$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft File: Hv520ajcbNAkyzz0B5Cl8UosITg.mft (raw, json) Hash identifier: ZFxksE8SLt+aoCCPCcC6gmWin59qFrWBv55jryp3SJo= Subject key identifier: 21:0C:E8:40:B3:83:B9:5E:0D:23:7E:51:24:4B:6D:1B:5C:55:CC:EC Authority key identifier: 1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 Certificate issuer: /CN=A91DB7B3/serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Certificate serial: 053D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft Manifest number: 0538 Signing time: Sun 01 Mar 2026 00:05:37 +0000 Manifest this update: Sun 01 Mar 2026 00:05:37 +0000 Manifest next update: Sun 08 Mar 2026 00:05:37 +0000 Files and hashes: 1: Hv520ajcbNAkyzz0B5Cl8UosITg.crl (hash: TifF7u3y5OloL8QVSa7iNbq8zgNANsh0XMkr+Zp9in4=) 2: E52DE77630B611EC981BBF1CC4F9AE02.roa (hash: mphoj0oAxZzkXNiDjzgy+jQGtIB0RRer8k5eq/mlzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:05:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1341 (0x53d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7B3, serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Validity Not Before: Mar 1 00:05:37 2026 GMT Not After : Mar 8 00:05:37 2026 GMT Subject: CN=69a382d1-55ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:fd:f0:80:35:3b:5a:ca:94:11:14:ab:c8:4c: 4b:1e:34:e5:aa:5b:17:de:79:9a:7e:da:db:b0:30: cf:44:85:cc:d7:8d:11:0b:1e:9c:6b:e5:61:df:2b: 15:ef:6a:6f:02:0b:b3:f2:a3:ba:53:11:91:2c:02: 32:7b:ea:4f:ae:5b:d8:5e:45:1e:25:bd:f5:e8:65: 61:50:25:5d:b0:06:e9:76:55:c0:97:0c:7c:0b:f1: d8:59:71:68:d6:89:92:df:17:27:95:bc:8c:2e:d8: 5e:f8:1a:d0:e5:a4:41:9c:55:6a:4f:20:5a:d4:ca: d1:37:54:b5:5c:2e:a4:10:2c:b4:58:56:1a:0c:ba: 4d:ed:f4:b3:a2:55:1f:95:f3:25:c1:11:4e:9e:ed: e3:b8:6f:46:0b:f7:cd:8e:3e:9b:95:5f:2d:08:62: c8:69:00:3b:e7:9a:79:63:93:ec:60:14:76:75:7a: 3d:23:be:1a:bc:1d:d4:87:3b:2d:95:e0:d9:a9:57: ca:dc:65:68:0f:98:cb:69:f6:b7:a0:0e:a6:1b:e9: 0b:b8:0f:44:a6:8f:dc:c7:e5:7c:7b:e9:3b:a8:ed: 23:d3:66:42:a3:88:a5:b9:fc:f3:9e:5d:36:02:81: 41:a0:2c:0a:84:d2:a6:b9:83:d9:a3:39:32:84:0e: 57:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:0C:E8:40:B3:83:B9:5E:0D:23:7E:51:24:4B:6D:1B:5C:55:CC:EC X509v3 Authority Key Identifier: keyid:1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:c8:88:fd:ee:28:28:22:b7:64:a6:22:26:ef:e4:86:d8:2b: 73:5b:14:7c:51:55:72:3f:2d:8e:f8:3f:c2:f6:60:13:4b:17: 23:cf:7d:38:d8:fc:24:c2:da:ec:89:fd:54:bc:c8:10:3f:e3: c0:24:1a:ea:4c:1d:06:a2:ee:55:f9:e6:48:d4:2e:1a:26:be: 3c:6c:59:e7:06:7b:56:1a:a0:48:77:3b:bb:73:ae:b6:f4:10: 06:9f:1c:bc:1a:a7:37:1d:6f:ad:1f:9b:73:8b:d3:75:ad:55: 60:f8:07:01:4b:1e:5d:76:56:35:4c:19:69:47:d5:42:73:40: 16:16:32:08:54:38:3e:20:58:96:9c:59:17:8e:b1:75:de:d2: 5a:d6:19:b7:41:b3:1c:f4:ee:69:b9:71:0a:03:40:55:10:bc: a4:23:32:50:2a:ec:8e:2c:7b:b4:57:08:02:b1:9f:50:ed:76: d1:31:0e:68:2e:f9:75:ba:a7:ac:5f:aa:c3:cf:7c:81:56:5d: c5:e0:32:d1:65:84:29:2b:76:43:63:1e:f3:31:66:1a:a3:36: cc:89:0e:9a:49:5b:7a:2d:67:af:b3:5b:71:cd:3f:17:37:29: ac:d2:1d:d2:bc:2f:21:74:71:a0:fa:db:f1:80:9f:14:ba:4a: 6b:27:44:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3QjMxMTAvBgNVBAUTKDFFRkU3NkQxQThEQzZDRDAyNENCM0NGNDA3OTBBNUYx NEEyQzIxMzgwHhcNMjYwMzAxMDAwNTM3WhcNMjYwMzA4MDAwNTM3WjAYMRYwFAYD VQQDDA02OWEzODJkMS01NWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/3wgDU7WsqUERSryExLHjTlqlsX3nmaftrbsDDPRIXM140RCx6ca+Vh3ysV 72pvAguz8qO6UxGRLAIye+pPrlvYXkUeJb316GVhUCVdsAbpdlXAlwx8C/HYWXFo 1omS3xcnlbyMLthe+BrQ5aRBnFVqTyBa1MrRN1S1XC6kECy0WFYaDLpN7fSzolUf lfMlwRFOnu3juG9GC/fNjj6blV8tCGLIaQA755p5Y5PsYBR2dXo9I74avB3Uhzst leDZqVfK3GVoD5jLafa3oA6mG+kLuA9Epo/cx+V8e+k7qO0j02ZCo4ilufzznl02 AoFBoCwKhNKmuYPZozkyhA5XbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCEM6ECz g7leDSN+USRLbRtcVczsMB8GA1UdIwQYMBaAFB7+dtGo3GzQJMs89AeQpfFKLCE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdCMy8yRkQ4MTVFQzMw QjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JOQWt5enowQjVDbDhVb3NJ VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2NTIwYWpjYk5Ba3l6ejBCNUNsOFVvc0lUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdCMy8yRkQ4MTVFQzMwQjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JO QWt5enowQjVDbDhVb3NJVGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiciI/e4oKCK3ZKYiJu/khtgrc1sUfFFVcj8tjvg/wvZgE0sXI899ONj8JMLa 7In9VLzIED/jwCQa6kwdBqLuVfnmSNQuGia+PGxZ5wZ7VhqgSHc7u3OutvQQBp8c vBqnNx1vrR+bc4vTda1VYPgHAUseXXZWNUwZaUfVQnNAFhYyCFQ4PiBYlpxZF46x dd7SWtYZt0GzHPTuablxCgNAVRC8pCMyUCrsjix7tFcIArGfUO120TEOaC75dbqn rF+qw898gVZdxeAy0WWEKSt2Q2Me8zFmGqM2zIkOmklbei1nr7Nbcc0/FzcprNId 0rwvIXRxoPrb8YCfFLpKaydElw== -----END CERTIFICATE-----Generated at Sun Mar 1 20:22:44 2026 by rpki-client