$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft File: hpBNLQLbigWb7ZOPL46u88Qgb9A.mft (raw, json) Hash identifier: 1OrTEIJPHDt/r4adKIPZOW35K9zEfAvykgyoRNxFxFc= Subject key identifier: 2E:47:58:38:B6:06:11:99:EE:FC:C8:8D:2F:95:64:DD:4A:A1:09:82 Authority key identifier: 86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 Certificate issuer: /CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft Manifest number: 0122 Signing time: Wed 25 Mar 2026 04:58:40 +0000 Manifest this update: Wed 25 Mar 2026 04:58:39 +0000 Manifest next update: Wed 01 Apr 2026 04:58:39 +0000 Files and hashes: 1: hpBNLQLbigWb7ZOPL46u88Qgb9A.crl (hash: ckGcMXFXaz5QrizsZuyV6ID0XcN1i5cxQXXLO9EHnHo=) 2: 388D7E38797D11EF8CA64711C4F9AE02.roa (hash: tcJP6ckIisiXaSRaPvtWnl6KwRGfZck/uk3eudyqJEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:58:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4ACD, serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Validity Not Before: Mar 25 04:58:39 2026 GMT Not After : Apr 1 04:58:39 2026 GMT Subject: CN=69c36b7f-ee51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8d:73:29:16:aa:44:d7:d4:53:8b:eb:b5:dd: b2:86:84:ef:3d:f2:10:3e:db:e2:49:12:9f:87:b4: ac:c2:d2:57:83:ba:94:e7:47:14:ea:bd:a8:11:88: 3a:92:ed:97:c5:b1:5c:97:b9:f8:cb:95:cc:79:aa: 19:08:f2:40:18:f4:e0:8c:13:b3:f9:aa:aa:38:99: f5:a1:d3:0a:84:64:c6:e2:20:2e:72:dd:f0:c5:cb: 9b:89:7b:36:12:cc:6a:61:cd:ad:c6:b4:19:23:9f: a9:43:79:24:69:32:8a:ee:58:44:0c:25:fe:11:06: 91:8d:32:08:2c:21:7d:b0:99:90:dd:59:ad:57:fe: dc:b4:d4:ee:43:c3:76:a0:01:ba:04:cf:01:f8:32: 73:eb:78:f1:e0:a9:9b:af:92:9c:43:f3:8d:05:20: e3:ce:ed:5a:4c:79:27:29:f3:42:e7:fa:2e:35:f0: 18:f0:0e:ed:2d:fa:0f:b3:6e:30:e6:91:3c:3f:ae: cd:0a:a3:fa:ed:73:8b:9a:b1:84:9f:52:89:73:4c: d0:f5:3e:5b:0b:11:de:1c:5e:d9:e5:68:37:7b:11: 88:49:76:9c:db:c4:37:d1:4c:7c:08:36:4b:47:79: 4c:21:f5:82:21:82:b0:5d:b3:0e:cc:8c:35:42:70: 4d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:47:58:38:B6:06:11:99:EE:FC:C8:8D:2F:95:64:DD:4A:A1:09:82 X509v3 Authority Key Identifier: keyid:86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:49:d0:e9:a9:ba:66:c9:38:55:2e:42:46:fd:a1:e4:ef:33: 48:76:4e:2a:82:bf:2b:08:4d:87:4e:b9:7a:fa:dc:01:58:28: 16:21:28:7c:5f:04:d9:c5:3b:70:98:bc:76:c8:7d:22:f0:aa: 2e:ea:52:d8:d5:73:bd:78:69:1f:ce:20:a7:28:97:98:da:e6: 56:62:2a:13:5b:ca:52:d5:78:bc:ff:97:b4:5b:92:2f:5a:45: f5:98:dd:82:ee:84:ce:3b:06:75:f7:55:ec:b8:5d:d2:4c:4d: a8:3a:45:3b:ea:b5:3a:88:df:e2:27:6c:5a:4e:61:5c:b1:a5: f5:c8:7e:99:17:31:e8:e9:8d:b1:90:b5:e3:bc:6e:63:d4:83: 77:fd:66:33:26:82:46:42:4a:f3:56:ac:9a:ea:c0:11:11:f3: d3:e6:e5:2b:41:85:d3:c2:53:9d:b5:0d:a1:19:5b:d4:f7:77: 29:fc:1e:90:c2:bb:ca:c5:6b:a3:54:40:ea:91:73:89:25:d3: be:76:14:dd:72:49:f6:70:d2:e9:6a:d0:43:14:ad:4a:67:f3: 1e:78:cd:af:24:c9:65:47:91:cb:0b:2b:3f:12:0e:5c:de:b8: 24:d8:59:e5:09:da:04:16:97:ce:9c:49:19:30:9c:f3:1e:53: b9:13:38:25 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBQ0QxMTAvBgNVBAUTKDg2OTA0RDJEMDJEQjhBMDU5QkVEOTM4RjJGOEVBRUYz QzQyMDZGRDAwHhcNMjYwMzI1MDQ1ODM5WhcNMjYwNDAxMDQ1ODM5WjAYMRYwFAYD VQQDEw02OWMzNmI3Zi1lZTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzI1zKRaqRNfUU4vrtd2yhoTvPfIQPtviSRKfh7SswtJXg7qU50cU6r2oEYg6 ku2XxbFcl7n4y5XMeaoZCPJAGPTgjBOz+aqqOJn1odMKhGTG4iAuct3wxcubiXs2 EsxqYc2txrQZI5+pQ3kkaTKK7lhEDCX+EQaRjTIILCF9sJmQ3VmtV/7ctNTuQ8N2 oAG6BM8B+DJz63jx4Kmbr5KcQ/ONBSDjzu1aTHknKfNC5/ouNfAY8A7tLfoPs24w 5pE8P67NCqP67XOLmrGEn1KJc0zQ9T5bCxHeHF7Z5Wg3exGISXac28Q30Ux8CDZL R3lMIfWCIYKwXbMOzIw1QnBN5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC5HWDi2 BhGZ7vzIjS+VZN1KoQmCMB8GA1UdIwQYMBaAFIaQTS0C24oFm+2Tjy+OrvPEIG/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEFDRC8xRjUzNTY5RTc1 NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmlnV2I3Wk9QTDQ2dTg4UWdi OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hwQk5MUUxiaWdXYjdaT1BMNDZ1ODhRZ2I5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEFDRC8xRjUzNTY5RTc1NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmln V2I3Wk9QTDQ2dTg4UWdiOUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATUnQ6am6Zsk4VS5CRv2h5O8zSHZOKoK/KwhNh065evrcAVgoFiEofF8E2cU7 cJi8dsh9IvCqLupS2NVzvXhpH84gpyiXmNrmVmIqE1vKUtV4vP+XtFuSL1pF9Zjd gu6EzjsGdfdV7Lhd0kxNqDpFO+q1Oojf4idsWk5hXLGl9ch+mRcx6OmNsZC147xu Y9SDd/1mMyaCRkJK81asmurAERHz0+blK0GF08JTnbUNoRlb1Pd3KfwekMK7ysVr o1RA6pFziSXTvnYU3XJJ9nDS6WrQQxStSmfzHnjNryTJZUeRywsrPxIOXN64JNhZ 5QnaBBaXzpxJGTCc8x5TuRM4JQ== -----END CERTIFICATE-----Generated at Thu Mar 26 18:49:44 2026 by rpki-client