$ rpki-client -vvf rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/HFloWGy0x-KD8UGfWFBGjtpVloI.mft File: HFloWGy0x-KD8UGfWFBGjtpVloI.mft (raw, json) Hash identifier: nB4qbqhaO7i8x6mVHhm/k+h03jJjMBz/PIOms5a/KKc= Subject key identifier: DD:30:03:89:15:82:4D:E7:99:14:31:58:68:74:E5:0E:11:F4:01:36 Authority key identifier: 1C:59:68:58:6C:B4:C7:E2:83:F1:41:9F:58:50:46:8E:DA:55:96:82 Certificate issuer: /CN=A91C78A7/serialNumber=1C5968586CB4C7E283F1419F5850468EDA559682 Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HFloWGy0x-KD8UGfWFBGjtpVloI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/HFloWGy0x-KD8UGfWFBGjtpVloI.mft Manifest number: 48 Signing time: Sun 01 Mar 2026 09:50:00 +0000 Manifest this update: Sun 01 Mar 2026 09:49:59 +0000 Manifest next update: Sun 08 Mar 2026 09:49:59 +0000 Files and hashes: 1: HFloWGy0x-KD8UGfWFBGjtpVloI.crl (hash: VQ7XtnDEZaYPi/9BRgOgcGNt8xvge6xoPBCSWCJQwT4=) 2: 9DB152BEBAE311F0A6981134C4F9AE02.roa (hash: PA9hOk6V6IhWEIDuuD3b5sMWQ+ZypkTpM3DoKTzEmx8=) 3: 886DFB52BE4711F0A5FBDC5FC4F9AE02.roa (hash: qIdXJ0ADHeohVK85wcLxaAejqeQhAXKRfdoayVpue1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/HFloWGy0x-KD8UGfWFBGjtpVloI.crl rsync://rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/HFloWGy0x-KD8UGfWFBGjtpVloI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HFloWGy0x-KD8UGfWFBGjtpVloI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C78A7, serialNumber=1C5968586CB4C7E283F1419F5850468EDA559682 Validity Not Before: Mar 1 09:49:59 2026 GMT Not After : Mar 8 09:49:59 2026 GMT Subject: CN=69a40bc8-2d5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0c:c7:eb:bb:97:ee:9d:0e:58:e7:8e:95:38: dc:26:9f:ad:86:93:86:e3:55:89:4c:f3:11:bb:94: 34:61:5a:3a:dc:c3:2c:97:da:f3:02:5b:c2:d7:38: 82:fd:f4:16:2a:ad:df:22:e0:10:d0:2f:f1:70:8e: 81:1f:d0:b7:a8:db:a3:83:d3:c0:84:d9:91:1e:b5: 24:e2:93:36:04:3c:cc:0b:32:10:df:68:12:58:cf: 1c:ec:f2:27:43:7c:fe:df:5c:c3:d3:1b:42:17:df: 42:9a:c9:1d:53:70:58:b6:33:2a:ec:80:4b:9f:58: 30:82:60:b7:d5:19:65:0b:c3:53:6e:a5:48:39:86: 4c:4a:80:31:12:c7:09:7a:ab:c0:7c:1d:54:bd:aa: fe:e6:2b:b7:5b:9b:31:d8:22:b2:fb:27:ff:0a:b9: 71:27:30:c6:22:c4:10:93:cf:8a:58:34:71:7f:e3: 80:ff:3b:df:33:80:82:12:e9:a9:62:cb:f4:7c:2d: 88:20:09:20:29:30:50:27:19:c6:b0:51:26:b7:96: 46:f2:21:0b:3f:e3:60:5a:6f:5b:5a:de:00:e1:05: 96:95:d4:db:7f:5a:09:4b:92:ec:15:7b:a9:90:d8: 96:bd:cc:05:c0:f2:13:27:47:64:37:ce:e0:41:f8: f8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:30:03:89:15:82:4D:E7:99:14:31:58:68:74:E5:0E:11:F4:01:36 X509v3 Authority Key Identifier: