$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.mft File: hhIZKNm0AeMdansgbrAWLThuBHI.mft (raw, json) Hash identifier: +kurM/Soiry9fGc3InYoUj8fVpVyBJfhH7M3Xdb/NLQ= Subject key identifier: 09:AB:10:A7:EB:2A:AC:0C:17:11:46:C8:E3:E8:45:2F:4F:9F:3B:43 Authority key identifier: 86:12:19:28:D9:B4:01:E3:1D:6A:7B:20:6E:B0:16:2D:38:6E:04:72 Certificate issuer: /CN=A91B8C6C/serialNumber=86121928D9B401E31D6A7B206EB0162D386E0472 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hhIZKNm0AeMdansgbrAWLThuBHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.mft Manifest number: 3B Signing time: Thu 26 Mar 2026 15:08:59 +0000 Manifest this update: Thu 26 Mar 2026 15:08:58 +0000 Manifest next update: Thu 02 Apr 2026 15:08:58 +0000 Files and hashes: 1: hhIZKNm0AeMdansgbrAWLThuBHI.crl (hash: 2eyTA7rQlC0ASx+z7NhZJoG4FCdNeiy28LvASuAGA9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.crl rsync://rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hhIZKNm0AeMdansgbrAWLThuBHI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C6C, serialNumber=86121928D9B401E31D6A7B206EB0162D386E0472 Validity Not Before: Mar 26 15:08:58 2026 GMT Not After : Apr 2 15:08:58 2026 GMT Subject: CN=69c54c0b-854b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:b4:99:49:40:87:22:67:f2:36:25:e3:a6:49: 57:6e:30:39:2d:8e:de:b8:a3:2a:3b:5d:36:4c:08: 29:22:9a:75:2e:4e:ad:98:2b:b8:23:03:c2:90:a5: cf:eb:4f:c2:15:51:bd:d9:b6:87:b0:4c:2d:22:da: cd:cb:0a:85:da:04:f5:b9:78:e8:f8:67:95:ea:24: 93:0d:0f:ad:d4:2e:d9:60:fe:54:e7:1b:5f:64:03: a9:94:b7:04:e5:d2:dc:f7:d5:4b:d0:16:b5:c6:a2: a1:e1:c1:97:8f:d4:13:e3:4a:95:aa:ea:ce:ab:5d: 53:d5:a1:02:b1:90:f1:78:95:bf:f8:0a:7b:69:da: 8d:2f:f9:d6:e6:eb:f0:5c:87:c8:08:63:92:ef:e1: e8:da:39:ef:ba:c6:0a:2b:5d:cb:ff:ee:02:e3:df: 6b:a2:b2:52:62:a4:10:09:7a:6e:9b:17:cf:5b:76: 80:67:30:5b:f4:b3:cb:b4:0b:a6:9e:d6:60:85:6c: d5:9f:e8:69:42:2e:e1:d6:84:1b:4a:64:f8:55:cc: 13:d5:85:56:36:23:6e:3d:7e:10:2c:0a:1b:a2:72: 1a:af:ad:56:86:14:d5:d9:c2:8d:d2:0a:90:a8:8d: 6a:09:18:04:22:ac:fc:c9:2a:c4:ef:23:1a:f3:82: 87:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:AB:10:A7:EB:2A:AC:0C:17:11:46:C8:E3:E8:45:2F:4F:9F:3B:43 X509v3 Authority Key Identifier: keyid:86:12:19:28:D9:B4:01:E3:1D:6A:7B:20:6E:B0:16:2D:38:6E:04:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hhIZKNm0AeMdansgbrAWLThuBHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:00:ea:41:db:2b:0e:45:14:ba:59:ff:2c:7d:12:f1:19:bb: