$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft File: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft (raw, json) Hash identifier: BmjBIXGbTv+Y0vmUVtuVzVYE2wSg6JN88hAnV5CEVSw= Subject key identifier: 90:DA:2F:76:3E:DF:A6:E3:BE:20:88:21:09:F8:22:0E:B4:C8:BE:6A Authority key identifier: 86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 Certificate issuer: /CN=A91A1EE0/serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Certificate serial: 3594 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft Manifest number: 3562 Signing time: Thu 16 Apr 2026 14:34:16 +0000 Manifest this update: Thu 16 Apr 2026 14:34:16 +0000 Manifest next update: Thu 23 Apr 2026 14:34:16 +0000 Files and hashes: 1: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl (hash: KHsxeIyAnbQMPv2MhPadBkI6IVemLlq7KenHT5DHDvE=) 2: 44E2CCAEBA9811EFBA471E62C4F9AE02.roa (hash: mYW3nKsnG4GE83HF25tjaBek0p6fEGk2hgZHM+Eo7hs=) 3: 4EF85CFEEE4211E9B52B674DC4F9AE02.roa (hash: Ehg/3ByY4in17WS9HIHSCx7iYIaT6e+zSPAMzsvhayg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13716 (0x3594) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1EE0, serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Validity Not Before: Apr 16 14:34:16 2026 GMT Not After : Apr 23 14:34:16 2026 GMT Subject: CN=69e0f368-8846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:34:4f:68:62:ba:c2:0e:18:4d:aa:48:86:fe: 3c:da:a7:7b:ea:23:a1:11:a2:c4:3b:39:f7:da:01: ab:88:e6:c7:3e:cf:6d:c4:78:2e:98:fe:d7:d7:5c: 3c:03:d6:0c:30:bb:7e:2a:da:87:23:87:4b:d9:50: 20:71:c0:5c:75:f9:a1:34:3f:5d:13:82:04:f4:db: ba:cd:c0:2b:71:90:30:ee:4c:fb:6e:d4:8f:94:7b: 1f:2c:29:64:1e:ef:bb:a9:e7:60:ef:a2:98:1f:67: 23:75:1d:cb:25:97:6d:5e:ed:85:84:c2:06:af:55: e4:77:96:23:23:2d:37:02:ac:e1:22:11:d5:f0:bb: 07:9f:df:37:8e:ce:e7:7d:20:19:02:05:b8:99:e4: 69:8b:d1:89:4f:a1:1d:60:0f:67:ef:26:8a:bc:7f: 81:79:41:26:28:5a:b0:56:3e:75:1c:2b:94:97:d8: 22:01:eb:97:79:7e:0f:08:cc:0e:73:3c:28:a7:87: 27:01:1a:c1:a3:2b:68:1a:3f:26:08:95:35:97:fd: ce:46:1a:94:21:eb:cc:88:7d:e9:d8:e9:65:91:75: 2a:15:c7:55:35:98:c3:ef:1d:18:95:7b:d6:a2:ce: f8:2c:74:fb:a8:d0:4d:dc:d3:ae:4d:ea:18:98:a4: 89:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:DA:2F:76:3E:DF:A6:E3:BE:20:88:21:09:F8:22:0E:B4:C8:BE:6A X509v3 Authority Key Identifier: keyid:86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:04:44:f9:de:c3:2b:17:8b:4a:7c:c5:38:9d:be:c9:46:c8: e9:59:6b:56:76:fe:6c:73:e9:d9:22:eb:b3:78:9c:a6:79:72: fe:03:12:0f:7a:a0:c0:bf:a6:70:83:01:75:4f:d6:54:4b:1c: d3:50:5f:a2:0f:2f:43:61:07:6d:f6:77:fc:11:25:1d:14:9c: 4e:d9:b7:89:a2:60:01:82:8b:f7:6a:d6:32:3e:63:43:37:59: 1e:d2:fe:e8:9a:f0:1e:f0:74:30:bc:66:63:f8:6e:67:50:26: 76:70:4a:dd:02:50:05:b0:d2:b0:ee:d0:18:fc:83:e8:12:b4: 1d:10:42:38:b4:2d:a0:0b:06:04:f9:05:27:0a:3f:dd:09:f7: f5:c2:e4:cc:b2:62:0d:d0:94:1b:ba:a4:b8:c5:8b:a9:7b:64: 2b:02:ff:55:e7:a6:a0:9e:aa:5a:ef:08:78:7d:f8:e5:5d:79: 12:d5:e0:92:3a:38:11:3e:d2:5b:a6:90:0f:07:ad:37:d5:b0: 05:53:e2:72:77:47:27:84:87:0d:d6:ca:f4:50:c6:ba:70:a9: 9f:c0:0a:c2:b8:37:a4:b6:d4:58:f2:d2:88:06:ac:54:9b:71: 7f:a4:d9:3c:da:19:3b:38:04:76:50:55:06:4b:9b:a3:49:62: c8:09:72:c8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFFRTAxMTAvBgNVBAUTKDg2MEMwOTA0Q0VEN0JCMEQxRDk3QjI5MkZEQjY2MkU4 QjlBOEFGRjAwHhcNMjYwNDE2MTQzNDE2WhcNMjYwNDIzMTQzNDE2WjAYMRYwFAYD VQQDEw02OWUwZjM2OC04ODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DRPaGK6wg4YTapIhv482qd76iOhEaLEOzn32gGriObHPs9txHgumP7X11w8 A9YMMLt+KtqHI4dL2VAgccBcdfmhND9dE4IE9Nu6zcArcZAw7kz7btSPlHsfLClk Hu+7qedg76KYH2cjdR3LJZdtXu2FhMIGr1Xkd5YjIy03AqzhIhHV8LsHn983js7n fSAZAgW4meRpi9GJT6EdYA9n7yaKvH+BeUEmKFqwVj51HCuUl9giAeuXeX4PCMwO czwop4cnARrBoytoGj8mCJU1l/3ORhqUIevMiH3p2OllkXUqFcdVNZjD7x0YlXvW os74LHT7qNBN3NOuTeoYmKSJYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJDaL3Y+ 36bjviCIIQn4Ig60yL5qMB8GA1UdIwQYMBaAFIYMCQTO17sNHZeykv22Yui5qK/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUVFMC9EMjM2MzQ0NjFE OEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3MGRsN0tTX2JaaTZMbW9y X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnd0pCTTdYdXcwZGw3S1NfYlppNkxtb3JfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUVFMC9EMjM2MzQ0NjFEOEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3 MGRsN0tTX2JaaTZMbW9yX0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZQRE+d7DKxeLSnzFOJ2+yUbI6VlrVnb+bHPp2SLrs3icpnly/gMSD3qgwL+m cIMBdU/WVEsc01Bfog8vQ2EHbfZ3/BElHRScTtm3iaJgAYKL92rWMj5jQzdZHtL+ 6JrwHvB0MLxmY/huZ1AmdnBK3QJQBbDSsO7QGPyD6BK0HRBCOLQtoAsGBPkFJwo/ 3Qn39cLkzLJiDdCUG7qkuMWLqXtkKwL/VeemoJ6qWu8IeH345V15EtXgkjo4ET7S W6aQDwetN9WwBVPicndHJ4SHDdbK9FDGunCpn8AKwrg3pLbUWPLSiAasVJtxf6TZ PNoZOzgEdlBVBkubo0liyAlyyA== -----END CERTIFICATE-----Generated at Fri Apr 17 19:06:50 2026 by rpki-client