$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft File: HaAa_AiIyqYXHgoOdBz8kE7S328.mft (raw, json) Hash identifier: uYiLT/bpjdV1d5mqEs3DTx6JgDpcMukr5ssBVkXxNT4= Subject key identifier: 03:4E:26:E3:CD:E3:3E:F4:29:01:C5:71:EB:38:79:44:84:BF:BF:44 Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 0961 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft Manifest number: 095A Signing time: Sun 01 Mar 2026 23:01:47 +0000 Manifest this update: Sun 01 Mar 2026 23:01:47 +0000 Manifest next update: Sun 08 Mar 2026 23:01:47 +0000 Files and hashes: 1: HaAa_AiIyqYXHgoOdBz8kE7S328.crl (hash: OZYumVMkN4h7ovaoeAb4APSJJRl5Lax+QQgU/YBJuYs=) 2: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (hash: +DpHFB50fImEl6Y9RzefeEY4U7OoTyTS990Apq9JdK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2401 (0x961) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Mar 1 23:01:47 2026 GMT Not After : Mar 8 23:01:47 2026 GMT Subject: CN=69a4c55b-9449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9c:45:c1:09:b4:94:1e:2e:1f:4e:32:aa:b7: 50:e3:74:31:8f:f3:98:7f:45:a5:ad:b7:73:64:81: e5:2e:4e:d2:02:59:85:24:bb:e2:c9:d2:da:c6:22: 57:12:af:7d:35:9d:49:29:78:2f:64:b9:76:2d:a5: fa:8c:a5:ba:a3:11:7b:c5:e2:4c:a0:4a:20:40:3b: bf:4e:37:a3:bd:e8:ce:9c:55:9c:cd:7e:ef:e7:9e: 7c:91:a2:ce:a1:53:cc:5b:df:66:59:74:ed:36:79: 0e:8a:37:00:2b:cf:db:3e:14:60:2e:06:18:fc:99: 99:c1:79:48:c0:31:cb:18:b6:79:c0:08:56:47:99: 0d:eb:a9:b8:97:45:3f:5c:7b:b5:03:f4:61:a5:da: ca:67:ff:d0:10:00:1d:ac:5b:d9:e2:c7:1b:5a:c8: 32:6a:42:d0:66:2b:0e:1e:a9:0a:31:93:1f:ab:93: 86:8d:ba:dd:d5:58:18:bf:2e:04:3a:e1:a2:e0:c5: df:12:47:25:fd:a5:70:0a:7b:66:12:43:1c:1f:60: dc:2e:f9:17:d5:89:ed:49:3d:56:0b:c8:3b:60:8f: 05:cd:6a:0c:5a:6a:2d:60:7d:e5:7b:04:33:da:ba: 19:9e:a0:a8:c0:77:95:ad:4c:d1:3d:b2:c5:72:ed: da:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:4E:26:E3:CD:E3:3E:F4:29:01:C5:71:EB:38:79:44:84:BF:BF:44 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:6a:6d:eb:01:90:bc:a7:21:ad:88:2b:88:53:88:28:5c:09: 5b:b9:82:7c:81:8b:76:a2:12:c6:55:48:83:16:a5:2b:31:39: a4:a3:a1:9c:07:b4:0b:b7:72:e5:2f:07:eb:6e:c3:0d:25:de: 4b:09:7f:d4:7d:8a:51:5f:b2:c9:fd:59:da:9b:3d:59:bd:0d: d3:6b:23:f4:eb:4d:8b:5e:75:d5:f4:a5:83:87:a1:ca:2b:a4: c0:4b:e4:8f:e0:cb:49:dc:33:db:4d:21:da:65:5a:4d:3d:c0: e5:5d:bf:0a:ea:7f:f1:54:bf:28:2f:de:30:bf:1a:fc:91:aa: 7f:de:4d:9b:10:8c:44:11:93:a4:3e:58:ec:33:33:22:09:01: 04:0a:e2:17:54:f9:1a:6a:21:2d:00:86:b2:f7:91:ea:0f:0b: c5:89:ec:e2:6b:a1:02:62:1c:66:79:b1:9e:cd:6f:ca:c6:5f: 2b:83:0f:35:1b:e8:5c:2d:22:e5:10:a7:3c:b3:fd:87:c9:f6: 58:a6:c4:ad:fc:44:d8:94:44:e4:08:40:64:3d:64:80:3e:be: 9a:39:57:79:8c:19:ef:ac:79:72:e3:93:a6:c5:91:25:36:44: f3:0d:e7:44:54:6f:59:5d:08:d2:80:73:7b:d4:2e:ac:03:46: c2:f6:0e:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjYwMzAxMjMwMTQ3WhcNMjYwMzA4MjMwMTQ3WjAYMRYwFAYD VQQDEw02OWE0YzU1Yi05NDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupxFwQm0lB4uH04yqrdQ43Qxj/OYf0WlrbdzZIHlLk7SAlmFJLviydLaxiJX Eq99NZ1JKXgvZLl2LaX6jKW6oxF7xeJMoEogQDu/TjejvejOnFWczX7v5558kaLO oVPMW99mWXTtNnkOijcAK8/bPhRgLgYY/JmZwXlIwDHLGLZ5wAhWR5kN66m4l0U/ XHu1A/RhpdrKZ//QEAAdrFvZ4scbWsgyakLQZisOHqkKMZMfq5OGjbrd1VgYvy4E OuGi4MXfEkcl/aVwCntmEkMcH2DcLvkX1YntST1WC8g7YI8FzWoMWmotYH3lewQz 2roZnqCowHeVrUzRPbLFcu3aBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFANOJuPN 4z70KQHFces4eUSEv79EMB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlx WVhIZ29PZEJ6OGtFN1MzMjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbGpt6wGQvKchrYgriFOIKFwJW7mCfIGLdqISxlVIgxalKzE5pKOhnAe0C7dy 5S8H627DDSXeSwl/1H2KUV+yyf1Z2ps9Wb0N02sj9OtNi1511fSlg4ehyiukwEvk j+DLSdwz200h2mVaTT3A5V2/Cup/8VS/KC/eML8a/JGqf95NmxCMRBGTpD5Y7DMz IgkBBAriF1T5GmohLQCGsveR6g8LxYns4muhAmIcZnmxns1vysZfK4MPNRvoXC0i 5RCnPLP9h8n2WKbErfxE2JRE5AhAZD1kgD6+mjlXeYwZ76x5cuOTpsWRJTZE8w3n RFRvWV0I0oBze9QurANGwvYO+g== -----END CERTIFICATE-----Generated at Mon Mar 2 15:01:25 2026 by rpki-client