$ rpki-client -vvf rpki.apnic.net/member_repository/A91AD5C8/80D8B48AEF8511F09D6DE831606F56BC/HT4YuPamfZKWztceIZJFoygFJn0.mft File: HT4YuPamfZKWztceIZJFoygFJn0.mft (raw, json) Hash identifier: u7J1ZYsvme5wuRpmxCZOUxyhdQ7NdNWoCa5sD2qcUrE= Subject key identifier: 5A:5E:FD:70:1B:41:53:20:C3:7F:48:26:96:F9:8B:06:3D:06:1F:9C Authority key identifier: 1D:3E:18:B8:F6:A6:7D:92:96:CE:D7:1E:21:92:45:A3:28:05:26:7D Certificate issuer: /CN=A91AD5C8/serialNumber=1D3E18B8F6A67D9296CED71E219245A32805267D Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HT4YuPamfZKWztceIZJFoygFJn0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AD5C8/80D8B48AEF8511F09D6DE831606F56BC/HT4YuPamfZKWztceIZJFoygFJn0.mft Manifest number: 1C Signing time: Sun 01 Mar 2026 10:23:23 +0000 Manifest this update: Sun 01 Mar 2026 10:23:23 +0000 Manifest next update: Sun 08 Mar 2026 10:23:23 +0000 Files and hashes: 1: HT4YuPamfZKWztceIZJFoygFJn0.crl (hash: 0uKxVfPoF7koXl1djhrZkJ4dU42XGUXLV/xl+EGDlDY=) 2: 40DFA7D2EF8811F0A94034DF606F56BC.roa (hash: aL9mpzSLdVdL5Ni8kcknF+vvh2ZNflEf3wU+HZuzkto=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AD5C8/80D8B48AEF8511F09D6DE831606F56BC/HT4YuPamfZKWztceIZJFoygFJn0.crl rsync://rpki.apnic.net/member_repository/A91AD5C8/80D8B48AEF8511F09D6DE831606F56BC/HT4YuPamfZKWztceIZJFoygFJn0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HT4YuPamfZKWztceIZJFoygFJn0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:23:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AD5C8, serialNumber=1D3E18B8F6A67D9296CED71E219245A32805267D Validity Not Before: Mar 1 10:23:23 2026 GMT Not After : Mar 8 10:23:23 2026 GMT Subject: CN=69a4139b-1bce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:48:68:8a:9b:71:08:13:77:9b:05:7a:c3:6c: d6:52:cd:9e:2e:dc:f7:cf:8b:0f:54:c6:3d:38:a6: 9c:c5:f5:44:43:26:1e:96:62:66:e4:28:76:b9:65: 5b:b4:6b:9f:5d:da:83:32:32:fc:0f:e5:1d:ab:58: 90:52:c3:3c:00:80:c7:33:4d:ef:4f:43:b6:8f:2b: 0e:82:cd:cd:ea:12:c9:bc:ca:92:d5:e7:cc:89:3a: 06:61:20:7a:24:eb:16:25:e6:89:c2:85:43:73:af: 45:cc:5e:7a:40:36:1c:54:9c:a3:31:3b:c4:d1:8c: 5e:b2:c2:b7:62:11:e8:44:f3:31:c2:da:a8:71:f0: 8e:36:33:78:95:95:e6:a4:db:f5:59:5f:c8:60:c2: 1c:26:a0:6c:72:8b:6d:56:34:3b:f7:73:74:89:0e: 16:28:5d:ae:e7:55:7b:40:f9:99:c3:f4:0a:35:26: ef:79:f0:06:39:8e:ac:32:e5:9b:2c:0f:31:fa:82: 5a:65:f2:8d:d5:ea:48:ae:ea:d4:ad:63:f7:98:da: 76:92:59:15:c6:d6:ac:ca:d5:df:4a:11:bb:d5:ea: 2c:44:d7:fe:7a:3b:af:64:42:cd:7a:34:48:a4:0a: 17:76:94:73:f7:20:27:0c:7b:2a:5b:74:0f:37:05: 0d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:5E:FD:70:1B:41:53:20:C3:7F:48:26:96:F9:8B:06:3D:06:1F:9C X509v3 Authority Key Identifier: