$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft File: HWQu0o7OpfKqzzR7Fgl_nZJB120.mft (raw, json) Hash identifier: S43+FTBS60yBYW5nBPtE8Hv2BjIpmfQWRTlycAIcB2A= Subject key identifier: E0:0C:C5:DC:A0:9D:C7:05:87:1A:3A:C1:B9:C6:28:F6:E1:0A:69:D9 Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D Certificate issuer: /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Certificate serial: 03FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft Manifest number: 03F6 Signing time: Fri 17 Apr 2026 00:22:59 +0000 Manifest this update: Fri 17 Apr 2026 00:22:58 +0000 Manifest next update: Fri 24 Apr 2026 00:22:58 +0000 Files and hashes: 1: HWQu0o7OpfKqzzR7Fgl_nZJB120.crl (hash: WzjllL1hc/CqtyHz7hHU+2QgJkm7K+79dkENl3p9FYc=) 2: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (hash: fPiSn9EKp07Pksf7OzdvkznMDYTa4tFQoVJ+7TRcTvU=) 3: 64197A380C4E11F1BFF51C3A113D8C67.roa (hash: SDIwrvKhvQfNC2FFKTmp/C4FfAE+5eImdfafppjPTLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1021 (0x3fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118E3A, serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Validity Not Before: Apr 17 00:22:58 2026 GMT Not After : Apr 24 00:22:58 2026 GMT Subject: CN=69e17d63-25a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a4:36:aa:96:c1:ad:39:1c:e1:7c:3b:4f:0a: 5c:10:04:08:4d:1b:89:f7:f8:f6:da:73:2d:66:74: 21:27:6b:d8:dd:8d:75:1b:80:ab:13:3a:e6:0f:f1: f0:1b:08:f4:92:58:e9:c2:65:70:16:4d:5d:83:d5: 20:61:61:33:63:fa:db:69:29:1d:9c:cc:8d:b6:d8: ce:da:cf:c1:b6:9c:f6:86:51:4c:9e:e6:06:48:4b: 2f:2b:e3:82:56:3f:14:c6:24:59:21:31:b3:b3:70: 16:f6:df:b5:43:3d:7d:44:6e:79:41:1a:54:2f:01: 39:a0:f4:a8:1f:3c:69:84:2e:91:fc:44:67:bb:ab: aa:d2:64:90:50:3e:95:01:fa:0f:10:f7:e0:e0:a9: 40:3b:03:47:4b:3d:85:b2:d5:2c:31:4f:15:48:59: 7f:b5:46:73:b9:8c:f9:76:21:b9:98:e2:1b:6d:d3: db:83:06:d8:9e:d3:db:8e:d0:d0:a2:18:52:59:ae: cf:fe:da:c5:b4:bf:3e:dd:fb:68:c9:16:b5:96:c5: f7:fd:38:98:e3:17:5e:00:4d:b1:71:e4:e6:95:72: ec:24:ee:16:76:70:ec:bb:ea:16:b4:f0:8b:fd:3e: 70:c1:ef:80:d4:83:ec:7f:16:01:d8:8c:16:0c:ca: 7c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:0C:C5:DC:A0:9D:C7:05:87:1A:3A:C1:B9:C6:28:F6:E1:0A:69:D9 X509v3 Authority Key Identifier: keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:3e:0d:94:b1:20:e4:45:51:62:1b:0a:57:6a:78:7a:df:d5: 47:be:f5:02:dc:e6:59:d2:36:f6:43:d2:16:91:9e:ea:08:86: 76:df:55:61:cb:00:94:ba:a1:22:4b:dd:34:f9:62:7c:cc:3b: 2a:be:6a:94:33:e4:e8:1f:67:57:57:5b:0c:20:d1:bf:48:19: 3e:75:aa:18:9f:4b:03:4b:a0:5b:c8:a9:9d:6e:fb:43:48:45: e1:35:d5:aa:10:e6:ed:2c:5e:27:1e:b7:56:3e:d6:11:e3:61: f9:a4:58:48:df:70:a7:f7:b4:c7:75:ad:b4:88:91:dd:07:1b: 50:77:c3:c9:14:c1:cd:b5:fe:9f:14:61:cd:f9:19:92:4c:df: d5:cc:f7:af:1a:2d:22:ec:6c:c9:50:03:cf:97:37:40:5a:04: cf:e6:f3:09:1e:16:27:71:11:c5:fa:c9:88:f1:36:d3:87:f1: 4c:a8:a4:c8:07:d2:e0:ca:6a:84:ea:ea:db:95:4d:4b:e0:48: 42:34:bb:b4:70:4c:99:38:30:44:f6:22:b5:d6:20:03:bf:f8: b4:fa:72:fa:04:2c:4c:f7:b4:cf:89:a0:74:f4:f2:44:b2:6b: 88:aa:16:ba:e8:02:da:99:34:bf:23:b5:fe:01:6f:39:12:49: 46:ac:7b:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFM0ExMTAvBgNVBAUTKDFENjQyRUQyOEVDRUE1RjJBQUNGMzQ3QjE2MDk3RjlE OTI0MUQ3NkQwHhcNMjYwNDE3MDAyMjU4WhcNMjYwNDI0MDAyMjU4WjAYMRYwFAYD VQQDEw02OWUxN2Q2My0yNWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKQ2qpbBrTkc4Xw7TwpcEAQITRuJ9/j22nMtZnQhJ2vY3Y11G4CrEzrmD/Hw Gwj0kljpwmVwFk1dg9UgYWEzY/rbaSkdnMyNttjO2s/Btpz2hlFMnuYGSEsvK+OC Vj8UxiRZITGzs3AW9t+1Qz19RG55QRpULwE5oPSoHzxphC6R/ERnu6uq0mSQUD6V AfoPEPfg4KlAOwNHSz2FstUsMU8VSFl/tUZzuYz5diG5mOIbbdPbgwbYntPbjtDQ ohhSWa7P/trFtL8+3ftoyRa1lsX3/TiY4xdeAE2xceTmlXLsJO4WdnDsu+oWtPCL /T5wwe+A1IPsfxYB2IwWDMp8twIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOAMxdyg nccFhxo6wbnGKPbhCmnZMB8GA1UdIwQYMBaAFB1kLtKOzqXyqs80exYJf52SQddt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEUzQS9BN0FCMEE4QUI5 OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3BmS3F6elI3RmdsX25aSkIx MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXUXUwbzdPcGZLcXp6UjdGZ2xfblpKQjEyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEUzQS9BN0FCMEE4QUI5OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3Bm S3F6elI3RmdsX25aSkIxMjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkj4NlLEg5EVRYhsKV2p4et/VR771AtzmWdI29kPSFpGe6giGdt9VYcsAlLqh IkvdNPlifMw7Kr5qlDPk6B9nV1dbDCDRv0gZPnWqGJ9LA0ugW8ipnW77Q0hF4TXV qhDm7SxeJx63Vj7WEeNh+aRYSN9wp/e0x3WttIiR3QcbUHfDyRTBzbX+nxRhzfkZ kkzf1cz3rxotIuxsyVADz5c3QFoEz+bzCR4WJ3ERxfrJiPE204fxTKikyAfS4Mpq hOrq25VNS+BIQjS7tHBMmTgwRPYitdYgA7/4tPpy+gQsTPe0z4mgdPTyRLJriKoW uugC2pk0vyO1/gFvORJJRqx75A== -----END CERTIFICATE-----Generated at Fri Apr 17 07:52:18 2026 by rpki-client