$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: pIXmWpnL39nSAmqepHwV1A0RgmSDlZ7DvSbbbVgy028= Subject key identifier: D0:C1:CF:9C:00:60:DE:FC:96:83:39:50:8E:2D:E1:D0:7C:29:98:1D Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0C52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0C3F Signing time: Mon 02 Mar 2026 02:13:45 +0000 Manifest this update: Mon 02 Mar 2026 02:13:43 +0000 Manifest next update: Mon 09 Mar 2026 02:13:43 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: BoYCiX0HXUAYaJFIHgYMXklKrzRYCKr5ooqd/TSC/zw=) 2: FD765464FCFC11F0AF0D3BB7376F56BC.roa (hash: kDCczjvBdKJ7maoaKn3v5c66nxLfU8whWygzpyQrDY4=) 3: B4E988F2FCFB11F092E222F9366F56BC.roa (hash: CK97q//UoX+CisaSzf/RODAUkpG+KiwghoGrG2QR6Yk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:13:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3154 (0xc52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: Mar 2 02:13:43 2026 GMT Not After : Mar 9 02:13:43 2026 GMT Subject: CN=69a4f258-105e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cc:42:e9:f8:44:0f:58:b1:b3:13:e9:cc:80: 29:c5:28:27:6d:fd:67:48:cc:4c:94:66:17:fc:e5: 4f:97:49:91:d0:99:ba:44:bd:db:32:8c:c0:06:57: db:67:ff:a3:4e:96:5c:19:20:aa:d7:1c:55:0c:51: 1f:9a:03:56:f3:15:e4:ef:c3:42:89:fa:9c:ab:69: bf:69:7e:63:a9:e8:1d:9d:43:12:65:49:69:4b:f1: c8:3b:87:16:9c:20:92:51:6a:0e:97:3d:77:35:a3: 27:9e:ce:fc:2f:59:ab:14:f1:a8:e8:06:40:69:1d: be:83:b7:28:cf:4f:58:49:03:db:6c:fb:e2:eb:e3: 8d:78:9e:63:2c:52:fb:77:51:08:96:43:74:4b:5c: d8:3d:03:30:ee:70:bd:26:ef:99:4f:3d:c8:ae:f2: ee:d4:1e:95:e1:68:73:c2:4a:83:a2:2f:e4:1d:1d: 3e:1f:a4:10:c5:17:c7:50:6f:f1:11:b9:6c:b2:aa: 01:70:7c:d5:79:b3:0f:55:82:7c:3c:d9:8d:4d:fe: 1b:29:ec:b2:45:67:55:50:f2:05:92:c1:74:69:24: 6f:3a:51:66:13:eb:17:39:eb:cb:c7:d7:99:c3:34: 60:fe:23:db:44:54:27:16:7b:d1:1c:15:66:0b:cf: 10:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C1:CF:9C:00:60:DE:FC:96:83:39:50:8E:2D:E1:D0:7C:29:98:1D X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:35:7f:f0:f1:11:65:d3:b7:bb:1c:f8:5e:d9:fd:cd:5d:17: 10:d1:54:c3:41:4d:0f:70:cb:90:97:84:eb:b8:b7:5a:91:d8: 14:73:80:44:7c:8c:3d:07:1d:f4:a1:8e:3a:22:a1:c7:b8:14: 45:64:e2:9b:c8:34:b3:4a:91:6d:d5:ed:4b:b7:5c:2d:ee:ed: 21:01:05:0b:06:f0:9d:a9:14:f1:2f:3a:9d:51:da:ab:79:77: 2a:f2:30:0f:95:ba:c5:39:7f:2e:90:db:6a:ab:e1:41:a9:a2: 02:c1:18:db:e6:da:60:a6:47:b5:2d:c0:48:fe:1d:e4:ab:97: 63:da:4f:1e:05:fc:b0:1e:03:2c:74:51:37:00:21:d7:6d:8f: 08:b0:c7:de:28:f8:86:ee:57:f4:90:1b:5d:2e:16:27:16:5b: f9:63:54:e1:9c:19:06:cc:68:a9:1e:4d:b0:1e:8a:a5:21:87: 23:fa:8f:ce:93:4b:78:46:5d:05:43:33:12:65:61:37:b4:5c: 0f:37:cb:63:89:9f:75:e2:1a:de:0c:15:c7:93:09:c9:ff:d1: 92:d5:b8:bd:f5:86:75:53:5d:f3:c4:39:e2:0d:dc:7a:96:54: 39:d1:ff:bf:53:68:18:92:f6:9f:54:e1:0c:ab:ed:dd:d8:6d: 33:00:af:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjYwMzAyMDIxMzQzWhcNMjYwMzA5MDIxMzQzWjAYMRYwFAYD VQQDEw02OWE0ZjI1OC0xMDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscxC6fhED1ixsxPpzIApxSgnbf1nSMxMlGYX/OVPl0mR0Jm6RL3bMozABlfb Z/+jTpZcGSCq1xxVDFEfmgNW8xXk78NCifqcq2m/aX5jqegdnUMSZUlpS/HIO4cW nCCSUWoOlz13NaMnns78L1mrFPGo6AZAaR2+g7coz09YSQPbbPvi6+ONeJ5jLFL7 d1EIlkN0S1zYPQMw7nC9Ju+ZTz3IrvLu1B6V4WhzwkqDoi/kHR0+H6QQxRfHUG/x EblssqoBcHzVebMPVYJ8PNmNTf4bKeyyRWdVUPIFksF0aSRvOlFmE+sXOevLx9eZ wzRg/iPbRFQnFnvRHBVmC88QAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNDBz5wA YN78loM5UI4t4dB8KZgdMB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvTV/8PERZdO3uxz4Xtn9zV0XENFUw0FND3DLkJeE67i3WpHYFHOARHyMPQcd 9KGOOiKhx7gURWTim8g0s0qRbdXtS7dcLe7tIQEFCwbwnakU8S86nVHaq3l3KvIw D5W6xTl/LpDbaqvhQamiAsEY2+baYKZHtS3ASP4d5KuXY9pPHgX8sB4DLHRRNwAh 122PCLDH3ij4hu5X9JAbXS4WJxZb+WNU4ZwZBsxoqR5NsB6KpSGHI/qPzpNLeEZd BUMzEmVhN7RcDzfLY4mfdeIa3gwVx5MJyf/RktW4vfWGdVNd88Q54g3cepZUOdH/ v1NoGJL2n1ThDKvt3dhtMwCvdw== -----END CERTIFICATE-----Generated at Mon Mar 2 07:44:28 2026 by rpki-client