$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft File: HlpjIbEaoIRvqJvxObzs2604vjc.mft (raw, json) Hash identifier: hhEPBArR3+gIW277AS/0fOIfJvIf3o2wrTWwxrJ53ZA= Subject key identifier: 73:BC:D8:72:ED:E9:60:63:C8:D0:78:B1:37:6C:FB:3C:32:FF:78:5B Authority key identifier: 1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 Certificate issuer: /CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Certificate serial: 35D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft Manifest number: 3586 Signing time: Thu 26 Mar 2026 14:16:04 +0000 Manifest this update: Thu 26 Mar 2026 14:16:03 +0000 Manifest next update: Thu 02 Apr 2026 14:16:03 +0000 Files and hashes: 1: HlpjIbEaoIRvqJvxObzs2604vjc.crl (hash: wftP3zu9abl7Tmp+4EpSo3/WomWaNLZMghN9JqsXNZE=) 2: 0997A5828A1511F09F6EBD2BC4F9AE02.roa (hash: ODWKcUe3z5vKtDIj0xaFZ5y/WUcNqtmAta/zMVOpKQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:16:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13780 (0x35d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9D76, serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Validity Not Before: Mar 26 14:16:03 2026 GMT Not After : Apr 2 14:16:03 2026 GMT Subject: CN=69c53fa4-3868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:da:9f:a3:ca:2e:bd:19:fa:7d:7c:6c:1c:38: ee:94:bd:76:59:62:f0:92:73:53:d4:40:13:d6:08: 66:83:77:e0:87:b5:69:73:39:ae:d3:f3:5a:1b:df: 94:12:2e:f6:8b:9c:ae:9d:a4:be:c7:98:6d:f1:df: 46:ad:4a:7b:16:b2:fc:30:1d:6c:f8:cd:d6:c4:14: 56:08:9e:7c:23:1e:0a:67:76:61:7f:1f:50:0b:cf: 4e:30:b3:e5:cf:3f:8f:f3:ec:15:59:60:92:fe:96: 0a:33:36:c4:f4:b7:3a:4c:a4:4d:34:5d:e7:19:c8: d2:ff:62:ee:9e:ef:9b:75:a8:39:b3:ca:f6:a6:5a: 8e:3a:34:a3:58:80:c6:4b:fd:5c:6d:3b:26:5e:9a: f8:1b:5b:8f:fa:4b:c1:30:76:ea:4e:e5:e6:40:16: 83:00:45:a7:44:ad:16:f3:2a:8f:00:dc:10:5b:b2: 5b:c2:0f:31:fd:1d:31:97:fb:77:b6:68:6d:02:ff: d5:b0:1f:9e:33:1e:23:02:3d:31:6e:73:1b:bd:36: 1e:21:3a:78:02:b0:25:47:54:60:66:24:39:cd:ea: 04:b8:5a:98:0a:68:43:32:8b:58:f5:5a:1e:d7:7a: aa:81:cd:9e:85:57:87:49:e0:14:11:3e:78:57:37: 1a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:BC:D8:72:ED:E9:60:63:C8:D0:78:B1:37:6C:FB:3C:32:FF:78:5B X509v3 Authority Key Identifier: keyid:1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:10:1f:8c:97:a6:66:5c:fb:6b:29:f5:8b:f0:a2:4c:b0:f1: d0:32:39:2e:5e:db:2b:3a:c8:08:e9:51:5c:25:b8:30:cc:b6: 5a:f1:d3:ef:fd:d1:4d:c3:c8:96:f3:41:d0:e7:cd:5c:c7:e1: c0:47:7e:69:3d:01:19:ae:92:f0:79:b1:4b:a2:c7:98:0d:d3: 50:74:a1:a3:97:04:da:3e:b7:2b:0c:53:03:27:bd:e9:53:f9: be:32:dd:cf:ff:d9:b4:41:be:56:88:bd:d4:53:8e:55:ef:81: 21:6b:ed:d1:bb:1f:a6:49:99:be:0f:21:75:9e:48:0c:81:ad: 6a:89:6a:b9:e5:48:53:3a:9e:1e:b3:24:5b:5f:47:76:64:a5: 84:b3:13:d4:68:cd:d7:c0:4e:9c:f5:cc:b3:89:89:86:43:d5: fe:3c:c4:fe:69:f6:65:e8:73:bb:e8:58:c9:b2:8e:9f:99:b1: c6:ad:f3:b8:ad:e6:e9:06:5e:6e:98:f8:59:fd:4b:50:e5:c8: 7a:73:f0:6e:8b:d2:43:11:c4:f1:b7:e8:41:a0:53:19:f0:eb: f8:72:c3:6a:3b:ee:c4:1d:f0:94:c3:5e:ed:14:86:6d:cb:fa: 0a:54:d3:1c:6b:25:52:7f:78:d0:22:12:39:e2:b0:f9:c9:a1: 10:42:61:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlENzYxMTAvBgNVBAUTKDFFNUE2MzIxQjExQUEwODQ2RkE4OUJGMTM5QkNFQ0RC QUQzOEJFMzcwHhcNMjYwMzI2MTQxNjAzWhcNMjYwNDAyMTQxNjAzWjAYMRYwFAYD VQQDEw02OWM1M2ZhNC0zODY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNqfo8ouvRn6fXxsHDjulL12WWLwknNT1EAT1ghmg3fgh7Vpczmu0/NaG9+U Ei72i5yunaS+x5ht8d9GrUp7FrL8MB1s+M3WxBRWCJ58Ix4KZ3Zhfx9QC89OMLPl zz+P8+wVWWCS/pYKMzbE9Lc6TKRNNF3nGcjS/2Lunu+bdag5s8r2plqOOjSjWIDG S/1cbTsmXpr4G1uP+kvBMHbqTuXmQBaDAEWnRK0W8yqPANwQW7Jbwg8x/R0xl/t3 tmhtAv/VsB+eMx4jAj0xbnMbvTYeITp4ArAlR1RgZiQ5zeoEuFqYCmhDMotY9Voe 13qqgc2ehVeHSeAUET54VzcaWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHO82HLt 6WBjyNB4sTds+zwy/3hbMB8GA1UdIwQYMBaAFB5aYyGxGqCEb6ib8Tm87NutOL43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUQ3Ni82Mjg3QTExNDFE NjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9JUnZxSnZ4T2J6czI2MDR2 amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hscGpJYkVhb0lSdnFKdnhPYnpzMjYwNHZqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUQ3Ni82Mjg3QTExNDFENjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9J UnZxSnZ4T2J6czI2MDR2amMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVRAfjJemZlz7ayn1i/CiTLDx0DI5Ll7bKzrICOlRXCW4MMy2WvHT7/3RTcPI lvNB0OfNXMfhwEd+aT0BGa6S8HmxS6LHmA3TUHSho5cE2j63KwxTAye96VP5vjLd z//ZtEG+Voi91FOOVe+BIWvt0bsfpkmZvg8hdZ5IDIGtaolqueVIUzqeHrMkW19H dmSlhLMT1GjN18BOnPXMs4mJhkPV/jzE/mn2Zehzu+hYybKOn5mxxq3zuK3m6QZe bpj4Wf1LUOXIenPwbovSQxHE8bfoQaBTGfDr+HLDajvuxB3wlMNe7RSGbcv6ClTT HGslUn940CISOeKw+cmhEEJhKA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:27:40 2026 by rpki-client