$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: j9X31cK1X+dk5d/UzwLqcmdRAJPEIzG4oiEWTuGf2nE= Subject key identifier: 21:EA:86:6F:1D:8B:08:FB:4A:B6:66:9F:02:D1:AD:60:65:80:08:89 Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: 0109 Signing time: Wed 25 Mar 2026 05:15:14 +0000 Manifest this update: Wed 25 Mar 2026 05:15:14 +0000 Manifest next update: Wed 01 Apr 2026 05:15:14 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: pqMbKGyI37q7+ll3d5n4GwGiy6Q/+Av6/oJAeKM7lWQ=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: kw9fZbNGZZ3kdKJfF8SYCLZeUjioT1ZZ2tfUfZYgkvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:15:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Mar 25 05:15:14 2026 GMT Not After : Apr 1 05:15:14 2026 GMT Subject: CN=69c36f62-3896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:dc:9b:94:cb:c3:3e:51:00:94:b2:eb:8a:9c: e6:84:17:93:9b:04:00:56:b8:e7:56:48:c2:49:11: fe:94:db:fb:f4:75:91:37:e7:9f:21:55:8c:08:d5: cf:13:91:be:e9:d2:81:05:8b:a7:7e:da:cf:e0:29: a3:a8:0b:59:ec:33:ce:d8:c0:b5:ef:6c:e3:a9:ab: 74:d0:d2:bc:1e:8e:f2:b8:7d:a3:6b:68:67:f0:4f: 21:66:57:26:93:56:8d:e4:9f:46:d1:f2:48:d8:2f: b8:27:90:5f:ce:37:32:2c:99:3d:d3:3c:b1:53:c7: 4c:0f:7b:17:c7:14:68:ea:a0:a2:90:10:62:ea:b2: 1b:91:9d:19:29:1d:11:7b:ad:cb:80:01:25:95:3a: 2b:12:b3:c1:72:85:b8:a1:b5:11:17:ac:4a:f4:30: fd:73:5d:8a:22:56:38:8e:25:d5:eb:a8:67:3c:07: 58:48:31:f4:91:6f:45:1d:1e:d6:43:87:b7:96:74: 53:9a:37:8b:76:04:80:8d:72:8b:5f:56:f4:85:3a: fb:3e:7c:ed:0c:25:51:48:78:24:e8:af:e2:58:ac: 6f:6f:74:97:d3:13:54:61:04:db:88:37:16:47:80: 60:10:4a:19:2d:cb:41:5b:97:47:5b:98:1b:5c:8d: 82:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:EA:86:6F:1D:8B:08:FB:4A:B6:66:9F:02:D1:AD:60:65:80:08:89 X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:fe:63:9e:c9:a2:d8:55:82:b0:34:45:5e:1c:c3:5d:7d:81: d9:8e:4a:a2:30:ac:0f:af:cf:26:1d:02:11:5a:6b:d0:a3:46: 58:e2:43:44:5a:ca:f1:96:bd:d3:ab:e5:19:47:1a:af:68:8e: 5e:30:d5:9a:de:fc:20:b5:59:e4:59:21:82:af:32:29:92:07: 0b:db:68:86:0a:b3:ee:8a:73:a9:3a:00:3e:bb:28:f7:2c:c8: f5:c6:67:02:6d:c6:35:4f:3a:38:5c:56:7a:4b:6a:c3:ae:76: 14:26:77:ed:59:55:40:86:31:b4:f3:1a:09:eb:6e:63:c5:95: c5:3a:73:84:cb:19:3b:c2:10:96:c0:7e:24:66:71:49:34:d3: 50:96:15:ca:82:2c:d3:d1:6e:ba:b6:98:b6:0c:fb:d5:8e:56: ab:3a:b4:4d:cc:46:0e:ec:ae:2c:6a:5a:98:37:fc:ac:54:14: e4:75:26:f8:0b:32:e0:c3:65:45:1a:8e:2b:a7:93:11:92:e5: 64:bf:a8:f7:33:2f:67:8b:df:e7:67:9b:73:e5:03:7e:55:20: f0:cc:42:73:23:7f:a1:89:e1:bb:d5:a2:9c:84:8c:32:50:d4: f0:3e:2e:d8:69:7f:3f:87:56:8c:ab:b6:02:74:09:8f:d5:1e: 14:60:df:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFNzAxMTAvBgNVBAUTKDFFNjU2RERFQzdFOThEMjRBMTg2RkZEQjZGNTk3NzEw QUFGRjJBOEQwHhcNMjYwMzI1MDUxNTE0WhcNMjYwNDAxMDUxNTE0WjAYMRYwFAYD VQQDEw02OWMzNmY2Mi0zODk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9yblMvDPlEAlLLripzmhBeTmwQAVrjnVkjCSRH+lNv79HWRN+efIVWMCNXP E5G+6dKBBYunftrP4CmjqAtZ7DPO2MC172zjqat00NK8Ho7yuH2ja2hn8E8hZlcm k1aN5J9G0fJI2C+4J5BfzjcyLJk90zyxU8dMD3sXxxRo6qCikBBi6rIbkZ0ZKR0R e63LgAEllTorErPBcoW4obURF6xK9DD9c12KIlY4jiXV66hnPAdYSDH0kW9FHR7W Q4e3lnRTmjeLdgSAjXKLX1b0hTr7PnztDCVRSHgk6K/iWKxvb3SX0xNUYQTbiDcW R4BgEEoZLctBW5dHW5gbXI2C5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCHqhm8d iwj7SrZmnwLRrWBlgAiJMB8GA1UdIwQYMBaAFB5lbd7H6Y0koYb/229ZdxCq/yqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEU3MC8zNUM3NkM3RTk1 NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpTU2hodl9iYjFsM0VLcl9L bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEU3MC8zNUM3NkM3RTk1NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpT U2hodl9iYjFsM0VLcl9LbzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo/5jnsmi2FWCsDRFXhzDXX2B2Y5KojCsD6/PJh0CEVpr0KNGWOJDRFrK8Za9 06vlGUcar2iOXjDVmt78ILVZ5Fkhgq8yKZIHC9tohgqz7opzqToAPrso9yzI9cZn Am3GNU86OFxWektqw652FCZ37VlVQIYxtPMaCetuY8WVxTpzhMsZO8IQlsB+JGZx STTTUJYVyoIs09FuuraYtgz71Y5Wqzq0TcxGDuyuLGpamDf8rFQU5HUm+Asy4MNl RRqOK6eTEZLlZL+o9zMvZ4vf52ebc+UDflUg8MxCcyN/oYnhu9WinISMMlDU8D4u 2Gl/P4dWjKu2AnQJj9UeFGDfqg== -----END CERTIFICATE-----Generated at Thu Mar 26 00:56:25 2026 by rpki-client