26:7c:f7:d3:ac:13:42:de: cf:3f:d6:28:e2:61:d9:d1:ea:fb:20:55:f1:58:c8: c5:da:2e:e3:c2:a5:25:a3:45:57:17:8c:e2:f3:fc: da:47:ae:c8:5d:8e:f5:58:c5:f3:1f:54:39:13:36: 4b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:3A:6E:DD:E2:9B:FF:67:DC:91:BC:2E:2E:34:94:89:84:92:BD:62 X509v3 Authority Key Identifier: keyid:1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:50:23:fc:b7:72:f7:f3:19:70:64:e8:4f:16:c8:02:bc:1f: bf:63:b4:6b:36:c4:d4:76:00:ae:6e:91:56:58:90:04:ec:05: 4f:31:f8:27:b7:e1:dc:9b:5e:07:05:6c:65:a6:1d:89:27:31: 4e:5e:b1:c2:5f:f4:10:70:74:6d:5e:75:15:68:c5:45:23:0b: 3f:21:3e:3e:ca:0b:06:d5:37:73:15:78:17:11:5e:f4:80:4a: 1e:5e:63:57:8c:e8:bc:3b:56:cd:23:e0:cd:71:e8:0a:78:81: 74:fd:00:b4:72:a7:6f:b1:29:06:88:da:cf:ce:9f:59:c0:23: 47:5f:3f:9c:e9:b7:84:17:31:f7:47:fd:93:41:93:70:9e:8d: 67:1a:d4:ed:e8:41:ff:9a:38:f7:9d:bb:8e:5c:cf:ba:f5:25: e8:6f:ca:90:6d:9c:02:49:94:e8:c7:6d:6c:a8:7a:21:c0:2a: 58:bd:21:9f:12:1b:d6:e5:8f:1c:ea:c1:84:80:ad:78:02:51: 23:37:59:c3:b2:4c:c9:46:63:99:0d:e4:36:35:0d:66:33:d1: 1f:b8:7f:48:95:41:64:31:6d:6c:35:14:82:99:ec:47:fc:4e: 93:d6:e3:eb:f4:52:ad:a6:d0:09:f4:c0:a8:39:2d:d1:bc:8b: 53:85:b9:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3N0IxMTAvBgNVBAUTKDFGQzRERkQwMERBQzM0QThFQjg0NjNEMzk1MUMyMkEz NDU4MzdBQzkwHhcNMjYwMzI0MjEzMjQ5WhcNMjYwMzMxMjEzMjQ5WjAYMRYwFAYD VQQDEw02OWMzMDMwMi0yYzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0AiTX+OQcs+KL9bhGzRidi/Bg4mjHN5gEzbdSBGClML1eTsGcn3dvfq2/Rr Lnc8kNtflsa+J1Bd4/7GgruN0a1Y6SMjfilr5kVa+gvSrJrrtrtYo5hILld/CrPO K5n3JDPHclS+gSi0wBObCeHLGda2i0tgulIqmOQjiIUs5qSO4cWmM/S7TUSVurWd jdIaLeppi5r/uhhdS29qODRS7XW2KOh7T1bs6ERoA5xQIe88ltwqkWTZF/qT0cqu Dq8Y8aGUcDCpMs2JJnz306wTQt7PP9Yo4mHZ0er7IFXxWMjF2i7jwqUlo0VXF4zi 8/zaR67IXY71WMXzH1Q5EzZLHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLY6bt3i m/9n3JG8Li40lImEkr1iMB8GA1UdIwQYMBaAFB/E39ANrDSo64Rj05UcIqNFg3rJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDc3Qi8xQzI1NjI3MDcy NTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05LanJoR1BUbFJ3aW8wV0Rl c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g4VGYwQTJzTktqcmhHUFRsUndpbzBXRGVzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDc3Qi8xQzI1NjI3MDcyNTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05L anJoR1BUbFJ3aW8wV0Rlc2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACVAj/Ldy9/MZcGToTxbIArwfv2O0azbE1HYArm6RVliQBOwFTzH4J7fh3Jte BwVsZaYdiScxTl6xwl/0EHB0bV51FWjFRSMLPyE+PsoLBtU3cxV4FxFe9IBKHl5j V4zovDtWzSPgzXHoCniBdP0AtHKnb7EpBojaz86fWcAjR18/nOm3hBcx90f9k0GT cJ6NZxrU7ehB/5o49527jlzPuvUl6G/KkG2cAkmU6MdtbKh6IcAqWL0hnxIb1uWP HOrBhICteAJRIzdZw7JMyUZjmQ3kNjUNZjPRH7h/SJVBZDFtbDUUgpnsR/xOk9bj 6/RSrabQCfTAqDkt0byLU4W55A== -----END CERTIFICATE-----Generated at Thu Mar 26 00:57:33 2026 by rpki-client