$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft File: hHdPRraSCgXa3UJHe6qzbucka5Q.mft (raw, json) Hash identifier: I9muZu2KXozlvbQFUYtMBI2hNf5HWw0MN5IDprugzRk= Subject key identifier: B7:A1:4B:FB:49:59:38:B1:3B:55:DB:99:C3:F3:EB:0B:25:EF:52:A0 Authority key identifier: 84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 Certificate issuer: /CN=A91D9162/serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Certificate serial: 0DA8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft Manifest number: 0D9D Signing time: Mon 02 Mar 2026 00:08:24 +0000 Manifest this update: Mon 02 Mar 2026 00:08:23 +0000 Manifest next update: Mon 09 Mar 2026 00:08:23 +0000 Files and hashes: 1: hHdPRraSCgXa3UJHe6qzbucka5Q.crl (hash: JD77/lQz7Wrzpnte76NIKUBBEpFka5EIaYJSC/W8PDE=) 2: E727A05600FD11EB9286115AC4F9AE02.roa (hash: osTG3y7Aw7NEIaD/HGEqWnzu7+4Rus4i5AaVvHjByPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3496 (0xda8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9162, serialNumber=84774F46B6920A05DADD42477BAAB36EE7246B94 Validity Not Before: Mar 2 00:08:23 2026 GMT Not After : Mar 9 00:08:23 2026 GMT Subject: CN=69a4d4f8-f186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bf:b8:3c:31:0a:a4:48:18:4a:d8:69:40:bd: 46:67:52:bd:4b:c2:66:1d:c7:31:a4:79:e4:ab:ce: d4:dc:55:bb:4c:6f:5c:9a:51:30:25:06:d0:2f:36: d4:82:69:19:45:6c:d1:21:b1:aa:11:d9:fa:8f:58: 0b:ef:09:69:91:c8:40:b7:bf:1f:a9:74:36:28:5c: aa:ae:62:e6:3f:74:b8:98:77:78:7d:ea:1e:bd:74: 8f:3c:05:03:01:16:54:63:48:44:1d:29:3b:b7:e6: c2:02:24:dd:6f:91:d2:2c:3f:83:72:c0:48:4d:59: 24:e1:d3:99:2d:3c:9f:67:37:93:74:60:2c:bb:80: 2c:d9:56:fa:cd:57:94:4c:4e:25:22:31:27:e4:8c: be:4c:18:51:9c:31:04:10:6d:ed:6c:ed:d2:f4:da: 89:47:dd:eb:12:c7:3d:c5:c5:f3:3f:78:1a:18:c1: f9:26:d5:d8:f4:3c:23:46:b9:94:56:e0:1c:ad:d4: 5b:84:c6:ec:25:e0:e5:54:c3:33:f7:ee:b4:8f:fd: 64:90:f3:dc:39:b6:a8:c2:00:1c:e6:00:e7:a4:c6: 08:00:6a:6e:a9:fa:b7:0c:57:65:15:05:00:be:f9: e1:9c:a5:13:1d:11:13:24:eb:15:9e:96:71:d3:34: ca:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A1:4B:FB:49:59:38:B1:3B:55:DB:99:C3:F3:EB:0B:25:EF:52:A0 X509v3 Authority Key Identifier: keyid:84:77:4F:46:B6:92:0A:05:DA:DD:42:47:7B:AA:B3:6E:E7:24:6B:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHdPRraSCgXa3UJHe6qzbucka5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9162/26A82E0ADDC111E9984DE811C4F9AE02/hHdPRraSCgXa3UJHe6qzbucka5Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:aa:d3:68:67:da:ba:59:ae:5a:29:d6:5f:5c:89:b0:c1:d8: