$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft File: hRAOWh-65f4aZcvxVzQTCo5UG7I.mft (raw, json) Hash identifier: QfeR0fpFJBupwD4G7xQSc50r40TxOSXBDetpS47kfMU= Subject key identifier: 11:BF:37:EE:3D:30:8B:64:9F:97:BC:02:7A:85:6C:14:33:BF:76:5A Authority key identifier: 85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 Certificate issuer: /CN=A91B3087/serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft Manifest number: 7A Signing time: Fri 17 Apr 2026 07:31:30 +0000 Manifest this update: Fri 17 Apr 2026 07:31:29 +0000 Manifest next update: Fri 24 Apr 2026 07:31:29 +0000 Files and hashes: 1: hRAOWh-65f4aZcvxVzQTCo5UG7I.crl (hash: cz2R3Wn9Vj/tXzj9MTLKvIphT254JIOmrOGYI7t7Rdc=) 2: 8F35765ACF5811F085DD836EC4F9AE02.roa (hash: Rt4TGbr/K+WJ5nQlhD3lcCPl9EyJK1zP7OfMfktiw14=) 3: 3D51EF7C8F0111F087307F35C4F9AE02.roa (hash: ZTYnYrXftu4EMVac2jtmasDDa1311QW4YkSq9Et/mjo=) 4: 1F578DB08F0111F0BF750433C4F9AE02.roa (hash: hmo0JZjqsUcXR1CeyKb5AUyvewOo9tGw1tDFanCmkiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3087, serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Validity Not Before: Apr 17 07:31:29 2026 GMT Not After : Apr 24 07:31:29 2026 GMT Subject: CN=69e1e1d2-ac1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:14:04:66:38:a7:06:22:ff:58:cb:27:4d:36: 4e:ad:14:46:25:e3:88:d2:92:de:36:68:71:70:85: 65:27:61:e5:0d:69:81:fc:4c:80:d8:dc:cb:23:17: 6f:17:5d:38:b5:05:45:5a:e1:59:fe:59:16:d1:a6: 30:0f:3a:a8:4b:f2:f5:94:cf:a6:2b:44:d8:a8:92: e3:6f:0c:99:72:9b:79:3f:76:b3:f4:8f:7e:ed:d9: 15:dc:11:10:2d:af:2c:23:ef:36:5a:2a:6d:73:a0: 40:9b:21:31:ce:3a:dd:a9:6b:a1:25:9c:c9:e1:3c: 10:9d:f2:33:ec:c9:40:47:7b:5f:1a:c2:45:3f:e5: 73:e5:3c:80:54:2c:79:4c:fa:b3:98:e0:f5:9c:66: a4:12:10:6d:43:e0:6f:b6:f9:13:b9:fa:50:46:93: a9:e4:4c:f0:10:45:d3:a4:d3:40:2e:9d:2e:a2:ad: 50:a0:91:a9:01:2f:a5:35:bb:8d:13:d0:c5:c0:36: cb:27:06:4e:fd:d4:3b:9c:67:52:fe:83:8d:49:45: 5c:f0:b8:7b:c3:0c:87:2d:6d:6d:d0:57:6a:ab:37: 7e:74:62:c4:07:3e:d3:52:31:e7:87:fe:03:42:b8: ed:ac:13:3c:5f:2d:da:a3:9c:bd:f8:b3:5e:c0:94: b2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:BF:37:EE:3D:30:8B:64:9F:97:BC:02:7A:85:6C:14:33:BF:76:5A X509v3 Authority Key Identifier: keyid:85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:c4:29:86:63:37:c9:71:26:47:53:f4:d5:7b:79:8f:1a:13: 