$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft File: HaAa_AiIyqYXHgoOdBz8kE7S328.mft (raw, json) Hash identifier: H7+QegH7wXU/0NgT84La02Zyb5nzqopT3Zi1B9kwB7M= Subject key identifier: FB:64:F7:DD:F1:BA:60:EA:0B:D7:49:85:2B:89:B8:F7:9B:2C:75:A6 Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 097C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft Manifest number: 0974 Signing time: Thu 16 Apr 2026 19:58:59 +0000 Manifest this update: Thu 16 Apr 2026 19:58:58 +0000 Manifest next update: Thu 23 Apr 2026 19:58:58 +0000 Files and hashes: 1: HaAa_AiIyqYXHgoOdBz8kE7S328.crl (hash: TR4hd0qw2fnKHo/gCI53WvyKOTdb9F16vhf7JqO2+oc=) 2: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (hash: V81dD3x6Xu9JhvlyqWC7cihyerGfmzPLwxY1DFEcyJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:58:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2428 (0x97c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Apr 16 19:58:58 2026 GMT Not After : Apr 23 19:58:58 2026 GMT Subject: CN=69e13f82-e38d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b0:2a:c3:50:fe:53:74:6b:ea:c4:67:0c:a6: 3c:3e:65:1a:65:98:32:4a:e0:e0:3c:dd:58:32:8a: 7e:64:7a:5b:80:11:49:35:43:b9:23:87:ab:99:a0: ee:12:29:d5:13:e4:d9:57:b8:a6:65:dc:81:a7:3c: 98:cc:5e:a8:69:9a:aa:7a:73:8c:a9:b2:94:fa:c0: 7b:f6:fd:a0:e6:eb:09:f2:62:b3:0e:34:0b:0a:4a: 46:8c:2e:0b:db:59:1d:56:3f:8f:13:50:8b:7d:b3: 0d:7a:18:61:f5:99:c1:3f:39:b2:4a:0a:6b:3f:91: b4:c9:44:d4:37:52:36:50:e4:8b:fc:f3:7e:28:bb: ad:97:eb:11:d5:84:b7:5b:1c:f2:51:9c:60:09:59: 05:99:c6:90:76:b6:de:fd:52:fd:5d:ee:80:23:11: 4e:b6:d3:b6:bb:81:9c:cd:48:8d:91:ec:4f:d1:ee: 8a:a7:1c:a6:cf:3b:2f:07:8a:3d:41:2c:4a:5b:75: f7:32:af:8f:57:d1:96:4d:8f:04:1c:e0:6f:27:69: f1:45:38:e3:1b:2e:ce:bd:95:52:ef:c1:86:5f:57: 49:2d:0a:a1:95:8a:65:cf:38:ea:91:5b:bd:fd:f7: 9f:56:b5:52:e6:45:e4:e4:24:7b:53:32:4f:7e:fd: 78:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:64:F7:DD:F1:BA:60:EA:0B:D7:49:85:2B:89:B8:F7:9B:2C:75:A6 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:b8:86:1a:2b:2a:8b:4e:a6:94:3f:51:a4:50:3c:94:43:12: c7:87:83:7c:c5:90:08:8f:38:25:9b:34:c5:7c:84:6b:2a:23: ab:34:a5:d8:67:3d:fc:24:6e:61:60:5f:b2:32:51:17:77:41: 39:2b:6a:e1:32:ef:2e:f6:29:e0:58:8e:2d:94:d3:da:ce:be: b0:be:87:8a:9b:57:89:45:ce:9c:ed:71:1b:40:74:46:b1:6e: c9:dd:36:16:3e:b0:b9:80:83:4c:df:05:aa:b2:67:ba:71:67: b1:83:44:4e:8a:69:32:96:8d:a0:b8:3e:05:12:88:e9:4e:17: 7c:67:bd:58:0b:f6:f9:0e:5e:66:2a:28:d6:26:89:7e:16:c5: 89:22:d6:28:ba:d2:17:13:67:39:4c:85:a6:21:49:df:35:4f: c0:a7:13:43:c7:82:df:23:9b:68:df:c5:a2:e5:56:ad:55:d8: e6:0d:91:4f:77:da:43:86:18:fd:70:51:1e:b8:d5:33:09:ec: bf:94:23:4e:a2:60:63:38:52:66:f1:8e:c7:de:dc:51:47:02: 41:24:68:5e:68:14:e4:fb:4b:9c:92:5a:aa:99:c0:c8:3f:1f: c6:8b:0e:ad:68:d3:60:f9:34:ba:ea:d3:90:3a:48:de:a9:b1: 18:5b:c7:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjYwNDE2MTk1ODU4WhcNMjYwNDIzMTk1ODU4WjAYMRYwFAYD VQQDEw02OWUxM2Y4Mi1lMzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbAqw1D+U3Rr6sRnDKY8PmUaZZgySuDgPN1YMop+ZHpbgBFJNUO5I4ermaDu EinVE+TZV7imZdyBpzyYzF6oaZqqenOMqbKU+sB79v2g5usJ8mKzDjQLCkpGjC4L 21kdVj+PE1CLfbMNehhh9ZnBPzmySgprP5G0yUTUN1I2UOSL/PN+KLutl+sR1YS3 WxzyUZxgCVkFmcaQdrbe/VL9Xe6AIxFOttO2u4GczUiNkexP0e6KpxymzzsvB4o9 QSxKW3X3Mq+PV9GWTY8EHOBvJ2nxRTjjGy7OvZVS78GGX1dJLQqhlYplzzjqkVu9 /fefVrVS5kXk5CR7UzJPfv14lwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPtk993x umDqC9dJhSuJuPebLHWmMB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlx WVhIZ29PZEJ6OGtFN1MzMjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAe7iGGisqi06mlD9RpFA8lEMSx4eDfMWQCI84JZs0xXyEayojqzSl2Gc9/CRu YWBfsjJRF3dBOStq4TLvLvYp4FiOLZTT2s6+sL6HiptXiUXOnO1xG0B0RrFuyd02 Fj6wuYCDTN8FqrJnunFnsYNEToppMpaNoLg+BRKI6U4XfGe9WAv2+Q5eZioo1iaJ fhbFiSLWKLrSFxNnOUyFpiFJ3zVPwKcTQ8eC3yObaN/FouVWrVXY5g2RT3faQ4YY /XBRHrjVMwnsv5QjTqJgYzhSZvGOx97cUUcCQSRoXmgU5PtLnJJaqpnAyD8fxosO rWjTYPk0uurTkDpI3qmxGFvHHA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:41:02 2026 by rpki-client