$ rpki-client -vvf rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.mft File: Hr-HiCR2Rfmq8BbQIPTPwuITwpY.mft (raw, json) Hash identifier: aj6GzL9xTrOhLJd0vd41UUp/1O/vTbuPkNvIfmCOQwU= Subject key identifier: 11:8C:30:4F:87:54:A4:40:5F:32:CD:11:E6:50:A4:91:B3:29:A6:31 Authority key identifier: 1E:BF:87:88:24:76:45:F9:AA:F0:16:D0:20:F4:CF:C2:E2:13:C2:96 Certificate issuer: /CN=A912C770/serialNumber=1EBF8788247645F9AAF016D020F4CFC2E213C296 Certificate serial: 0C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.mft Manifest number: 09 Signing time: Sun 01 Mar 2026 10:42:17 +0000 Manifest this update: Sun 01 Mar 2026 10:42:17 +0000 Manifest next update: Sun 08 Mar 2026 10:42:17 +0000 Files and hashes: 1: Hr-HiCR2Rfmq8BbQIPTPwuITwpY.crl (hash: n4g2sQ+Ykm2f/VCATTCbus44FzlZ0E2V5MTnXKMolds=) 2: C7FCC7D210DE11F18FBC6D5B083D8C67.roa (hash: ZJ2mGof4d8TGjIUSjiSJIxX88gLNKzRhctZ8YiDrvqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.crl rsync://rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C770, serialNumber=1EBF8788247645F9AAF016D020F4CFC2E213C296 Validity Not Before: Mar 1 10:42:17 2026 GMT Not After : Mar 8 10:42:17 2026 GMT Subject: CN=69a41809-c333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5f:50:f7:97:17:2f:a8:ec:02:89:44:f8:a4: 57:77:9a:73:97:ff:9d:dd:97:94:bc:fd:4f:67:56: df:b9:13:b7:ad:55:84:b8:f2:78:fa:66:1e:32:5f: 25:94:c1:5c:b0:0a:3d:43:39:94:2f:53:5f:77:35: ac:ac:43:51:f6:18:d8:5c:36:5b:9b:ab:f3:b5:74: 8e:cd:a1:a4:ff:c8:d3:bf:98:e2:89:71:48:ca:7c: 0b:69:38:58:db:48:2b:79:06:ea:6c:81:5f:6e:01: 69:22:56:25:f5:e9:5b:3d:70:7e:ea:25:17:0f:17: db:19:b1:7e:ee:64:37:08:d8:66:74:3e:3d:a3:eb: 2b:7d:71:35:ac:d4:70:d3:65:59:aa:85:43:c8:a1: 10:8f:e6:eb:14:ed:96:fe:db:85:85:0d:50:67:cc: 8b:f0:44:80:70:54:59:d1:b1:cf:3f:34:0b:3e:06: 90:bc:d1:56:97:e8:c3:92:1a:10:aa:6c:0a:ce:69: 5b:b7:46:b9:31:ab:af:47:63:da:56:d0:de:4b:02: 9e:f3:8d:5b:c8:7f:8c:28:e8:ec:6e:df:64:bc:13: ac:2c:8a:12:7d:d3:2b:fb:dd:fd:88:aa:00:9b:95: 10:40:e6:15:b9:59:0a:af:18:42:c5:a8:26:af:ee: 05:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:8C:30:4F:87:54:A4:40:5F:32:CD:11:E6:50:A4:91:B3:29:A6:31 X509v3 Authority Key Identifier: keyid:1E:BF:87:88:24:76:45:F9:AA:F0:16:D0:20:F4:CF:C2:E2:13:C2:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:89:ba:33:d5:73:4e:02:8d:7d:64:4c:77:62:79:72:be:dd: 