$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: 5qvtUJD60SARbslDSHMf2rDyhh8lVvilYZnFO3DptbM= Subject key identifier: F3:8B:5D:B1:D8:B3:56:6A:51:68:E7:7E:06:27:F3:56:EB:29:CA:14 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 0870 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 085B Signing time: Sat 28 Feb 2026 21:07:30 +0000 Manifest this update: Sat 28 Feb 2026 21:07:29 +0000 Manifest next update: Sat 07 Mar 2026 21:07:29 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: vDtPBHh6aOFyTbFst2o2wNpO48i0RawDZwPJc2X8KTg=) 2: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: zLBeyUvYeL3WiTP8OfhHdt93sxWxJckWd6if90VdF+g=) 3: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: 8DddYe6Xxj3AQcHWCxpAXO4NAnMo0qG6fie32kIabM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 21:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2160 (0x870) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Feb 28 21:07:29 2026 GMT Not After : Mar 7 21:07:29 2026 GMT Subject: CN=69a35912-f413 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:57:50:a7:ca:20:12:f8:cc:9c:67:88:23:4e: 70:b7:e0:65:cb:c0:b7:a8:ee:56:24:54:a7:5f:4b: 6c:d5:0c:69:c9:b4:c1:d2:ba:12:95:03:06:cb:c1: a1:d7:8d:17:9a:fc:75:34:86:9d:e1:28:97:fb:a6: d1:fc:fd:33:16:c8:ca:d3:a9:f2:2b:4a:8f:24:00: 68:a0:b2:b4:e8:0e:80:1f:4d:90:53:25:d5:c0:ee: dd:b8:eb:32:8b:a1:17:01:09:62:7a:e2:82:44:22: 47:84:a5:45:f0:63:33:88:3e:88:bf:8d:8d:72:3c: 39:0d:5d:ad:34:18:cc:14:73:c0:ba:89:0c:73:14: f2:60:1c:eb:2c:18:1f:4b:95:60:64:2b:20:96:8a: 48:f0:9b:74:ec:9c:2f:2e:d5:2c:8a:6a:6f:6c:4f: 35:cd:9f:a3:eb:49:54:83:86:bf:15:18:e1:ae:ad: 6f:39:c8:5b:1e:66:7c:83:a0:84:94:e6:6d:3b:5b: df:1d:f8:cf:c6:02:9a:0b:e9:75:0d:cd:f6:56:e0: 0d:81:c0:bb:ae:8c:65:76:9c:12:e1:55:84:1a:16: ea:58:99:b0:30:a7:17:8f:3e:a9:b7:51:16:e7:a7: 26:4f:f8:b6:72:ce:18:f9:c2:68:2a:06:eb:d3:32: fd:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:8B:5D:B1:D8:B3:56:6A:51:68:E7:7E:06:27:F3:56:EB:29:CA:14 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:9e:c1:d1:59:f7:0c:c1:b1:7a:a0:70:80:fe:6b:c7:04:78: 63:b5:02:b9:70:73:22:7d:7f:b9:85:c4:d5:9a:9a:df:99:6c: d2:0c:06:79:05:83:da:ac:26:ac:bb:44:09:f6:e1:95:4a:de: dc:db:40:da:eb:a0:83:3c:5c:88:e9:27:18:88:73:41:24:32: 98:49:91:fa:01:ca:69:c5:a0:a7:3f:01:3e:29:c4:9c:bf:66: 37:23:00:a7:13:b3:07:ff:6f:9d:cd:ab:e7:74:08:71:ea:23: 99:91:9b:19:57:82:a5:69:77:9e:68:95:8d:93:fa:5c:44:00: 01:ed:63:7d:59:1c:72:8e:3c:77:02:ad:d3:c5:e0:5a:df:63: 5d:8d:72:f3:ff:bf:81:66:2e:24:60:e7:92:64:72:fe:dc:5c: 68:03:cf:e4:ec:8c:1c:13:94:55:2d:74:5e:af:61:db:65:8f: 39:ea:02:21:9b:19:11:2a:f8:c3:8a:b1:52:6a:41:23:4b:20: 51:ed:d4:a1:36:44:de:7c:9b:83:5d:ee:b7:33:52:e7:d0:31: 95:d2:54:5f:0e:cc:c0:1d:f0:70:48:b6:52:ec:24:62:40:88: 41:59:e1:63:d4:f7:a6:d2:54:9b:c8:3f:d0:8f:fb:57:d3:b6: f7:53:2d:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjYwMjI4MjEwNzI5WhcNMjYwMzA3MjEwNzI5WjAYMRYwFAYD VQQDDA02OWEzNTkxMi1mNDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtldQp8ogEvjMnGeII05wt+Bly8C3qO5WJFSnX0ts1QxpybTB0roSlQMGy8Gh 140Xmvx1NIad4SiX+6bR/P0zFsjK06nyK0qPJABooLK06A6AH02QUyXVwO7duOsy i6EXAQlieuKCRCJHhKVF8GMziD6Iv42Ncjw5DV2tNBjMFHPAuokMcxTyYBzrLBgf S5VgZCsglopI8Jt07JwvLtUsimpvbE81zZ+j60lUg4a/FRjhrq1vOchbHmZ8g6CE lOZtO1vfHfjPxgKaC+l1Dc32VuANgcC7roxldpwS4VWEGhbqWJmwMKcXjz6pt1EW 56cmT/i2cs4Y+cJoKgbr0zL9tQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPOLXbHY s1ZqUWjnfgYn81brKcoUMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATZ7B0Vn3DMGxeqBwgP5rxwR4Y7UCuXBzIn1/uYXE1Zqa35ls0gwGeQWD2qwm rLtECfbhlUre3NtA2uuggzxciOknGIhzQSQymEmR+gHKacWgpz8BPinEnL9mNyMA pxOzB/9vnc2r53QIceojmZGbGVeCpWl3nmiVjZP6XEQAAe1jfVkcco48dwKt08Xg Wt9jXY1y8/+/gWYuJGDnkmRy/txcaAPP5OyMHBOUVS10Xq9h22WPOeoCIZsZESr4 w4qxUmpBI0sgUe3UoTZE3nybg13utzNS59AxldJUXw7MwB3wcEi2UuwkYkCIQVnh Y9T3ptJUm8g/0I/7V9O291MthQ== -----END CERTIFICATE-----Generated at Mon Mar 2 00:29:56 2026 by rpki-client