keyid:1D:3E:18:B8:F6:A6:7D:92:96:CE:D7:1E:21:92:45:A3:28:05:26:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AD5C8/80D8B48AEF8511F09D6DE831606F56BC/HT4YuPamfZKWztceIZJFoygFJn0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HT4YuPamfZKWztceIZJFoygFJn0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AD5C8/80D8B48AEF8511F09D6DE831606F56BC/HT4YuPamfZKWztceIZJFoygFJn0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:31:58:e6:fd:4e:2e:0a:93:46:82:df:ae:30:97:0d:70:62: 25:d2:c5:03:51:f0:ef:a7:9f:a0:05:99:b0:90:0a:09:5d:d2: 4f:6d:22:12:20:3d:5a:cd:ec:b9:72:a1:b8:f3:25:78:cf:68: d9:98:2a:e8:e2:9f:08:26:a4:7f:f3:19:7c:79:b0:2c:e4:3d: 48:d4:78:48:de:7d:cf:80:f9:2c:d5:d7:f1:a9:b8:98:2c:8c: 1e:d3:23:c7:1f:ef:1a:e2:bb:8f:00:ed:f4:8b:25:0c:ed:1a: be:e5:e0:b1:86:27:89:39:5c:cb:5d:51:28:b2:49:f3:84:e1: 1b:d5:43:d0:02:14:20:98:35:0f:70:b9:f0:98:43:3d:63:65: a5:6a:84:00:1d:a5:eb:e2:75:ea:0c:0b:c9:3d:6f:b5:57:7c: 43:8c:d1:54:1d:61:00:06:7e:a5:27:21:b5:40:ab:2d:52:9b: df:71:ed:b4:c1:91:d9:61:5d:b0:cd:3d:a8:d5:62:bd:34:b9: 06:a2:1b:53:4a:97:45:bc:6d:2f:e5:01:ce:a9:54:bc:44:b5: d8:a3:96:d3:a6:0f:a1:73:21:d4:74:a9:f7:51:e6:72:1e:b5: 52:98:c1:ce:7e:e7:ee:25:8e:59:b2:25:37:79:43:65:dc:e0: f7:be:5b:11 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RDVDODExMC8GA1UEBRMoMUQzRTE4QjhGNkE2N0Q5Mjk2Q0VENzFFMjE5MjQ1QTMy ODA1MjY3RDAeFw0yNjAzMDExMDIzMjNaFw0yNjAzMDgxMDIzMjNaMBgxFjAUBgNV BAMTDTY5YTQxMzliLTFiY2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfSGiKm3EIE3ebBXrDbNZSzZ4u3PfPiw9Uxj04ppzF9URDJh6WYmbkKHa5ZVu0 a59d2oMyMvwP5R2rWJBSwzwAgMczTe9PQ7aPKw6Czc3qEsm8ypLV58yJOgZhIHok 6xYl5onChUNzr0XMXnpANhxUnKMxO8TRjF6ywrdiEehE8zHC2qhx8I42M3iVleak 2/VZX8hgwhwmoGxyi21WNDv3c3SJDhYoXa7nVXtA+ZnD9Ao1Ju958AY5jqwy5Zss DzH6glpl8o3V6kiu6tStY/eY2naSWRXG1qzK1d9KEbvV6ixE1/56O69kQs16NEik Chd2lHP3ICcMeypbdA83BQ1xAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUWl79cBtB UyDDf0gmlvmLBj0GH5wwHwYDVR0jBBgwFoAUHT4YuPamfZKWztceIZJFoygFJn0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFENUM4LzgwRDhCNDhBRUY4 NTExRjA5RDZERTgzMTYwNkY1NkJDL0hUNFl1UGFtZlpLV3p0Y2VJWkpGb3lnRkpu MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFQ0WXVQYW1mWktXenRjZUlaSkZveWdGSm4wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFE NUM4LzgwRDhCNDhBRUY4NTExRjA5RDZERTgzMTYwNkY1NkJDL0hUNFl1UGFtZlpL V3p0Y2VJWkpGb3lnRkpuMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAZMVjm/U4uCpNGgt+uMJcNcGIl0sUDUfDvp5+gBZmwkAoJXdJPbSISID1azey5 cqG48yV4z2jZmCro4p8IJqR/8xl8ebAs5D1I1HhI3n3PgPks1dfxqbiYLIwe0yPH H+8a4ruPAO30iyUM7Rq+5eCxhieJOVzLXVEosknzhOEb1UPQAhQgmDUPcLnwmEM9 Y2WlaoQAHaXr4nXqDAvJPW+1V3xDjNFUHWEABn6lJyG1QKstUpvfce20wZHZYV2w zT2o1WK9NLkGohtTSpdFvG0v5QHOqVS8RLXYo5bTpg+hcyHUdKn3UeZyHrVSmMHO fufuJY5ZsiU3eUNl3OD3vlsR -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:55 2026 by rpki-client