$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.mft File: hCMykdLcashg9UvuzoHVSwNEA78.mft (raw, json) Hash identifier: ZSnzFSYh+mOZJaDLSh1Hefwvks1k7YLSeig4Rpslgng= Subject key identifier: A2:0D:2B:F8:9A:F2:DB:C0:2C:DA:BE:DD:54:E3:CA:81:C3:9F:BF:0F Authority key identifier: 84:23:32:91:D2:DC:6A:C8:60:F5:4B:EE:CE:81:D5:4B:03:44:03:BF Certificate issuer: /CN=A91CAA8A/serialNumber=84233291D2DC6AC860F54BEECE81D54B034403BF Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hCMykdLcashg9UvuzoHVSwNEA78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.mft Manifest number: 27 Signing time: Wed 25 Mar 2026 07:59:23 +0000 Manifest this update: Wed 25 Mar 2026 07:59:23 +0000 Manifest next update: Wed 01 Apr 2026 07:59:23 +0000 Files and hashes: 1: hCMykdLcashg9UvuzoHVSwNEA78.crl (hash: dzip6wDDkjP4cDjbowvLUQ0LUUY9q6eVlYQl8sgI968=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.crl rsync://rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hCMykdLcashg9UvuzoHVSwNEA78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA8A, serialNumber=84233291D2DC6AC860F54BEECE81D54B034403BF Validity Not Before: Mar 25 07:59:23 2026 GMT Not After : Apr 1 07:59:23 2026 GMT Subject: CN=69c395db-2a75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fc:d4:67:a7:47:b0:3a:6b:9b:5e:60:0d:b0: c9:67:a8:3a:f1:8c:6c:3a:97:d2:da:f3:c0:46:f4: b0:aa:c0:3d:bf:bc:f8:1f:55:b3:87:6c:d8:1a:23: d2:02:a4:3e:42:e0:9b:43:bb:36:f5:46:66:49:55: fc:08:ec:df:4c:fe:06:ad:14:fa:8f:55:22:7d:22: 4e:ae:05:de:83:74:fe:88:7e:e9:9c:4d:61:83:47: c8:e5:61:c3:97:19:50:ae:bd:47:90:ad:64:1a:51: bc:5a:4c:ac:15:d8:e7:d7:56:d6:cc:05:a4:e5:61: 70:44:0d:a2:12:8d:fe:66:a1:f9:aa:e6:b5:13:ef: b2:9b:0e:cc:b4:75:84:07:76:63:28:75:c5:38:84: 05:97:6d:81:2f:aa:62:c4:83:2d:0d:ee:2c:cb:02: 65:10:bb:f9:c4:44:0a:7b:1b:07:ee:4f:2a:dc:c0: e9:c9:d1:f0:b6:7d:d8:76:12:a6:04:d3:10:37:ae: 8b:0a:86:87:63:3a:f7:d8:e4:c1:e0:49:05:0d:5c: a7:79:42:64:34:e5:21:8a:58:dc:c2:1c:0e:76:15: 54:57:24:a4:d1:12:b3:cd:a6:16:88:ab:08:19:3f: bd:98:0c:3a:91:9f:fc:24:f6:50:e8:03:49:c4:ed: 7d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:0D:2B:F8:9A:F2:DB:C0:2C:DA:BE:DD:54:E3:CA:81:C3:9F:BF:0F X509v3 Authority Key Identifier: keyid:84:23:32:91:D2:DC:6A:C8:60:F5:4B:EE:CE:81:D5:4B:03:44:03:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hCMykdLcashg9UvuzoHVSwNEA78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:82:20:8b:da:f9:bb:ea:79:3e:ec:87:80:87:a3:88:de:5e: 