$ rpki-client -vvf rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft File: HAQwdyQVc864WNlR8CsiBXujluc.mft (raw, json) Hash identifier: iWqOFfLhBiabss+4pg3VWOFhhUt0eyDWebjBdgogE2s= Subject key identifier: 38:A5:D6:DE:5C:65:39:8F:86:49:96:0D:89:2C:CF:22:55:C8:B6:DF Authority key identifier: 1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 Certificate issuer: /CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Certificate serial: 047A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft Manifest number: 0473 Signing time: Sun 01 Mar 2026 00:50:41 +0000 Manifest this update: Sun 01 Mar 2026 00:50:40 +0000 Manifest next update: Sun 08 Mar 2026 00:50:40 +0000 Files and hashes: 1: HAQwdyQVc864WNlR8CsiBXujluc.crl (hash: KMfinX5y5uSB7h2VM1ghAQNm+q3nZdkJjkQkYA4UQHU=) 2: 4AB730E0800B11EC84B3FA3BC4F9AE02.roa (hash: 9Txns+lYDH2NGybf0zisEaJJOnS0rlj9zOj9oHYOVvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1146 (0x47a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D45A2, serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Validity Not Before: Mar 1 00:50:40 2026 GMT Not After : Mar 8 00:50:40 2026 GMT Subject: CN=69a38d61-c425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:62:d1:19:42:41:88:48:ef:b5:a7:83:38:b2: a4:c6:84:6b:6e:76:dd:e1:5b:22:7a:2a:8c:5e:89: 70:e2:b9:47:fa:b1:af:be:6e:b7:bb:a9:10:f9:d7: 1f:5e:4a:e4:04:81:d5:87:27:16:8a:99:68:82:1d: 0b:74:bf:9d:f3:ed:3c:aa:0b:d3:f8:20:c5:fa:56: 68:ee:0b:d9:51:d4:83:3a:a2:bd:23:e4:a9:d7:b5: b7:c8:27:f3:11:ee:d1:27:01:92:5d:87:a4:19:cf: eb:b8:ea:b6:3f:53:e9:6a:af:43:a6:08:05:ff:bd: 43:8d:fe:b1:19:c1:d6:1f:d1:fe:a8:3e:2e:55:96: e2:bb:ad:bb:e9:ec:b8:cc:2e:4d:91:48:38:83:b0: d3:b6:4e:e4:1f:bd:d8:0d:91:0e:b2:b3:bf:a2:61: 2d:1c:12:ce:21:0d:08:6f:41:2b:b0:45:6e:5b:50: 53:0b:ec:60:e5:59:53:6a:ad:43:30:a2:2e:b6:1e: e2:0d:19:38:0e:2d:f9:81:e4:b5:03:8a:02:09:3f: cc:fa:6d:6a:39:3c:c7:84:70:60:f0:b4:e7:cc:85: 40:11:7f:1d:97:69:b3:ab:f7:ae:3d:1d:f8:34:cf: a9:dc:4c:28:99:fa:7b:a2:58:5b:d2:44:b6:99:00: 94:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:A5:D6:DE:5C:65:39:8F:86:49:96:0D:89:2C:CF:22:55:C8:B6:DF X509v3 Authority Key Identifier: keyid:1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:2e:9f:a5:a4:46:b4:24:7e:ba:d4:52:90:3d:fd:97:78:39: 21:8f:8f:e6:3a:1e:43:2e:b4:0d:0a:89:f6:41:7a:d7:94:e5: 61:39:e1:f1:35:e5:0a:59:68:db:e7:4e:31:1d:eb:47:54:ff: 04:43:5b:56:e5:11:57:e2:a8:57:3e:a1:28:7f:db:02:6b:bd: 9d:fe:36:e8:47:82:62:37:6b:f4:43:67:c9:79:8c:33:4b:77: 4d:6d:ac:ff:e5:b9:b0:ab:7d:c5:d8:94:ce:22:c7:2d:94:e9: 0c:34:02:21:31:4b:62:86:de:fc:7b:b2:5b:20:84:2f:d4:9a: d4:35:2b:6a:19:05:71:be:e9:d8:15:b2:39:c8:00:60:60:fd: 9b:8e:4c:76:e8:a4:45:50:04:d4:e8:bc:e7:f0:18:14:f8:2f: 52:b0:84:70:2c:7c:ae:7f:57:7b:25:f6:98:e2:5a:e4:e4:4a: 61:0d:63:25:f8:06:d4:7b:de:d4:3b:6c:db:04:55:71:3d:6b: b3:f5:b9:1c:eb:be:88:98:5f:f9:44:cf:e4:52:7f:71:b8:10: e2:41:60:65:e1:c5:6c:dc:80:86:fe:fa:0c:8a:c7:8a:d2:21: d0:83:57:20:64:a4:9a:0f:a6:73:f9:d4:cb:27:7d:cb:4a:49: 8f:62:cb:76 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ1QTIxMTAvBgNVBAUTKDFDMDQzMDc3MjQxNTczQ0VCODU4RDk1MUYwMkIyMjA1 N0JBMzk2RTcwHhcNMjYwMzAxMDA1MDQwWhcNMjYwMzA4MDA1MDQwWjAYMRYwFAYD VQQDDA02OWEzOGQ2MS1jNDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhWLRGUJBiEjvtaeDOLKkxoRrbnbd4VsieiqMXolw4rlH+rGvvm63u6kQ+dcf XkrkBIHVhycWiplogh0LdL+d8+08qgvT+CDF+lZo7gvZUdSDOqK9I+Sp17W3yCfz Ee7RJwGSXYekGc/ruOq2P1Ppaq9DpggF/71Djf6xGcHWH9H+qD4uVZbiu6276ey4 zC5NkUg4g7DTtk7kH73YDZEOsrO/omEtHBLOIQ0Ib0ErsEVuW1BTC+xg5VlTaq1D MKIuth7iDRk4Di35geS1A4oCCT/M+m1qOTzHhHBg8LTnzIVAEX8dl2mzq/euPR34 NM+p3Ewomfp7olhb0kS2mQCU+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDil1t5c ZTmPhkmWDYkszyJVyLbfMB8GA1UdIwQYMBaAFBwEMHckFXPOuFjZUfArIgV7o5bn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDVBMi9BM0QyRENBQTgw MDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4NjRXTmxSOENzaUJYdWps dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBUXdkeVFWYzg2NFdObFI4Q3NpQlh1amx1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDVBMi9BM0QyRENBQTgwMDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4 NjRXTmxSOENzaUJYdWpsdWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgy6fpaRGtCR+utRSkD39l3g5IY+P5joeQy60DQqJ9kF615TlYTnh8TXlCllo 2+dOMR3rR1T/BENbVuURV+KoVz6hKH/bAmu9nf426EeCYjdr9ENnyXmMM0t3TW2s /+W5sKt9xdiUziLHLZTpDDQCITFLYobe/HuyWyCEL9Sa1DUrahkFcb7p2BWyOcgA YGD9m45MduikRVAE1Oi85/AYFPgvUrCEcCx8rn9XeyX2mOJa5ORKYQ1jJfgG1Hve 1Dts2wRVcT1rs/W5HOu+iJhf+UTP5FJ/cbgQ4kFgZeHFbNyAhv76DIrHitIh0INX IGSkmg+mc/nUyyd9y0pJj2LLdg== -----END CERTIFICATE-----Generated at Mon Mar 2 02:03:30 2026 by rpki-client