$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: 7NHsBYCTcVNpQDYlwhozFsZTkYiBIUQU79eUFaXWwz0= Subject key identifier: C1:68:4D:5E:D2:13:51:CC:3D:98:2E:9D:7F:57:3A:CE:2C:7B:0F:BE Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0C65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0C4E Signing time: Thu 26 Mar 2026 18:39:15 +0000 Manifest this update: Thu 26 Mar 2026 18:39:14 +0000 Manifest next update: Thu 02 Apr 2026 18:39:14 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: m+2B3Jk8Qci8L0J/yFEIgwXoWhiC1cQF4kY3evemEMs=) 2: FD765464FCFC11F0AF0D3BB7376F56BC.roa (hash: eJofnUMCGktsGrjmk9qmZtR4EvsLnOuTHY31f/qnkIQ=) 3: B4E988F2FCFB11F092E222F9366F56BC.roa (hash: V71zoGKhD0nD0XhT5mIn0o19zRnPhSQ5QYxo5yVpxak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3173 (0xc65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: Mar 26 18:39:14 2026 GMT Not After : Apr 2 18:39:14 2026 GMT Subject: CN=69c57d52-6f6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:55:69:4c:3b:1a:8d:42:5c:9a:c4:36:3e:79: 81:e0:d0:2a:73:20:ea:99:8d:f7:3d:d7:52:e8:d4: 7f:81:5b:54:12:5e:63:78:a2:ce:e9:4b:a5:27:6b: 10:ef:a5:16:94:74:68:87:b6:30:72:9e:04:39:db: c1:90:86:ec:6f:56:7e:23:aa:4f:95:a4:d1:e9:c0: f7:0c:f4:02:95:69:6d:a9:69:e3:fc:99:1d:bb:66: 38:e7:ca:f3:73:3e:28:d3:f5:4b:cd:96:81:dd:ac: 9b:5e:60:ea:8c:38:ec:98:2f:3d:df:ed:c4:77:46: 30:c9:a4:34:3c:da:f8:ba:ad:72:fc:59:b2:10:56: 26:8a:cf:2d:f1:9c:3b:b5:4c:a9:cc:d0:5f:2a:7b: e5:2c:85:87:74:66:ee:6e:7c:36:47:dc:16:5b:0e: 46:f0:48:9e:b2:4f:bc:44:cc:c8:09:bc:95:ad:12: e0:34:7d:47:d2:0d:91:28:7e:93:a6:be:5d:76:85: 96:da:c7:00:90:ce:fb:1d:83:e6:93:8a:e0:21:16: c7:b6:0b:38:6a:70:4a:6e:52:4e:37:2b:c0:8c:c2: 3e:e8:9a:7a:e6:5e:dd:3d:ce:b7:72:75:02:f1:41: 70:51:5b:88:c5:96:1d:4c:bf:64:32:72:dc:4d:38: cb:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:68:4D:5E:D2:13:51:CC:3D:98:2E:9D:7F:57:3A:CE:2C:7B:0F:BE X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:05:40:66:7d:61:ec:5d:7d:18:91:d1:77:ab:e2:28:0e:11: 45:f2:7a:fb:ce:1a:a6:2a:4a:da:fd:30:eb:b0:33:73:c3:08: 32:a4:ec:5f:b2:ab:3e:e6:ba:6d:bf:9c:1e:a2:82:2a:8c:a7: 98:c4:68:0a:1a:03:38:30:20:7a:fa:8a:d1:fb:a0:ec:bf:dc: 27:f0:cd:e0:57:df:74:f1:c0:3d:3d:64:d1:e0:1e:8a:9a:97: 76:ee:ce:97:93:5b:60:bb:e8:ed:3e:65:28:36:98:c0:b6:d7: ec:76:92:c6:5d:f2:7e:db:a0:e1:aa:30:4f:d9:c9:7c:48:93: a2:de:5f:23:d0:b1:3c:a6:5b:d4:11:73:70:4e:07:7f:53:c6: 6a:45:35:bf:01:b1:60:c5:74:81:4a:11:d2:43:00:57:1e:d3: 7a:fa:dc:92:e2:df:6f:a7:fe:5b:84:fe:5f:2e:8b:a8:b1:1e: 23:dd:ae:ff:4d:64:c2:e9:38:c3:9a:4d:05:88:dc:89:58:7b: 68:56:53:3b:e2:61:de:66:95:d2:1c:22:55:e8:b1:33:60:4c: 4c:4d:42:30:f3:ac:fe:c7:89:b5:de:10:94:81:5a:6e:32:6c: 54:cc:c6:d3:b9:b4:dc:c8:0d:e3:e9:a4:32:93:d0:35:61:9c: 2e:29:03:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjYwMzI2MTgzOTE0WhcNMjYwNDAyMTgzOTE0WjAYMRYwFAYD VQQDEw02OWM1N2Q1Mi02ZjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVVpTDsajUJcmsQ2PnmB4NAqcyDqmY33PddS6NR/gVtUEl5jeKLO6UulJ2sQ 76UWlHRoh7Ywcp4EOdvBkIbsb1Z+I6pPlaTR6cD3DPQClWltqWnj/Jkdu2Y458rz cz4o0/VLzZaB3aybXmDqjDjsmC893+3Ed0YwyaQ0PNr4uq1y/FmyEFYmis8t8Zw7 tUypzNBfKnvlLIWHdGbubnw2R9wWWw5G8Eiesk+8RMzICbyVrRLgNH1H0g2RKH6T pr5ddoWW2scAkM77HYPmk4rgIRbHtgs4anBKblJONyvAjMI+6Jp65l7dPc63cnUC 8UFwUVuIxZYdTL9kMnLcTTjLIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMFoTV7S E1HMPZgunX9XOs4sew++MB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArgVAZn1h7F19GJHRd6viKA4RRfJ6+84apipK2v0w67Azc8MIMqTsX7KrPua6 bb+cHqKCKoynmMRoChoDODAgevqK0fug7L/cJ/DN4FffdPHAPT1k0eAeipqXdu7O l5NbYLvo7T5lKDaYwLbX7HaSxl3yftug4aowT9nJfEiTot5fI9CxPKZb1BFzcE4H f1PGakU1vwGxYMV0gUoR0kMAVx7TevrckuLfb6f+W4T+Xy6LqLEeI92u/01kwuk4 w5pNBYjciVh7aFZTO+Jh3maV0hwiVeixM2BMTE1CMPOs/seJtd4QlIFabjJsVMzG 07m03MgN4+mkMpPQNWGcLikDjA== -----END CERTIFICATE-----Generated at Sat Mar 28 12:14:27 2026 by rpki-client