$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft File: hs2LQhipuaG84vrF7m3HhbAKkx0.mft (raw, json) Hash identifier: NtzLQRp54Ix3hu2kGBCXTqz0tg9hdWCSEL5PdBi9lFQ= Subject key identifier: D4:83:05:E0:07:59:E3:1C:5E:03:2E:81:E1:F1:23:3A:A2:A1:B6:8D Authority key identifier: 86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D Certificate issuer: /CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Certificate serial: 02D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft Manifest number: 02AB Signing time: Wed 25 Mar 2026 01:16:45 +0000 Manifest this update: Wed 25 Mar 2026 01:16:44 +0000 Manifest next update: Wed 01 Apr 2026 01:16:44 +0000 Files and hashes: 1: hs2LQhipuaG84vrF7m3HhbAKkx0.crl (hash: 75OvxkFyQnfavlYJmHM5ZvrY/2HxNdOdWfTiPWIcofI=) 2: FB9DB0B8778011EFA197A558C4F9AE02.roa (hash: NdFnlMSr/V5noQXIsNx/D5f9zVB2iTgM5spp/nQu96Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 720 (0x2d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF28F, serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Validity Not Before: Mar 25 01:16:44 2026 GMT Not After : Apr 1 01:16:44 2026 GMT Subject: CN=69c3377d-b235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8b:94:e7:b3:ad:08:22:47:c7:a0:ec:1e:18: 0a:07:2f:d4:67:c6:42:1c:7a:a1:9e:48:e6:9d:a5: 4f:5e:ec:54:0c:ef:2d:65:6e:6c:fe:1d:12:61:df: e5:e9:a4:0b:37:f9:5f:55:1d:46:ff:5f:0e:06:41: 85:c8:9f:78:af:2b:6e:f7:95:cf:7f:89:d3:d3:93: 79:a1:a7:15:af:00:f2:98:86:6f:3d:30:6f:15:9e: 6f:c1:7c:c8:c3:39:bb:ad:bc:a8:4d:94:59:19:8c: 4e:96:53:69:47:34:5c:12:45:93:28:2c:bc:84:4e: 18:4e:77:b3:3f:07:10:d2:75:93:8e:21:eb:07:b7: ce:af:e5:81:ff:27:6f:6e:ee:81:f8:cc:c7:8d:57: e0:85:4a:25:8b:74:55:6a:e4:bd:28:48:a8:e4:bf: 71:eb:22:9a:dc:7f:ac:eb:5d:04:81:f6:94:8d:86: b1:b2:7b:2d:2b:4e:0a:87:b3:55:ed:b9:99:d2:e0: 63:e0:3d:68:43:fa:13:58:8d:9a:b5:98:1d:0f:99: bf:74:60:c3:7d:e9:fa:9a:9b:7b:64:15:c0:38:90: ab:c0:56:41:e1:37:fe:33:af:e3:24:76:bf:59:d9: 90:3f:1e:d8:a4:42:81:84:56:5b:2e:65:72:0c:8b: 7f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:83:05:E0:07:59:E3:1C:5E:03:2E:81:E1:F1:23:3A:A2:A1:B6:8D X509v3 Authority Key Identifier: keyid:86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:a0:40:49:0a:7a:e3:67:06:2e:90:fd:d1:06:46:d7:72:78: 85:59:6b:a5:87:1f:33:44:5f:c8:8d:b6:5a:07:bb:7e:5e:de: 41:b3:11:fd:61:31:05:af:e2:93:4f:bb:57:93:8f:d7:d2:26: b5:8c:af:dd:90:28:8a:f7:2b:f6:6f:aa:26:94:be:db:0b:20: cd:45:e0:a2:0a:98:09:47:b7:34:c0:fe:79:00:1d:e8:95:8c: 06:46:a6:a7:6e:7c:7d:b7:2c:00:30:f0:2a:c5:1f:49:b9:37: f3:74:c1:ba:b8:d1:12:8c:99:80:4e:25:af:76:12:aa:ff:d5: dc:0b:c8:02:cf:94:bd:44:e4:fd:23:9a:c7:43:ae:93:c1:11: 3a:04:46:77:b7:1c:b3:82:4d:b3:4d:b2:a2:6d:85:32:1c:c5: 4c:7c:2d:5d:3d:7b:12:ed:b9:e8:29:ae:db:5e:c6:d9:ca:cf: 64:b6:19:d3:8e:03:29:b6:8e:56:69:ac:70:82:8f:f3:3e:d0: 63:a7:e5:42:cd:6d:d0:a2:df:fc:5b:71:b3:ee:90:a5:52:12: 43:5f:08:0e:9f:c8:80:6b:74:6d:80:89:ee:c4:48:da:3c:e4: a3:8a:37:e9:aa:7e:4f:64:3b:f6:3c:fe:78:91:25:7e:16:7e: 71:21:41:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyOEYxMTAvBgNVBAUTKDg2Q0Q4QjQyMThBOUI5QTFCQ0UyRkFDNUVFNkRDNzg1 QjAwQTkzMUQwHhcNMjYwMzI1MDExNjQ0WhcNMjYwNDAxMDExNjQ0WjAYMRYwFAYD VQQDEw02OWMzMzc3ZC1iMjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvouU57OtCCJHx6DsHhgKBy/UZ8ZCHHqhnkjmnaVPXuxUDO8tZW5s/h0SYd/l 6aQLN/lfVR1G/18OBkGFyJ94rytu95XPf4nT05N5oacVrwDymIZvPTBvFZ5vwXzI wzm7rbyoTZRZGYxOllNpRzRcEkWTKCy8hE4YTnezPwcQ0nWTjiHrB7fOr+WB/ydv bu6B+MzHjVfghUoli3RVauS9KEio5L9x6yKa3H+s610EgfaUjYaxsnstK04Kh7NV 7bmZ0uBj4D1oQ/oTWI2atZgdD5m/dGDDfen6mpt7ZBXAOJCrwFZB4Tf+M6/jJHa/ WdmQPx7YpEKBhFZbLmVyDIt/uwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNSDBeAH WeMcXgMugeHxIzqiobaNMB8GA1UdIwQYMBaAFIbNi0IYqbmhvOL6xe5tx4WwCpMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI4Ri83RERDNUEyRTU1 NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVhRzg0dnJGN20zSGhiQUtr eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzMkxRaGlwdWFHODR2ckY3bTNIaGJBS2t4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI4Ri83RERDNUEyRTU1NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVh Rzg0dnJGN20zSGhiQUtreDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAF6BASQp642cGLpD90QZG13J4hVlrpYcfM0RfyI22Wge7fl7eQbMR/WExBa/i k0+7V5OP19ImtYyv3ZAoivcr9m+qJpS+2wsgzUXgogqYCUe3NMD+eQAd6JWMBkam p258fbcsADDwKsUfSbk383TBurjREoyZgE4lr3YSqv/V3AvIAs+UvUTk/SOax0Ou k8EROgRGd7ccs4JNs02yom2FMhzFTHwtXT17Eu256Cmu217G2crPZLYZ044DKbaO VmmscIKP8z7QY6flQs1t0KLf/Ftxs+6QpVISQ18IDp/IgGt0bYCJ7sRI2jzko4o3 6ap+T2Q79jz+eJElfhZ+cSFBbg== -----END CERTIFICATE-----Generated at Thu Mar 26 00:50:17 2026 by rpki-client