$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft File: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft (raw, json) Hash identifier: jMm73OVTDKSYceM3H/PhTQ1IFWw9Msa6jiApgc7aCik= Subject key identifier: DA:E4:A9:58:5B:2E:75:B6:42:52:B7:D4:65:9C:12:FD:C8:4A:B0:D4 Authority key identifier: 87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96 Certificate issuer: /CN=A91AEA8C/serialNumber=870B9CD2E41DAB05BD5527C9150E948959716696 Certificate serial: 1DCF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft Manifest number: 1DAA Signing time: Mon 02 Mar 2026 02:51:50 +0000 Manifest this update: Mon 02 Mar 2026 02:51:50 +0000 Manifest next update: Mon 09 Mar 2026 02:51:50 +0000 Files and hashes: 1: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl (hash: FywLoEmLJuW6Vqash2GvdqokLcbovnNjpA7hqsnCeWo=) 2: F959A9A0F11011EB8E63FC73C4F9AE02.roa (hash: nLimoxCKlNJOj3rXq3K2B5DSnks1yw/qfn94fGbO8VI=) 3: 2C9502D83C4011EA852C097BC4F9AE02.roa (hash: e/mPY2tAxvOKbERQXSbTNAmVRT7SxbNu3CMHBuQG7qw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7631 (0x1dcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEA8C, serialNumber=870B9CD2E41DAB05BD5527C9150E948959716696 Validity Not Before: Mar 2 02:51:50 2026 GMT Not After : Mar 9 02:51:50 2026 GMT Subject: CN=69a4fb46-4331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d1:52:cd:9d:7b:38:9a:43:ee:87:3d:9c:50: 95:78:59:7a:23:2e:fa:aa:57:a1:74:4b:65:59:af: c2:ef:f8:13:a8:67:a6:31:2b:e1:f8:f8:56:94:44: fd:1f:67:9a:eb:e3:ba:8a:e3:5a:12:1d:77:7e:52: f8:a7:a0:ab:8d:6b:68:b8:10:1a:37:29:d6:e4:d4: c0:64:74:53:8f:3d:fc:dd:4f:81:0d:6c:11:ce:87: ad:21:95:83:a5:7e:7a:cc:3d:79:38:1f:09:cc:3d: ad:37:68:bc:bd:e9:c5:15:21:33:56:81:bb:4f:35: e4:17:66:5b:57:87:f7:0d:9a:76:e9:96:20:6c:8e: 67:20:14:16:b0:11:e7:1f:f2:f6:8e:3d:5b:9a:5d: df:3a:6a:e8:8e:70:95:09:dc:69:03:45:0a:e4:78: cd:51:d8:df:ce:ea:1f:df:86:cc:74:7c:f1:62:f7: ba:1d:87:c8:13:65:f2:af:b4:7c:e4:fd:be:c8:71: 37:75:b2:73:91:a9:a4:c3:fa:1c:26:34:63:51:f8: 7d:ee:90:68:36:a2:47:03:d7:ea:6e:ac:71:9a:a3: d5:1c:2a:1f:b7:31:0d:f4:66:e3:ed:a5:ea:f6:d4: 00:b4:9c:1a:d0:ee:d5:3d:2c:2e:63:0e:8a:22:3c: 42:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:E4:A9:58:5B:2E:75:B6:42:52:B7:D4:65:9C:12:FD:C8:4A:B0:D4 X509v3 Authority Key Identifier: keyid:87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:f9:5b:1e:72:d4:eb:37:ef:86:25:09:83:a3:ac:65:e7:51: