$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json) Hash identifier: +t0U2ytl68xu0g/cYZdrcyJ6bblAuZRwomjkjadahzw= Subject key identifier: 69:7E:56:24:B4:A8:8C:85:3A:49:87:60:01:B3:7C:C2:73:5F:43:25 Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Certificate serial: 0C8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft Manifest number: 0C80 Signing time: Thu 16 Apr 2026 18:30:41 +0000 Manifest this update: Thu 16 Apr 2026 18:30:40 +0000 Manifest next update: Thu 23 Apr 2026 18:30:40 +0000 Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: bYIAoqQv72bp1w6GurfJPGROe621ICGhCJLFmG7RGeU=) 2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: 7Dz9hu6gjsKF7rOCaXHWUeixpnR4qVyHb9xN6ykXLfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3212 (0xc8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FD74, serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Validity Not Before: Apr 16 18:30:40 2026 GMT Not After : Apr 23 18:30:40 2026 GMT Subject: CN=69e12ad0-0201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f3:b9:e4:30:32:94:c7:65:68:a9:14:9b:bf: d8:0d:09:e9:e7:ca:36:45:eb:0c:7b:b3:25:10:9e: 02:51:fb:4a:2c:57:45:ef:fe:7c:7d:3a:c1:2b:34: f9:d3:f6:de:d4:54:6a:c8:58:96:69:8a:80:ae:f8: 7d:c7:4b:ea:e1:65:5f:a7:56:38:04:a2:f1:43:a7: 6e:da:b5:a0:cb:86:00:93:e8:29:0b:b4:19:b8:1e: 03:cd:aa:0b:ff:d3:fb:1a:44:b9:a8:08:1d:1b:4a: be:79:b1:38:ca:59:c3:a6:2d:e1:6a:03:32:db:67: a0:91:a6:de:78:9d:6d:73:32:3f:01:ac:1f:dd:61: c3:b5:c6:95:12:14:3a:b6:01:66:86:0f:fe:44:76: 7f:30:01:64:8a:05:6a:ca:de:d1:8b:76:94:09:95: fd:16:b4:fd:33:8c:4b:71:5c:e6:09:d3:e0:8d:f7: 9f:3e:5b:61:80:eb:bb:80:a9:15:98:64:5b:73:51: 2c:76:c9:a4:a2:10:30:04:24:2e:09:2c:2a:73:fe: b3:6f:d0:ba:6c:9f:bf:e0:67:d7:32:26:9f:fd:87: d8:93:fc:84:a6:8c:48:c0:f4:27:ca:d3:43:f2:f9: a2:1f:39:cf:d4:ae:35:e3:34:54:dd:3c:96:7d:5e: 5d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:7E:56:24:B4:A8:8C:85:3A:49:87:60:01:B3:7C:C2:73:5F:43:25 X509v3 Authority Key Identifier: keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:a5:2b:f9:ee:40:7f:b0:b3:50:d3:38:8f:23:20:34:eb:a0: 24:7e:1a:77:6c:38:25:a5:9f:44:0c:a6:6d:56:db:11:bc:c7: 9c:29:cd:34:60:32:8c:52:ab:d7:80:d7:f5:44:19:b1:05:c8: e1:04:a8:b6:46:f5:33:60:b2:00:68:b2:2d:5c:6e:5c:0c:3e: 41:d1:bf:9d:a4:9a:d2:0d:34:15:bc:0a:33:8c:89:88:4d:08: 3b:34:fc:db:97:b1:13:9e:d1:d2:1b:b0:8c:99:63:03:87:9e: e2:c5:39:4a:80:44:2b:2e:5d:89:f5:3d:2b:ea:42:50:fc:9d: 77:40:c0:55:88:0e:ad:bb:b9:03:4e:bc:ed:fe:db:d4:87:36: 6f:dd:0b:d3:dc:7e:67:16:a1:d9:56:e5:b8:1e:10:38:a7:64: 5f:b8:9f:03:a3:72:02:62:c6:fa:c5:de:0a:2e:18:04:1f:99: 4c:1c:cb:51:f3:45:d2:71:82:db:db:8f:82:31:7f:5f:1e:ea: e6:c4:a4:aa:6a:a1:9a:0b:8f:26:7e:22:dc:7e:7b:37:ce:28: 3f:b2:c1:ce:20:6c:3e:c7:2d:c5:f5:56:8f:3f:cc:07:6e:c4: ba:b6:c8:6b:a5:21:d4:96:d9:32:9d:02:67:2c:06:1f:7c:85: 58:0c:3e:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND MDJDMDM2MjcwHhcNMjYwNDE2MTgzMDQwWhcNMjYwNDIzMTgzMDQwWjAYMRYwFAYD VQQDEw02OWUxMmFkMC0wMjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvO55DAylMdlaKkUm7/YDQnp58o2ResMe7MlEJ4CUftKLFdF7/58fTrBKzT5 0/be1FRqyFiWaYqArvh9x0vq4WVfp1Y4BKLxQ6du2rWgy4YAk+gpC7QZuB4DzaoL /9P7GkS5qAgdG0q+ebE4ylnDpi3hagMy22egkabeeJ1tczI/Aawf3WHDtcaVEhQ6 tgFmhg/+RHZ/MAFkigVqyt7Ri3aUCZX9FrT9M4xLcVzmCdPgjfefPlthgOu7gKkV mGRbc1EsdsmkohAwBCQuCSwqc/6zb9C6bJ+/4GfXMiaf/YfYk/yEpoxIwPQnytND 8vmiHznP1K414zRU3TyWfV5drwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGl+ViS0 qIyFOkmHYAGzfMJzX0MlMB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y MkxJQzM3SGVJaFBBTEFOaWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH6Ur+e5Af7CzUNM4jyMgNOugJH4ad2w4JaWfRAymbVbbEbzHnCnNNGAyjFKr 14DX9UQZsQXI4QSotkb1M2CyAGiyLVxuXAw+QdG/naSa0g00FbwKM4yJiE0IOzT8 25exE57R0huwjJljA4ee4sU5SoBEKy5difU9K+pCUPydd0DAVYgOrbu5A0687f7b 1Ic2b90L09x+Zxah2VbluB4QOKdkX7ifA6NyAmLG+sXeCi4YBB+ZTBzLUfNF0nGC 29uPgjF/Xx7q5sSkqmqhmguPJn4i3H57N84oP7LBziBsPsctxfVWjz/MB27EurbI a6Uh1JbZMp0CZywGH3yFWAw+Fg== -----END CERTIFICATE-----Generated at Fri Apr 17 07:12:02 2026 by rpki-client