$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft File: HQ2sEe2C41wjsMvv--4AYmOwmVc.mft (raw, json) Hash identifier: CKZrg4CtIYfvqvuqjCiMDjLTY2743VT0f0fGYuFEPro= Subject key identifier: A9:56:FD:37:B4:80:0A:80:0A:C9:B3:AE:76:58:AE:3D:0C:9C:3B:54 Authority key identifier: 1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 Certificate issuer: /CN=A91EA9C0/serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft Manifest number: 9F Signing time: Fri 27 Mar 2026 06:52:31 +0000 Manifest this update: Fri 27 Mar 2026 06:52:31 +0000 Manifest next update: Fri 03 Apr 2026 06:52:31 +0000 Files and hashes: 1: HQ2sEe2C41wjsMvv--4AYmOwmVc.crl (hash: DCffKMnSK2yM7UcydYDwZUeAQtNzUW5B12Xyux/Eo2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 06:52:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9C0, serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Validity Not Before: Mar 27 06:52:31 2026 GMT Not After : Apr 3 06:52:31 2026 GMT Subject: CN=69c6292f-40ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f3:6c:67:59:43:2c:04:a3:f3:c6:6a:b1:52: 17:40:50:d7:05:69:9c:f5:7f:21:20:bd:0d:ab:ae: 29:d2:4b:7c:fc:1b:79:a9:f0:7b:e8:01:3f:61:8b: a8:cb:7f:a0:67:8a:da:0d:9d:9a:c7:93:67:19:4d: a8:a1:a6:e3:52:c7:6c:5d:d1:e1:ed:5f:ab:f6:11: 0d:7b:4c:69:a6:69:3f:d7:c6:62:87:69:44:48:e8: 7d:c0:5a:84:7f:e9:4e:85:6a:fc:0f:6b:50:41:44: ac:f8:27:07:00:e2:56:c6:77:57:26:0a:6a:80:18: 56:f8:99:f3:57:46:15:64:4c:dd:dc:bb:41:3f:bb: c9:82:76:9d:89:63:fb:ba:e9:bd:70:ac:d2:63:40: da:97:a7:26:2f:e0:35:8f:f6:57:11:ea:78:00:43: 13:7a:65:22:d4:c3:4a:13:e3:6f:31:24:f7:1f:6e: f4:0e:e4:fe:f2:fc:04:d4:cd:0d:a8:63:20:ac:0d: 07:cf:dd:25:ff:65:01:8a:d0:fe:e8:5a:7b:0e:9b: e4:1a:38:b4:9a:bc:2c:3f:93:79:ec:ae:d5:3d:e9: cb:b8:de:52:d5:2b:64:f3:ad:c5:a9:92:d2:78:53: 41:33:cf:5c:30:34:01:12:f1:d7:04:48:ea:40:c2: a8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:56:FD:37:B4:80:0A:80:0A:C9:B3:AE:76:58:AE:3D:0C:9C:3B:54 X509v3 Authority Key Identifier: keyid:1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:61:6b:83:21:b4:05:52:04:53:da:2b:ea:90:13:0a:a9:ef: 07:61:3e:7e:36:55:94:5a:52:94:b8:ad:5d:ba:a0:2c:d9:14: 71:51:ba:45:a3:4a:5e:f1:20:89:07:12:8f:b0:60:a7:2b:87: e5:2e:4e:3d:69:7d:0a:2c:2e:4e:8c:50:52:34:65:03:1f:18: c4:7b:61:90:41:f4:10:65:31:ad:ef:f8:49:03:8c:ad:ff:3f: 36:90:81:06:28:e6:df:7c:73:b1:f6:95:31:15:e4:28:77:36: 9a:6d:ba:83:a8:4a:e9:aa:b7:d1:aa:ba:ce:41:9b:43:dd:9e: 24:28:a2:69:db:10:03:ab:f0:f5:9d:97:6e:1e:1e:21:da:13: 40:0e:67:b1:ef:b9:d6:28:de:53:6b:95:d6:82:2d:17:48:1a: 0c:c8:05:df:95:99:39:37:93:73:91:80:4e:e7:be:59:69:c6: 8a:47:2e:a0:66:f4:91:c9:59:c0:ba:2e:5a:9e:23:2c:39:58: 5f:cd:c4:18:3c:ee:af:d7:7d:45:fc:d0:48:b2:3d:c2:aa:53: 24:25:32:fe:72:e9:9f:98:55:dc:bf:d1:6d:9c:80:3e:e3:d4: c5:b0:a4:fb:05:4e:3a:b8:cb:0d:8d:09:b3:20:f0:41:0e:dd: 1a:01:c8:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QzAxMTAvBgNVBAUTKDFEMERBQzExRUQ4MkUzNUMyM0IwQ0JFRkZCRUUwMDYy NjNCMDk5NTcwHhcNMjYwMzI3MDY1MjMxWhcNMjYwNDAzMDY1MjMxWjAYMRYwFAYD VQQDEw02OWM2MjkyZi00MGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PNsZ1lDLASj88ZqsVIXQFDXBWmc9X8hIL0Nq64p0kt8/Bt5qfB76AE/YYuo y3+gZ4raDZ2ax5NnGU2ooabjUsdsXdHh7V+r9hENe0xppmk/18Zih2lESOh9wFqE f+lOhWr8D2tQQUSs+CcHAOJWxndXJgpqgBhW+JnzV0YVZEzd3LtBP7vJgnadiWP7 uum9cKzSY0Dal6cmL+A1j/ZXEep4AEMTemUi1MNKE+NvMST3H270DuT+8vwE1M0N qGMgrA0Hz90l/2UBitD+6Fp7DpvkGji0mrwsP5N57K7VPenLuN5S1Stk863FqZLS eFNBM89cMDQBEvHXBEjqQMKowwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKlW/Te0 gAqACsmzrnZYrj0MnDtUMB8GA1UdIwQYMBaAFB0NrBHtguNcI7DL7/vuAGJjsJlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlDMC81QUZCMTQ4RTM4 ODIxMUYwOENDQjE4NjZDNEY5QUUwMi9IUTJzRWUyQzQxd2pzTXZ2LS00QVltT3dt VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRMnNFZTJDNDF3anNNdnYtLTRBWW1Pd21WYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlDMC81QUZCMTQ4RTM4ODIxMUYwOENDQjE4NjZDNEY5QUUwMi9IUTJzRWUyQzQx d2pzTXZ2LS00QVltT3dtVmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAF2FrgyG0BVIEU9or6pATCqnvB2E+fjZVlFpSlLitXbqgLNkUcVG6RaNKXvEg iQcSj7BgpyuH5S5OPWl9CiwuToxQUjRlAx8YxHthkEH0EGUxre/4SQOMrf8/NpCB Bijm33xzsfaVMRXkKHc2mm26g6hK6aq30aq6zkGbQ92eJCiiadsQA6vw9Z2Xbh4e IdoTQA5nse+51ijeU2uV1oItF0gaDMgF35WZOTeTc5GATue+WWnGikcuoGb0kclZ wLouWp4jLDlYX83EGDzur9d9RfzQSLI9wqpTJCUy/nLpn5hV3L/RbZyAPuPUxbCk +wVOOrjLDY0JsyDwQQ7dGgHI9g== -----END CERTIFICATE-----Generated at Sat Mar 28 14:29:11 2026 by rpki-client