$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: xaYLXRDN0I5kQ+064eFqkVZGTAepv9u///9GxAQpaC4= Subject key identifier: 2C:CE:B1:8C:67:5D:51:D9:2F:B1:96:14:C1:5D:4E:FA:E5:90:EA:DA Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 088A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 086C Signing time: Tue 24 Mar 2026 20:35:56 +0000 Manifest this update: Tue 24 Mar 2026 20:35:55 +0000 Manifest next update: Tue 31 Mar 2026 20:35:55 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: Yo4EZeWb2vf/LQ/6bibSqzqZIwhB+eA0jUkLJOjWTjE=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: 08lz7b6szSEMQO1jrd2yTTyJym47lMNxqFGZhqAfyUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:35:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2186 (0x88a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F, serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Mar 24 20:35:55 2026 GMT Not After : Mar 31 20:35:55 2026 GMT Subject: CN=69c2f5ab-0393 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:82:23:0f:bf:b8:b4:1e:52:9e:ff:ec:a6:78: 76:c0:88:b7:c4:6b:e9:b6:65:12:72:14:03:66:d2: 8f:1b:ce:2c:a7:c8:92:4e:ad:7d:ea:94:d1:99:04: 0a:c4:d0:93:e2:87:df:cb:05:6d:7c:91:2f:00:62: f6:08:3f:44:08:41:53:51:2e:b5:e5:c6:3e:47:84: 4f:e5:5c:05:ef:ca:65:af:bd:d8:55:be:ab:2e:df: 04:3e:02:76:85:48:5f:3b:68:f0:ba:eb:3b:fb:bb: aa:af:fc:fa:37:06:fa:80:6a:ce:b9:64:e6:5c:30: 13:3d:8a:8e:87:7b:e5:a0:8e:aa:78:cf:e0:08:ff: 05:7b:30:94:0d:db:5b:cd:6b:4a:55:3b:1f:9d:d2: fc:77:0c:c5:46:3d:19:8c:cf:f7:b2:f7:22:00:15: 78:1c:72:96:73:a7:b6:cd:d4:af:b8:6f:f4:a8:f9: c1:76:11:83:19:a2:6e:10:c6:42:04:bb:2d:9f:98: 54:c9:e0:e9:53:29:62:cf:31:14:b1:7a:9c:6b:0a: 84:5b:8f:88:d7:cb:da:52:3a:3d:1b:77:78:dc:d5: 7c:b7:58:dd:f4:2e:14:01:cf:fb:81:fc:87:a9:93: 39:4b:d6:dd:b5:b5:f7:9e:d4:b5:9b:ac:ce:ad:3d: e9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:CE:B1:8C:67:5D:51:D9:2F:B1:96:14:C1:5D:4E:FA:E5:90:EA:DA X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:af:69:6a:e6:76:a0:59:bb:e1:dd:e2:ec:fd:44:8f:c6:b5: ba:a6:5f:7b:86:a0:fc:e7:85:1e:0a:b0:e8:43:af:d8:67:fd: d0:f4:73:02:df:8e:6d:60:24:73:d6:c6:ba:47:43:4c:12:0e: 6a:1c:7a:dd:e1:e8:6d:61:9e:b7:ad:8a:7d:9c:7d:76:cb:37: d4:ff:96:45:9b:31:55:3a:d6:76:ab:c2:ec:d7:eb:db:a3:c9: 26:84:c8:e8:ca:7a:02:c7:f0:d5:04:c8:c9:fe:55:91:c5:de: 3e:cf:88:61:f6:33:e2:7f:c9:1b:85:59:a5:55:06:3e:ef:24: e6:0a:fa:87:ef:dd:99:86:4f:2a:35:49:c8:b0:2c:0d:1b:e0: ee:34:60:91:21:74:3a:0a:e8:7e:a2:a1:db:ec:e8:d5:63:b6: 48:74:c0:b3:7b:c9:14:5e:ce:98:89:3e:f2:82:e0:e7:09:d4: a4:27:69:ac:75:23:1e:e0:83:81:12:26:ec:84:e0:40:03:28: 14:77:5d:03:ec:8f:79:c9:b8:27:71:b5:3a:1f:86:c9:f7:81: 63:13:ff:28:a9:2a:03:68:2f:0f:65:c4:a6:9b:71:cd:21:04: a3:a4:7b:51:d5:83:f8:1b:b6:8c:d5:e6:dd:eb:e1:ad:69:90: 3c:04:44:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjYwMzI0MjAzNTU1WhcNMjYwMzMxMjAzNTU1WjAYMRYwFAYD VQQDEw02OWMyZjVhYi0wMzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArIIjD7+4tB5Snv/spnh2wIi3xGvptmUSchQDZtKPG84sp8iSTq196pTRmQQK xNCT4offywVtfJEvAGL2CD9ECEFTUS615cY+R4RP5VwF78plr73YVb6rLt8EPgJ2 hUhfO2jwuus7+7uqr/z6Nwb6gGrOuWTmXDATPYqOh3vloI6qeM/gCP8FezCUDdtb zWtKVTsfndL8dwzFRj0ZjM/3svciABV4HHKWc6e2zdSvuG/0qPnBdhGDGaJuEMZC BLstn5hUyeDpUylizzEUsXqcawqEW4+I18vaUjo9G3d43NV8t1jd9C4UAc/7gfyH qZM5S9bdtbX3ntS1m6zOrT3pVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCzOsYxn XVHZL7GWFMFdTvrlkOraMB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKq9pauZ2oFm74d3i7P1Ej8a1uqZfe4ag/OeFHgqw6EOv2Gf90PRzAt+ObWAk c9bGukdDTBIOahx63eHobWGet62KfZx9dss31P+WRZsxVTrWdqvC7Nfr26PJJoTI 6Mp6Asfw1QTIyf5VkcXePs+IYfYz4n/JG4VZpVUGPu8k5gr6h+/dmYZPKjVJyLAs DRvg7jRgkSF0OgrofqKh2+zo1WO2SHTAs3vJFF7OmIk+8oLg5wnUpCdprHUjHuCD gRIm7ITgQAMoFHddA+yPecm4J3G1Oh+GyfeBYxP/KKkqA2gvD2XEpptxzSEEo6R7 UdWD+Bu2jNXm3evhrWmQPAREuA== -----END CERTIFICATE-----Generated at Thu Mar 26 22:08:16 2026 by rpki-client