$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft File: HUXnKUVKJCRGewPPyZfX6xhK52Y.mft (raw, json) Hash identifier: 3QRNsBP2BLQzDVec2LnJg/H+yrX3l57Zqqiy9u85Who= Subject key identifier: 14:C1:2B:C2:99:44:BC:5D:31:B7:E2:02:8E:84:E1:3A:FD:88:8F:4F Authority key identifier: 1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 Certificate issuer: /CN=A91B15DC/serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft Manifest number: D6 Signing time: Sun 01 Mar 2026 07:49:34 +0000 Manifest this update: Sun 01 Mar 2026 07:49:33 +0000 Manifest next update: Sun 08 Mar 2026 07:49:33 +0000 Files and hashes: 1: HUXnKUVKJCRGewPPyZfX6xhK52Y.crl (hash: DdjG97yt9xcB3brFQwkwNSlIl6d97w4Rn7BY+HUo5kc=) 2: 14F7BC00CEEF11EFAF6F762FC4F9AE02.roa (hash: 2FGmDI1OZCn2kXGRhcOkUfm2jCMswTb7EQPD9YLXHCc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Validity Not Before: Mar 1 07:49:33 2026 GMT Not After : Mar 8 07:49:33 2026 GMT Subject: CN=69a3ef8d-813f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ae:65:d8:f5:42:ba:26:8d:d7:0f:47:0b:03: 1c:66:fa:d5:6f:4d:04:c4:d1:ba:d8:5e:f3:a8:c4: b5:26:69:5a:c3:1d:c3:e6:a9:eb:0a:fd:82:3a:50: c7:bb:f6:4f:c9:37:f0:1d:cc:a2:89:ec:b6:6e:bd: f3:90:51:2c:11:d7:85:4b:7d:be:b6:33:85:ef:57: 9f:ee:f2:cf:20:88:d9:65:d2:55:4b:7d:d7:b5:58: 1d:1b:05:b8:43:d5:6a:07:86:eb:46:35:ac:88:86: d2:ac:7d:1d:0a:7c:22:77:c0:0e:3f:dc:7c:98:d3: 77:d5:fe:02:4d:e0:5a:43:94:d7:0a:9d:30:f6:7e: 44:11:73:62:08:af:a9:7a:9b:72:f0:15:72:73:23: 20:9e:57:d0:05:26:72:7d:dc:f7:cc:03:bc:60:65: 8b:d9:fe:c6:44:f7:0a:90:0d:a4:fd:79:01:90:bb: 7b:c5:b5:a6:d4:de:d7:62:a7:99:de:7a:8a:0b:f9: 10:f3:67:b6:5f:c6:69:20:db:c6:84:ea:1e:4a:1f: 20:fb:a4:ee:9d:91:ab:10:31:af:29:29:1e:f3:92: 0c:cb:6d:d5:12:d3:5a:59:5c:7f:48:ee:38:96:5a: dc:52:e8:a1:dc:77:1b:a0:b8:59:68:97:b3:9c:04: 22:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C1:2B:C2:99:44:BC:5D:31:B7:E2:02:8E:84:E1:3A:FD:88:8F:4F X509v3 Authority Key Identifier: keyid:1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:ee:57:df:ba:44:58:b0:cd:8c:5f:d7:2a:da:dc:95:0e:ed: 29:81:56:40:a5:62:e9:a1:4e:7f:ad:6f:e6:e6:5a:a2:8d:bf: d5:f2:9b:bb:8a:94:53:69:62:13:10:0f:c0:eb:34:71:06:8e: 24:33:58:4e:27:b2:39:1b:27:51:b8:43:22:4c:7f:93:46:fa: c0:48:61:37:ee:29:d2:a9:e2:27:3d:37:75:d6:bb:83:fc:46: a3:ae:7d:8c:f3:ac:57:7b:bd:6d:bc:bf:af:66:35:89:01:f9: 62:fa:17:a7:4d:48:d3:c6:81:1e:7f:95:42:c0:30:7d:9e:b0: 7f:ef:28:36:12:14:62:7b:dd:f4:56:df:b2:69:2c:4c:3b:2e: 53:65:3f:05:5d:0e:53:ef:cb:13:b7:16:4d:52:9d:87:dc:8e: e8:c8:56:66:60:c2:fc:92:6e:2c:64:1f:4f:88:1e:1e:6a:04: 8f:27:48:20:f6:0f:5f:04:55:9c:51:d9:1e:e9:e0:a5:ff:37: 0a:9b:8e:05:33:5d:ee:ee:7c:65:c8:84:71:8e:f0:65:b2:8d: 6c:26:88:01:51:ec:fd:34:16:cb:1c:ed:4a:ec:21:3d:8b:1b: 47:d6:d7:4a:4e:6f:03:14:ab:f8:1d:7f:6c:05:32:ac:07:2f: f3:10:95:ab -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE1REMxMTAvBgNVBAUTKDFENDVFNzI5NDU0QTI0MjQ0NjdCMDNDRkM5OTdEN0VC MTg0QUU3NjYwHhcNMjYwMzAxMDc0OTMzWhcNMjYwMzA4MDc0OTMzWjAYMRYwFAYD VQQDEw02OWEzZWY4ZC04MTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1q5l2PVCuiaN1w9HCwMcZvrVb00ExNG62F7zqMS1Jmlawx3D5qnrCv2COlDH u/ZPyTfwHcyiiey2br3zkFEsEdeFS32+tjOF71ef7vLPIIjZZdJVS33XtVgdGwW4 Q9VqB4brRjWsiIbSrH0dCnwid8AOP9x8mNN31f4CTeBaQ5TXCp0w9n5EEXNiCK+p epty8BVycyMgnlfQBSZyfdz3zAO8YGWL2f7GRPcKkA2k/XkBkLt7xbWm1N7XYqeZ 3nqKC/kQ82e2X8ZpINvGhOoeSh8g+6TunZGrEDGvKSke85IMy23VEtNaWVx/SO44 llrcUuih3HcboLhZaJeznAQiCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBTBK8KZ RLxdMbfiAo6E4Tr9iI9PMB8GA1UdIwQYMBaAFB1F5ylFSiQkRnsDz8mX1+sYSudm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTVEQy81ODIzQUY4NkNF RUQxMUVGQkQ2NTU1MTFDNEY5QUUwMi9IVVhuS1VWS0pDUkdld1BQeVpmWDZ4aEs1 MlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVWG5LVVZLSkNSR2V3UFB5WmZYNnhoSzUyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTVEQy81ODIzQUY4NkNFRUQxMUVGQkQ2NTU1MTFDNEY5QUUwMi9IVVhuS1VWS0pD Ukdld1BQeVpmWDZ4aEs1MlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAce5X37pEWLDNjF/XKtrclQ7tKYFWQKVi6aFOf61v5uZaoo2/1fKbu4qUU2li ExAPwOs0cQaOJDNYTieyORsnUbhDIkx/k0b6wEhhN+4p0qniJz03dda7g/xGo659 jPOsV3u9bby/r2Y1iQH5YvoXp01I08aBHn+VQsAwfZ6wf+8oNhIUYnvd9Fbfsmks TDsuU2U/BV0OU+/LE7cWTVKdh9yO6MhWZmDC/JJuLGQfT4geHmoEjydIIPYPXwRV nFHZHungpf83CpuOBTNd7u58ZciEcY7wZbKNbCaIAVHs/TQWyxztSuwhPYsbR9bX Sk5vAxSr+B1/bAUyrAcv8xCVqw== -----END CERTIFICATE-----Generated at Mon Mar 2 10:24:57 2026 by rpki-client