$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft File: HNLU8yahhKSHvyKs14rVwGj0ZmE.mft (raw, json) Hash identifier: Z6f+1jyQ+s+nyxfj1xur0IpUyrR2ciZ3HEgj5G4n6z8= Subject key identifier: 21:37:FE:40:AC:EF:7A:CC:3D:CE:31:69:B1:06:FA:DB:C6:27:AF:0A Authority key identifier: 1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 Certificate issuer: /CN=A91F8177/serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft Manifest number: 9E Signing time: Wed 25 Mar 2026 06:36:43 +0000 Manifest this update: Wed 25 Mar 2026 06:36:43 +0000 Manifest next update: Wed 01 Apr 2026 06:36:43 +0000 Files and hashes: 1: HNLU8yahhKSHvyKs14rVwGj0ZmE.crl (hash: DGep0MwPY531tYIm+2oEtaSd+micv5QlnomRrmMH+mg=) 2: 447A88023DDC11F0ACD9F475C4F9AE02.roa (hash: yApvKnBxIUvq7AlUwJW85McmrlejDSLKrMcrZmKRC/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:36:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8177, serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Validity Not Before: Mar 25 06:36:43 2026 GMT Not After : Apr 1 06:36:43 2026 GMT Subject: CN=69c3827b-4b4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f5:c4:79:8e:45:56:de:9e:f6:b1:11:f7:5c: bf:2c:9b:f8:23:cb:fa:02:8b:61:10:2c:45:93:de: 99:ed:39:b4:f8:e7:ae:34:e2:0a:03:55:59:fb:27: 96:cd:bb:cb:9d:81:6a:0d:20:9a:f7:3b:fb:58:4c: c8:67:7e:1f:19:2c:3f:ae:7b:6f:cc:d5:97:ae:bd: 35:f6:b0:2a:93:6a:64:c7:e7:be:ec:0e:71:a8:ee: 10:24:ce:0d:98:02:bd:83:19:c2:b9:73:d0:f0:56: 5d:4c:9d:8c:eb:8d:79:ea:3c:62:1c:6a:be:79:69: bd:b4:5b:3c:0f:03:a0:96:0d:79:a4:bc:5f:2a:30: d7:75:99:d2:4a:83:ae:cf:ca:d3:91:70:0e:3b:30: 74:7d:9a:06:99:cc:9b:9c:b6:b1:05:d2:0d:92:41: 13:09:f2:94:df:aa:70:9d:ac:16:c8:60:f5:ba:39: 50:7e:4c:b5:0e:0d:33:ab:0f:75:a7:13:34:96:d5: e2:a5:33:10:38:bd:23:37:ae:89:d8:53:9d:22:69: 76:b6:91:10:66:0c:d5:e1:da:47:0e:bc:ed:0c:fc: 9c:f7:67:c3:5b:94:2d:31:f8:f5:56:09:12:63:e1: 37:46:d8:b5:63:87:1b:e3:b2:55:fa:31:fb:2e:1e: a3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:37:FE:40:AC:EF:7A:CC:3D:CE:31:69:B1:06:FA:DB:C6:27:AF:0A X509v3 Authority Key Identifier: keyid:1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:26:58:06:ab:ec:08:1d:53:b8:6d:5a:e7:e0:2f:ed:d9:c2: c1:4d:da:7d:69:73:1e:07:ad:06:b4:77:df:7f:b4:93:47:aa: 4b:41:4d:5c:30:91:81:d8:5b:9b:8c:d3:a7:e8:3e:e9:c6:44: 0c:e9:6e:f1:91:42:5b:2d:37:86:bf:1a:db:10:31:27:70:af: d0:74:54:3d:f6:f8:82:1c:03:13:4c:bd:84:0f:12:4c:92:56: 39:55:13:b9:f1:7e:95:77:78:a3:ca:53:a9:36:c8:82:98:26: 17:94:ec:94:c4:51:27:e2:3f:09:cd:5b:ae:a0:9e:73:b0:d0: 66:d1:b0:aa:d6:47:fd:07:f2:f7:84:ee:72:91:9a:5a:ef:f5: b0:0c:8b:02:f1:c9:54:13:69:d2:c5:5a:22:38:2a:88:d6:bc: ad:ba:b7:be:f7:aa:91:f1:c5:9e:74:ef:2a:c7:ca:92:c0:79: 0f:4f:f2:16:ce:c3:41:d6:a0:f8:84:53:29:3e:60:da:a3:bc: 2f:4c:0e:23:5e:1d:30:24:fa:53:0c:b9:c2:84:da:ea:d8:73: 32:26:ef:11:af:3e:72:99:c0:b6:36:b6:41:a9:84:39:f6:74: a4:6c:d9:8e:a6:b7:49:95:61:47:9a:41:80:45:e5:17:5b:5d: 2e:db:7c:de -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxNzcxMTAvBgNVBAUTKDFDRDJENEYzMjZBMTg0QTQ4N0JGMjJBQ0Q3OEFENUMw NjhGNDY2NjEwHhcNMjYwMzI1MDYzNjQzWhcNMjYwNDAxMDYzNjQzWjAYMRYwFAYD VQQDEw02OWMzODI3Yi00YjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/XEeY5FVt6e9rER91y/LJv4I8v6AothECxFk96Z7Tm0+OeuNOIKA1VZ+yeW zbvLnYFqDSCa9zv7WEzIZ34fGSw/rntvzNWXrr019rAqk2pkx+e+7A5xqO4QJM4N mAK9gxnCuXPQ8FZdTJ2M64156jxiHGq+eWm9tFs8DwOglg15pLxfKjDXdZnSSoOu z8rTkXAOOzB0fZoGmcybnLaxBdINkkETCfKU36pwnawWyGD1ujlQfky1Dg0zqw91 pxM0ltXipTMQOL0jN66J2FOdIml2tpEQZgzV4dpHDrztDPyc92fDW5QtMfj1VgkS Y+E3Rti1Y4cb47JV+jH7Lh6j4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCE3/kCs 73rMPc4xabEG+tvGJ68KMB8GA1UdIwQYMBaAFBzS1PMmoYSkh78irNeK1cBo9GZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODE3Ny84QkEzRDhDNDNE REIxMUYwQUM5M0Q0MzJDNEY5QUUwMi9ITkxVOHlhaGhLU0h2eUtzMTRyVndHajBa bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hOTFU4eWFoaEtTSHZ5S3MxNHJWd0dqMFptRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODE3Ny84QkEzRDhDNDNEREIxMUYwQUM5M0Q0MzJDNEY5QUUwMi9ITkxVOHlhaGhL U0h2eUtzMTRyVndHajBabUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFCZYBqvsCB1TuG1a5+Av7dnCwU3afWlzHgetBrR333+0k0eqS0FNXDCRgdhb m4zTp+g+6cZEDOlu8ZFCWy03hr8a2xAxJ3Cv0HRUPfb4ghwDE0y9hA8STJJWOVUT ufF+lXd4o8pTqTbIgpgmF5TslMRRJ+I/Cc1brqCec7DQZtGwqtZH/Qfy94TucpGa Wu/1sAyLAvHJVBNp0sVaIjgqiNa8rbq3vveqkfHFnnTvKsfKksB5D0/yFs7DQdag +IRTKT5g2qO8L0wOI14dMCT6Uwy5woTa6thzMibvEa8+cpnAtja2QamEOfZ0pGzZ jqa3SZVhR5pBgEXlF1tdLtt83g== -----END CERTIFICATE-----Generated at Thu Mar 26 07:27:12 2026 by rpki-client