$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: ppn6+wAnPBmPEK8askQfqViCkuY34VuAh2nJIaA7YUs= Subject key identifier: 0E:04:2B:5E:13:6F:C8:60:F4:EB:3E:B6:78:83:7D:1F:D6:1B:91:3D Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0C70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0C59 Signing time: Thu 16 Apr 2026 18:38:35 +0000 Manifest this update: Thu 16 Apr 2026 18:38:34 +0000 Manifest next update: Thu 23 Apr 2026 18:38:34 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: 5SNZC2Y4tjaamhZG2DOtu/NsbuoM/4mWPgze8RZgmCo=) 2: B4E988F2FCFB11F092E222F9366F56BC.roa (hash: V71zoGKhD0nD0XhT5mIn0o19zRnPhSQ5QYxo5yVpxak=) 3: FD765464FCFC11F0AF0D3BB7376F56BC.roa (hash: eJofnUMCGktsGrjmk9qmZtR4EvsLnOuTHY31f/qnkIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:38:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3184 (0xc70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: Apr 16 18:38:34 2026 GMT Not After : Apr 23 18:38:34 2026 GMT Subject: CN=69e12cab-9860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2a:96:61:1e:c1:1a:8c:e7:7f:77:24:8f:c7: 8b:b2:c6:4c:aa:df:27:85:db:09:2d:90:f2:d0:8b: 41:91:a9:ab:9b:f3:30:63:45:73:bc:36:b3:cf:b5: 00:a0:80:ef:4d:4f:04:5e:9f:91:c5:a3:4c:ac:fb: 20:73:aa:82:30:93:02:c9:0b:be:d4:97:59:34:fa: 3a:91:01:e2:a2:45:fe:c0:17:a1:56:43:fb:01:01: 2c:84:7d:16:6e:69:5c:04:52:9f:dd:7c:0d:f0:37: 2d:af:86:c9:6d:2a:1d:0f:17:92:6a:89:32:5b:10: e8:10:5f:3d:84:6f:53:8f:cb:9c:b8:64:6f:30:fd: ca:63:a3:10:a6:f1:7c:e1:70:0a:27:32:3e:c3:bc: af:ce:a6:fd:45:2e:77:53:6f:32:cb:d8:18:75:a2: e7:f1:87:13:0c:4e:0c:e8:47:ff:42:55:fe:d9:5f: e5:31:94:11:07:69:eb:27:bc:38:7d:2f:39:4d:29: b7:a3:3a:f5:ea:ae:7d:56:c5:65:c8:55:f7:12:54: 11:10:f0:3d:3d:15:05:f8:6d:86:c6:9d:e6:8d:47: ca:43:8f:90:69:ad:3c:c4:c5:72:d2:ef:fc:88:d9: f2:3b:ba:fe:74:f0:40:d2:4f:ec:2e:65:76:f5:0a: e9:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:04:2B:5E:13:6F:C8:60:F4:EB:3E:B6:78:83:7D:1F:D6:1B:91:3D X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:64:47:0f:77:bb:83:5c:49:df:91:46:40:11:b0:9a:26:bf: bf:7c:ee:ab:db:13:d3:19:f4:96:37:54:ec:5b:4a:2e:d1:9a: 37:63:ce:28:47:8b:c0:ef:72:f9:ba:b5:9f:45:ed:d6:5f:cd: 94:28:43:38:93:72:a8:09:63:6c:42:5c:91:36:5d:89:33:6e: 96:50:a2:f0:5d:46:66:01:79:a3:1a:eb:37:06:82:08:59:83: 73:c9:fb:71:27:ed:78:90:23:bd:8e:79:58:59:69:c5:1e:91: d6:9c:06:ac:e9:a2:41:af:88:f0:6f:04:85:df:77:ac:ab:19: 58:f5:a9:0a:d8:8d:35:f0:8c:e7:20:6f:87:03:74:86:19:ad: 09:20:b0:f9:14:e5:1b:87:e8:46:ce:d6:fc:3a:1d:d1:f1:a0: 12:cf:9e:5c:48:84:1f:f1:3a:33:81:d3:07:83:34:65:e8:89: 1e:ab:80:01:52:a7:c3:2d:f3:57:f7:1c:7f:b0:b4:15:64:78: a8:75:3f:6d:21:3b:1a:e8:1e:f9:91:30:3b:5f:51:29:c8:d8: 12:e3:ae:23:57:42:7d:09:1c:75:bf:3c:81:4c:16:01:36:2d: fb:49:ea:0b:f2:16:63:46:de:62:9f:cf:f3:a0:23:b8:ac:6b: 3b:b4:14:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjYwNDE2MTgzODM0WhcNMjYwNDIzMTgzODM0WjAYMRYwFAYD VQQDEw02OWUxMmNhYi05ODYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyqWYR7BGoznf3ckj8eLssZMqt8nhdsJLZDy0ItBkamrm/MwY0VzvDazz7UA oIDvTU8EXp+RxaNMrPsgc6qCMJMCyQu+1JdZNPo6kQHiokX+wBehVkP7AQEshH0W bmlcBFKf3XwN8Dctr4bJbSodDxeSaokyWxDoEF89hG9Tj8ucuGRvMP3KY6MQpvF8 4XAKJzI+w7yvzqb9RS53U28yy9gYdaLn8YcTDE4M6Ef/QlX+2V/lMZQRB2nrJ7w4 fS85TSm3ozr16q59VsVlyFX3ElQREPA9PRUF+G2Gxp3mjUfKQ4+Qaa08xMVy0u/8 iNnyO7r+dPBA0k/sLmV29QrpyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA4EK14T b8hg9Os+tniDfR/WG5E9MB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ2RHD3e7g1xJ35FGQBGwmia/v3zuq9sT0xn0ljdU7FtKLtGaN2POKEeLwO9y +bq1n0Xt1l/NlChDOJNyqAljbEJckTZdiTNullCi8F1GZgF5oxrrNwaCCFmDc8n7 cSfteJAjvY55WFlpxR6R1pwGrOmiQa+I8G8Ehd93rKsZWPWpCtiNNfCM5yBvhwN0 hhmtCSCw+RTlG4foRs7W/Dod0fGgEs+eXEiEH/E6M4HTB4M0ZeiJHquAAVKnwy3z V/ccf7C0FWR4qHU/bSE7Guge+ZEwO19RKcjYEuOuI1dCfQkcdb88gUwWATYt+0nq C/IWY0beYp/P86AjuKxrO7QUsg== -----END CERTIFICATE-----Generated at Fri Apr 17 07:31:22 2026 by rpki-client