$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft File: hxSXyIUOQWJXlcT42UXHs9BBbB8.mft (raw, json) Hash identifier: 2tvVDMMS+L2CCXSniOLZ7wzxYb/5LPWPD9jq+KqmpF8= Subject key identifier: 56:B0:D3:31:62:BC:C5:37:D6:86:48:20:63:AA:D5:7E:74:5F:6F:6F Authority key identifier: 87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F Certificate issuer: /CN=A91C6825/serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F Certificate serial: 06BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft Manifest number: 06B3 Signing time: Mon 02 Mar 2026 00:11:00 +0000 Manifest this update: Mon 02 Mar 2026 00:10:59 +0000 Manifest next update: Mon 09 Mar 2026 00:10:59 +0000 Files and hashes: 1: hxSXyIUOQWJXlcT42UXHs9BBbB8.crl (hash: n8m1fs7ef7Id7JiddCrcAmFuJ/FNLG/yMRbkMfEoOB4=) 2: 925B815E9ABE11EBA445A74FC4F9AE02.roa (hash: dpmkPDFfKUB6qjF/TkJcrvInRqDocmXVraC9003p2B4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1722 (0x6ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6825, serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F Validity Not Before: Mar 2 00:10:59 2026 GMT Not After : Mar 9 00:10:59 2026 GMT Subject: CN=69a4d594-d6a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7f:a7:40:ec:26:0a:0d:30:9d:e8:bf:58:ac: 8e:c5:bc:58:5e:28:70:37:29:72:69:f0:54:26:47: 09:e3:21:75:15:0b:46:8f:be:96:1a:a7:4e:02:b1: 74:02:3d:23:f0:96:6e:06:dc:37:43:90:f0:93:a0: 76:04:53:3a:99:d0:20:d3:25:7f:12:47:36:0d:37: 2d:af:bf:f9:3f:4c:d8:e1:37:d9:f7:68:7c:cf:ae: 24:a2:34:5d:fd:f3:d9:c4:a1:5a:92:2a:09:a0:37: 1d:c7:20:89:51:d0:c0:43:06:57:45:8a:f7:fa:2e: 91:c9:4c:9d:6f:ec:af:a5:fa:e9:f9:18:50:55:af: a2:31:da:b4:e6:35:7e:b2:b0:53:e2:4f:67:2f:4e: ed:e1:5e:0f:f5:f6:e9:cf:76:f1:0d:40:b6:76:78: 54:4e:a9:d4:36:fd:89:d5:58:aa:91:d0:8d:cb:a4: ce:2b:9c:ba:12:40:8e:e6:f6:e7:08:fc:27:4d:d9: c5:0d:2d:b9:f8:16:ab:ae:8e:28:dd:19:b0:38:82: f5:7d:cf:25:4f:82:a2:a6:bc:0a:6a:3a:24:a0:5b: cf:25:e7:ff:cf:12:ac:2e:c1:2f:a5:38:41:d0:bb: 59:03:fc:72:6c:cc:56:c8:81:92:d9:d5:5c:72:8a: 3e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:B0:D3:31:62:BC:C5:37:D6:86:48:20:63:AA:D5:7E:74:5F:6F:6F X509v3 Authority Key Identifier: keyid:87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:04:78:10:a4:71:42:f2:07:7a:e5:f1:a4:6c:4a:ac:84:dd: 0d:31:a7:c4:7b:91:13:92:69:26:95:8d:59:32:b4:52:9e:9f: 11:3e:e7:8a:0d:c3:c9:5c:2f:c0:77:ff:29:82:7f:ef:f8:fe: 65:60:b4:51:79:8a:c7:42:83:e3:f2:03:58:52:3b:b5:ef:a8: 34:8e:6a:b3:2f:dd:ce:f7:7e:4e:e6:a2:f3:9c:4a:74:a1:df: a4:16:17:93:f6:a7:59:3a:04:70:70:c3:53:99:cc:c3:bc:7f: d8:a9:31:23:da:6a:63:08:98:6d:da:6a:c0:39:18:00:fb:f8: c6:8b:8b:a6:40:2b:04:64:80:b3:58:07:89:2b:c6:a3:26:aa: 72:03:0b:38:76:1e:f5:c8:23:9c:2a:4e:31:a1:76:5e:dc:94: 97:60:26:04:fd:31:b4:cc:ef:3d:e7:e2:c5:5d:3a:d1:85:13: 0a:1f:55:01:ec:61:22:6d:2b:ff:fc:18:e7:9b:56:d7:9d:c1: c0:84:0e:13:c8:55:fe:b7:4d:2e:9e:ba:a9:21:ad:a0:91:31: cd:8c:cb:04:80:e8:50:0f:e9:b4:d9:5d:3b:7b:9b:8e:6f:aa: 38:0c:9c:a6:d4:7f:c8:b0:39:db:3b:e0:c6:86:ce:85:af:65: 8e:29:3f:bc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY4MjUxMTAvBgNVBAUTKDg3MTQ5N0M4ODUwRTQxNjI1Nzk1QzRGOEQ5NDVDN0Iz RDA0MTZDMUYwHhcNMjYwMzAyMDAxMDU5WhcNMjYwMzA5MDAxMDU5WjAYMRYwFAYD VQQDEw02OWE0ZDU5NC1kNmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoX+nQOwmCg0wnei/WKyOxbxYXihwNylyafBUJkcJ4yF1FQtGj76WGqdOArF0 Aj0j8JZuBtw3Q5Dwk6B2BFM6mdAg0yV/Ekc2DTctr7/5P0zY4TfZ92h8z64kojRd /fPZxKFakioJoDcdxyCJUdDAQwZXRYr3+i6RyUydb+yvpfrp+RhQVa+iMdq05jV+ srBT4k9nL07t4V4P9fbpz3bxDUC2dnhUTqnUNv2J1ViqkdCNy6TOK5y6EkCO5vbn CPwnTdnFDS25+Barro4o3RmwOIL1fc8lT4KiprwKajokoFvPJef/zxKsLsEvpThB 0LtZA/xybMxWyIGS2dVccoo+bQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFaw0zFi vMU31oZIIGOq1X50X29vMB8GA1UdIwQYMBaAFIcUl8iFDkFiV5XE+NlFx7PQQWwf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjgyNS8xQUE5MEZCNjlB QkMxMUVCOTAwQTE2NENDNEY5QUUwMi9oeFNYeUlVT1FXSlhsY1Q0MlVYSHM5QkJi QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h4U1h5SVVPUVdKWGxjVDQyVVhIczlCQmJCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjgyNS8xQUE5MEZCNjlBQkMxMUVCOTAwQTE2NENDNEY5QUUwMi9oeFNYeUlVT1FX SlhsY1Q0MlVYSHM5QkJiQjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmgR4EKRxQvIHeuXxpGxKrITdDTGnxHuRE5JpJpWNWTK0Up6fET7nig3DyVwv wHf/KYJ/7/j+ZWC0UXmKx0KD4/IDWFI7te+oNI5qsy/dzvd+Tuai85xKdKHfpBYX k/anWToEcHDDU5nMw7x/2KkxI9pqYwiYbdpqwDkYAPv4xouLpkArBGSAs1gHiSvG oyaqcgMLOHYe9cgjnCpOMaF2XtyUl2AmBP0xtMzvPefixV060YUTCh9VAexhIm0r //wY55tW153BwIQOE8hV/rdNLp66qSGtoJExzYzLBIDoUA/ptNldO3ubjm+qOAyc ptR/yLA52zvgxobOha9ljik/vA== -----END CERTIFICATE-----Generated at Mon Mar 2 13:52:35 2026 by rpki-client