$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft File: HLlfP3vebhmbdAuSgqxyKk7amZs.mft (raw, json) Hash identifier: iIMGgOgEXqv1OJvQqR4Hf9UOmodwy31HXo0nMxZnypk= Subject key identifier: D2:B1:5A:E8:61:09:1D:EF:B4:EB:F4:6C:B3:F8:B5:CA:EE:85:9A:C8 Authority key identifier: 1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B Certificate issuer: /CN=A91E4EEF/serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft Manifest number: 42 Signing time: Wed 25 Mar 2026 07:49:16 +0000 Manifest this update: Wed 25 Mar 2026 07:49:16 +0000 Manifest next update: Wed 01 Apr 2026 07:49:16 +0000 Files and hashes: 1: HLlfP3vebhmbdAuSgqxyKk7amZs.crl (hash: YkjCWUgsddeaKgMSze90vdjGYrePNdc96XlpG1cK398=) 2: 0C1F9D8CF13A11F08789470C566F56BC.roa (hash: sgoDIUBe0jr7XN1MyW0ONqjTLm6kK+bIbhy55Li2/S8=) 3: 304D9EDEF13A11F0A5B04E41566F56BC.roa (hash: AC/jIeXBOHw70y2QOJSmCZ+NDE9I0e7M9WpwuYpLz9U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:49:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4EEF, serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Validity Not Before: Mar 25 07:49:16 2026 GMT Not After : Apr 1 07:49:16 2026 GMT Subject: CN=69c3937c-dbdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:87:39:65:c1:dd:a1:56:d9:c3:57:c9:9c:1c: 69:ad:ff:e7:b1:25:34:1a:8c:2e:07:48:f1:ed:a3: 32:06:8a:34:58:26:20:6f:b0:97:87:8a:3f:28:84: a5:4e:02:53:81:7f:b4:05:61:8b:6e:52:ae:5a:77: 97:ce:b6:88:9c:b5:f8:13:b3:e5:8f:98:8b:ac:c0: c3:cf:e5:ef:aa:58:d8:a9:99:15:eb:76:c0:e5:1e: 62:ac:d0:e1:fb:f6:1c:c1:5b:2e:26:bc:d1:15:56: 04:90:67:70:a4:01:b4:0a:76:2a:da:b8:89:6a:0b: 20:a7:2c:3e:ca:a1:61:b2:1a:8a:a5:0d:d4:3d:cc: 74:e7:12:e0:09:15:5d:39:04:bf:1f:4b:12:49:96: ab:2c:4c:e2:a6:c6:3b:01:ea:04:0c:5c:03:8e:32: 4d:3d:77:3e:d7:58:14:a7:72:58:c2:bf:8c:5e:14: cf:ed:91:45:eb:f2:ac:8f:6f:8c:95:3f:6a:b7:62: 4a:58:71:b7:ab:90:e4:4f:66:38:9e:64:b5:1c:2d: ac:da:d1:5a:7d:f2:a2:95:b3:fd:54:52:c9:6e:69: ad:53:f8:66:99:db:cc:e8:66:f1:96:0d:a5:36:1d: 27:da:9b:a8:67:e6:5e:26:d0:40:12:72:67:99:b3: 12:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B1:5A:E8:61:09:1D:EF:B4:EB:F4:6C:B3:F8:B5:CA:EE:85:9A:C8 X509v3 Authority Key Identifier: keyid:1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:e5:52:d3:8d:42:e5:9b:d1:2c:d2:e4:36:04:6b:34:9e:88: f1:a4:6f:13:a9:a1:c2:a2:4b:28:b2:91:b9:57:16:df:01:f9: 29:ae:7a:55:d0:b2:65:0f:7d:af:ec:4d:33:f4:f9:20:c0:1a: 63:9d:9e:f4:a4:e1:ee:26:5a:f2:2a:5b:82:07:17:cc:45:30: d3:c4:e7:6c:19:bc:df:33:0e:81:e2:90:38:f7:01:87:8b:c5: 83:8f:b1:b9:64:07:80:25:84:43:34:31:95:28:ea:ab:bb:c2: ab:ec:76:f2:92:af:a5:f3:29:c1:14:8b:59:89:07:2b:52:62: 96:61:68:13:cf:12:8c:e0:8e:37:41:0e:0e:d6:6f:b7:a1:d7: 97:ef:ba:42:15:36:8f:6a:69:d8:31:b5:14:60:1e:ba:34:e6: 9c:c7:3b:72:32:3f:41:b3:ff:71:e7:87:27:23:9b:36:08:5e: 05:63:39:2f:bf:22:44:a1:49:56:1b:d3:c1:4e:a0:fd:a5:41: 8e:82:81:c8:f7:a6:11:d6:cd:3c:e6:85:59:a6:76:69:62:6e: 30:4f:7b:8f:5e:37:82:68:c5:61:63:6d:82:31:32:52:be:82: e3:1f:c2:bb:81:09:72:8a:3f:47:68:09:a7:60:03:17:86:0b: 14:a9:2f:5f -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NEVFRjExMC8GA1UEBRMoMUNCOTVGM0Y3QkRFNkUxOTlCNzQwQjkyODJBQzcyMkE0 RURBOTk5QjAeFw0yNjAzMjUwNzQ5MTZaFw0yNjA0MDEwNzQ5MTZaMBgxFjAUBgNV BAMTDTY5YzM5MzdjLWRiZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9hzllwd2hVtnDV8mcHGmt/+exJTQajC4HSPHtozIGijRYJiBvsJeHij8ohKVO AlOBf7QFYYtuUq5ad5fOtoictfgTs+WPmIuswMPP5e+qWNipmRXrdsDlHmKs0OH7 9hzBWy4mvNEVVgSQZ3CkAbQKdirauIlqCyCnLD7KoWGyGoqlDdQ9zHTnEuAJFV05 BL8fSxJJlqssTOKmxjsB6gQMXAOOMk09dz7XWBSncljCv4xeFM/tkUXr8qyPb4yV P2q3YkpYcberkORPZjieZLUcLaza0Vp98qKVs/1UUsluaa1T+GaZ28zoZvGWDaU2 HSfam6hn5l4m0EAScmeZsxK/AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU0rFa6GEJ He+06/Rss/i1yu6FmsgwHwYDVR0jBBgwFoAUHLlfP3vebhmbdAuSgqxyKk7amZsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0RUVGL0NFQTgzNkJBREVG MzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmhtYmRBdVNncXh5S2s3YW1a cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSExsZlAzdmViaG1iZEF1U2dxeHlLazdhbVpzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 RUVGL0NFQTgzNkJBREVGMzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmht YmRBdVNncXh5S2s3YW1acy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCZ5VLTjULlm9Es0uQ2BGs0nojxpG8TqaHCoksospG5VxbfAfkprnpV0LJlD32v 7E0z9PkgwBpjnZ70pOHuJlryKluCBxfMRTDTxOdsGbzfMw6B4pA49wGHi8WDj7G5 ZAeAJYRDNDGVKOqru8Kr7Hbykq+l8ynBFItZiQcrUmKWYWgTzxKM4I43QQ4O1m+3 odeX77pCFTaPamnYMbUUYB66NOacxztyMj9Bs/9x54cnI5s2CF4FYzkvvyJEoUlW G9PBTqD9pUGOgoHI96YR1s085oVZpnZpYm4wT3uPXjeCaMVhY22CMTJSvoLjH8K7 gQlyij9HaAmnYAMXhgsUqS9f -----END CERTIFICATE-----Generated at Thu Mar 26 11:40:17 2026 by rpki-client