d1:33:7e:19:1c:35:76:8f:7c:32:67:e5:03:a5:fa:05:a8:11: 6d:6e:7a:e2:5b:b3:e7:9f:41:0e:e3:11:68:7d:99:eb:7c:9d: 89:c5:38:f2:31:99:5b:2a:38:a3:e9:63:bd:ea:88:50:36:6f: 44:70:10:16:be:e7:74:0c:71:1c:b6:15:2e:23:11:9a:ec:aa: 17:5d:f6:84:b3:0c:e5:72:54:77:ff:68:56:17:21:a3:45:23: e0:d8:a1:0f:46:20:c3:51:e0:b7:a4:c8:37:f5:fd:3f:d7:b9: 23:48:4f:95:a9:23:a7:3f:df:87:23:70:ea:33:a5:c4:70:1c: 1a:06:26:de:29:b7:7a:4b:ff:ce:b1:4c:22:85:64:71:90:05: 53:9c:06:f8:b5:5e:2d:6c:7b:91:d1:58:0e:cf:f4:42:d1:9e: f2:65:b3:5c:21:32:1c:94:48:e7:9a:d1:e5:6a:8a:1d:90:86: 28:a4:14:23:e0:92:f4:67:95:af:12:d4:8a:09:39:50:03:61: 74:6f:80:97:24:23:ed:3e:b9:3c:95:d7:f7:92:f8:22:e1:3a: 36:c0:47:63:ee:d8:4c:43:09:04:43:c7:83:d3:a1:91:e0:87: 8a:71:a8:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDkxNjIxMTAvBgNVBAUTKDg0Nzc0RjQ2QjY5MjBBMDVEQURENDI0NzdCQUFCMzZF RTcyNDZCOTQwHhcNMjYwMzAyMDAwODIzWhcNMjYwMzA5MDAwODIzWjAYMRYwFAYD VQQDEw02OWE0ZDRmOC1mMTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7+4PDEKpEgYSthpQL1GZ1K9S8JmHccxpHnkq87U3FW7TG9cmlEwJQbQLzbU gmkZRWzRIbGqEdn6j1gL7wlpkchAt78fqXQ2KFyqrmLmP3S4mHd4feoevXSPPAUD ARZUY0hEHSk7t+bCAiTdb5HSLD+DcsBITVkk4dOZLTyfZzeTdGAsu4As2Vb6zVeU TE4lIjEn5Iy+TBhRnDEEEG3tbO3S9NqJR93rEsc9xcXzP3gaGMH5JtXY9DwjRrmU VuAcrdRbhMbsJeDlVMMz9+60j/1kkPPcObaowgAc5gDnpMYIAGpuqfq3DFdlFQUA vvnhnKUTHRETJOsVnpZx0zTKFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLehS/tJ WTixO1XbmcPz6wsl71KgMB8GA1UdIwQYMBaAFIR3T0a2kgoF2t1CR3uqs27nJGuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTE2Mi8yNkE4MkUwQURE QzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0NnWGEzVUpIZTZxemJ1Y2th NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIZFBScmFTQ2dYYTNVSkhlNnF6YnVja2E1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTE2Mi8yNkE4MkUwQUREQzExMUU5OTg0REU4MTFDNEY5QUUwMi9oSGRQUnJhU0Nn WGEzVUpIZTZxemJ1Y2thNVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKqrTaGfaulmuWinWX1yJsMHY0TN+GRw1do98MmflA6X6BagRbW564luz559B DuMRaH2Z63ydicU48jGZWyo4o+ljveqIUDZvRHAQFr7ndAxxHLYVLiMRmuyqF132 hLMM5XJUd/9oVhcho0Uj4NihD0Ygw1Hgt6TIN/X9P9e5I0hPlakjpz/fhyNw6jOl xHAcGgYm3im3ekv/zrFMIoVkcZAFU5wG+LVeLWx7kdFYDs/0QtGe8mWzXCEyHJRI 55rR5WqKHZCGKKQUI+CS9GeVrxLUigk5UANhdG+AlyQj7T65PJXX95L4IuE6NsBH Y+7YTEMJBEPHg9OhkeCHinGoZQ== -----END CERTIFICATE-----Generated at Mon Mar 2 02:17:40 2026 by rpki-client