$ rpki-client -vvf rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft File: HA0tulqzbC-WcsFN2He57qBsysc.mft (raw, json) Hash identifier: HrfVy+INF+yo4UljH/qAsV9nPQDgByj24fa82D9geXA= Subject key identifier: 28:90:1B:16:67:EB:B4:07:C3:04:2D:6D:7A:61:E4:3E:07:B8:95:F5 Authority key identifier: 1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 Certificate issuer: /CN=A91E11B4/serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Certificate serial: 0960 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft Manifest number: 0936 Signing time: Tue 24 Mar 2026 19:58:07 +0000 Manifest this update: Tue 24 Mar 2026 19:58:07 +0000 Manifest next update: Tue 31 Mar 2026 19:58:07 +0000 Files and hashes: 1: HA0tulqzbC-WcsFN2He57qBsysc.crl (hash: 1FX/KS9qyB9Vci2uYMw7/dEHdea7GcVcGj7awkeciUc=) 2: BA69B6FABC2C11EA96657B4BC4F9AE02.roa (hash: rixxFEhhporEowEcKJ0zMfY5DGdFHoWYuPowdcyFr5A=) 3: BB250202BC2C11EA96657B4BC4F9AE02.roa (hash: UJmyzSzozDENX7jF+64gEj4E6QBieKxXCaJ+JGRYbs0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:58:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2400 (0x960) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E11B4, serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Validity Not Before: Mar 24 19:58:07 2026 GMT Not After : Mar 31 19:58:07 2026 GMT Subject: CN=69c2eccf-3700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:15:aa:97:98:f6:6f:e9:a9:a1:af:f6:aa:3c: f0:0b:cc:6e:fd:2a:a4:26:99:7d:20:2c:34:4f:3c: 40:b4:bb:f4:8d:e9:c8:7d:7b:30:51:f1:36:ac:aa: f1:d0:6d:61:7b:a2:64:9a:fb:86:51:26:2d:ba:87: d7:38:22:89:a0:fe:99:af:9d:7d:51:eb:56:16:4e: 86:af:91:ae:ce:76:d2:90:26:bd:e3:0b:87:95:22: ae:d5:a7:e8:74:62:50:a9:61:b4:9d:26:74:db:4b: 57:b7:06:a8:3b:7d:1a:7f:46:38:27:06:c5:b0:ef: 49:5b:78:fb:7b:42:7c:62:2f:21:c0:96:b7:7f:73: 48:29:13:a4:48:0c:0a:4a:cb:a3:c4:51:96:7a:96: 4d:c7:2c:99:34:e3:ef:dd:f6:25:8a:a7:e7:3d:45: 35:cb:5f:18:48:39:04:a0:0c:af:26:ba:0d:ee:67: a8:41:60:2e:c6:a1:49:84:22:84:8e:ad:9d:d3:b9: f6:56:fb:5e:c8:88:a3:bb:70:0a:6a:99:91:33:d4: b5:80:fd:d2:8b:36:64:36:60:84:57:9b:fe:32:eb: 60:ae:f8:ad:26:ce:0f:1b:41:da:6b:ee:bf:12:28: 4c:52:b9:9d:1c:b7:22:f6:5e:4f:92:06:ca:e9:0f: ca:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:90:1B:16:67:EB:B4:07:C3:04:2D:6D:7A:61:E4:3E:07:B8:95:F5 X509v3 Authority Key Identifier: keyid:1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:27:53:a7:f2:42:55:5f:e9:55:cc:fc:d6:8f:90:07:6f:25: cc:47:ad:9c:01:71:5d:e3:de:a5:84:ce:a2:17:09:d0:d7:72: d3:c7:e3:48:f9:95:7b:3e:44:3a:c2:31:25:d2:d7:7a:7f:59: a6:86:a7:81:dc:da:0d:5d:52:2e:e8:8b:9b:3e:5c:96:77:03: c5:38:05:da:09:da:14:5d:3f:16:f6:31:e9:7c:a8:54:9a:06: 2b:79:d8:a3:3e:d4:f2:84:a3:09:74:be:a4:13:40:6c:01:4e: f9:28:00:ae:4f:f7:18:21:91:a4:2f:a2:f8:6d:8a:fa:ed:bb: 5f:6f:2e:90:7d:ce:18:9b:d7:3a:bc:3a:e6:11:01:8b:73:08: b0:47:19:e4:75:f1:96:45:8c:5e:51:e0:dc:0e:b2:90:26:dd: fa:c6:11:26:19:b6:e9:9c:3c:b2:bd:0c:8f:34:46:d2:04:7f: 17:c1:a5:4e:09:ee:fe:f9:aa:39:ae:82:6f:de:38:60:d9:f2: b8:d4:2d:fc:34:de:42:36:53:88:d4:90:fe:95:a2:47:7a:45: 3a:dc:e7:ce:b9:cc:f5:a4:3d:66:df:fd:52:7a:49:9c:d8:57: 8b:0f:11:8b:b6:c5:16:06:a7:6e:4a:9d:5d:a7:b6:f5:f2:b0: f0:f6:db:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExQjQxMTAvBgNVBAUTKDFDMEQyREJBNUFCMzZDMkY5NjcyQzE0REQ4NzdCOUVF QTA2Q0NBQzcwHhcNMjYwMzI0MTk1ODA3WhcNMjYwMzMxMTk1ODA3WjAYMRYwFAYD VQQDEw02OWMyZWNjZi0zNzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBWql5j2b+mpoa/2qjzwC8xu/SqkJpl9ICw0TzxAtLv0jenIfXswUfE2rKrx 0G1he6JkmvuGUSYtuofXOCKJoP6Zr519UetWFk6Gr5GuznbSkCa94wuHlSKu1afo dGJQqWG0nSZ020tXtwaoO30af0Y4JwbFsO9JW3j7e0J8Yi8hwJa3f3NIKROkSAwK SsujxFGWepZNxyyZNOPv3fYliqfnPUU1y18YSDkEoAyvJroN7meoQWAuxqFJhCKE jq2d07n2VvteyIiju3AKapmRM9S1gP3SizZkNmCEV5v+MutgrvitJs4PG0Haa+6/ EihMUrmdHLci9l5PkgbK6Q/KswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCiQGxZn 67QHwwQtbXph5D4HuJX1MB8GA1UdIwQYMBaAFBwNLbpas2wvlnLBTdh3ue6gbMrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTFCNC9CMTk5M0M0MEJD MkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJDLVdjc0ZOMkhlNTdxQnN5 c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBMHR1bHF6YkMtV2NzRk4ySGU1N3FCc3lzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTFCNC9CMTk5M0M0MEJDMkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJD LVdjc0ZOMkhlNTdxQnN5c2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaydTp/JCVV/pVcz81o+QB28lzEetnAFxXePepYTOohcJ0Ndy08fjSPmVez5E OsIxJdLXen9ZpoangdzaDV1SLuiLmz5clncDxTgF2gnaFF0/FvYx6XyoVJoGK3nY oz7U8oSjCXS+pBNAbAFO+SgArk/3GCGRpC+i+G2K+u27X28ukH3OGJvXOrw65hEB i3MIsEcZ5HXxlkWMXlHg3A6ykCbd+sYRJhm26Zw8sr0MjzRG0gR/F8GlTgnu/vmq Oa6Cb944YNnyuNQt/DTeQjZTiNSQ/pWiR3pFOtznzrnM9aQ9Zt/9UnpJnNhXiw8R i7bFFganbkqdXae29fKw8PbbUQ== -----END CERTIFICATE-----Generated at Thu Mar 26 12:36:45 2026 by rpki-client