$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft File: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft (raw, json) Hash identifier: m1RgvG5XicVLLofdQ8kKsjI7jLya789w47grgZEndVA= Subject key identifier: F3:56:A8:5F:6E:1E:80:22:7F:FC:BC:F8:F3:EE:61:6E:93:24:6C:2E Authority key identifier: 86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 Certificate issuer: /CN=A91A1EE0/serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Certificate serial: 357C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft Manifest number: 354A Signing time: Sun 01 Mar 2026 23:42:35 +0000 Manifest this update: Sun 01 Mar 2026 23:42:33 +0000 Manifest next update: Sun 08 Mar 2026 23:42:33 +0000 Files and hashes: 1: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl (hash: 6wj1Plomjm+YEbQ9wZjcKhlWoGhVCYYBRgD284jW0wk=) 2: 44E2CCAEBA9811EFBA471E62C4F9AE02.roa (hash: mYW3nKsnG4GE83HF25tjaBek0p6fEGk2hgZHM+Eo7hs=) 3: 4EF85CFEEE4211E9B52B674DC4F9AE02.roa (hash: Ehg/3ByY4in17WS9HIHSCx7iYIaT6e+zSPAMzsvhayg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:42:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13692 (0x357c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1EE0, serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Validity Not Before: Mar 1 23:42:33 2026 GMT Not After : Mar 8 23:42:33 2026 GMT Subject: CN=69a4ceeb-1b04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:83:56:1d:86:c3:86:d4:2c:cb:74:c8:37:6e: 1d:2b:bf:ee:41:a3:c5:fa:af:b2:3a:38:82:1d:d3: f6:db:e8:c1:5a:dc:3f:6b:8e:53:13:a7:9a:83:90: 21:e0:db:1b:ea:0c:e0:58:fd:33:0a:85:3f:71:73: eb:b6:de:01:61:96:d8:c9:2b:3f:7f:fb:1a:6d:5d: 88:da:70:0d:3d:d9:f9:06:f1:1a:3c:e5:67:62:a8: 02:2b:06:f4:a9:ea:09:6b:3d:d5:ee:ff:98:ac:cc: 1a:4b:cb:7e:63:02:96:93:66:d6:bd:a6:fb:3f:ff: 96:51:61:06:ca:92:b3:ab:0e:7f:72:9a:f3:bc:8b: 01:1a:21:30:e6:7f:2a:34:c8:58:88:0b:93:a7:35: e1:02:59:43:26:31:b2:b8:63:56:e1:3b:10:f5:7f: 81:4b:9d:e9:44:5a:e1:e0:01:db:42:a1:ba:6f:4a: 5b:1a:0a:78:d5:9f:d3:06:f0:2c:11:e0:11:db:b5: 3f:59:aa:45:27:ef:7d:fa:d8:28:f7:87:f6:4b:71: 19:41:97:b0:64:8c:ea:d0:99:56:de:1b:37:28:01: 8d:61:f2:b7:48:f6:e1:bd:4f:7d:cc:ca:15:9a:71: 12:7e:1e:51:14:02:c4:a4:af:94:de:92:06:f0:ce: 4a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:56:A8:5F:6E:1E:80:22:7F:FC:BC:F8:F3:EE:61:6E:93:24:6C:2E X509v3 Authority Key Identifier: keyid:86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:7a:86:e4:c6:87:b0:2f:2f:11:8c:89:7a:5b:f5:ce:55:07: c5:90:4a:e6:d4:bd:8e:ff:22:c6:0a:3a:dd:5b:7c:4a:9e:ff: 70:83:04:22:ae:1c:75:de:82:00:3c:35:de:31:6b:44:ca:14: 82:35:35:0d:8e:53:16:55:fb:b6:b5:a1:3f:82:be:dd:16:5c: 34:43:a4:68:3d:a6:81:53:59:0e:6b:6d:8c:b4:bb:85:f1:64: ba:24:57:99:12:f7:be:c4:a2:ea:83:2a:9d:06:32:26:5c:85: aa:36:1e:f2:5e:a3:af:1a:b2:a7:c8:db:f1:b9:23:18:b9:97: b9:e9:05:b7:a2:f0:be:60:23:7d:9a:56:43:ad:32:47:04:f7: 2c:e1:e8:e7:57:3e:dc:9c:a7:8e:a7:8b:f6:e6:46:d3:2c:b9: 42:dc:e1:b5:74:16:86:df:68:52:33:69:8a:10:f3:5d:37:ab: a8:cc:99:9d:1a:68:aa:6a:ba:d6:dc:e0:a6:d4:36:88:b6:33: cb:9f:a4:d5:8c:dc:7e:b9:9b:98:db:e0:8f:b0:2a:d9:c9:c5: 19:76:b5:4e:ba:6c:60:1e:28:b9:0e:8a:2d:44:6a:f3:a6:36: 61:c7:e0:e0:5c:af:cc:bd:01:07:10:a6:a3:1a:1e:fd:32:5c: bf:ae:db:07 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFFRTAxMTAvBgNVBAUTKDg2MEMwOTA0Q0VEN0JCMEQxRDk3QjI5MkZEQjY2MkU4 QjlBOEFGRjAwHhcNMjYwMzAxMjM0MjMzWhcNMjYwMzA4MjM0MjMzWjAYMRYwFAYD VQQDEw02OWE0Y2VlYi0xYjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4NWHYbDhtQsy3TIN24dK7/uQaPF+q+yOjiCHdP22+jBWtw/a45TE6eag5Ah 4Nsb6gzgWP0zCoU/cXPrtt4BYZbYySs/f/sabV2I2nANPdn5BvEaPOVnYqgCKwb0 qeoJaz3V7v+YrMwaS8t+YwKWk2bWvab7P/+WUWEGypKzqw5/cprzvIsBGiEw5n8q NMhYiAuTpzXhAllDJjGyuGNW4TsQ9X+BS53pRFrh4AHbQqG6b0pbGgp41Z/TBvAs EeAR27U/WapFJ+99+tgo94f2S3EZQZewZIzq0JlW3hs3KAGNYfK3SPbhvU99zMoV mnESfh5RFALEpK+U3pIG8M5KmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPNWqF9u HoAif/y8+PPuYW6TJGwuMB8GA1UdIwQYMBaAFIYMCQTO17sNHZeykv22Yui5qK/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUVFMC9EMjM2MzQ0NjFE OEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3MGRsN0tTX2JaaTZMbW9y X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnd0pCTTdYdXcwZGw3S1NfYlppNkxtb3JfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUVFMC9EMjM2MzQ0NjFEOEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3 MGRsN0tTX2JaaTZMbW9yX0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAj3qG5MaHsC8vEYyJelv1zlUHxZBK5tS9jv8ixgo63Vt8Sp7/cIMEIq4cdd6C ADw13jFrRMoUgjU1DY5TFlX7trWhP4K+3RZcNEOkaD2mgVNZDmttjLS7hfFkuiRX mRL3vsSi6oMqnQYyJlyFqjYe8l6jrxqyp8jb8bkjGLmXuekFt6LwvmAjfZpWQ60y RwT3LOHo51c+3JynjqeL9uZG0yy5QtzhtXQWht9oUjNpihDzXTerqMyZnRpoqmq6 1tzgptQ2iLYzy5+k1YzcfrmbmNvgj7Aq2cnFGXa1TrpsYB4ouQ6KLURq86Y2Ycfg 4FyvzL0BBxCmoxoe/TJcv67bBw== -----END CERTIFICATE-----Generated at Mon Mar 2 11:44:55 2026 by rpki-client