$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: TVbq+v7Nv1+Jys7LcOBOqNsjRc5UjuKeDFmY+u87Gs8= Subject key identifier: F2:A0:8A:F4:3B:97:18:DE:8D:C0:73:9D:1D:67:44:BD:86:8E:0D:4A Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 088B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 086D Signing time: Thu 26 Mar 2026 20:43:13 +0000 Manifest this update: Thu 26 Mar 2026 20:43:12 +0000 Manifest next update: Thu 02 Apr 2026 20:43:12 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: wleNU/ndmhfPMjvmFaVU58dEslgC9ZmygOwUIDVr8Fw=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: 08lz7b6szSEMQO1jrd2yTTyJym47lMNxqFGZhqAfyUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:43:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2187 (0x88b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F, serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Mar 26 20:43:12 2026 GMT Not After : Apr 2 20:43:12 2026 GMT Subject: CN=69c59a61-3c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e8:10:5d:01:a0:7c:6c:e6:12:e8:e2:34:65: de:4c:24:d1:4f:cd:15:39:c8:e5:cb:f5:9b:f4:40: 6b:90:93:81:1a:49:f8:a8:a7:69:4d:9b:a7:cb:df: fb:44:5e:b7:cd:0c:62:9e:83:17:ba:7d:fc:3a:81: f8:dc:48:3d:57:bb:0d:b6:d9:1b:ee:f7:4b:da:1f: a3:b8:b7:bd:b0:dc:9f:ac:f6:44:30:15:17:84:be: 57:6c:77:a8:21:28:9a:01:24:bc:01:0d:ad:da:76: 7e:5d:04:a0:1d:f7:12:e4:91:6c:51:39:2b:ef:86: e2:88:9e:c3:bc:23:ed:ea:31:3c:11:80:a9:a3:fa: 4c:c7:f1:d6:67:92:82:f4:d6:6f:2b:91:34:75:ee: 31:fc:7f:0e:d2:8d:be:11:c2:9d:dc:ad:ea:20:9d: 74:fd:46:52:86:5b:d6:18:5c:b5:d2:71:93:b2:32: 65:38:03:31:70:77:9b:6d:7b:5c:ea:1b:39:d9:b7: 8e:db:51:a5:84:e1:13:6a:27:40:1e:3e:7d:3d:2c: df:b8:b7:6b:7c:76:85:b0:97:81:90:b9:12:52:fd: 7c:98:4f:e2:71:d4:5e:b5:e9:97:39:8c:7b:bd:63: 97:3b:81:72:a3:3e:46:2c:82:49:30:b5:cc:01:7d: 0e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:A0:8A:F4:3B:97:18:DE:8D:C0:73:9D:1D:67:44:BD:86:8E:0D:4A X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:c5:a6:2a:35:40:77:4b:d3:b0:87:b6:7f:9d:b1:ad:7a:63: 50:e9:4c:b1:3e:4e:66:39:65:03:b6:21:61:c1:59:b9:3e:5f: f6:67:e1:99:12:4a:b2:c7:d2:fc:f7:69:19:14:ae:67:55:20: a4:3d:03:38:86:6b:a6:2a:1d:f2:a7:38:dc:3f:a2:37:11:1d: eb:cc:30:a7:15:a4:5d:82:b7:e5:64:7b:42:98:da:3b:e6:57: 57:20:13:4a:a2:52:03:e3:00:87:c3:22:4f:d0:a7:d1:d9:0f: 73:64:5e:bf:7e:76:01:2c:83:a5:1b:25:23:00:3c:97:25:36: 32:69:4b:83:a7:02:64:ac:01:b2:ac:06:57:f6:a8:e7:54:88: 5a:b1:00:c0:13:58:f6:84:5a:42:42:fa:68:4d:23:f0:ed:0f: 57:aa:82:2e:82:35:3a:b5:d3:66:56:cb:ee:02:58:18:d8:51: 55:a4:99:91:b9:37:8b:72:fd:09:e0:91:a5:fd:aa:22:c9:3e: 4c:47:5c:f5:ca:fb:9b:e9:ab:a5:63:b8:6e:10:57:1b:6b:a9: 67:79:b9:a5:44:84:87:79:cf:ca:79:53:9c:f4:9e:3b:f8:5f: f2:25:56:6d:0a:54:76:a1:b6:00:75:10:86:dc:6a:c3:4d:14: b4:78:17:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjYwMzI2MjA0MzEyWhcNMjYwNDAyMjA0MzEyWjAYMRYwFAYD VQQDEw02OWM1OWE2MS0zYzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOgQXQGgfGzmEujiNGXeTCTRT80VOcjly/Wb9EBrkJOBGkn4qKdpTZuny9/7 RF63zQxinoMXun38OoH43Eg9V7sNttkb7vdL2h+juLe9sNyfrPZEMBUXhL5XbHeo ISiaASS8AQ2t2nZ+XQSgHfcS5JFsUTkr74biiJ7DvCPt6jE8EYCpo/pMx/HWZ5KC 9NZvK5E0de4x/H8O0o2+EcKd3K3qIJ10/UZShlvWGFy10nGTsjJlOAMxcHebbXtc 6hs52beO21GlhOETaidAHj59PSzfuLdrfHaFsJeBkLkSUv18mE/icdRetemXOYx7 vWOXO4Fyoz5GLIJJMLXMAX0OVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPKgivQ7 lxjejcBznR1nRL2Gjg1KMB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGsWmKjVAd0vTsIe2f52xrXpjUOlMsT5OZjllA7YhYcFZuT5f9mfhmRJKssfS /PdpGRSuZ1UgpD0DOIZrpiod8qc43D+iNxEd68wwpxWkXYK35WR7QpjaO+ZXVyAT SqJSA+MAh8MiT9Cn0dkPc2Rev352ASyDpRslIwA8lyU2MmlLg6cCZKwBsqwGV/ao 51SIWrEAwBNY9oRaQkL6aE0j8O0PV6qCLoI1OrXTZlbL7gJYGNhRVaSZkbk3i3L9 CeCRpf2qIsk+TEdc9cr7m+mrpWO4bhBXG2upZ3m5pUSEh3nPynlTnPSeO/hf8iVW bQpUdqG2AHUQhtxqw00UtHgXTA== -----END CERTIFICATE-----Generated at Fri Mar 27 05:05:39 2026 by rpki-client