$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft File: HLlfP3vebhmbdAuSgqxyKk7amZs.mft (raw, json) Hash identifier: gqewminoQj+SGjcDQOFKmCpnOqRqJoFbS++IGlH2mMY= Subject key identifier: 38:9D:9C:15:DF:EA:A9:34:1A:CB:C0:72:F6:08:34:5F:5C:76:10:FC Authority key identifier: 1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B Certificate issuer: /CN=A91E4EEF/serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft Manifest number: 32 Signing time: Sun 01 Mar 2026 10:15:18 +0000 Manifest this update: Sun 01 Mar 2026 10:15:18 +0000 Manifest next update: Sun 08 Mar 2026 10:15:18 +0000 Files and hashes: 1: HLlfP3vebhmbdAuSgqxyKk7amZs.crl (hash: Ze9gt8//bGaGQkddt2nyu+caOEdtf+J2Idd1TucG398=) 2: 304D9EDEF13A11F0A5B04E41566F56BC.roa (hash: S0xcuiYguJuygeUW87dWQVJZKkIA8oIz6vxABdJgGyo=) 3: 0C1F9D8CF13A11F08789470C566F56BC.roa (hash: Gji2HH4IwVj8AZPVwXEAzGOLOr7/M+LpBZ83VD4caYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:15:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4EEF, serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Validity Not Before: Mar 1 10:15:18 2026 GMT Not After : Mar 8 10:15:18 2026 GMT Subject: CN=69a411b6-8aaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ae:c0:32:7b:ea:46:a4:fb:df:99:83:8d:c1: 7b:19:fd:32:7e:c6:3b:4d:b5:f4:87:59:29:6c:f7: 2d:d7:c4:f2:ab:22:0b:b5:1a:49:39:b3:29:72:cc: eb:30:09:29:19:ac:40:53:99:4b:f6:aa:9d:7d:dd: 88:9b:18:33:7d:9e:5d:98:09:c1:b1:04:0b:96:19: f6:67:a2:e6:9d:7b:98:63:b7:77:76:03:54:6d:dc: c8:ee:73:7c:3d:3f:5e:19:4e:e8:d0:63:ce:2a:87: 16:0f:06:7f:2f:f3:a5:07:51:ac:76:f2:ea:90:17: 93:c6:22:d3:6b:5d:23:64:4d:8f:01:e0:60:f6:2e: 62:67:e3:a8:9d:53:29:9a:7e:e5:9f:86:7a:2b:12: 12:29:c8:e6:70:76:85:3a:0f:49:f3:1a:67:25:95: d6:a4:99:2d:a6:37:8b:83:b6:37:00:44:07:6f:60: 77:a9:d1:4a:fd:7e:b3:0b:6f:72:ba:d3:0b:e9:37: 24:55:d4:dd:ae:b3:f5:0f:ed:38:aa:d9:b0:47:82: f4:a7:c6:c3:07:ea:ec:18:41:f7:6d:b2:36:08:38: 79:f5:21:42:ab:19:88:49:f2:33:b3:36:e1:48:be: a6:62:01:91:b1:f8:fc:ab:05:ff:aa:20:0e:94:b4: 0d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:9D:9C:15:DF:EA:A9:34:1A:CB:C0:72:F6:08:34:5F:5C:76:10:FC X509v3 Authority Key Identifier: keyid:1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:8c:09:b0:e5:fe:c7:5f:51:34:a3:14:7b:12:1b:e4:f7:c7: 09:e5:87:66:1c:ef:d9:f8:23:f2:c7:f4:d4:36:77:db:03:89: 88:16:f1:49:eb:cc:1d:d9:a9:85:11:1c:f4:ce:dc:bc:78:74: 49:eb:f6:de:b7:50:9d:8b:5f:19:dd:b2:04:7e:0d:20:12:ab: c0:ff:82:a2:94:be:67:a3:0c:b2:09:b6:d6:99:73:47:b9:60: e8:f3:87:1c:0a:c8:27:c7:65:2e:7c:8b:22:20:68:92:a0:59: c0:60:3e:31:6a:39:d2:5e:43:ea:c4:37:92:60:42:51:71:f1: 43:e3:8d:e8:03:38:99:49:88:55:61:ee:d4:cf:c9:2b:d7:08: 5e:10:fd:c6:9d:41:b6:19:9d:04:52:9e:6b:44:be:14:c7:51: eb:77:29:9f:fd:e4:0b:09:41:d7:76:a1:92:0d:57:4f:a5:a6: a4:d1:e4:a2:1e:92:67:ee:e2:3b:bc:72:26:af:ef:bb:83:eb: 0a:07:4f:cb:56:29:1c:18:b5:be:21:86:90:35:8e:74:33:8f: cf:d5:87:e8:01:50:9d:d3:ec:96:86:23:e0:f6:22:9d:45:9e: cc:03:48:1d:6d:bd:42:8a:36:62:61:5a:2a:e9:f7:03:2f:71: 59:4d:5c:37 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NEVFRjExMC8GA1UEBRMoMUNCOTVGM0Y3QkRFNkUxOTlCNzQwQjkyODJBQzcyMkE0 RURBOTk5QjAeFw0yNjAzMDExMDE1MThaFw0yNjAzMDgxMDE1MThaMBgxFjAUBgNV BAMTDTY5YTQxMWI2LThhYWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcrsAye+pGpPvfmYONwXsZ/TJ+xjtNtfSHWSls9y3XxPKrIgu1Gkk5sylyzOsw CSkZrEBTmUv2qp193YibGDN9nl2YCcGxBAuWGfZnouade5hjt3d2A1Rt3Mjuc3w9 P14ZTujQY84qhxYPBn8v86UHUax28uqQF5PGItNrXSNkTY8B4GD2LmJn46idUyma fuWfhnorEhIpyOZwdoU6D0nzGmclldakmS2mN4uDtjcARAdvYHep0Ur9frMLb3K6 0wvpNyRV1N2us/UP7Tiq2bBHgvSnxsMH6uwYQfdtsjYIOHn1IUKrGYhJ8jOzNuFI vqZiAZGx+PyrBf+qIA6UtA0zAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUOJ2cFd/q qTQay8By9gg0X1x2EPwwHwYDVR0jBBgwFoAUHLlfP3vebhmbdAuSgqxyKk7amZsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0RUVGL0NFQTgzNkJBREVG MzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmhtYmRBdVNncXh5S2s3YW1a cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSExsZlAzdmViaG1iZEF1U2dxeHlLazdhbVpzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 RUVGL0NFQTgzNkJBREVGMzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmht YmRBdVNncXh5S2s3YW1acy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAxjAmw5f7HX1E0oxR7Ehvk98cJ5YdmHO/Z+CPyx/TUNnfbA4mIFvFJ68wd2amF ERz0zty8eHRJ6/bet1Cdi18Z3bIEfg0gEqvA/4KilL5nowyyCbbWmXNHuWDo84cc Csgnx2UufIsiIGiSoFnAYD4xajnSXkPqxDeSYEJRcfFD443oAziZSYhVYe7Uz8kr 1wheEP3GnUG2GZ0EUp5rRL4Ux1Hrdymf/eQLCUHXdqGSDVdPpaak0eSiHpJn7uI7 vHImr++7g+sKB0/LVikcGLW+IYaQNY50M4/P1YfoAVCd0+yWhiPg9iKdRZ7MA0gd bb1CijZiYVoq6fcDL3FZTVw3 -----END CERTIFICATE-----Generated at Mon Mar 2 02:16:15 2026 by rpki-client