$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft File: HAF157M3En5uwlH0Og0qxhMRv04.mft (raw, json) Hash identifier: IVa4fam+4CUeRYH5wSz1pkIk6yogu5tYtqAAlur8hIg= Subject key identifier: 22:F5:EA:9B:E6:26:74:3A:0D:43:8A:E4:E0:88:A1:F7:AD:EF:71:84 Authority key identifier: 1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E Certificate issuer: /CN=A91E3584/serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Certificate serial: 3515 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft Manifest number: 3512 Signing time: Sat 28 Feb 2026 14:27:15 +0000 Manifest this update: Sat 28 Feb 2026 14:27:15 +0000 Manifest next update: Sat 07 Mar 2026 14:27:15 +0000 Files and hashes: 1: HAF157M3En5uwlH0Og0qxhMRv04.crl (hash: ky/U/bEAjQprb+MGazsiBK+SgvSbVaIwvwlmIHG11C8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 14:27:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13589 (0x3515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3584, serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Validity Not Before: Feb 28 14:27:15 2026 GMT Not After : Mar 7 14:27:15 2026 GMT Subject: CN=69a2fb43-4a72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:17:76:89:b0:a8:6e:6d:2c:59:87:c5:06:df: 5c:8f:df:ee:b4:bd:63:26:98:c6:c0:b7:98:a5:64: 05:54:f2:a8:9b:09:5d:bf:57:dc:56:8b:54:86:e0: 9c:a6:f5:16:81:e4:e3:17:7d:62:e3:de:e5:6c:bc: c1:8c:2f:1b:ba:c9:2f:e3:f8:64:ca:9d:15:07:47: d4:06:f2:8b:34:b6:cc:73:25:48:53:a9:07:26:89: b0:ec:ed:49:c2:48:26:8e:07:ea:fc:83:33:10:85: 23:12:eb:ef:e5:a9:6d:01:e3:56:db:95:5f:02:1c: 32:53:90:84:19:68:ad:c7:b1:25:f4:d9:30:d6:6a: 49:2a:80:4b:f5:79:ab:20:33:f9:2a:32:50:e8:77: 53:0f:f8:c1:34:fb:fa:c8:eb:58:7e:7e:bd:28:67: 35:7e:e8:9b:04:00:dc:75:c6:78:e6:a8:8d:40:22: 86:0c:50:a5:1f:e4:b8:5d:5b:78:b6:97:d7:21:8d: 49:3d:34:a5:3f:4a:38:05:1e:03:36:b9:3d:8d:31: 3b:17:d9:cd:1a:f8:0c:14:68:6a:62:21:17:68:57: 90:72:db:21:96:e2:9e:54:16:c8:8e:82:05:a7:87: b5:46:27:6c:f2:89:70:0a:f1:e9:0a:44:ba:5b:7c: a8:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:F5:EA:9B:E6:26:74:3A:0D:43:8A:E4:E0:88:A1:F7:AD:EF:71:84 X509v3 Authority Key Identifier: keyid:1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:69:7a:18:9b:06:22:f9:50:86:48:1c:74:48:b8:aa:01:df: 02:4b:90:3c:26:a0:fd:1c:97:25:e8:2a:c3:b6:31:b3:74:7d: 74:a3:e6:8f:ed:f4:39:d0:c3:08:58:e7:8b:25:7f:b2:ba:f3: 1b:5c:9d:f2:c7:b6:2e:c6:f4:62:c7:40:3d:c6:be:f9:3a:93: a4:55:05:de:b8:44:19:41:c6:40:15:ea:be:45:c8:2b:6b:75: f7:8d:0d:11:f7:af:89:8a:f5:91:27:fc:4e:7c:ef:a1:26:c3: e3:82:cb:53:5a:a9:49:6d:41:86:6b:46:cd:90:0e:da:5b:34: ab:07:43:fd:81:55:94:64:4f:58:a4:53:b8:c3:54:61:e0:87: 7f:5c:94:97:0b:8a:ba:65:a1:d2:c5:f8:dc:c1:52:59:c2:82: a1:7b:29:3c:6e:d2:5d:7b:58:8a:f0:b7:64:5a:89:01:99:b2: 1e:70:17:ce:ea:02:b2:45:63:99:b4:7b:80:5e:bf:60:8c:00: 65:fc:b1:b8:4a:42:5b:d7:b4:02:3a:6e:6d:87:eb:40:19:0f: 84:7c:e7:ad:e0:ef:e1:e4:3f:41:81:5f:15:37:12:a7:23:29: b4:f4:17:dd:5b:45:d3:b5:16:ca:b8:6e:b2:81:55:ba:69:a4: 86:b8:ee:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM1ODQxMTAvBgNVBAUTKDFDMDE3NUU3QjMzNzEyN0U2RUMyNTFGNDNBMEQyQUM2 MTMxMUJGNEUwHhcNMjYwMjI4MTQyNzE1WhcNMjYwMzA3MTQyNzE1WjAYMRYwFAYD VQQDEw02OWEyZmI0My00YTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnhd2ibCobm0sWYfFBt9cj9/utL1jJpjGwLeYpWQFVPKomwldv1fcVotUhuCc pvUWgeTjF31i497lbLzBjC8buskv4/hkyp0VB0fUBvKLNLbMcyVIU6kHJomw7O1J wkgmjgfq/IMzEIUjEuvv5altAeNW25VfAhwyU5CEGWitx7El9Nkw1mpJKoBL9Xmr IDP5KjJQ6HdTD/jBNPv6yOtYfn69KGc1fuibBADcdcZ45qiNQCKGDFClH+S4XVt4 tpfXIY1JPTSlP0o4BR4DNrk9jTE7F9nNGvgMFGhqYiEXaFeQctshluKeVBbIjoIF p4e1Rids8olwCvHpCkS6W3yoYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCL16pvm JnQ6DUOK5OCIofet73GEMB8GA1UdIwQYMBaAFBwBdeezNxJ+bsJR9DoNKsYTEb9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzU4NC9EMUExMjk0NjFE ODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0VuNXV3bEgwT2cwcXhoTVJ2 MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBRjE1N00zRW41dXdsSDBPZzBxeGhNUnYwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzU4NC9EMUExMjk0NjFEODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0Vu NXV3bEgwT2cwcXhoTVJ2MDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiml6GJsGIvlQhkgcdEi4qgHfAkuQPCag/RyXJegqw7Yxs3R9dKPmj+30OdDD CFjniyV/srrzG1yd8se2Lsb0YsdAPca++TqTpFUF3rhEGUHGQBXqvkXIK2t1940N EfeviYr1kSf8TnzvoSbD44LLU1qpSW1BhmtGzZAO2ls0qwdD/YFVlGRPWKRTuMNU YeCHf1yUlwuKumWh0sX43MFSWcKCoXspPG7SXXtYivC3ZFqJAZmyHnAXzuoCskVj mbR7gF6/YIwAZfyxuEpCW9e0AjpubYfrQBkPhHznreDv4eQ/QYFfFTcSpyMptPQX 3VtF07UWyrhusoFVummkhrjuqg== -----END CERTIFICATE-----Generated at Mon Mar 2 04:40:55 2026 by rpki-client