c4:a5:39:3b:77:72:31:37:d6:76:d3:3b:fa:ff:b4:95:12:84: 81:27:13:f0:43:95:13:08:63:f4:27:4c:6b:7f:ff:1e:74:d9: d2:13:65:a3:91:83:63:d2:a0:e6:1d:d4:2e:9d:14:a7:e3:10: d1:da:d3:02:80:89:6d:dc:01:d5:ad:be:2d:ce:d1:c4:b0:aa: 3e:3d:1f:91:58:ba:b8:e0:86:25:74:05:28:ee:54:ae:d8:43: 4d:4d:10:ba:dd:85:0d:c9:f9:e5:f4:4a:5c:70:d0:46:b0:a0: 99:e2:4c:64:2f:7e:c8:5d:b9:09:96:18:6f:0f:43:9e:d2:0d: 91:bb:1d:1f:bb:b8:f1:cb:f5:6f:e5:93:0c:a0:fd:5c:7a:5f: 22:82:01:85:e1:fa:5b:5e:b6:76:fc:72:d3:e2:32:d6:6b:c7: 79:f6:01:67:20:c0:be:91:ad:81:4f:0b:0d:2c:7a:f7:6f:5d: 03:11:17:53:0e:72:f4:a7:de:cc:04:15:2f:14:ec:62:a0:e6: 7b:54:5f:88:ae:49:5b:ed:3f:e6:42:db:60:c7:59:42:f2:e7: eb:2b:71:8e:86:35:43:91:bf:c4:b4:a0:9a:66:ed:e7:33:44: 89:a7:20:df -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEM2QzExMC8GA1UEBRMoODYxMjE5MjhEOUI0MDFFMzFENkE3QjIwNkVCMDE2MkQz ODZFMDQ3MjAeFw0yNjAzMjYxNTA4NThaFw0yNjA0MDIxNTA4NThaMBgxFjAUBgNV BAMTDTY5YzU0YzBiLTg1NGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCQtJlJQIciZ/I2JeOmSVduMDktjt64oyo7XTZMCCkimnUuTq2YK7gjA8KQpc/r T8IVUb3ZtoewTC0i2s3LCoXaBPW5eOj4Z5XqJJMND63ULtlg/lTnG19kA6mUtwTl 0tz31UvQFrXGoqHhwZeP1BPjSpWq6s6rXVPVoQKxkPF4lb/4Cntp2o0v+dbm6/Bc h8gIY5Lv4ejaOe+6xgorXcv/7gLj32uislJipBAJem6bF89bdoBnMFv0s8u0C6ae 1mCFbNWf6GlCLuHWhBtKZPhVzBPVhVY2I249fhAsChuichqvrVaGFNXZwo3SCpCo jWoJGAQirPzJKsTvIxrzgofxAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUCasQp+sq rAwXEUbI4+hFL0+fO0MwHwYDVR0jBBgwFoAUhhIZKNm0AeMdansgbrAWLThuBHIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4QzZDLzMwQTU0RjZDRDY1 RjExRjBCMDZGRDhBMjBBQjQzRTEzL2hoSVpLTm0wQWVNZGFuc2dickFXTFRodUJI SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaGhJWktObTBBZU1kYW5zZ2JyQVdMVGh1QkhJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 QzZDLzMwQTU0RjZDRDY1RjExRjBCMDZGRDhBMjBBQjQzRTEzL2hoSVpLTm0wQWVN ZGFuc2dickFXTFRodUJISS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA4AOpB2ysORRS6Wf8sfRLxGbvEpTk7d3IxN9Z20zv6/7SVEoSBJxPwQ5UTCGP0 J0xrf/8edNnSE2WjkYNj0qDmHdQunRSn4xDR2tMCgIlt3AHVrb4tztHEsKo+PR+R WLq44IYldAUo7lSu2ENNTRC63YUNyfnl9EpccNBGsKCZ4kxkL37IXbkJlhhvD0Oe 0g2Rux0fu7jxy/Vv5ZMMoP1cel8iggGF4fpbXrZ2/HLT4jLWa8d59gFnIMC+ka2B TwsNLHr3b10DERdTDnL0p97MBBUvFOxioOZ7VF+Irklb7T/mQttgx1lC8ufrK3GO hjVDkb/EtKCaZu3nM0SJpyDf -----END CERTIFICATE-----Generated at Thu Mar 26 20:23:04 2026 by rpki-client