2d:3f:8f:c7:52:d4:30:6f:0a:9f:99:66:6e:8f:e8:2a:21:8c: 18:b2:ff:3d:04:e4:75:1c:81:f9:7c:7a:52:b5:f2:55:15:c3: 5d:fe:17:89:a3:31:18:23:7d:91:c5:34:9d:5c:5a:44:b6:3d: 58:ec:3a:ec:61:e5:84:82:22:8d:96:7e:57:e1:91:6f:2b:88: 7a:d9:06:30:d9:aa:7d:ed:0c:af:d8:61:bc:e6:78:41:a8:2e: 5f:eb:d5:f2:ce:1c:57:28:55:86:d4:8f:d9:dd:9a:b8:d6:78: e2:b3:11:5a:ac:23:f3:d3:68:23:6b:13:ec:ca:95:45:a1:84: 4c:83:7a:f5:94:3c:a6:23:91:b5:6a:d0:9e:c6:8a:b1:8a:43: 72:da:15:be:43:83:79:98:2a:e2:d2:8c:55:bf:f6:99:6e:b2: c4:63:8e:33:c8:33:0e:fb:d6:2b:b0:b6:13:03:03:ee:42:80: 18:f5:a3:96:b0:24:66:a4:87:37:01:f9:05:64:3e:a3:d2:8a: 73:e5:e6:3d:44:0c:0f:f9:62:56:1e:fd:16:17:1a:7a:09:dd: 09:0e:16:3a:4d:46:31:9b:44:aa:8f:ef:52:e1:e7:09:16:44: cf:5c:9d:ec -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QUE4QTExMC8GA1UEBRMoODQyMzMyOTFEMkRDNkFDODYwRjU0QkVFQ0U4MUQ1NEIw MzQ0MDNCRjAeFw0yNjAzMjUwNzU5MjNaFw0yNjA0MDEwNzU5MjNaMBgxFjAUBgNV BAMTDTY5YzM5NWRiLTJhNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDO/NRnp0ewOmubXmANsMlnqDrxjGw6l9La88BG9LCqwD2/vPgfVbOHbNgaI9IC pD5C4JtDuzb1RmZJVfwI7N9M/gatFPqPVSJ9Ik6uBd6DdP6IfumcTWGDR8jlYcOX GVCuvUeQrWQaUbxaTKwV2OfXVtbMBaTlYXBEDaISjf5mofmq5rUT77KbDsy0dYQH dmModcU4hAWXbYEvqmLEgy0N7izLAmUQu/nERAp7GwfuTyrcwOnJ0fC2fdh2EqYE 0xA3rosKhodjOvfY5MHgSQUNXKd5QmQ05SGKWNzCHA52FVRXJKTRErPNphaIqwgZ P72YDDqRn/wk9lDoA0nE7X01AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUog0r+Jry 28As2r7dVOPKgcOfvw8wHwYDVR0jBBgwFoAUhCMykdLcashg9UvuzoHVSwNEA78w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBQThBLzlGM0U1NTE2RjJE MTExRjA5ODlBRDhDRTNDNkY1NkJDL2hDTXlrZExjYXNoZzlVdnV6b0hWU3dORUE3 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaENNeWtkTGNhc2hnOVV2dXpvSFZTd05FQTc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNB QThBLzlGM0U1NTE2RjJEMTExRjA5ODlBRDhDRTNDNkY1NkJDL2hDTXlrZExjYXNo ZzlVdnV6b0hWU3dORUE3OC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAugiCL2vm76nk+7IeAh6OI3l4tP4/HUtQwbwqfmWZuj+gqIYwYsv89BOR1HIH5 fHpStfJVFcNd/heJozEYI32RxTSdXFpEtj1Y7DrsYeWEgiKNln5X4ZFvK4h62QYw 2ap97Qyv2GG85nhBqC5f69XyzhxXKFWG1I/Z3Zq41njisxFarCPz02gjaxPsypVF oYRMg3r1lDymI5G1atCexoqxikNy2hW+Q4N5mCri0oxVv/aZbrLEY44zyDMO+9Yr sLYTAwPuQoAY9aOWsCRmpIc3AfkFZD6j0opz5eY9RAwP+WJWHv0WFxp6Cd0JDhY6 TUYxm0Sqj+9S4ecJFkTPXJ3s -----END CERTIFICATE-----Generated at Thu Mar 26 18:03:01 2026 by rpki-client