$ rpki-client -vvf rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft File: hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft (raw, json) Hash identifier: vCUHnALmZrvO1ePz7WjeG3lHOBohWomZcqjLvTTIzVA= Subject key identifier: 6B:DC:CD:4C:A9:A4:FD:1A:DF:66:91:EE:8E:26:5A:1F:23:B6:67:61 Authority key identifier: 85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 Certificate issuer: /CN=A91D894F/serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft Manifest number: 016D Signing time: Wed 25 Mar 2026 04:05:23 +0000 Manifest this update: Wed 25 Mar 2026 04:05:23 +0000 Manifest next update: Wed 01 Apr 2026 04:05:23 +0000 Files and hashes: 1: hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl (hash: 3MKcOrwhkWX/U3TiolrwLi1Nd8bUDM4mvv5723DL2oY=) 2: 612992C6012A11EFB75C350FC4F9AE02.roa (hash: c1ZdxCR5jy+2u4016P6OO4rIgFkE6Ob/aP92Gxo47WA=) 3: 61A59876012A11EFB75C350FC4F9AE02.roa (hash: z1kC7ixKWc94mNbOx5wcAEuMc543/xXPe6FxxWEqPQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:05:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D894F, serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Validity Not Before: Mar 25 04:05:23 2026 GMT Not After : Apr 1 04:05:23 2026 GMT Subject: CN=69c35f03-8a71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:93:4f:96:40:55:83:8e:99:2d:61:6a:28:a0: f9:e6:a7:34:d4:c2:22:e3:9e:30:5a:0b:ad:78:33: 7c:b5:6c:bb:bc:fc:85:1a:ac:8e:15:44:98:ff:cc: 3d:83:ec:2c:1b:bf:40:ab:bb:e3:9a:fb:4f:06:1c: 8f:fd:94:b2:d5:fe:4a:ad:45:60:0b:b8:63:ff:a6: 6b:bf:1f:b4:2c:ba:37:28:60:8f:a2:15:59:fa:ff: 7a:dd:f5:0d:39:54:1a:d8:e9:a1:bc:86:ea:92:15: 8b:76:45:7c:55:31:e0:04:cc:e5:2a:27:21:a9:15: 96:ad:60:76:b6:b9:0a:16:d4:06:9d:d0:e0:47:a8: 5e:64:0f:46:de:3e:15:6a:d6:94:7b:20:f9:4a:29: 32:77:78:01:3b:e0:23:e7:fc:23:0e:b3:3f:1c:e9: fe:63:19:ac:28:87:38:f5:a1:6d:a1:fa:f8:1f:8b: 46:8e:7c:61:82:e8:a1:11:69:65:22:31:60:12:fa: df:86:3d:e1:17:db:2e:89:1a:02:bd:ca:42:e6:23: dc:94:ff:a8:85:29:32:76:bd:bf:cf:2b:d5:69:ca: ec:7b:ec:d6:d1:0e:cd:45:6b:f6:66:64:bf:5a:ab: 44:20:88:d6:e8:cb:44:6b:25:37:6f:65:e4:1a:80: 61:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:DC:CD:4C:A9:A4:FD:1A:DF:66:91:EE:8E:26:5A:1F:23:B6:67:61 X509v3 Authority Key Identifier: keyid:85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:37:1c:b9:8f:f5:e3:f3:a7:c9:3a:e5:88:8d:16:b0:76:09: c1:30:eb:99:28:09:84:b4:6f:37:00:13:e9:24:0c:5e:ee:9a: 45:6d:2b:1a:34:76:d1:b7:01:bb:9b:5a:5d:b0:0b:e6:80:e2: 2c:85:a0:04:37:a7:e6:c7:f1:d6:d8:9e:cd:06:86:7c:12:d7: 1d:d2:96:f7:b4:63:f4:b7:eb:60:3f:65:e1:65:37:ed:83:bc: 80:c9:8f:20:85:52:cf:af:c9:80:e0:cb:4c:8d:50:a2:bd:54: 50:dc:81:4f:9f:e5:2a:bc:1b:43:66:c0:4e:a3:a6:f2:92:57: bd:fc:07:91:91:4c:76:20:5a:61:5b:c9:e8:a5:5a:c9:24:d0: c5:33:e5:76:da:f9:21:6f:11:26:7e:06:50:2e:d3:2d:0e:7b: a5:b8:ae:45:36:61:c4:71:b5:6c:f0:bc:58:0e:75:4f:50:98: c5:72:d2:42:a8:c8:74:44:7f:61:df:00:eb:95:88:fd:50:77: ad:34:d5:61:db:47:e7:41:fa:c3:35:c2:5e:72:9c:92:51:83: de:68:9d:47:b9:72:31:05:eb:a7:6a:87:52:41:60:57:77:0d: ac:e9:bb:e1:97:3c:66:48:e8:36:06:31:b4:31:34:3f:89:3a: 9f:f1:0f:8f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5NEYxMTAvBgNVBAUTKDg1QjE0QTg5MEI5QkQ0OTgwRDk3RTQxQkIzOTFGQ0M5 ODUwRkNCNzgwHhcNMjYwMzI1MDQwNTIzWhcNMjYwNDAxMDQwNTIzWjAYMRYwFAYD VQQDEw02OWMzNWYwMy04YTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJNPlkBVg46ZLWFqKKD55qc01MIi454wWguteDN8tWy7vPyFGqyOFUSY/8w9 g+wsG79Aq7vjmvtPBhyP/ZSy1f5KrUVgC7hj/6Zrvx+0LLo3KGCPohVZ+v963fUN OVQa2OmhvIbqkhWLdkV8VTHgBMzlKichqRWWrWB2trkKFtQGndDgR6heZA9G3j4V ataUeyD5Sikyd3gBO+Aj5/wjDrM/HOn+YxmsKIc49aFtofr4H4tGjnxhguihEWll IjFgEvrfhj3hF9suiRoCvcpC5iPclP+ohSkydr2/zyvVacrse+zW0Q7NRWv2ZmS/ WqtEIIjW6MtEayU3b2XkGoBhswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGvczUyp pP0a32aR7o4mWh8jtmdhMB8GA1UdIwQYMBaAFIWxSokLm9SYDZfkG7OR/MmFD8t4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODk0Ri8wQUY0NUUzNjAx MkExMUVGQTVGRDkxNkZDNEY5QUUwMi9oYkZLaVF1YjFKZ05sLVFiczVIOHlZVVB5 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hiRktpUXViMUpnTmwtUWJzNUg4eVlVUHkzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODk0Ri8wQUY0NUUzNjAxMkExMUVGQTVGRDkxNkZDNEY5QUUwMi9oYkZLaVF1YjFK Z05sLVFiczVIOHlZVVB5M2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKTccuY/14/OnyTrliI0WsHYJwTDrmSgJhLRvNwAT6SQMXu6aRW0rGjR20bcB u5taXbAL5oDiLIWgBDen5sfx1tiezQaGfBLXHdKW97Rj9LfrYD9l4WU37YO8gMmP IIVSz6/JgODLTI1Qor1UUNyBT5/lKrwbQ2bATqOm8pJXvfwHkZFMdiBaYVvJ6KVa ySTQxTPldtr5IW8RJn4GUC7TLQ57pbiuRTZhxHG1bPC8WA51T1CYxXLSQqjIdER/ Yd8A65WI/VB3rTTVYdtH50H6wzXCXnKcklGD3midR7lyMQXrp2qHUkFgV3cNrOm7 4Zc8ZkjoNgYxtDE0P4k6n/EPjw== -----END CERTIFICATE-----Generated at Thu Mar 26 05:17:36 2026 by rpki-client