$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/hkuImlN4cQmFJlQfDrkSVv2vp7E.mft File: hkuImlN4cQmFJlQfDrkSVv2vp7E.mft (raw, json) Hash identifier: pavOW8lu8QIZWocSgXfroJCvIU/Pg3WPI6Thg+QCA5Y= Subject key identifier: 5C:EA:B8:99:F3:E3:B2:08:0C:00:19:58:7A:F2:97:43:34:F5:F5:73 Authority key identifier: 86:4B:88:9A:53:78:71:09:85:26:54:1F:0E:B9:12:56:FD:AF:A7:B1 Certificate issuer: /CN=A91DB53B/serialNumber=864B889A537871098526541F0EB91256FDAFA7B1 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkuImlN4cQmFJlQfDrkSVv2vp7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/hkuImlN4cQmFJlQfDrkSVv2vp7E.mft Manifest number: 28 Signing time: Sun 01 Mar 2026 10:15:40 +0000 Manifest this update: Sun 01 Mar 2026 10:15:40 +0000 Manifest next update: Sun 08 Mar 2026 10:15:40 +0000 Files and hashes: 1: hkuImlN4cQmFJlQfDrkSVv2vp7E.crl (hash: 7zactbkcBko6RyySGll7EKlmYg9xCDjhKukN/nDTo80=) 2: 53F3631AE09A11F0A599D036446F56BC.roa (hash: oVM32N+EaxRSiza2FT5vk20qgpzDKgkN9n1AMpDCt+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/hkuImlN4cQmFJlQfDrkSVv2vp7E.crl rsync://rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/hkuImlN4cQmFJlQfDrkSVv2vp7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkuImlN4cQmFJlQfDrkSVv2vp7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:15:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB53B, serialNumber=864B889A537871098526541F0EB91256FDAFA7B1 Validity Not Before: Mar 1 10:15:40 2026 GMT Not After : Mar 8 10:15:40 2026 GMT Subject: CN=69a411cc-11df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:63:b4:b2:f6:7c:c8:39:f3:26:df:0a:13:f4: b6:9a:82:27:48:bc:60:fa:5e:67:04:72:3c:b5:9c: 53:ee:b3:81:09:8c:6f:6e:7b:94:27:61:3f:8b:28: 9f:eb:93:37:f6:dd:18:a2:2b:5c:c3:9d:22:71:00: 61:51:30:4c:3a:aa:e7:25:2f:d9:53:6d:64:c2:a7: 28:c3:0d:b2:c8:7b:2b:41:c6:a3:63:76:50:ee:a6: 9d:7e:d1:3b:56:0a:c3:fe:ff:a5:4a:75:62:76:c3: 89:c1:18:53:37:ee:a6:8f:7c:07:58:c5:a3:12:72: 7c:3e:34:ed:f5:8a:94:c3:be:d6:5b:49:1b:96:89: 2d:46:97:f9:53:00:af:5e:75:20:2e:d3:4e:a6:f2: 75:05:5b:c7:9b:d4:ed:57:22:f2:a8:07:a7:74:97: 3c:b9:c8:39:2a:fd:01:aa:4f:01:27:b1:d6:89:b4: 03:d1:5e:30:10:68:49:03:a0:60:b5:28:9e:76:1e: 3f:77:fc:7c:66:ef:a6:16:02:7a:17:46:21:36:4c: 0a:6c:6f:a9:58:34:e5:1e:02:18:0f:33:9a:ac:a1: be:57:de:80:bb:6f:fc:19:57:e9:f6:71:8d:e8:e6: a6:4e:05:e6:fc:0b:1c:11:58:0d:89:31:6b:be:f9: 14:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:EA:B8:99:F3:E3:B2:08:0C:00:19:58:7A:F2:97:43:34:F5:F5:73 X509v3 Authority Key Identifier: