$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft File: hgOgrKcgSw7-1k23DeUcdboDk1U.mft (raw, json) Hash identifier: TE3ejVXaLRZUqJ2r2prEE7BkoeUl3+zkSm8U4DKCgP4= Subject key identifier: 62:03:EA:6F:48:DE:EE:63:A0:D1:11:53:F0:11:16:85:F2:B7:3A:82 Authority key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 Certificate issuer: /CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Certificate serial: 036C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft Manifest number: 0353 Signing time: Sun 19 Apr 2026 00:57:35 +0000 Manifest this update: Sun 19 Apr 2026 00:57:34 +0000 Manifest next update: Sun 26 Apr 2026 00:57:34 +0000 Files and hashes: 1: hgOgrKcgSw7-1k23DeUcdboDk1U.crl (hash: 31D+4lOM7zVkZL+B1Lztw2uldTkue9Gd3kOzPW11PAI=) 2: 208C7D2E066C11EDB31C2239C4F9AE02.roa (hash: 384lM558CG+awOCq+Jp4xJkMm0eBCvPqegdL9GG+nvU=) 3: 673C2B68A8BA11F096079D46C4F9AE02.roa (hash: iAesf40760Ge7OkqHg9mpMk5sp26zXObALVRo0oegXY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 00:57:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 876 (0x36c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EB2, serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Validity Not Before: Apr 19 00:57:34 2026 GMT Not After : Apr 26 00:57:34 2026 GMT Subject: CN=69e4287f-82d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:08:c4:f0:45:ab:5f:58:53:9e:cd:c1:7f:4c: d8:94:de:0a:ea:ac:4f:39:71:60:66:6d:36:f6:df: af:ac:93:a2:3b:a6:65:f1:25:73:62:50:4c:dd:f3: 97:06:84:7c:a4:93:be:66:9b:fb:f9:78:9e:c6:4e: b1:8a:fa:2b:9d:d2:84:dd:80:af:b8:c3:3c:29:8e: 1c:31:f2:66:34:8f:f1:2e:18:35:14:c5:25:fa:a6: 76:93:92:aa:38:66:af:93:58:bd:6e:89:9d:54:19: 74:34:5d:24:40:b2:5e:95:5c:12:51:8f:18:74:a1: e6:1e:29:c8:43:8c:9e:fd:a5:10:2b:41:19:67:2e: b9:a6:4b:95:e4:dd:94:ac:eb:8b:6c:f2:1e:1a:61: 99:96:6e:79:ec:35:f8:a1:39:c2:10:ad:af:f7:19: 1a:53:c0:e0:7d:34:26:d8:ca:d6:5c:ef:64:fc:6b: b1:fc:47:59:d1:79:66:36:b0:2a:85:44:37:b8:e5: a5:b8:d4:a6:ad:9f:14:c9:a1:cd:57:e3:4e:b0:47: 4e:a7:14:3d:96:e4:dc:fd:60:8c:f4:f8:c5:6c:3f: 10:d1:9f:25:60:16:0f:7d:36:bb:37:f9:8c:12:1e: ae:f3:a0:56:e9:5b:4e:61:ba:db:bc:da:b5:c1:71: e7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:03:EA:6F:48:DE:EE:63:A0:D1:11:53:F0:11:16:85:F2:B7:3A:82 X509v3 Authority Key Identifier: keyid:86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:dc:f4:c9:1e:56:da:9f:ec:fd:70:4e:b3:b7:f7:cc:b4:2a: e0:0b:6a:dc:b3:da:4c:23:e8:23:16:a6:c1:57:f0:a8:6e:82: f0:cd:7e:58:fe:05:14:75:d1:38:8d:ce:f8:91:98:6b:9c:b8: 8a:b8:b1:30:9e:6c:45:48:58:ad:6f:33:55:08:27:85:fb:50: d2:30:6b:67:5f:f2:14:9c:3d:09:b7:0d:6b:83:1c:f0:3b:97: 2e:06:ff:47:13:37:32:e2:67:f4:66:01:70:e5:d7:51:ee:c7: 9f:20:76:d0:58:eb:d2:96:76:3d:4b:c0:87:a9:9e:9e:da:4a: 37:a0:a5:73:6f:f6:7b:21:be:cd:9e:f7:f7:3e:03:f3:61:85: 02:92:f2:f4:ae:a9:54:93:64:da:68:74:cb:78:66:b0:83:10: af:21:ae:5f:cf:a6:87:39:59:d9:5a:c8:51:45:0d:2c:c4:28: 5f:53:a1:32:c8:0b:6f:5e:52:db:1e:27:21:0e:e1:25:5b:02: d2:84:d8:31:19:a3:bb:70:d9:40:19:69:bf:4b:5c:4e:7b:b5: 9a:52:b2:38:b2:0e:68:4e:d1:68:16:38:89:b7:55:b2:19:80: da:38:a5:9a:66:0c:99:11:42:15:72:ce:d3:2e:86:4e:80:5f: b8:df:9d:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFQjIxMTAvBgNVBAUTKDg2MDNBMEFDQTcyMDRCMEVGRUQ2NERCNzBERTUxQzc1 QkEwMzkzNTUwHhcNMjYwNDE5MDA1NzM0WhcNMjYwNDI2MDA1NzM0WjAYMRYwFAYD VQQDEw02OWU0Mjg3Zi04MmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQjE8EWrX1hTns3Bf0zYlN4K6qxPOXFgZm029t+vrJOiO6Zl8SVzYlBM3fOX BoR8pJO+Zpv7+Xiexk6xivorndKE3YCvuMM8KY4cMfJmNI/xLhg1FMUl+qZ2k5Kq OGavk1i9bomdVBl0NF0kQLJelVwSUY8YdKHmHinIQ4ye/aUQK0EZZy65pkuV5N2U rOuLbPIeGmGZlm557DX4oTnCEK2v9xkaU8DgfTQm2MrWXO9k/Gux/EdZ0XlmNrAq hUQ3uOWluNSmrZ8UyaHNV+NOsEdOpxQ9luTc/WCM9PjFbD8Q0Z8lYBYPfTa7N/mM Eh6u86BW6VtOYbrbvNq1wXHnVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGID6m9I 3u5joNERU/ARFoXytzqCMB8GA1UdIwQYMBaAFIYDoKynIEsO/tZNtw3lHHW6A5NV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVCMi83QUM3NjdERTA2 NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3Ny0xazIzRGVVY2Rib0Rr MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnT2dyS2NnU3c3LTFrMjNEZVVjZGJvRGsxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVCMi83QUM3NjdERTA2NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3 Ny0xazIzRGVVY2Rib0RrMVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaNz0yR5W2p/s/XBOs7f3zLQq4Atq3LPaTCPoIxamwVfwqG6C8M1+WP4FFHXR OI3O+JGYa5y4irixMJ5sRUhYrW8zVQgnhftQ0jBrZ1/yFJw9CbcNa4Mc8DuXLgb/ RxM3MuJn9GYBcOXXUe7HnyB20Fjr0pZ2PUvAh6mentpKN6Clc2/2eyG+zZ739z4D 82GFApLy9K6pVJNk2mh0y3hmsIMQryGuX8+mhzlZ2VrIUUUNLMQoX1OhMsgLb15S 2x4nIQ7hJVsC0oTYMRmju3DZQBlpv0tcTnu1mlKyOLIOaE7RaBY4ibdVshmA2jil mmYMmRFCFXLO0y6GToBfuN+d/g== -----END CERTIFICATE-----Generated at Sun Apr 19 09:45:09 2026 by rpki-client