$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft File: HQ2sEe2C41wjsMvv--4AYmOwmVc.mft (raw, json) Hash identifier: 2JNUvOcQDWxnXkJwTYcOF6ebs0vZUctjGUkAhD5mLIg= Subject key identifier: EB:BE:5B:ED:F3:C6:B1:D0:10:06:BB:FB:28:7E:00:9A:47:90:77:C5 Authority key identifier: 1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 Certificate issuer: /CN=A91EA9C0/serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft Manifest number: A9 Signing time: Wed 15 Apr 2026 06:47:26 +0000 Manifest this update: Wed 15 Apr 2026 06:47:26 +0000 Manifest next update: Wed 22 Apr 2026 06:47:26 +0000 Files and hashes: 1: HQ2sEe2C41wjsMvv--4AYmOwmVc.crl (hash: i1rtdSqBX8S9ZDSQYPFa2oz57hTf6E0NFweYYhFlfh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 06:47:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9C0, serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Validity Not Before: Apr 15 06:47:26 2026 GMT Not After : Apr 22 06:47:26 2026 GMT Subject: CN=69df347e-d259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:8b:84:06:fe:34:3c:71:b6:4c:64:75:e7:a6: 97:f1:e1:39:86:18:d5:fd:b4:1c:82:4e:d5:82:7d: fa:ef:b4:c3:7a:84:85:e4:01:f7:0c:c4:b3:45:c3: 70:53:86:a4:1a:80:dd:fa:9b:e1:ff:cb:ec:8f:92: e9:24:13:0c:2e:6b:4a:ad:75:66:c8:04:a1:fe:ef: d6:51:ae:be:39:fa:2a:2b:63:be:69:2c:8c:af:a8: 75:5d:39:42:89:1d:bc:d9:90:5e:7d:4d:a7:ca:d0: ff:88:e6:47:4b:68:4a:af:06:54:8a:47:42:bf:7d: ab:a9:e7:57:88:1a:9e:14:ec:93:5f:1b:b7:eb:c8: d4:2a:87:c4:24:8d:d2:18:06:cb:e5:81:2c:01:27: af:f6:b6:56:c4:af:31:30:b0:f9:82:db:36:3e:61: 85:73:c4:36:12:ca:b0:1f:76:d1:74:ae:23:42:35: 36:93:97:03:10:57:a0:f7:32:cf:9c:5d:93:18:ee: aa:4f:be:a1:9d:63:ee:1e:3c:9d:38:af:f6:22:56: 02:6a:c6:c0:8d:c6:d3:93:90:27:03:cd:1c:67:0d: 0d:4f:20:d2:4a:7e:e7:ab:82:2d:71:58:56:98:39: 6b:17:d1:1b:64:ba:7e:a2:a3:74:60:53:07:91:1d: 48:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:BE:5B:ED:F3:C6:B1:D0:10:06:BB:FB:28:7E:00:9A:47:90:77:C5 X509v3 Authority Key Identifier: keyid:1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:72:a4:d1:8b:ff:e8:e2:16:d9:79:45:1d:4c:0a:cb:8e:7d: 93:49:cf:1e:94:12:02:41:85:59:ad:b3:a1:50:47:d4:a8:e8: 7f:49:ac:2f:65:61:7c:ac:d0:32:fa:f7:c0:96:14:47:02:e7: 2d:3c:40:c7:39:01:ce:d1:aa:d9:bc:59:72:3e:35:f6:03:e1: 7d:85:84:cf:ef:34:0e:30:d5:e1:f6:7e:3a:32:9f:bc:ad:17: fc:ff:b5:b9:b0:20:0e:22:3c:fe:61:55:97:59:48:c6:33:60: a0:c2:1c:4a:31:3c:f5:f7:81:70:38:f4:78:c1:5f:47:41:1e: 6c:22:00:5c:cb:07:ef:13:a2:e3:de:9f:99:ca:5f:fc:dd:db: ea:71:76:93:8d:0e:28:27:9d:88:f6:ab:ad:02:f5:01:d4:26: 7d:fb:b6:66:9e:bd:f6:9f:b0:40:3b:89:2f:49:ef:57:7c:c0: 9d:32:47:3a:fd:e8:55:14:e0:d3:fa:bf:af:79:fb:cb:06:d4: cf:f1:ea:c8:d4:a8:0a:b1:4a:45:f5:c5:01:20:f7:b0:76:1f: 68:45:51:a3:7a:d6:b2:6f:40:64:0b:7a:22:89:ee:d7:23:d3: ad:fe:f2:43:4f:2d:5b:a5:5f:10:9b:72:e1:fc:40:7b:6a:0e: 61:8a:16:ed -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QzAxMTAvBgNVBAUTKDFEMERBQzExRUQ4MkUzNUMyM0IwQ0JFRkZCRUUwMDYy NjNCMDk5NTcwHhcNMjYwNDE1MDY0NzI2WhcNMjYwNDIyMDY0NzI2WjAYMRYwFAYD VQQDEw02OWRmMzQ3ZS1kMjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk4uEBv40PHG2TGR156aX8eE5hhjV/bQcgk7Vgn3677TDeoSF5AH3DMSzRcNw U4akGoDd+pvh/8vsj5LpJBMMLmtKrXVmyASh/u/WUa6+OfoqK2O+aSyMr6h1XTlC iR282ZBefU2nytD/iOZHS2hKrwZUikdCv32rqedXiBqeFOyTXxu368jUKofEJI3S GAbL5YEsASev9rZWxK8xMLD5gts2PmGFc8Q2EsqwH3bRdK4jQjU2k5cDEFeg9zLP nF2TGO6qT76hnWPuHjydOK/2IlYCasbAjcbTk5AnA80cZw0NTyDSSn7nq4ItcVhW mDlrF9EbZLp+oqN0YFMHkR1IxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOu+W+3z xrHQEAa7+yh+AJpHkHfFMB8GA1UdIwQYMBaAFB0NrBHtguNcI7DL7/vuAGJjsJlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlDMC81QUZCMTQ4RTM4 ODIxMUYwOENDQjE4NjZDNEY5QUUwMi9IUTJzRWUyQzQxd2pzTXZ2LS00QVltT3dt VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRMnNFZTJDNDF3anNNdnYtLTRBWW1Pd21WYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlDMC81QUZCMTQ4RTM4ODIxMUYwOENDQjE4NjZDNEY5QUUwMi9IUTJzRWUyQzQx d2pzTXZ2LS00QVltT3dtVmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVXKk0Yv/6OIW2XlFHUwKy459k0nPHpQSAkGFWa2zoVBH1Kjof0msL2VhfKzQ Mvr3wJYURwLnLTxAxzkBztGq2bxZcj419gPhfYWEz+80DjDV4fZ+OjKfvK0X/P+1 ubAgDiI8/mFVl1lIxjNgoMIcSjE89feBcDj0eMFfR0EebCIAXMsH7xOi496fmcpf /N3b6nF2k40OKCediParrQL1AdQmffu2Zp699p+wQDuJL0nvV3zAnTJHOv3oVRTg 0/q/r3n7ywbUz/HqyNSoCrFKRfXFASD3sHYfaEVRo3rWsm9AZAt6Ionu1yPTrf7y Q08tW6VfEJty4fxAe2oOYYoW7Q== -----END CERTIFICATE-----Generated at Fri Apr 17 07:09:35 2026 by rpki-client