$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft File: hHdPRraSCgXa3UJHe6qzbucka5Q.mft (raw, json) Hash identifier: fK7T+Dv2YFFjTKSvtoGSMhLMulG/ixFKX5DfiDT/fqo= Subject key identifier: 36:B1:06:96:66:BF:FF:50:59:C3:0E:AB:ED:EE:F1:7B:05:E3:4E:50 Authority key identifier: 84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 Certificate issuer: /CN=A91D9162/serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Certificate serial: 0DB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft Manifest number: 0DA9 Signing time: Tue 24 Mar 2026 17:47:00 +0000 Manifest this update: Tue 24 Mar 2026 17:46:59 +0000 Manifest next update: Tue 31 Mar 2026 17:46:59 +0000 Files and hashes: 1: hHdPRraSCgXa3UJHe6qzbucka5Q.crl (hash: jd8XHR/xvrRM+1R8s+8z+5X4bp3GnHSpJqnXUaqivCo=) 2: E727A05600FD11EB9286115AC4F9AE02.roa (hash: osTG3y7Aw7NEIaD/HGEqWnzu7+4Rus4i5AaVvHjByPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3508 (0xdb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9162, serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Validity Not Before: Mar 24 17:46:59 2026 GMT Not After : Mar 31 17:46:59 2026 GMT Subject: CN=69c2ce14-a5b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:de:1c:97:c6:fb:e6:e4:b5:c9:08:74:f8:5b: ad:12:4e:da:a8:10:36:71:c1:f5:8e:91:83:30:77: f0:5c:e2:07:d8:40:b5:3a:2d:ed:7c:76:46:ce:97: ec:64:fd:32:42:f6:a6:85:0c:87:48:4d:c0:89:dc: 98:e7:23:80:2e:62:11:f0:4f:49:33:6c:26:2a:de: 50:9d:11:0f:20:49:66:bc:60:4e:04:5a:a2:ed:80: d1:3c:00:a1:25:bb:64:db:34:ba:e7:29:50:00:82: d1:19:b8:e4:0d:57:39:65:a9:3b:27:2f:36:be:08: fb:cc:35:13:c2:ec:da:c5:d3:9e:01:86:2a:ea:84: 7b:33:48:ba:f4:a7:35:0c:de:07:f2:17:6c:da:eb: 79:50:e0:55:7a:67:76:e3:fd:e8:f5:6f:a0:2d:cc: 1b:83:ba:f7:94:8b:02:56:9a:79:52:3d:23:05:c7: 79:60:3c:fa:05:93:a9:d0:a4:47:51:1a:b4:7b:dd: 60:40:37:b6:0b:dd:8f:8f:a9:30:45:08:28:c9:d8: 1c:84:2b:29:f7:83:bb:bd:86:7f:60:73:81:6a:30: 9c:05:e0:c1:c8:6f:a3:b0:d7:63:d2:58:07:ca:47: 04:d8:d3:ff:6d:4c:c8:f6:db:90:f2:51:43:63:a2: f4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:B1:06:96:66:BF:FF:50:59:C3:0E:AB:ED:EE:F1:7B:05:E3:4E:50 X509v3 Authority Key Identifier: keyid:84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:80:41:80:fb:60:ec:49:7d:78:7e:43:13:09:be:8e:b6:fd: 67:e6:9a:82:05:18:41:94:a5:f5:9a:40:25:13:7a:3b:3f:8e: 09:3b:e8:4e:a1:12:94:e9:64:83:ad:6f:cf:41:f6:20:2a:10: 1f:14:95:80:22:55:03:58:86:91:47:36:c1:5e:e0:d9:84:17: 95:7f:ac:9e:a3:f3:99:09:ee:1d:7e:63:3e:77:9b:20:da:8d: 8d:52:bb:77:b7:6b:b1:c3:42:30:0c:d7:44:5e:6b:f4:45:92: 8c:9e:82:3e:ca:af:40:79:30:47:0e:d1:db:57:38:f8:b8:ce: 9f:ff:2e:ee:b4:13:9c:f6:42:ac:97:9c:af:e8:0d:84:60:8d: 36:4e:ed:18:8b:2c:48:71:82:b5:ba:75:01:c9:90:3d:ed:62: 03:0d:82:f6:ea:80:73:3a:4c:b6:61:51:b0:6c:73:cf:7a:aa: 51:06:ad:73:f3:fe:18:c0:6c:81:de:1d:9f:ec:88:bd:1d:6a: 66:99:e6:a9:67:58:eb:51:51:37:a6:d7:96:02:f1:70:3d:db: b6:01:bd:04:bb:d5:be:a4:99:8a:ff:e6:57:90:d5:2e:58:53: 37:bc:61:5b:cb:60:d8:26:47:7f:f8:29:dc:71:37:35:48:77: 1f:c9:a7:de -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDkxNjIxMTAvBgNVBAUTKDg0Nzc0RjQ2QjY5MjBBMDVEQURENDI0NzdCQUFCMzZF RTcyNDZCOTQwHhcNMjYwMzI0MTc0NjU5WhcNMjYwMzMxMTc0NjU5WjAYMRYwFAYD VQQDEw02OWMyY2UxNC1hNWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6d4cl8b75uS1yQh0+FutEk7aqBA2ccH1jpGDMHfwXOIH2EC1Oi3tfHZGzpfs ZP0yQvamhQyHSE3AidyY5yOALmIR8E9JM2wmKt5QnREPIElmvGBOBFqi7YDRPACh Jbtk2zS65ylQAILRGbjkDVc5Zak7Jy82vgj7zDUTwuzaxdOeAYYq6oR7M0i69Kc1 DN4H8hds2ut5UOBVemd24/3o9W+gLcwbg7r3lIsCVpp5Uj0jBcd5YDz6BZOp0KRH URq0e91gQDe2C92Pj6kwRQgoydgchCsp94O7vYZ/YHOBajCcBeDByG+jsNdj0lgH ykcE2NP/bUzI9tuQ8lFDY6L0CQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDaxBpZm v/9QWcMOq+3u8XsF405QMB8GA1UdIwQYMBaAFIR3T0a2kgoF2t1CR3uqs27nJGuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTE2Mi8yNkE4MkUwQURE QzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0NnWGEzVUpIZTZxemJ1Y2th NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIZFBScmFTQ2dYYTNVSkhlNnF6YnVja2E1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTE2Mi8yNkE4MkUwQUREQzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0Nn WGEzVUpIZTZxemJ1Y2thNVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJIBBgPtg7El9eH5DEwm+jrb9Z+aaggUYQZSl9ZpAJRN6Oz+OCTvoTqESlOlk g61vz0H2ICoQHxSVgCJVA1iGkUc2wV7g2YQXlX+snqPzmQnuHX5jPnebINqNjVK7 d7drscNCMAzXRF5r9EWSjJ6CPsqvQHkwRw7R21c4+LjOn/8u7rQTnPZCrJecr+gN hGCNNk7tGIssSHGCtbp1AcmQPe1iAw2C9uqAczpMtmFRsGxzz3qqUQatc/P+GMBs gd4dn+yIvR1qZpnmqWdY61FRN6bXlgLxcD3btgG9BLvVvqSZiv/mV5DVLlhTN7xh W8tg2CZHf/gp3HE3NUh3H8mn3g== -----END CERTIFICATE-----Generated at Thu Mar 26 08:34:56 2026 by rpki-client