$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft File: HAF157M3En5uwlH0Og0qxhMRv04.mft (raw, json) Hash identifier: eA2qL6hsHNtqBH7cY884yvFsJ0Qd8RQ7IMGLjkJVH3A= Subject key identifier: 11:EF:52:12:D0:1A:76:C9:8E:BC:56:CC:24:29:93:C7:C8:1F:F1:1E Authority key identifier: 1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E Certificate issuer: /CN=A91E3584/serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Certificate serial: 3522 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft Manifest number: 351F Signing time: Tue 24 Mar 2026 14:26:09 +0000 Manifest this update: Tue 24 Mar 2026 14:26:09 +0000 Manifest next update: Tue 31 Mar 2026 14:26:09 +0000 Files and hashes: 1: HAF157M3En5uwlH0Og0qxhMRv04.crl (hash: 808NUDY9VpSsHNLgk9V0SiI+994VH4vFyLWMeGmh8CM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13602 (0x3522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3584, serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Validity Not Before: Mar 24 14:26:09 2026 GMT Not After : Mar 31 14:26:09 2026 GMT Subject: CN=69c29f01-b3dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e8:19:74:1b:21:91:f4:5c:2a:e1:b2:ce:e1: ac:44:d1:02:87:a2:30:b0:e5:f8:82:78:d7:f9:c4: 2b:38:dd:b2:2c:f4:4a:7e:10:46:52:dd:36:6c:a2: 66:30:60:24:67:b7:86:dd:3f:9a:8f:77:fd:c5:82: 98:98:10:d0:35:ff:5e:1c:f8:ba:92:91:9a:60:58: 3e:d8:e3:26:f2:dd:53:a5:48:1f:a4:bf:e8:5d:5c: 04:f8:9f:ef:60:74:7c:0c:3d:e4:29:5c:0a:a1:e5: 8e:47:80:b2:0b:2d:3a:c8:62:e8:f9:62:0e:22:f6: 88:5d:d3:e3:cf:4a:e7:45:1e:30:47:d0:13:20:19: 63:bf:8a:01:4b:6f:89:a6:28:55:e6:32:3e:9d:ab: 21:82:7c:cd:b9:5d:62:d2:3b:07:e1:22:2d:41:75: 64:ce:a8:2d:03:56:4a:b1:fa:9b:31:d9:be:55:0d: 2c:5b:c4:da:4e:51:6a:bd:cb:6c:12:9a:e1:21:45: 59:59:e6:ae:18:31:f3:ce:8b:a9:16:01:95:d0:72: 89:f9:ff:d4:fa:5d:4b:35:c2:d2:b4:87:e9:75:95: 09:d3:5a:ef:b5:48:f2:03:bc:07:68:e8:c4:7c:90: d7:96:b6:f4:44:5b:14:4b:fe:31:f6:28:d5:2f:43: ef:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:EF:52:12:D0:1A:76:C9:8E:BC:56:CC:24:29:93:C7:C8:1F:F1:1E X509v3 Authority Key Identifier: keyid:1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:2a:59:2c:5d:1d:79:be:b2:99:26:56:b8:41:6c:3b:39:42: 9d:a8:fd:d3:f1:cd:57:c1:68:48:f4:fc:60:44:bb:5b:56:c6: a0:69:17:ce:ba:dc:ed:54:c5:47:f9:b3:16:5a:08:e6:71:ce: 86:8f:05:c3:9d:b0:13:ee:48:ec:ac:1e:61:8d:38:05:a1:37: 97:24:e6:ef:86:be:72:db:5a:ff:21:c4:31:27:55:6b:60:a9: 7e:1e:87:c8:e5:12:c0:6d:a5:b9:1b:4f:38:a3:dc:28:23:17: 95:40:eb:d0:9f:35:7d:42:ac:c4:f6:95:53:8b:ce:80:32:43: d5:4d:16:08:f3:1e:ff:66:73:e2:1b:4f:65:7d:ff:11:bc:9c: 71:0a:dc:b4:84:f8:6b:ad:5b:ce:cb:ae:8c:65:96:7f:1e:17: 46:2d:2f:9a:75:6d:d3:e1:22:ab:4c:06:25:2e:d8:e6:6e:2e: eb:e1:5e:ac:b3:d4:e3:92:79:75:00:2c:2a:07:6a:03:d6:2c: bb:55:f0:b8:b0:80:e6:43:c7:c9:57:14:08:88:66:a4:bc:06: 4b:3a:65:8f:c3:75:51:28:6b:76:bb:fb:77:78:2e:cb:e7:05: 04:c5:13:37:33:75:a8:5d:52:d6:2b:19:9c:aa:65:13:72:3e: 29:e8:48:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM1ODQxMTAvBgNVBAUTKDFDMDE3NUU3QjMzNzEyN0U2RUMyNTFGNDNBMEQyQUM2 MTMxMUJGNEUwHhcNMjYwMzI0MTQyNjA5WhcNMjYwMzMxMTQyNjA5WjAYMRYwFAYD VQQDEw02OWMyOWYwMS1iM2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqugZdBshkfRcKuGyzuGsRNECh6IwsOX4gnjX+cQrON2yLPRKfhBGUt02bKJm MGAkZ7eG3T+aj3f9xYKYmBDQNf9eHPi6kpGaYFg+2OMm8t1TpUgfpL/oXVwE+J/v YHR8DD3kKVwKoeWOR4CyCy06yGLo+WIOIvaIXdPjz0rnRR4wR9ATIBljv4oBS2+J pihV5jI+nashgnzNuV1i0jsH4SItQXVkzqgtA1ZKsfqbMdm+VQ0sW8TaTlFqvcts EprhIUVZWeauGDHzzoupFgGV0HKJ+f/U+l1LNcLStIfpdZUJ01rvtUjyA7wHaOjE fJDXlrb0RFsUS/4x9ijVL0PvUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBHvUhLQ GnbJjrxWzCQpk8fIH/EeMB8GA1UdIwQYMBaAFBwBdeezNxJ+bsJR9DoNKsYTEb9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzU4NC9EMUExMjk0NjFE ODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0VuNXV3bEgwT2cwcXhoTVJ2 MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBRjE1N00zRW41dXdsSDBPZzBxeGhNUnYwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzU4NC9EMUExMjk0NjFEODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0Vu NXV3bEgwT2cwcXhoTVJ2MDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiSpZLF0deb6ymSZWuEFsOzlCnaj90/HNV8FoSPT8YES7W1bGoGkXzrrc7VTF R/mzFloI5nHOho8Fw52wE+5I7KweYY04BaE3lyTm74a+ctta/yHEMSdVa2Cpfh6H yOUSwG2luRtPOKPcKCMXlUDr0J81fUKsxPaVU4vOgDJD1U0WCPMe/2Zz4htPZX3/ EbyccQrctIT4a61bzsuujGWWfx4XRi0vmnVt0+Eiq0wGJS7Y5m4u6+FerLPU45J5 dQAsKgdqA9Ysu1XwuLCA5kPHyVcUCIhmpLwGSzplj8N1UShrdrv7d3guy+cFBMUT NzN1qF1S1isZnKplE3I+KehI9w== -----END CERTIFICATE-----Generated at Thu Mar 26 10:53:40 2026 by rpki-client