$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft File: hsjX-0IuFSejmUSD0fne8sYKMHI.mft (raw, json) Hash identifier: 41keJ8VGApsSvjIq1/qaCYyiVBJdEBYQwAw+cxUZopk= Subject key identifier: F2:4A:2F:0C:10:6B:3E:72:AB:92:8A:7C:47:A0:3A:C6:DC:42:F7:23 Authority key identifier: 86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 Certificate issuer: /CN=A91BEB11/serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Certificate serial: 3521 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft Manifest number: 3521 Signing time: Thu 26 Mar 2026 14:57:51 +0000 Manifest this update: Thu 26 Mar 2026 14:57:50 +0000 Manifest next update: Thu 02 Apr 2026 14:57:50 +0000 Files and hashes: 1: hsjX-0IuFSejmUSD0fne8sYKMHI.crl (hash: 9kNkZNJIUmCZUI/lqdV7AM9HRpkPjY0Jb9DE4mLWUAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13601 (0x3521) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEB11, serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Validity Not Before: Mar 26 14:57:50 2026 GMT Not After : Apr 2 14:57:50 2026 GMT Subject: CN=69c5496e-d6d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:bd:0a:2d:c0:0d:84:55:11:ae:89:b5:8d:1e: da:fb:d1:35:31:fb:99:8d:e6:14:1f:61:ed:de:00: 65:e2:d5:64:fa:fd:3e:c9:59:8b:b4:34:e5:51:6f: 9b:26:01:3a:31:f9:21:37:19:13:46:c1:1b:be:e0: 14:64:d2:4e:e1:c5:0f:05:01:f0:1d:c9:00:f2:a7: 2a:90:d8:71:da:c2:ec:8a:a3:d5:24:3b:2b:9e:2a: f3:a2:ac:17:c4:01:5b:a8:d3:c0:31:4e:db:5b:b7: 8b:fb:72:90:a7:4d:fa:b2:19:8e:de:05:4d:93:48: 2b:2b:10:c5:f4:6e:03:25:a6:2f:55:37:1c:39:26: 5b:cd:bb:21:ce:fc:be:4b:b0:3e:9d:3e:4c:8d:4e: fc:63:92:7c:32:c7:61:7c:a8:57:6f:3d:30:fd:f5: d9:a1:93:85:64:46:46:f2:1f:b5:dd:8a:96:d7:99: 24:80:7d:92:10:d5:35:98:3d:14:56:06:2e:3e:30: d6:90:f1:3b:2f:4c:de:a8:57:0b:fc:b7:09:02:f8: 4b:d4:95:60:2a:fc:c4:a2:9e:fd:9a:2c:bc:90:e9: f2:f6:0e:58:f7:2c:26:d8:97:4b:df:93:07:30:d4: 03:18:11:e4:f7:fb:fe:78:8a:4b:39:c3:80:af:bf: 31:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:4A:2F:0C:10:6B:3E:72:AB:92:8A:7C:47:A0:3A:C6:DC:42:F7:23 X509v3 Authority Key Identifier: keyid:86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:f4:61:4c:da:ae:85:cc:6e:03:c2:05:6d:da:3c:33:9c:7d: 48:7b:ae:61:1f:a2:13:ab:4d:09:e3:03:91:9a:d7:5c:cc:6d: 79:78:d8:f6:78:a0:90:3d:61:22:74:3e:01:d3:1e:9a:aa:99: 39:13:e2:04:86:40:37:fb:4c:15:3b:2f:ff:de:7d:c0:76:e9: 10:ce:0e:00:a2:42:ba:1e:a1:31:01:ba:21:14:04:49:e4:af: 4f:54:e5:0e:6f:9d:54:42:78:d3:71:04:16:0b:3b:60:e2:e6: 44:2d:a3:b6:ac:a5:fa:01:32:65:47:14:b2:1f:3e:ae:0f:08: 1c:25:81:fb:a4:c5:89:ec:1e:2f:dd:7a:52:2d:81:4c:19:6d: 29:38:66:2f:b9:d2:ab:42:d3:22:a0:79:72:2a:4f:54:ad:06: 24:85:cb:3c:67:f8:c8:a8:ed:e0:d3:92:c8:d6:d9:d2:92:ca: b5:df:25:86:ae:ae:c0:fe:58:2b:c9:13:62:01:8c:8d:bd:81: e0:52:ab:9b:12:1a:7e:7e:90:7a:11:9d:c6:69:fa:6e:b9:23: 34:fe:3a:46:30:79:38:04:4f:b0:89:18:3e:19:b4:1d:bb:cc: 01:93:4b:25:4c:3e:17:71:71:d9:34:ed:bc:09:26:9c:39:56: 2b:25:3e:88 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCMTExMTAvBgNVBAUTKDg2QzhEN0ZCNDIyRTE1MjdBMzk5NDQ4M0QxRjlERUYy QzYwQTMwNzIwHhcNMjYwMzI2MTQ1NzUwWhcNMjYwNDAyMTQ1NzUwWjAYMRYwFAYD VQQDEw02OWM1NDk2ZS1kNmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4L0KLcANhFURrom1jR7a+9E1MfuZjeYUH2Ht3gBl4tVk+v0+yVmLtDTlUW+b JgE6MfkhNxkTRsEbvuAUZNJO4cUPBQHwHckA8qcqkNhx2sLsiqPVJDsrnirzoqwX xAFbqNPAMU7bW7eL+3KQp036shmO3gVNk0grKxDF9G4DJaYvVTccOSZbzbshzvy+ S7A+nT5MjU78Y5J8MsdhfKhXbz0w/fXZoZOFZEZG8h+13YqW15kkgH2SENU1mD0U VgYuPjDWkPE7L0zeqFcL/LcJAvhL1JVgKvzEop79miy8kOny9g5Y9ywm2JdL35MH MNQDGBHk9/v+eIpLOcOAr78xiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPJKLwwQ az5yq5KKfEegOsbcQvcjMB8GA1UdIwQYMBaAFIbI1/tCLhUno5lEg9H53vLGCjBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUIxMS85RjQzNTg3RTFE OUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZTZWptVVNEMGZuZThzWUtN SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzalgtMEl1RlNlam1VU0QwZm5lOHNZS01ISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUIxMS85RjQzNTg3RTFEOUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZT ZWptVVNEMGZuZThzWUtNSEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlPRhTNquhcxuA8IFbdo8M5x9SHuuYR+iE6tNCeMDkZrXXMxteXjY9nigkD1h InQ+AdMemqqZORPiBIZAN/tMFTsv/959wHbpEM4OAKJCuh6hMQG6IRQESeSvT1Tl Dm+dVEJ403EEFgs7YOLmRC2jtqyl+gEyZUcUsh8+rg8IHCWB+6TFieweL916Ui2B TBltKThmL7nSq0LTIqB5cipPVK0GJIXLPGf4yKjt4NOSyNbZ0pLKtd8lhq6uwP5Y K8kTYgGMjb2B4FKrmxIafn6QehGdxmn6brkjNP46RjB5OARPsIkYPhm0HbvMAZNL JUw+F3Fx2TTtvAkmnDlWKyU+iA== -----END CERTIFICATE-----Generated at Thu Mar 26 19:42:16 2026 by rpki-client