$ rpki-client -vvf rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft File: HlwQfv0DzxPSFKOaaizo3a0wRw4.mft (raw, json) Hash identifier: ET4ovuUygpnQFyS+KpOXT8CJ9aHCebOqmSSJWDjAONU= Subject key identifier: 79:F6:F1:A2:93:6F:75:90:E8:9A:29:FE:80:6D:16:31:46:5C:F7:D2 Authority key identifier: 1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E Certificate issuer: /CN=A914D9C3/serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft Manifest number: 0127 Signing time: Sun 19 Apr 2026 05:18:46 +0000 Manifest this update: Sun 19 Apr 2026 05:18:45 +0000 Manifest next update: Sun 26 Apr 2026 05:18:45 +0000 Files and hashes: 1: HlwQfv0DzxPSFKOaaizo3a0wRw4.crl (hash: dwdsZ+VG3lsDhymEBiaHZeiJldBgS+Em+q4DHM2j6/k=) 2: F7B3707C806911EF8C30A03DC4F9AE02.roa (hash: aiqE7GBN+l3YOlzTvalxpxvHOLBHG0Z/5JCvpwlar2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D9C3, serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Validity Not Before: Apr 19 05:18:45 2026 GMT Not After : Apr 26 05:18:45 2026 GMT Subject: CN=69e465b6-4684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:07:e8:e0:5d:99:45:15:ac:be:ca:ba:6c:ad: 82:e9:2e:f7:9a:b9:e2:a1:c3:e5:2c:00:df:10:6b: e0:00:13:cb:52:a8:97:20:dd:3b:f8:3e:80:41:8d: 25:33:ad:c9:af:b9:7c:f6:ca:52:29:a3:0f:8a:8b: 35:d0:40:80:67:65:83:f7:ef:54:26:53:a0:db:30: 42:f8:c2:e4:91:30:05:90:53:ca:da:94:16:a1:66: 82:6c:da:d5:15:23:a2:73:f9:48:e9:0d:df:8f:31: dc:d9:ba:5e:ce:c4:2f:22:36:77:74:d4:b9:d5:e1: 2d:ad:bc:73:b2:05:e7:6e:56:35:30:44:48:cf:cc: a1:91:f6:54:06:85:8d:6f:83:28:4d:58:72:b1:23: 20:23:fc:8a:1e:d2:0a:62:a8:02:1c:6d:e0:bc:76: 51:55:51:72:30:48:5b:08:58:16:7d:0d:83:89:9f: f1:1f:fb:67:78:4a:95:0b:e0:4c:fb:54:df:61:f6: 8f:a2:22:36:48:fc:7c:27:3d:14:72:1e:e2:b2:4e: 61:88:d0:68:14:9e:3e:c8:20:0e:af:2c:23:c3:88: af:96:bb:7f:16:43:4a:bb:d7:df:84:c4:98:48:64: 1e:8d:f4:a9:2a:75:05:27:ce:92:c8:c1:96:23:e5: 4b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:F6:F1:A2:93:6F:75:90:E8:9A:29:FE:80:6D:16:31:46:5C:F7:D2 X509v3 Authority Key Identifier: keyid:1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:bb:6a:65:6e:6e:24:5e:b5:b3:b1:e3:c3:a5:b1:71:53:90: 36:89:ef:ce:3e:f1:eb:83:32:1d:09:ed:b9:56:84:7b:aa:e4: 1a:a6:0b:15:35:cf:d2:8f:95:fd:49:e2:ce:82:2d:89:05:cc: 7d:81:a6:65:27:87:ca:bf:2a:24:0b:32:e6:bc:5c:4e:9d:06: bd:df:01:ad:5d:07:82:16:ba:54:82:55:de:db:f7:08:14:47: 6a:9c:35:8e:26:fa:3d:e4:31:39:9e:f9:0f:60:20:16:3f:2f: 64:8d:93:93:27:54:d8:c6:7c:9d:ef:e2:f5:d9:9d:cc:07:48: c6:b4:8f:ce:2c:48:06:3b:33:a1:dd:fe:bb:89:15:12:e7:8e: 64:b7:c6:f7:e1:f1:90:d4:12:25:f6:8e:0e:64:ab:a3:58:62: 86:22:a7:40:10:45:5c:da:23:39:97:47:cc:24:80:59:83:03: 2a:52:4d:82:67:3c:b9:8a:f8:3b:20:57:9c:bb:18:0b:dd:ae: f1:40:7c:50:37:be:1e:8a:63:2d:96:ea:38:7e:37:6d:b1:c5: aa:31:42:39:bb:af:1d:60:38:dc:78:58:a4:d1:95:fb:92:a4: 8d:79:7e:4c:30:e9:22:5c:a8:4a:f6:35:28:bb:1c:47:b3:c2: a8:e8:bd:b5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ5QzMxMTAvBgNVBAUTKDFFNUMxMDdFRkQwM0NGMTNEMjE0QTM5QTZBMkNFOERE QUQzMDQ3MEUwHhcNMjYwNDE5MDUxODQ1WhcNMjYwNDI2MDUxODQ1WjAYMRYwFAYD VQQDEw02OWU0NjViNi00Njg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjgfo4F2ZRRWsvsq6bK2C6S73mrniocPlLADfEGvgABPLUqiXIN07+D6AQY0l M63Jr7l89spSKaMPios10ECAZ2WD9+9UJlOg2zBC+MLkkTAFkFPK2pQWoWaCbNrV FSOic/lI6Q3fjzHc2bpezsQvIjZ3dNS51eEtrbxzsgXnblY1MERIz8yhkfZUBoWN b4MoTVhysSMgI/yKHtIKYqgCHG3gvHZRVVFyMEhbCFgWfQ2DiZ/xH/tneEqVC+BM +1TfYfaPoiI2SPx8Jz0Uch7isk5hiNBoFJ4+yCAOrywjw4ivlrt/FkNKu9ffhMSY SGQejfSpKnUFJ86SyMGWI+VL2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHn28aKT b3WQ6Jop/oBtFjFGXPfSMB8GA1UdIwQYMBaAFB5cEH79A88T0hSjmmos6N2tMEcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDlDMy80NUNDODJDQzgw NjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4UFNGS09hYWl6bzNhMHdS dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hsd1FmdjBEenhQU0ZLT2FhaXpvM2Ewd1J3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDlDMy80NUNDODJDQzgwNjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4 UFNGS09hYWl6bzNhMHdSdzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAN7tqZW5uJF61s7Hjw6WxcVOQNonvzj7x64MyHQntuVaEe6rkGqYLFTXP0o+V /UnizoItiQXMfYGmZSeHyr8qJAsy5rxcTp0Gvd8BrV0Hgha6VIJV3tv3CBRHapw1 jib6PeQxOZ75D2AgFj8vZI2TkydU2MZ8ne/i9dmdzAdIxrSPzixIBjszod3+u4kV EueOZLfG9+HxkNQSJfaODmSro1hihiKnQBBFXNojOZdHzCSAWYMDKlJNgmc8uYr4 OyBXnLsYC92u8UB8UDe+HopjLZbqOH43bbHFqjFCObuvHWA43HhYpNGV+5KkjXl+ TDDpIlyoSvY1KLscR7PCqOi9tQ== -----END CERTIFICATE-----Generated at Sun Apr 19 10:06:55 2026 by rpki-client