15:d6:f0:d1:b7:24:23:4a:73:26:de:76:fb:d4:2d:49:2c:40: 80:27:4c:ce:83:6b:f2:67:75:9c:a1:bc:c7:70:78:17:86:9c: 45:d0:47:7e:ba:8e:4a:cd:29:ff:b9:8f:ca:21:67:46:da:1f: 4d:ed:5b:68:bf:5c:6e:c3:01:c2:39:b7:6e:c0:8e:f8:9c:a4: bd:13:c2:9f:f9:18:30:60:33:e2:89:9c:1d:c7:5e:2a:5c:0c: 4c:12:2e:b7:d9:03:21:59:2c:4b:6f:21:66:15:3d:5a:79:52: d0:a1:d8:56:d6:01:d9:db:f1:64:27:e1:69:df:f0:a2:ce:58: 0b:d2:98:27:5e:1c:c9:9e:78:f5:bf:71:da:9c:79:66:72:83: 5f:41:34:ff:e5:5c:fe:e6:de:41:47:bf:51:8b:73:dc:3b:70: ff:eb:41:b5:ea:43:1d:31:34:57:3a:2e:ae:c9:1b:72:b0:70: 27:46:8f:f4:cf:0b:04:1c:b3:b9:ee:7a:ad:1c:f4:81:92:53: 17:ce:3a:aa:e9:75:f9:f2:31:ef:cd:74:05:4d:c1:5d:7f:e4: d8:e8:6c:56:65:16:2b:2d:da:f1:8b:e0:19:86:68:cc:11:b0: 39:3f:a8:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMwODcxMTAvBgNVBAUTKDg1MTAwRTVBMUZCQUU1RkUxQTY1Q0JGMTU3MzQxMzBB OEU1NDFCQjIwHhcNMjYwNDE3MDczMTI5WhcNMjYwNDI0MDczMTI5WjAYMRYwFAYD VQQDEw02OWUxZTFkMi1hYzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hQEZjinBiL/WMsnTTZOrRRGJeOI0pLeNmhxcIVlJ2HlDWmB/EyA2NzLIxdv F104tQVFWuFZ/lkW0aYwDzqoS/L1lM+mK0TYqJLjbwyZcpt5P3az9I9+7dkV3BEQ La8sI+82Wiptc6BAmyExzjrdqWuhJZzJ4TwQnfIz7MlAR3tfGsJFP+Vz5TyAVCx5 TPqzmOD1nGakEhBtQ+BvtvkTufpQRpOp5EzwEEXTpNNALp0uoq1QoJGpAS+lNbuN E9DFwDbLJwZO/dQ7nGdS/oONSUVc8Lh7wwyHLW1t0Fdqqzd+dGLEBz7TUjHnh/4D QrjtrBM8Xy3ao5y9+LNewJSyxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBG/N+49 MItkn5e8AnqFbBQzv3ZaMB8GA1UdIwQYMBaAFIUQDlofuuX+GmXL8Vc0EwqOVBuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzA4Ny80ODg4MzEzMjhF QUExMUYwQjgzNTI5NDlDNEY5QUUwMi9oUkFPV2gtNjVmNGFaY3Z4VnpRVENvNVVH N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hSQU9XaC02NWY0YVpjdnhWelFUQ281VUc3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzA4Ny80ODg4MzEzMjhFQUExMUYwQjgzNTI5NDlDNEY5QUUwMi9oUkFPV2gtNjVm NGFaY3Z4VnpRVENvNVVHN0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKsQphmM3yXEmR1P01Xt5jxoTFdbw0bckI0pzJt52+9QtSSxAgCdMzoNr8md1 nKG8x3B4F4acRdBHfrqOSs0p/7mPyiFnRtofTe1baL9cbsMBwjm3bsCO+JykvRPC n/kYMGAz4omcHcdeKlwMTBIut9kDIVksS28hZhU9WnlS0KHYVtYB2dvxZCfhad/w os5YC9KYJ14cyZ549b9x2px5ZnKDX0E0/+Vc/ubeQUe/UYtz3Dtw/+tBtepDHTE0 VzourskbcrBwJ0aP9M8LBByzue56rRz0gZJTF846qul1+fIx7810BU3BXX/k2Ohs VmUWKy3a8YvgGYZozBGwOT+ong== -----END CERTIFICATE-----Generated at Fri Apr 17 12:05:37 2026 by rpki-client