keyid:86:4B:88:9A:53:78:71:09:85:26:54:1F:0E:B9:12:56:FD:AF:A7:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/hkuImlN4cQmFJlQfDrkSVv2vp7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkuImlN4cQmFJlQfDrkSVv2vp7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/hkuImlN4cQmFJlQfDrkSVv2vp7E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:5c:8e:18:2c:05:ca:c7:0c:30:4d:c8:b8:57:77:1d:b2:c4: 3f:f3:15:94:92:d2:5e:ba:53:72:fa:db:66:a8:bc:bd:71:0a: 68:90:68:2a:df:f9:1d:2f:a4:c2:95:97:93:5d:5e:89:7a:8f: c8:fb:b5:ef:0a:86:b6:93:ee:e3:27:53:27:e5:22:26:3b:f1: 3c:a4:80:ab:e6:5d:dc:62:ea:7e:68:8b:d1:21:7f:d1:35:da: 72:50:a0:3b:11:e5:84:a3:65:d7:e1:7e:d0:ef:5c:52:b9:53: 48:95:b7:7a:f5:d7:52:c8:4b:eb:1d:ce:da:ca:0c:20:3a:ed: 76:a0:34:03:bb:fe:43:8c:9e:a7:70:0f:33:4f:3d:6c:b3:08: b0:9c:a2:3f:5a:63:67:ac:1d:d6:e8:30:e1:7d:39:42:98:75: 98:f6:0f:9c:20:1e:ee:8d:dc:16:6c:70:71:81:b4:ae:b7:14: 33:fc:d4:2c:e6:c9:0c:df:be:35:74:1e:c7:c2:4b:39:b5:73: 63:d4:2c:95:9f:c6:cf:14:db:ec:72:d3:73:70:75:ca:cf:bf: ed:50:6b:54:78:b2:d6:ff:af:53:9d:6c:34:6e:33:81:cf:d4: 22:13:3c:b1:6e:4d:77:eb:e2:75:92:5c:04:a6:6e:0a:61:b5: 67:61:d1:15 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QjUzQjExMC8GA1UEBRMoODY0Qjg4OUE1Mzc4NzEwOTg1MjY1NDFGMEVCOTEyNTZG REFGQTdCMTAeFw0yNjAzMDExMDE1NDBaFw0yNjAzMDgxMDE1NDBaMBgxFjAUBgNV BAMTDTY5YTQxMWNjLTExZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAY7Sy9nzIOfMm3woT9LaagidIvGD6XmcEcjy1nFPus4EJjG9ue5QnYT+LKJ/r kzf23RiiK1zDnSJxAGFRMEw6quclL9lTbWTCpyjDDbLIeytBxqNjdlDupp1+0TtW CsP+/6VKdWJ2w4nBGFM37qaPfAdYxaMScnw+NO31ipTDvtZbSRuWiS1Gl/lTAK9e dSAu006m8nUFW8eb1O1XIvKoB6d0lzy5yDkq/QGqTwEnsdaJtAPRXjAQaEkDoGC1 KJ52Hj93/Hxm76YWAnoXRiE2TApsb6lYNOUeAhgPM5qsob5X3oC7b/wZV+n2cY3o 5qZOBeb8CxwRWA2JMWu++RSbAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUXOq4mfPj sggMABlYevKXQzT19XMwHwYDVR0jBBgwFoAUhkuImlN4cQmFJlQfDrkSVv2vp7Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCNTNCLzAwREE5RDY4RTAx QTExRjA4QUQzRUI4RDYyNkY1NkJDL2hrdUltbE40Y1FtRkpsUWZEcmtTVnYydnA3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGt1SW1sTjRjUW1GSmxRZkRya1NWdjJ2cDdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURC NTNCLzAwREE5RDY4RTAxQTExRjA4QUQzRUI4RDYyNkY1NkJDL2hrdUltbE40Y1Ft RkpsUWZEcmtTVnYydnA3RS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQArXI4YLAXKxwwwTci4V3cdssQ/8xWUktJeulNy+ttmqLy9cQpokGgq3/kdL6TC lZeTXV6Jeo/I+7XvCoa2k+7jJ1Mn5SImO/E8pICr5l3cYup+aIvRIX/RNdpyUKA7 EeWEo2XX4X7Q71xSuVNIlbd69ddSyEvrHc7aygwgOu12oDQDu/5DjJ6ncA8zTz1s swiwnKI/WmNnrB3W6DDhfTlCmHWY9g+cIB7ujdwWbHBxgbSutxQz/NQs5skM3741 dB7Hwks5tXNj1CyVn8bPFNvsctNzcHXKz7/tUGtUeLLW/69TnWw0bjOBz9QiEzyx bk136+J1klwEpm4KYbVnYdEV -----END CERTIFICATE-----Generated at Sun Mar 1 20:12:28 2026 by rpki-client