$ rpki-client -vvf rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft File: hav4SAyQlji9zKZTrx5pD1crI-E.mft (raw, json) Hash identifier: prIrAzlepSNcOhuyAX1VL05IkJkWnkJcntjssOxYSJA= Subject key identifier: 13:B2:20:03:3B:E9:97:C3:D6:43:F5:22:B1:86:F1:E4:78:A2:5E:A7 Authority key identifier: 85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 Certificate issuer: /CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Certificate serial: 3530 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft Manifest number: 3524 Signing time: Mon 02 Mar 2026 01:29:06 +0000 Manifest this update: Mon 02 Mar 2026 01:29:05 +0000 Manifest next update: Mon 09 Mar 2026 01:29:05 +0000 Files and hashes: 1: hav4SAyQlji9zKZTrx5pD1crI-E.crl (hash: ByFU9Wz1xpv2v1XdWZfTlDKynRdc5XuoIDFPTcThaY0=) 2: ABF3C76E0C4B11EF87D4886FC4F9AE02.roa (hash: r4Nk4/HNlZ5UILj9rqZCLRnsXQwXsj9IgRSHKtUZq+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:29:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13616 (0x3530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A03CB, serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Validity Not Before: Mar 2 01:29:05 2026 GMT Not After : Mar 9 01:29:05 2026 GMT Subject: CN=69a4e7e1-521e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c3:23:f0:98:bc:f1:42:d7:02:d3:cb:10:22: 71:17:f8:ee:93:7b:ba:34:d7:db:10:00:e7:5b:36: cf:34:b8:5b:22:99:1a:c5:f3:92:9e:7d:df:9c:d3: b4:50:2f:94:1e:d1:34:0a:5e:65:41:eb:10:60:dd: 53:9c:2e:c8:9b:3d:ae:0a:24:91:24:59:c8:0f:6d: 64:d6:87:59:f9:13:fa:39:fa:91:ed:53:c4:98:ee: a4:2b:02:66:5d:58:e3:e6:ad:21:5e:8f:a6:be:76: 3d:e4:ab:37:d8:08:70:10:59:8a:c2:e6:28:3e:4a: 20:8f:d0:db:e6:f0:96:3e:10:b7:48:db:87:9a:ed: ce:df:3e:e4:e3:be:1a:f6:24:43:3e:b4:7e:73:b5: 2d:10:99:3e:18:57:39:48:47:a0:46:d8:46:43:18: 7b:6b:21:a9:d6:1a:f6:a4:7b:ff:e2:bb:4a:84:75: 81:fe:05:56:10:d0:36:c2:eb:f7:df:a9:75:23:7a: ef:e8:42:a9:68:8d:b8:44:1a:f5:ba:59:1c:b4:68: cb:b4:23:3c:34:52:4e:0c:af:b7:a2:79:9a:94:22: 37:08:36:e4:17:b8:cc:17:2a:3a:86:bb:31:da:21: ce:fb:3a:45:fd:a5:62:40:7a:1f:73:2a:40:e4:ed: 7c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:B2:20:03:3B:E9:97:C3:D6:43:F5:22:B1:86:F1:E4:78:A2:5E:A7 X509v3 Authority Key Identifier: keyid:85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:24:79:71:8a:89:d6:22:c4:63:d1:d8:4c:d3:3f:e5:81:a9: 5f:5f:6b:ee:d7:9c:0c:31:78:38:48:fd:26:68:07:c4:6f:52: 44:7f:9c:25:55:06:c1:30:00:28:6e:3d:09:2c:4c:b3:7d:c5: 22:fb:a7:53:c3:6a:2b:5b:c5:ad:fa:72:6c:bb:2f:ce:26:58: 27:22:6d:86:ef:ec:62:e3:f0:91:db:d1:8a:36:b8:b3:f8:37: 7a:3e:ad:15:21:8d:85:71:f1:b1:7d:b7:f1:01:e5:ee:90:c2: 6c:da:6d:f4:89:b0:11:77:81:8b:18:b8:cc:5b:48:de:d4:e9: 9d:22:41:bc:06:af:67:6f:df:0a:8f:a6:0a:71:7d:20:7d:54: f2:b3:ba:e2:4d:a6:23:9b:a4:4c:b4:c3:2d:5f:20:b8:68:50: e3:6d:89:25:2a:05:47:28:ad:1b:31:68:4d:28:62:cb:be:5c: b5:91:17:dc:4c:35:31:24:b1:54:68:3b:4e:fa:8a:1a:78:5d: 69:ab:b7:9c:ee:32:25:fa:9b:34:4f:b8:2f:c7:dc:e7:b8:e5: d7:ac:fc:6f:42:86:2d:1c:86:b1:fe:70:35:60:ed:a0:72:7e: 5e:cb:f9:3e:18:79:df:a6:9f:7a:41:c1:1e:07:3b:37:3e:e5: 56:7c:dd:f0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAzQ0IxMTAvBgNVBAUTKDg1QUJGODQ4MEM5MDk2MzhCRENDQTY1M0FGMUU2OTBG NTcyQjIzRTEwHhcNMjYwMzAyMDEyOTA1WhcNMjYwMzA5MDEyOTA1WjAYMRYwFAYD VQQDEw02OWE0ZTdlMS01MjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8Mj8Ji88ULXAtPLECJxF/juk3u6NNfbEADnWzbPNLhbIpkaxfOSnn3fnNO0 UC+UHtE0Cl5lQesQYN1TnC7Imz2uCiSRJFnID21k1odZ+RP6OfqR7VPEmO6kKwJm XVjj5q0hXo+mvnY95Ks32AhwEFmKwuYoPkogj9Db5vCWPhC3SNuHmu3O3z7k474a 9iRDPrR+c7UtEJk+GFc5SEegRthGQxh7ayGp1hr2pHv/4rtKhHWB/gVWENA2wuv3 36l1I3rv6EKpaI24RBr1ulkctGjLtCM8NFJODK+3onmalCI3CDbkF7jMFyo6hrsx 2iHO+zpF/aViQHofcypA5O18fQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBOyIAM7 6ZfD1kP1IrGG8eR4ol6nMB8GA1UdIwQYMBaAFIWr+EgMkJY4vcymU68eaQ9XKyPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDNDQi84MUQ5RTRBMDFE OTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxqaTl6S1pUcng1cEQxY3JJ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhdjRTQXlRbGppOXpLWlRyeDVwRDFjckktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDNDQi84MUQ5RTRBMDFEOTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxq aTl6S1pUcng1cEQxY3JJLUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJSR5cYqJ1iLEY9HYTNM/5YGpX19r7tecDDF4OEj9JmgHxG9SRH+cJVUGwTAA KG49CSxMs33FIvunU8NqK1vFrfpybLsvziZYJyJthu/sYuPwkdvRija4s/g3ej6t FSGNhXHxsX238QHl7pDCbNpt9ImwEXeBixi4zFtI3tTpnSJBvAavZ2/fCo+mCnF9 IH1U8rO64k2mI5ukTLTDLV8guGhQ422JJSoFRyitGzFoTShiy75ctZEX3Ew1MSSx VGg7TvqKGnhdaau3nO4yJfqbNE+4L8fc57jl16z8b0KGLRyGsf5wNWDtoHJ+Xsv5 Phh536afekHBHgc7Nz7lVnzd8A== -----END CERTIFICATE-----Generated at Mon Mar 2 15:53:17 2026 by rpki-client