keyid:1C:59:68:58:6C:B4:C7:E2:83:F1:41:9F:58:50:46:8E:DA:55:96:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/HFloWGy0x-KD8UGfWFBGjtpVloI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HFloWGy0x-KD8UGfWFBGjtpVloI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/HFloWGy0x-KD8UGfWFBGjtpVloI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e8:2d:b8:e4:91:44:4d:e2:47:6b:3c:0d:ca:e4:a4:dd:d0:93: 97:a8:f9:b5:d3:d2:7b:db:d2:48:e6:1c:f5:5b:d6:8e:7b:79: 46:a7:89:bb:84:90:93:e7:64:27:4c:0f:f0:73:62:b3:59:ac: af:e5:c1:5f:01:e4:e9:93:4d:c9:8f:57:50:42:88:f8:5b:ae: 99:0e:f6:e0:03:df:a0:44:71:c8:3c:32:fb:51:b0:4f:fe:e3: 75:9a:f4:02:80:a2:17:bf:27:30:9b:0b:7a:17:84:be:a6:78: 0f:62:f1:07:80:c5:19:2b:98:85:b8:4f:7e:a3:c3:a5:4e:f0: fa:1a:42:c4:54:4a:7b:ac:81:4a:df:fc:fe:75:cb:38:37:4a: 7c:75:05:1b:6b:92:12:31:a4:6e:44:6c:ce:96:ee:9a:b6:32: 4a:d6:89:6b:cb:67:f5:c6:ef:c2:dc:e4:52:77:40:cb:de:5d: cb:be:84:6e:a3:45:de:c6:21:6e:98:32:f3:25:4f:fe:40:58: c0:77:52:e5:e7:2d:85:70:c9:75:88:c1:2b:84:e2:93:2a:9f: 37:0d:53:6a:20:b0:58:55:fd:af:35:92:98:f8:3d:41:12:ed: a8:0c:9a:b3:24:33:39:33:ca:62:3a:b0:63:32:a4:c3:47:f4: bf:d2:f5:5b -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NzhBNzExMC8GA1UEBRMoMUM1OTY4NTg2Q0I0QzdFMjgzRjE0MTlGNTg1MDQ2OEVE QTU1OTY4MjAeFw0yNjAzMDEwOTQ5NTlaFw0yNjAzMDgwOTQ5NTlaMBgxFjAUBgNV BAMTDTY5YTQwYmM4LTJkNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9DMfru5funQ5Y546VONwmn62Gk4bjVYlM8xG7lDRhWjrcwyyX2vMCW8LXOIL9 9BYqrd8i4BDQL/FwjoEf0Leo26OD08CE2ZEetSTikzYEPMwLMhDfaBJYzxzs8idD fP7fXMPTG0IX30KayR1TcFi2MyrsgEufWDCCYLfVGWULw1NupUg5hkxKgDESxwl6 q8B8HVS9qv7mK7dbmzHYIrL7J/8KuXEnMMYixBCTz4pYNHF/44D/O98zgIIS6ali y/R8LYggCSApMFAnGcawUSa3lkbyIQs/42Bab1ta3gDhBZaV1Nt/WglLkuwVe6mQ 2Ja9zAXA8hMnR2Q3zuBB+PiJAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU3TADiRWC TeeZFDFYaHTlDhH0ATYwHwYDVR0jBBgwFoAUHFloWGy0x+KD8UGfWFBGjtpVloIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3OEE3L0ZBRTk2QzRBQjYy MDExRjBBNzQ5MjExRkM0RjlBRTAyL0hGbG9XR3kweC1LRDhVR2ZXRkJHanRwVmxv SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSEZsb1dHeTB4LUtEOFVHZldGQkdqdHBWbG9JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3 OEE3L0ZBRTk2QzRBQjYyMDExRjBBNzQ5MjExRkM0RjlBRTAyL0hGbG9XR3kweC1L RDhVR2ZXRkJHanRwVmxvSS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQDoLbjkkURN4kdrPA3K5KTd0JOXqPm109J729JI5hz1W9aOe3lGp4m7hJCT52Qn TA/wc2KzWayv5cFfAeTpk03Jj1dQQoj4W66ZDvbgA9+gRHHIPDL7UbBP/uN1mvQC gKIXvycwmwt6F4S+pngPYvEHgMUZK5iFuE9+o8OlTvD6GkLEVEp7rIFK3/z+dcs4 N0p8dQUba5ISMaRuRGzOlu6atjJK1olry2f1xu/C3ORSd0DL3l3LvoRuo0XexiFu mDLzJU/+QFjAd1Ll5y2FcMl1iMErhOKTKp83DVNqILBYVf2vNZKY+D1BEu2oDJqz JDM5M8piOrBjMqTDR/S/0vVb -----END CERTIFICATE-----Generated at Mon Mar 2 05:38:18 2026 by rpki-client