c4:88:60:d7:19:30:5b:64:ab:3c:71:bb:ae:07:17:49:4e:d8: 18:3e:1d:bb:19:58:6b:2c:2f:6b:29:09:98:4c:68:33:de:83: 7f:e8:fd:6e:59:3e:14:77:ed:82:a8:8b:1a:ba:5a:9c:8a:d6: b8:ee:8c:91:99:5d:79:a1:98:fc:3d:85:aa:1f:04:48:03:7d: de:59:01:14:77:20:bb:3a:54:5f:f2:39:b2:6f:b9:16:5a:d2: 22:36:ce:42:fd:0e:f9:a3:14:79:b7:2d:11:0c:54:04:9d:34: 44:6c:23:8e:3f:7c:69:3b:51:ea:6e:8a:e2:3c:97:c0:8f:c0: 65:cc:d8:06:a6:1b:a8:7d:81:a1:77:a0:45:3d:47:bf:2b:ae: 33:7a:6d:9a:25:f8:1d:32:7c:d1:26:a4:2b:4e:5d:a8:f0:0a: 79:b8:14:92:35:e5:23:27:ad:cd:fa:e6:7a:a9:d8:08:8b:f6: 83:07:bf:2b:63:18:b7:c1:1d:24:27:0c:3f:ac:ad:0a:de:be: 50:a2:8e:fa:f5:73:f8:94:69:ac:84:8c:fd:fe:4f:40:ff:f6: 12:4c:ec:c9:98:91:a7:69:1e:74:0f:e3:f0:fe:f7:9a:6e:a5: ae:58:d1:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVBOEMxMTAvBgNVBAUTKDg3MEI5Q0QyRTQxREFCMDVCRDU1MjdDOTE1MEU5NDg5 NTk3MTY2OTYwHhcNMjYwMzAyMDI1MTUwWhcNMjYwMzA5MDI1MTUwWjAYMRYwFAYD VQQDEw02OWE0ZmI0Ni00MzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5dFSzZ17OJpD7oc9nFCVeFl6Iy76qlehdEtlWa/C7/gTqGemMSvh+PhWlET9 H2ea6+O6iuNaEh13flL4p6CrjWtouBAaNynW5NTAZHRTjz383U+BDWwRzoetIZWD pX56zD15OB8JzD2tN2i8venFFSEzVoG7TzXkF2ZbV4f3DZp26ZYgbI5nIBQWsBHn H/L2jj1bml3fOmrojnCVCdxpA0UK5HjNUdjfzuof34bMdHzxYve6HYfIE2Xyr7R8 5P2+yHE3dbJzkamkw/ocJjRjUfh97pBoNqJHA9fqbqxxmqPVHCoftzEN9Gbj7aXq 9tQAtJwa0O7VPSwuYw6KIjxCowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNrkqVhb LnW2QlK31GWcEv3ISrDUMB8GA1UdIwQYMBaAFIcLnNLkHasFvVUnyRUOlIlZcWaW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUE4Qy9GMjdCOUNERUJC ODYxMUU2OEZGNTBDNTdDNEY5QUUwMi9od3VjMHVRZHF3VzlWU2ZKRlE2VWlWbHha cFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h3dWMwdVFkcXdXOVZTZkpGUTZVaVZseFpwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUE4Qy9GMjdCOUNERUJCODYxMUU2OEZGNTBDNTdDNEY5QUUwMi9od3VjMHVRZHF3 VzlWU2ZKRlE2VWlWbHhacFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApvlbHnLU6zfvhiUJg6OsZedRxIhg1xkwW2SrPHG7rgcXSU7YGD4duxlYaywv aykJmExoM96Df+j9blk+FHftgqiLGrpanIrWuO6MkZldeaGY/D2Fqh8ESAN93lkB FHcguzpUX/I5sm+5FlrSIjbOQv0O+aMUebctEQxUBJ00RGwjjj98aTtR6m6K4jyX wI/AZczYBqYbqH2BoXegRT1HvyuuM3ptmiX4HTJ80SakK05dqPAKebgUkjXlIyet zfrmeqnYCIv2gwe/K2MYt8EdJCcMP6ytCt6+UKKO+vVz+JRprISM/f5PQP/2Ekzs yZiRp2kedA/j8P73mm6lrljRig== -----END CERTIFICATE-----Generated at Mon Mar 2 18:32:15 2026 by rpki-client