32:2f:8d:8d:2a:c4:a8:7c:49:2f:fd:58:f0:b8:9b:a0:d1:2e: a4:3f:de:60:a3:d7:8b:a4:f7:1f:85:b2:ae:cc:37:80:03:2e: 0a:5e:da:37:72:27:7e:03:79:23:56:38:7d:ba:a5:55:23:82: a2:44:7b:56:b7:5c:07:33:6d:e8:73:39:6a:a1:79:c0:a9:25: b2:c9:8b:33:66:85:af:43:f4:37:1e:dd:05:f6:a1:01:e2:e6: c3:48:ad:de:73:e5:dc:64:e6:ff:8a:79:56:b6:af:eb:37:85: 5c:dd:54:12:23:7f:55:03:5f:e8:aa:60:ea:31:76:de:08:c2: 11:63:c3:e3:ea:19:e0:44:ba:cc:ce:1f:02:b0:e1:2c:ec:d1: da:04:7c:37:5c:48:2b:30:6d:9a:52:3a:51:b6:cc:16:a0:7e: bc:c4:11:00:e8:79:cc:31:60:ef:dd:53:4b:83:71:bc:38:e9: 0e:83:8a:e4:25:1e:20:3c:a8:6f:98:ba:a2:c1:5a:70:a2:52: f5:e4:da:26:f5:55:b0:4c:f7:14:e9:b7:80:99:4e:ae:23:dc: 53:4c:fb:95:ed:c8:52:85:4f:6a:be:a7:f8:b2:ca:87:e1:6b: 8b:30:a9:bb -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy Qzc3MDExMC8GA1UEBRMoMUVCRjg3ODgyNDc2NDVGOUFBRjAxNkQwMjBGNENGQzJF MjEzQzI5NjAeFw0yNjAzMDExMDQyMTdaFw0yNjAzMDgxMDQyMTdaMBgxFjAUBgNV BAMTDTY5YTQxODA5LWMzMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6X1D3lxcvqOwCiUT4pFd3mnOX/53dl5S8/U9nVt+5E7etVYS48nj6Zh4yXyWU wVywCj1DOZQvU193NaysQ1H2GNhcNlubq/O1dI7NoaT/yNO/mOKJcUjKfAtpOFjb SCt5BupsgV9uAWkiViX16Vs9cH7qJRcPF9sZsX7uZDcI2GZ0Pj2j6yt9cTWs1HDT ZVmqhUPIoRCP5usU7Zb+24WFDVBnzIvwRIBwVFnRsc8/NAs+BpC80VaX6MOSGhCq bArOaVu3Rrkxq69HY9pW0N5LAp7zjVvIf4wo6Oxu32S8E6wsihJ90yv73f2IqgCb lRBA5hW5WQqvGELFqCav7gV5AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUEYwwT4dU pEBfMs0R5lCkkbMppjEwHwYDVR0jBBgwFoAUHr+HiCR2Rfmq8BbQIPTPwuITwpYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDNzcwLzRBQ0Y5NkQ2MTBE RTExRjE4MTcxOTI1NzA4M0Q4QzY3L0hyLUhpQ1IyUmZtcThCYlFJUFRQd3VJVHdw WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSHItSGlDUjJSZm1xOEJiUUlQVFB3dUlUd3BZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJD NzcwLzRBQ0Y5NkQ2MTBERTExRjE4MTcxOTI1NzA4M0Q4QzY3L0hyLUhpQ1IyUmZt cThCYlFJUFRQd3VJVHdwWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBBiboz1XNOAo19ZEx3Ynlyvt0yL42NKsSofEkv/VjwuJug0S6kP95go9eLpPcf hbKuzDeAAy4KXto3cid+A3kjVjh9uqVVI4KiRHtWt1wHM23oczlqoXnAqSWyyYsz ZoWvQ/Q3Ht0F9qEB4ubDSK3ec+XcZOb/inlWtq/rN4Vc3VQSI39VA1/oqmDqMXbe CMIRY8Pj6hngRLrMzh8CsOEs7NHaBHw3XEgrMG2aUjpRtswWoH68xBEA6HnMMWDv 3VNLg3G8OOkOg4rkJR4gPKhvmLqiwVpwolL15Nom9VWwTPcU6beAmU6uI9xTTPuV 7chShU9qvqf4ssqH4WuLMKm7 -----END CERTIFICATE-----Generated at Sun Mar 1 23:43:12 2026 by rpki-client