$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft File: htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft (raw, json) Hash identifier: 36HYvZG2bpnK9kK0aDxGdCG4U0nL3MzyOePNEKWb5SU= Subject key identifier: 7A:94:C9:7F:F1:E1:50:B5:0E:BC:34:50:1F:82:92:6E:43:9F:8A:73 Authority key identifier: 86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D Certificate issuer: /CN=A91A99C5/serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft Manifest number: 7A Signing time: Mon 02 Mar 2026 11:51:36 +0000 Manifest this update: Mon 02 Mar 2026 11:51:36 +0000 Manifest next update: Mon 09 Mar 2026 11:51:36 +0000 Files and hashes: 1: htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl (hash: KrGpkQYfTwdOuOxR/F/x07osunAz+TmSNPGF53/Wzkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 11:51:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99C5, serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D Validity Not Before: Mar 2 11:51:36 2026 GMT Not After : Mar 9 11:51:36 2026 GMT Subject: CN=69a579c8-7665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:c4:d3:45:18:c5:6e:36:16:f3:0f:c8:60:42: c3:15:cd:6c:1d:30:c7:61:c9:14:d0:0e:57:7a:ac: 2c:92:7c:1b:9d:3e:1f:2e:53:a0:95:3b:38:19:30: 49:c1:6a:f0:fb:eb:ec:17:d2:af:21:8e:91:33:37: 15:38:b2:58:de:73:0c:43:dc:18:b6:71:39:17:aa: 24:0f:9f:8c:aa:2f:b4:56:93:13:c5:4e:8c:15:ad: cc:85:45:c9:c0:7e:c5:a2:31:a3:b4:33:37:03:11: 2f:ec:8c:fc:55:7c:10:53:88:c2:19:2a:75:fb:bf: e0:a1:ce:19:68:3f:c9:c6:de:47:27:ab:43:32:cf: 2b:8b:61:f3:3f:f1:37:14:fd:0b:49:19:3d:e7:bf: c4:03:b3:3d:2a:14:a6:30:40:87:1b:9f:33:41:5a: 76:7d:87:5a:8b:34:43:5e:0b:45:95:e3:87:bc:5f: ee:f5:85:5b:68:e2:ca:4d:04:b7:df:05:e7:6c:85: 0e:6c:70:02:5a:84:55:7a:a7:31:bf:66:03:ba:fe: 5f:3a:14:76:39:75:d9:09:f4:cc:2b:8c:4a:68:9d: c8:56:a8:78:07:ab:0f:5c:e7:36:05:37:f7:b4:a5: 20:ec:1f:a1:5f:06:34:e9:20:ee:c1:5b:35:20:66: e2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:94:C9:7F:F1:E1:50:B5:0E:BC:34:50:1F:82:92:6E:43:9F:8A:73 X509v3 Authority Key Identifier: keyid:86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:ae:92:9f:66:9b:17:6a:a6:13:02:33:0b:a5:33:e1:98:9b: 6e:89:d3:1c:9a:ab:24:70:ea:7a:31:9f:88:a1:cc:8f:24:6f: 53:95:14:c4:03:ac:b4:2f:a0:41:db:22:57:3b:e5:41:44:4b: 9e:17:4e:4c:ed:57:d8:20:d8:ed:73:a9:dc:f4:c7:19:b1:ca: b7:0d:95:ec:f0:6c:fb:dc:bb:76:ad:8f:ec:06:e5:a9:3d:3e: e9:a2:79:40:a5:0a:de:e0:1e:34:81:d0:3e:c3:fc:a7:a9:57: b2:3f:32:98:ae:b2:a8:18:37:db:6b:41:4b:87:52:22:52:a2: 45:07:be:19:1f:ca:b2:ba:81:81:cf:ac:b1:a1:01:40:f6:89: 22:54:96:81:dd:d8:32:c0:fb:49:94:04:59:6f:fd:38:05:ac: 8d:30:c9:c2:3e:8a:e7:e1:70:0b:e8:3d:88:f7:64:c6:83:7c: 1d:68:cd:ae:61:a6:63:f5:f0:06:8a:23:43:af:a4:96:58:66: db:e9:6d:ce:b4:49:4a:64:1b:e4:a2:df:4a:70:2e:ba:f9:46: ee:37:f5:74:18:5b:d0:65:1d:47:bd:74:de:39:19:56:c6:29: 8b:e8:b0:10:a9:c3:47:5f:2c:8f:9b:74:27:64:0e:4d:46:64: db:7b:a5:0d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTlDNTExMC8GA1UEBRMoODZEOTVGNDFFRDE5ODFGQThEMEI1OTA4RDY0NDQ2NTEw RTZFQUM3RDAeFw0yNjAzMDIxMTUxMzZaFw0yNjAzMDkxMTUxMzZaMBgxFjAUBgNV BAMTDTY5YTU3OWM4LTc2NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCMxNNFGMVuNhbzD8hgQsMVzWwdMMdhyRTQDld6rCySfBudPh8uU6CVOzgZMEnB avD76+wX0q8hjpEzNxU4sljecwxD3Bi2cTkXqiQPn4yqL7RWkxPFTowVrcyFRcnA fsWiMaO0MzcDES/sjPxVfBBTiMIZKnX7v+ChzhloP8nG3kcnq0MyzyuLYfM/8TcU /QtJGT3nv8QDsz0qFKYwQIcbnzNBWnZ9h1qLNENeC0WV44e8X+71hVto4spNBLff BedshQ5scAJahFV6pzG/ZgO6/l86FHY5ddkJ9MwrjEponchWqHgHqw9c5zYFN/e0 pSDsH6FfBjTpIO7BWzUgZuItAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUepTJf/Hh ULUOvDRQH4KSbkOfinMwHwYDVR0jBBgwFoAUhtlfQe0ZgfqNC1kI1kRGUQ5urH0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OUM1LzA2MDNFNUJFNURC QzExRjA5QUExNzg1MEM0RjlBRTAyL2h0bGZRZTBaZ2ZxTkMxa0kxa1JHVVE1dXJI MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaHRsZlFlMFpnZnFOQzFrSTFrUkdVUTV1ckgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 OUM1LzA2MDNFNUJFNURCQzExRjA5QUExNzg1MEM0RjlBRTAyL2h0bGZRZTBaZ2Zx TkMxa0kxa1JHVVE1dXJIMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAgrpKfZpsXaqYTAjMLpTPhmJtuidMcmqskcOp6MZ+IocyPJG9TlRTEA6y0L6BB 2yJXO+VBREueF05M7VfYINjtc6nc9McZscq3DZXs8Gz73Lt2rY/sBuWpPT7ponlA pQre4B40gdA+w/ynqVeyPzKYrrKoGDfba0FLh1IiUqJFB74ZH8qyuoGBz6yxoQFA 9okiVJaB3dgywPtJlARZb/04BayNMMnCPorn4XAL6D2I92TGg3wdaM2uYaZj9fAG iiNDr6SWWGbb6W3OtElKZBvkot9KcC66+UbuN/V0GFvQZR1HvXTeORlWximL6LAQ qcNHXyyPm3QnZA5NRmTbe6UN -----END CERTIFICATE-----Generated at Mon Mar 2 17:31:27 2026 by rpki-client