$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: EKTWHMcAhFRlosRrUn6Ioiomq7Z7n4SFzR2NMJfZKmo= Subject key identifier: 95:E2:41:CB:B1:50:55:A8:37:A0:47:81:73:DE:86:D5:37:36:2C:D7 Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: FB Signing time: Sun 01 Mar 2026 07:16:50 +0000 Manifest this update: Sun 01 Mar 2026 07:16:50 +0000 Manifest next update: Sun 08 Mar 2026 07:16:50 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: Qyyy5cbjp/+jCOl0VEjAHafEzcf+6e6f8Ce2u9xQML4=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: Z1yPOrOVBAA0wAoiECPiJ9d5WH/bmXdgM8w0h3GaBUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Mar 1 07:16:50 2026 GMT Not After : Mar 8 07:16:50 2026 GMT Subject: CN=69a3e7e2-1429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:6a:38:48:a4:fb:ae:8d:0f:88:61:a4:08:4e: 17:f7:35:95:13:f6:33:fb:e1:f3:35:1d:0b:e3:05: 49:05:77:13:9d:09:c8:42:37:35:fa:b5:51:c4:84: 58:69:1c:1e:ab:cd:ba:1b:b7:20:5d:73:9f:c3:e0: 56:c7:0e:a6:94:7c:4e:12:10:2d:6b:d3:74:95:b5: 49:0b:dd:a1:d8:42:cf:fc:0f:3b:01:d2:a0:f9:37: 9d:59:bb:1b:05:7c:1f:b2:ec:e3:9d:01:77:e4:51: a3:44:c4:70:4d:cf:d2:1d:61:26:60:53:ea:69:1d: d6:aa:f6:95:dd:f3:db:61:9f:14:4b:cd:2b:9c:27: d2:13:e7:be:74:68:29:12:e2:47:34:5a:7f:fd:15: cb:82:c9:dc:0d:29:67:16:7e:47:14:3f:8f:ca:84: 74:3e:6e:cf:26:c6:f2:ad:35:5c:d9:c7:fc:f0:ab: cc:02:a5:a3:75:45:6e:5a:c2:ce:c8:a8:33:96:e0: ac:54:37:1c:ef:92:f9:45:de:09:1a:3d:d3:77:2a: a8:36:c8:42:5d:a5:00:c6:f7:f3:fa:f8:83:2b:14: 07:cd:dc:b4:eb:11:8c:3d:1c:b5:f1:44:49:d1:a8: 2f:08:66:c3:ea:25:15:1c:41:d8:51:6a:19:36:27: 0f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:E2:41:CB:B1:50:55:A8:37:A0:47:81:73:DE:86:D5:37:36:2C:D7 X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:b0:24:fd:f9:f0:a2:b3:f9:0d:24:da:bd:f3:b9:15:ce:94: fd:a7:e7:1e:3d:ed:de:26:52:00:ad:37:5c:ac:b1:b8:5b:59: 1a:8b:19:d9:19:aa:f2:17:0f:23:cb:16:c3:49:25:dc:43:25: 82:0d:b9:a7:46:bd:44:f4:bb:86:47:8e:65:9e:e1:48:2b:96: b5:0b:9f:2c:b2:15:f8:1c:99:66:73:e4:d2:79:c5:ab:c2:94: 00:cf:26:39:45:27:79:5a:36:99:08:3d:95:d1:6e:e6:11:5d: 0d:7e:7b:c2:63:06:16:b2:a9:5c:1f:ca:e4:0e:6f:32:db:57: 20:fa:54:a0:33:7e:93:7a:ef:58:6b:24:7d:bb:37:89:02:fc: 9b:19:ac:5f:63:81:74:77:17:53:dd:a8:40:ac:69:55:e4:18: b4:75:cf:10:78:bc:5f:e4:6f:c8:cb:41:be:df:b5:c2:09:77: 04:a4:54:7a:2b:40:57:bc:c8:55:52:bc:3f:06:d9:76:6f:8d: 4a:e7:d7:b5:94:03:fd:d3:1b:de:97:4e:5d:50:5f:22:77:c8: c7:18:46:8f:37:58:74:9f:2d:9c:03:6b:51:c3:d8:83:c7:5d: 50:2a:70:bc:9b:2d:85:48:c5:e7:65:af:82:77:29:01:1f:bf: 5e:ba:15:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFNzAxMTAvBgNVBAUTKDFFNjU2RERFQzdFOThEMjRBMTg2RkZEQjZGNTk3NzEw QUFGRjJBOEQwHhcNMjYwMzAxMDcxNjUwWhcNMjYwMzA4MDcxNjUwWjAYMRYwFAYD VQQDEw02OWEzZTdlMi0xNDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmmo4SKT7ro0PiGGkCE4X9zWVE/Yz++HzNR0L4wVJBXcTnQnIQjc1+rVRxIRY aRweq826G7cgXXOfw+BWxw6mlHxOEhAta9N0lbVJC92h2ELP/A87AdKg+TedWbsb BXwfsuzjnQF35FGjRMRwTc/SHWEmYFPqaR3WqvaV3fPbYZ8US80rnCfSE+e+dGgp EuJHNFp//RXLgsncDSlnFn5HFD+PyoR0Pm7PJsbyrTVc2cf88KvMAqWjdUVuWsLO yKgzluCsVDcc75L5Rd4JGj3TdyqoNshCXaUAxvfz+viDKxQHzdy06xGMPRy18URJ 0agvCGbD6iUVHEHYUWoZNicP9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJXiQcux UFWoN6BHgXPehtU3NizXMB8GA1UdIwQYMBaAFB5lbd7H6Y0koYb/229ZdxCq/yqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEU3MC8zNUM3NkM3RTk1 NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpTU2hodl9iYjFsM0VLcl9L bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEU3MC8zNUM3NkM3RTk1NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpT U2hodl9iYjFsM0VLcl9LbzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAebAk/fnworP5DSTavfO5Fc6U/afnHj3t3iZSAK03XKyxuFtZGosZ2Rmq8hcP I8sWw0kl3EMlgg25p0a9RPS7hkeOZZ7hSCuWtQufLLIV+ByZZnPk0nnFq8KUAM8m OUUneVo2mQg9ldFu5hFdDX57wmMGFrKpXB/K5A5vMttXIPpUoDN+k3rvWGskfbs3 iQL8mxmsX2OBdHcXU92oQKxpVeQYtHXPEHi8X+RvyMtBvt+1wgl3BKRUeitAV7zI VVK8PwbZdm+NSufXtZQD/dMb3pdOXVBfInfIxxhGjzdYdJ8tnANrUcPYg8ddUCpw vJsthUjF52WvgncpAR+/XroVvw== -----END CERTIFICATE-----Generated at Mon Mar 2 15:31:46 2026 by rpki-client