$ rpki-client -vvf rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft File: HKNtz8PAQzP4g7g18sjd0CXVQQY.mft (raw, json) Hash identifier: oxkzCmLJJDSDWBcHaJJw6G3m01L/xXWisfwf4R7lVJQ= Subject key identifier: 26:5C:0A:09:7A:0B:7B:1A:15:E1:F6:1E:25:19:B6:E0:B1:1A:B7:73 Authority key identifier: 1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 Certificate issuer: /CN=A9142F59/serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft Manifest number: 97 Signing time: Fri 17 Apr 2026 07:15:17 +0000 Manifest this update: Fri 17 Apr 2026 07:15:17 +0000 Manifest next update: Fri 24 Apr 2026 07:15:17 +0000 Files and hashes: 1: HKNtz8PAQzP4g7g18sjd0CXVQQY.crl (hash: YMHQg1M0aFpQYNWGCUgMl7xkQbwpzJ2iknuV7rYqXuM=) 2: C7A29726A65311F091E2CF10C4F9AE02.roa (hash: RXr/2IJ/9MWQk0OdqW4xmP/C7ZFOJQkVQv3V5AO424U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:15:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142F59, serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Validity Not Before: Apr 17 07:15:17 2026 GMT Not After : Apr 24 07:15:17 2026 GMT Subject: CN=69e1de05-4887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:61:fa:bf:95:ab:67:77:d2:f8:4a:59:2e:45: e7:04:2d:e4:88:74:3b:b9:1e:db:ac:36:c9:3f:6c: 5d:f6:a8:e0:66:a4:7b:b0:a6:78:43:f6:27:44:a8: b0:72:8d:5f:cf:93:ba:1d:8c:5d:41:b3:f6:92:6b: 1d:cc:1a:df:1d:1b:cb:16:57:50:20:0d:fd:51:92: e0:e5:98:53:85:e3:5e:d2:13:79:0c:a0:cf:fc:42: 74:e7:c7:82:05:be:3a:a4:48:e7:7b:55:77:ee:e5: ef:5b:9b:a1:bf:2b:58:64:8c:90:1b:15:94:18:e6: a7:b6:9c:5f:07:69:b0:d9:8f:3a:02:3a:b0:e9:57: a1:7e:58:de:cb:c8:6b:6a:92:e8:48:9e:43:00:dc: 8f:2b:e1:53:1a:92:f9:7c:34:b5:66:c1:48:73:74: 8d:7b:c7:42:00:ae:be:5f:ac:6b:2e:99:d1:85:0e: 5f:b7:af:ee:31:dd:02:f6:ab:ba:8f:48:72:7d:df: 8c:ef:cf:19:1f:99:29:b7:58:5a:88:e4:11:b5:1a: a9:d8:87:42:00:cc:0c:d9:fc:56:50:56:a8:11:75: 64:bc:1e:71:1a:5c:ee:e5:6f:a5:0e:2b:20:2f:36: 46:8b:23:11:9f:8c:69:b2:88:13:ed:93:d7:7b:50: 96:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:5C:0A:09:7A:0B:7B:1A:15:E1:F6:1E:25:19:B6:E0:B1:1A:B7:73 X509v3 Authority Key Identifier: keyid:1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:fe:ed:8a:95:7a:3f:f4:04:67:35:4d:93:b3:9f:e0:2e:33: 29:18:36:1c:cb:c3:fd:68:95:00:69:93:8c:55:7d:d7:fc:8d: df:e2:b0:3f:fd:49:d8:82:8f:18:93:74:3d:0b:37:f3:75:b7: 9a:94:14:54:4a:a3:48:66:d4:1b:18:6f:74:76:d9:5f:91:b4: f5:f8:87:20:b1:a2:ff:71:31:b1:07:f2:37:d4:e4:6a:39:b4: c5:cc:51:1e:f8:c2:b3:39:83:ef:7f:99:24:4a:ca:36:66:93: 46:10:ca:76:56:3e:9d:41:c0:69:0b:7a:80:0b:c5:30:6c:8b: c5:eb:cb:1f:d9:d9:a9:e0:d4:da:61:d8:70:d6:ab:b8:26:9d: 5e:a7:8f:f2:1e:6c:59:2c:b4:f1:bc:7f:80:d0:f5:00:5c:5f: f5:5f:29:85:b4:44:73:d9:8e:62:f8:5f:09:9a:b2:f4:5b:b0: 4c:9b:93:36:16:79:e4:29:ae:91:e9:6a:d4:70:16:1a:49:da: fc:b5:10:2e:bf:e1:ec:84:64:38:b2:17:84:a5:8f:d0:15:95: 29:6e:8a:e7:b5:4f:dc:1a:86:69:c4:db:5e:60:31:23:ca:26: 32:73:be:85:a7:83:90:bb:fb:7c:4e:c1:57:69:a2:bc:33:30: f1:38:f2:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJGNTkxMTAvBgNVBAUTKDFDQTM2RENGQzNDMDQzMzNGODgzQjgzNUYyQzhEREQw MjVENTQxMDYwHhcNMjYwNDE3MDcxNTE3WhcNMjYwNDI0MDcxNTE3WjAYMRYwFAYD VQQDEw02OWUxZGUwNS00ODg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WH6v5WrZ3fS+EpZLkXnBC3kiHQ7uR7brDbJP2xd9qjgZqR7sKZ4Q/YnRKiw co1fz5O6HYxdQbP2kmsdzBrfHRvLFldQIA39UZLg5ZhTheNe0hN5DKDP/EJ058eC Bb46pEjne1V37uXvW5uhvytYZIyQGxWUGOantpxfB2mw2Y86Ajqw6Vehfljey8hr apLoSJ5DANyPK+FTGpL5fDS1ZsFIc3SNe8dCAK6+X6xrLpnRhQ5ft6/uMd0C9qu6 j0hyfd+M788ZH5kpt1haiOQRtRqp2IdCAMwM2fxWUFaoEXVkvB5xGlzu5W+lDisg LzZGiyMRn4xpsogT7ZPXe1CWuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCZcCgl6 C3saFeH2HiUZtuCxGrdzMB8GA1UdIwQYMBaAFByjbc/DwEMz+IO4NfLI3dAl1UEG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkY1OS8wNTI2RDYyRTYy MzAxMUYwQTAyMDc2MzBDNEY5QUUwMi9IS050ejhQQVF6UDRnN2cxOHNqZDBDWFZR UVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hLTnR6OFBBUXpQNGc3ZzE4c2pkMENYVlFRWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkY1OS8wNTI2RDYyRTYyMzAxMUYwQTAyMDc2MzBDNEY5QUUwMi9IS050ejhQQVF6 UDRnN2cxOHNqZDBDWFZRUVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUf7tipV6P/QEZzVNk7Of4C4zKRg2HMvD/WiVAGmTjFV91/yN3+KwP/1J2IKP GJN0PQs383W3mpQUVEqjSGbUGxhvdHbZX5G09fiHILGi/3ExsQfyN9Tkajm0xcxR HvjCszmD73+ZJErKNmaTRhDKdlY+nUHAaQt6gAvFMGyLxevLH9nZqeDU2mHYcNar uCadXqeP8h5sWSy08bx/gND1AFxf9V8phbREc9mOYvhfCZqy9FuwTJuTNhZ55Cmu kelq1HAWGkna/LUQLr/h7IRkOLIXhKWP0BWVKW6K57VP3BqGacTbXmAxI8omMnO+ haeDkLv7fE7BV2mivDMw8Tjybg== -----END CERTIFICATE-----Generated at Fri Apr 17 20:57:14 2026 by rpki-client