$ rpki-client -vvf rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft File: hQaYWfujzd6OwbgaHgTdYFCzgRM.mft (raw, json) Hash identifier: q0C8wbo4Q4R5b/2Im4ykuug19O7dj0ylK1MZS0V1lV0= Subject key identifier: C5:08:AF:DB:C2:BF:03:22:41:41:C7:C4:01:3D:5F:F0:3D:7C:46:31 Authority key identifier: 85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 Certificate issuer: /CN=A91509C4/serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Certificate serial: 352F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft Manifest number: 352F Signing time: Thu 16 Apr 2026 14:34:49 +0000 Manifest this update: Thu 16 Apr 2026 14:34:48 +0000 Manifest next update: Thu 23 Apr 2026 14:34:48 +0000 Files and hashes: 1: hQaYWfujzd6OwbgaHgTdYFCzgRM.crl (hash: fBR1fypFUlNxfMwwgSn8olFgtEO2JgYfrOmTp/wfEOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13615 (0x352f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509C4, serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Validity Not Before: Apr 16 14:34:48 2026 GMT Not After : Apr 23 14:34:48 2026 GMT Subject: CN=69e0f388-82d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9b:ac:0c:68:ac:a9:3b:d8:76:b5:1b:bd:c6: 00:14:48:a6:e6:2d:92:5f:3c:d9:76:89:24:7f:0a: b6:30:80:94:f7:d4:a2:75:81:4a:c5:ab:c4:76:f5: b2:da:0d:87:bb:6f:dd:53:10:98:7a:18:26:d5:0d: af:8b:42:b6:dc:8b:e5:36:56:f6:5e:3b:fc:5c:01: aa:9b:91:2e:fc:9e:7e:a5:2e:61:5b:ce:52:53:75: a8:dd:bb:5e:90:29:73:04:5a:5b:49:ab:03:16:21: e2:33:74:63:de:87:25:c6:59:3c:d0:61:38:c8:79: 25:49:e5:3d:29:12:0a:e4:7c:bf:e6:ef:43:ed:c8: ab:58:4c:69:4a:3b:11:4b:87:3a:8a:0b:01:29:77: 6a:8a:35:92:c5:b7:d7:b3:22:23:0a:0f:fb:aa:6d: 26:44:f6:d4:db:31:d5:2a:d5:41:13:36:c6:6d:93: cb:fb:53:7c:77:86:f4:0f:da:ac:62:29:d8:d8:42: 53:aa:67:e9:80:47:0e:71:85:f2:fc:78:09:65:fd: cf:f1:29:b1:ec:97:72:d3:2f:a0:c2:8c:a4:25:85: c7:58:24:c6:15:fa:8f:b8:e6:47:11:1b:ef:b4:be: 3a:67:40:d2:7c:13:fe:6b:d5:db:02:d4:2a:42:2a: 4d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:08:AF:DB:C2:BF:03:22:41:41:C7:C4:01:3D:5F:F0:3D:7C:46:31 X509v3 Authority Key Identifier: keyid:85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:2f:bd:d4:a2:91:81:ef:3d:41:dc:22:92:9b:2d:fa:db:5f: d6:03:19:6f:db:e4:ec:de:83:21:b4:f6:34:87:19:56:38:95: 12:82:57:a5:fd:04:c2:e2:e8:c2:03:9b:d4:19:6c:dc:37:39: 9e:6a:ec:ee:be:14:3b:c6:f7:27:16:ac:d5:de:dd:6a:51:9f: 91:d6:8f:d6:a1:dd:6b:e7:87:30:c4:ba:6b:5e:1e:c2:03:49: 10:4b:b0:71:e1:c1:ae:94:b5:3f:67:7f:66:0e:98:01:bd:2a: 94:27:30:66:9a:7a:87:f4:76:36:db:87:27:ea:59:1e:53:dd: 17:6f:fd:e5:58:17:95:33:ab:1b:9a:db:a1:f5:7d:89:db:fc: fe:83:36:75:81:d0:d9:9a:28:40:8b:26:17:43:f4:32:81:0c: 64:dc:76:bd:16:eb:0c:0f:25:07:54:4d:1a:da:36:93:f7:1d: 5d:b0:d4:7e:44:8f:61:38:56:6f:5b:7e:fd:47:b0:7e:24:2d: c8:e1:e0:ed:5e:3e:ec:ed:24:53:a7:61:7a:17:af:a4:a7:1f: 3d:52:6d:18:4a:dc:ac:5c:57:e3:f0:f9:dc:41:ce:a1:ec:a2: 3b:8b:2b:1e:a6:2e:1f:48:88:77:9b:19:e3:a0:cf:7b:71:96: 44:a3:dd:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA5QzQxMTAvBgNVBAUTKDg1MDY5ODU5RkJBM0NEREU4RUMxQjgxQTFFMDRERDYw NTBCMzgxMTMwHhcNMjYwNDE2MTQzNDQ4WhcNMjYwNDIzMTQzNDQ4WjAYMRYwFAYD VQQDEw02OWUwZjM4OC04MmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZusDGisqTvYdrUbvcYAFEim5i2SXzzZdokkfwq2MICU99SidYFKxavEdvWy 2g2Hu2/dUxCYehgm1Q2vi0K23IvlNlb2Xjv8XAGqm5Eu/J5+pS5hW85SU3Wo3bte kClzBFpbSasDFiHiM3Rj3oclxlk80GE4yHklSeU9KRIK5Hy/5u9D7cirWExpSjsR S4c6igsBKXdqijWSxbfXsyIjCg/7qm0mRPbU2zHVKtVBEzbGbZPL+1N8d4b0D9qs YinY2EJTqmfpgEcOcYXy/HgJZf3P8Smx7Jdy0y+gwoykJYXHWCTGFfqPuOZHERvv tL46Z0DSfBP+a9XbAtQqQipNJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMUIr9vC vwMiQUHHxAE9X/A9fEYxMB8GA1UdIwQYMBaAFIUGmFn7o83ejsG4Gh4E3WBQs4ET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDlDNC80Qjg5NjEzODFE OEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpkNk93YmdhSGdUZFlGQ3pn Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hRYVlXZnVqemQ2T3diZ2FIZ1RkWUZDemdSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDlDNC80Qjg5NjEzODFEOEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpk Nk93YmdhSGdUZFlGQ3pnUk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYS+91KKRge89Qdwikpst+ttf1gMZb9vk7N6DIbT2NIcZVjiVEoJXpf0EwuLo wgOb1Bls3Dc5nmrs7r4UO8b3Jxas1d7dalGfkdaP1qHda+eHMMS6a14ewgNJEEuw ceHBrpS1P2d/Zg6YAb0qlCcwZpp6h/R2NtuHJ+pZHlPdF2/95VgXlTOrG5rbofV9 idv8/oM2dYHQ2ZooQIsmF0P0MoEMZNx2vRbrDA8lB1RNGto2k/cdXbDUfkSPYThW b1t+/UewfiQtyOHg7V4+7O0kU6dhehevpKcfPVJtGErcrFxX4/D53EHOoeyiO4sr HqYuH0iId5sZ46DPe3GWRKPdQw== -----END CERTIFICATE-----Generated at Fri Apr 17 18:05:43 2026 by rpki-client