$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: VHtzqTfoptyeJ2B97sNFgYavKK2GsD/Btybtf+M/w3I= Subject key identifier: 39:9E:40:35:46:EB:C6:F0:CA:E1:D8:A0:62:13:DC:80:42:3D:96:87 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 088E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 0875 Signing time: Thu 16 Apr 2026 20:36:53 +0000 Manifest this update: Thu 16 Apr 2026 20:36:53 +0000 Manifest next update: Thu 23 Apr 2026 20:36:53 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: ujkbyNq22vQc0mhJAa6A8+doQk91HNGM0DKvDt7Ja/4=) 2: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: DHN4e0JrosxaWqhhvniYwJn8xIsHqQd0pj3UDSpuBlo=) 3: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: n2hlAVM9PTTT2Scjp8/RzlDa+bb55gqeGOADAsXpei0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:36:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2190 (0x88e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Apr 16 20:36:53 2026 GMT Not After : Apr 23 20:36:53 2026 GMT Subject: CN=69e14865-5211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1b:e3:24:8b:dd:9a:14:ab:a7:7a:e7:68:b9: 27:f7:73:db:a4:d1:a5:d7:53:7f:d1:ad:5c:fe:d0: 20:40:1b:88:a1:6d:7f:ca:04:8d:dd:6f:d3:73:8f: 07:ba:0f:c7:43:22:f4:30:ae:0f:ac:d2:f7:0c:6e: da:79:ab:58:47:69:a3:a7:c0:dc:d6:1d:bb:8b:dc: 12:2a:f8:06:ab:bf:78:7e:99:b3:68:7b:d4:d1:44: 41:d6:7f:a8:3e:42:7a:e9:66:c4:62:54:36:98:2d: 86:00:80:0d:f6:44:4e:5e:c5:1c:bb:b8:b8:9f:e5: 00:17:bd:cc:ef:d9:6e:3e:f7:d5:7e:b3:6a:1b:88: 1a:77:a3:11:96:2d:67:aa:5d:0e:4b:51:b3:7b:62: 48:9c:a3:e7:10:63:ef:d0:46:b5:12:49:76:b7:c0: 8c:ca:7e:9e:4a:9b:52:09:25:c2:69:13:5a:0c:d2: 43:7a:15:23:8e:79:5a:f8:3e:2a:d6:d3:de:1d:a2: ba:8e:fa:ca:dc:23:41:72:85:d3:23:0e:51:5e:ec: e0:6e:e7:8e:15:3d:25:63:f7:c9:8f:82:c8:d0:8f: 4f:60:89:c1:20:cd:d6:36:62:9f:59:c0:b4:23:e1: 42:f4:fe:03:2d:a8:c9:c6:44:76:72:7c:9d:64:04: e7:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:9E:40:35:46:EB:C6:F0:CA:E1:D8:A0:62:13:DC:80:42:3D:96:87 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:ad:dd:97:84:1a:e2:23:33:41:94:1a:d5:01:8f:be:b3:9d: da:e1:e9:01:64:01:93:98:cb:6d:26:43:b5:47:34:26:e6:0c: e3:c0:93:ed:a8:7d:3d:44:a3:18:d8:12:22:46:7b:b8:a0:39: ba:ae:d8:3d:10:15:1f:ce:cd:0f:84:3a:64:09:48:92:4b:9a: ae:6f:bf:ff:0d:07:64:6a:98:4a:dc:57:c1:e9:6f:3c:fe:e4: 72:e5:e4:8e:02:47:f1:bf:14:cf:28:34:57:c4:9c:5c:af:40: 9b:88:ce:df:7c:69:f7:1e:ba:62:e5:9f:c1:c2:da:b4:19:30: 7d:4f:c3:7b:2e:26:35:68:89:90:18:4d:a7:49:c1:80:85:b7: 58:f9:f7:2f:f9:6e:1b:ba:7c:f4:c3:24:ca:ab:9e:5f:40:9a: 7a:11:32:71:fa:0b:dc:f2:62:cc:60:8f:69:0e:ef:cd:0e:39: fc:06:67:d5:b6:65:d8:69:da:b0:d9:e6:77:7f:41:93:ab:40: 61:68:58:f1:31:fd:b8:c0:95:8e:1e:aa:a5:c3:1f:72:81:e6: f4:2f:34:45:9c:c1:c1:02:b5:a1:3c:3b:bf:2c:28:ff:4b:d7: 48:01:b8:f7:8c:ad:e3:bd:df:29:9b:10:0e:e1:43:f1:f1:da: c7:6a:c1:c0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjYwNDE2MjAzNjUzWhcNMjYwNDIzMjAzNjUzWjAYMRYwFAYD VQQDEw02OWUxNDg2NS01MjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BvjJIvdmhSrp3rnaLkn93PbpNGl11N/0a1c/tAgQBuIoW1/ygSN3W/Tc48H ug/HQyL0MK4PrNL3DG7aeatYR2mjp8Dc1h27i9wSKvgGq794fpmzaHvU0URB1n+o PkJ66WbEYlQ2mC2GAIAN9kROXsUcu7i4n+UAF73M79luPvfVfrNqG4gad6MRli1n ql0OS1Gze2JInKPnEGPv0Ea1Ekl2t8CMyn6eSptSCSXCaRNaDNJDehUjjnla+D4q 1tPeHaK6jvrK3CNBcoXTIw5RXuzgbueOFT0lY/fJj4LI0I9PYInBIM3WNmKfWcC0 I+FC9P4DLajJxkR2cnydZATnJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDmeQDVG 68bwyuHYoGIT3IBCPZaHMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArK3dl4Qa4iMzQZQa1QGPvrOd2uHpAWQBk5jLbSZDtUc0JuYM48CT7ah9PUSj GNgSIkZ7uKA5uq7YPRAVH87ND4Q6ZAlIkkuarm+//w0HZGqYStxXwelvPP7kcuXk jgJH8b8Uzyg0V8ScXK9Am4jO33xp9x66YuWfwcLatBkwfU/Dey4mNWiJkBhNp0nB gIW3WPn3L/luG7p89MMkyqueX0CaehEycfoL3PJizGCPaQ7vzQ45/AZn1bZl2Gna sNnmd39Bk6tAYWhY8TH9uMCVjh6qpcMfcoHm9C80RZzBwQK1oTw7vywo/0vXSAG4 94yt473fKZsQDuFD8fHax2rBwA== -----END CERTIFICATE-----Generated at Fri Apr 17 07:30:31 2026 by rpki-client