$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft File: HAF157M3En5uwlH0Og0qxhMRv04.mft (raw, json) Hash identifier: ivIoAkNxaStdkTBe2qg4GLJWcOnD2RxGVrvY9KTh+hA= Subject key identifier: 90:60:EF:A3:0E:0E:12:4E:82:5C:45:26:4D:3C:FC:55:BD:91:F9:8C Authority key identifier: 1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E Certificate issuer: /CN=A91E3584/serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Certificate serial: 352E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft Manifest number: 352B Signing time: Thu 16 Apr 2026 14:26:15 +0000 Manifest this update: Thu 16 Apr 2026 14:26:15 +0000 Manifest next update: Thu 23 Apr 2026 14:26:15 +0000 Files and hashes: 1: HAF157M3En5uwlH0Og0qxhMRv04.crl (hash: 6ewBBLWOWF8i3CscprtXwUrarm0sh8SLPugyaE74xQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13614 (0x352e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3584, serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Validity Not Before: Apr 16 14:26:15 2026 GMT Not After : Apr 23 14:26:15 2026 GMT Subject: CN=69e0f187-0234 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b8:8d:4f:e6:72:f4:8b:a4:08:b2:90:a7:f9: 21:2a:c0:48:87:e7:bc:47:f3:9b:b8:bd:63:b7:80: 92:61:23:cb:a3:84:2f:42:17:2f:3e:98:66:26:38: ef:f6:07:0d:b5:1f:0e:f0:5a:b5:55:e2:95:6a:f2: ae:72:16:f6:0a:96:86:49:75:53:ad:5d:ec:d5:d3: b2:c6:3b:81:b7:11:9c:88:da:f1:22:08:8b:e6:68: 8e:48:5d:5c:8c:fe:36:d8:39:c7:34:fa:84:9c:84: 40:03:f6:35:b9:3f:85:2e:52:41:d8:88:f8:c2:b8: 1d:ac:48:be:e8:40:46:98:2d:5a:33:b7:e3:5a:e2: 72:8a:d9:9f:e0:aa:91:c2:31:dd:0d:84:7c:61:dd: dd:ee:d8:1b:1f:0d:35:44:03:d1:4f:ba:85:de:5c: 55:31:c5:c9:d5:96:ac:2d:da:a8:7f:8e:22:bf:7a: a7:38:ca:58:49:f0:17:9f:86:ac:da:0f:f0:92:2c: 86:1a:73:d2:0e:d5:d2:e1:fe:22:04:47:94:d1:94: e3:56:ed:19:19:e7:54:5f:e9:b3:5e:4d:f2:f9:45: a0:d5:86:bd:e2:73:f6:25:0b:bb:50:ef:91:31:49: 88:e4:ed:0e:56:92:02:7b:93:82:e9:e2:9b:c2:dd: c9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:60:EF:A3:0E:0E:12:4E:82:5C:45:26:4D:3C:FC:55:BD:91:F9:8C X509v3 Authority Key Identifier: keyid:1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:bb:cb:8a:75:64:bb:32:99:66:2f:b6:36:98:9a:23:61:a6: 6f:39:67:31:65:21:c8:72:7d:6f:63:65:46:af:ad:1f:04:31: 50:bd:61:fc:4e:0a:0e:16:7c:56:b0:ed:07:8d:12:4a:44:31: 70:fb:9e:e0:70:3f:39:e1:0c:eb:3c:32:95:03:cb:12:d1:76: eb:ce:93:5e:2e:9d:05:8c:47:c5:44:b1:89:45:7a:c4:48:4e: 47:a4:ae:8a:a1:16:6e:21:d5:91:25:83:36:ad:e1:cd:ba:ff: 23:e8:19:f6:d3:a2:2c:73:ba:e2:23:e9:91:23:90:e0:a9:14: 5e:84:09:bf:69:25:c7:81:c1:b6:c9:82:9f:e4:c1:e7:14:d8: 6e:c6:77:db:23:1a:10:f7:6a:3e:5e:67:68:ba:54:a5:4c:e4: 20:0c:af:12:c6:70:1f:1c:3b:bb:da:bc:42:30:ee:6d:ed:d6: 4d:6d:be:5f:03:82:e4:8f:e6:ad:e2:ca:e4:d0:9f:f6:34:fe: 3a:31:0c:75:54:1d:e9:7a:a7:68:4a:00:b5:07:59:b6:72:ba: 66:f8:8d:f2:f8:4c:d1:38:14:15:a8:b1:4c:db:d8:64:1a:19: 92:51:d8:11:2f:cd:67:ce:4a:ed:15:11:9d:e0:51:16:14:a3: d8:2f:a6:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM1ODQxMTAvBgNVBAUTKDFDMDE3NUU3QjMzNzEyN0U2RUMyNTFGNDNBMEQyQUM2 MTMxMUJGNEUwHhcNMjYwNDE2MTQyNjE1WhcNMjYwNDIzMTQyNjE1WjAYMRYwFAYD VQQDEw02OWUwZjE4Ny0wMjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7iNT+Zy9IukCLKQp/khKsBIh+e8R/ObuL1jt4CSYSPLo4QvQhcvPphmJjjv 9gcNtR8O8Fq1VeKVavKuchb2CpaGSXVTrV3s1dOyxjuBtxGciNrxIgiL5miOSF1c jP422DnHNPqEnIRAA/Y1uT+FLlJB2Ij4wrgdrEi+6EBGmC1aM7fjWuJyitmf4KqR wjHdDYR8Yd3d7tgbHw01RAPRT7qF3lxVMcXJ1ZasLdqof44iv3qnOMpYSfAXn4as 2g/wkiyGGnPSDtXS4f4iBEeU0ZTjVu0ZGedUX+mzXk3y+UWg1Ya94nP2JQu7UO+R MUmI5O0OVpICe5OC6eKbwt3JqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJBg76MO DhJOglxFJk08/FW9kfmMMB8GA1UdIwQYMBaAFBwBdeezNxJ+bsJR9DoNKsYTEb9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzU4NC9EMUExMjk0NjFE ODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0VuNXV3bEgwT2cwcXhoTVJ2 MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBRjE1N00zRW41dXdsSDBPZzBxeGhNUnYwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzU4NC9EMUExMjk0NjFEODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0Vu NXV3bEgwT2cwcXhoTVJ2MDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK7vLinVkuzKZZi+2NpiaI2GmbzlnMWUhyHJ9b2NlRq+tHwQxUL1h/E4KDhZ8 VrDtB40SSkQxcPue4HA/OeEM6zwylQPLEtF2686TXi6dBYxHxUSxiUV6xEhOR6Su iqEWbiHVkSWDNq3hzbr/I+gZ9tOiLHO64iPpkSOQ4KkUXoQJv2klx4HBtsmCn+TB 5xTYbsZ32yMaEPdqPl5naLpUpUzkIAyvEsZwHxw7u9q8QjDube3WTW2+XwOC5I/m reLK5NCf9jT+OjEMdVQd6XqnaEoAtQdZtnK6ZviN8vhM0TgUFaixTNvYZBoZklHY ES/NZ85K7RURneBRFhSj2C+mmg== -----END CERTIFICATE-----Generated at Fri Apr 17 14:31:29 2026 by rpki-client