$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: vRaM/SF5GL2j44nnQsZcmLeIFmqNuBWrjPXud1egNLc= Subject key identifier: 5A:B7:FB:CC:8E:56:94:B7:07:16:5D:37:25:F4:2F:58:C1:1C:1A:7E Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 087E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 0860 Signing time: Mon 02 Mar 2026 01:56:04 +0000 Manifest this update: Mon 02 Mar 2026 01:56:03 +0000 Manifest next update: Mon 09 Mar 2026 01:56:03 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: O/GQmIjtTJL2I65Qt8/smJBVMG0Vtz7UXQWtUOXZ2Ec=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: 08lz7b6szSEMQO1jrd2yTTyJym47lMNxqFGZhqAfyUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:55:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2174 (0x87e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F, serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Mar 2 01:56:03 2026 GMT Not After : Mar 9 01:56:03 2026 GMT Subject: CN=69a4ee34-29ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a4:a6:30:4a:d0:97:c8:56:6b:43:e2:1f:6c: 71:f1:31:1a:51:b1:b7:aa:af:0c:cb:c5:b7:7a:83: 66:07:9e:31:02:86:93:a2:42:20:6e:8e:d5:e8:93: 24:f4:07:ac:a2:f4:80:0a:64:7d:d0:70:3f:2f:4a: 3c:8c:fe:cb:26:71:ee:3a:d7:a7:af:0f:e4:51:bb: e1:1f:a9:2f:88:7b:fe:57:96:67:c1:ea:f9:2c:a9: 30:b7:91:e4:2c:50:11:72:08:e0:1d:ec:19:b1:bd: a4:da:62:7f:82:b0:19:c3:7c:0a:91:7c:c5:1e:f7: 57:fc:76:8a:26:2c:12:85:0f:47:11:81:20:b5:77: 1b:08:11:f0:2c:8a:d0:80:0b:f6:52:b9:fd:91:32: 7a:7a:26:e9:09:fc:5e:03:36:a0:4b:c9:74:0c:b3: 72:cd:11:22:90:56:11:ec:03:7a:05:28:36:1a:ba: 3d:64:a5:52:25:db:bd:89:24:b5:b8:31:ae:60:ef: 61:eb:80:2d:77:9c:29:74:dc:1b:3f:f5:c8:f7:ee: 4f:ac:ac:af:9d:28:94:7b:27:a7:f5:89:07:06:a7: 96:9a:ee:13:9b:af:b4:ce:3b:86:ff:25:f9:4c:fc: 5c:6e:46:b0:1e:6d:24:df:f3:3f:78:ce:2d:99:62: 0b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:B7:FB:CC:8E:56:94:B7:07:16:5D:37:25:F4:2F:58:C1:1C:1A:7E X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:d4:74:59:ac:4e:71:82:ca:2e:a9:42:93:35:34:1c:00:c5: a8:aa:75:45:5f:bd:57:b9:b6:31:2f:ea:5a:85:50:1b:5c:56: fb:ae:46:93:94:11:a4:f8:35:2d:e6:bc:f3:7f:18:da:47:bf: a9:e7:39:78:c2:30:af:24:06:8d:70:80:4a:7e:e1:b7:4b:05: 13:e5:bf:15:23:5d:64:06:07:23:d6:06:eb:84:a9:f0:e3:5d: 65:a3:3a:58:f8:48:75:8f:7c:13:cb:48:b3:ed:ad:a5:50:1f: d9:31:b0:64:24:48:82:e9:eb:3d:b3:a1:f2:97:ba:f2:35:3c: 44:e3:c2:81:11:99:4f:40:50:c9:06:ad:b0:22:6a:08:4e:24: 69:d0:07:ba:90:7c:31:c9:01:e9:97:bb:8d:b8:f4:68:80:a1: 33:19:d0:61:90:0f:c5:55:e7:15:c2:eb:5c:05:3f:d3:9a:ae: 5a:90:a7:cb:85:68:c9:ab:0b:cf:f8:cd:ee:27:b7:b6:cd:a9: 9d:66:db:27:26:c9:3d:d1:ef:49:d4:7e:7c:67:4c:f8:94:1b: 96:4e:b0:ee:59:00:e5:ca:e9:bf:1c:78:3f:6a:2d:e8:86:ed: 00:bd:42:77:55:8b:ba:78:ff:fc:09:86:37:be:38:63:60:3e: 3b:9b:40:e3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjYwMzAyMDE1NjAzWhcNMjYwMzA5MDE1NjAzWjAYMRYwFAYD VQQDEw02OWE0ZWUzNC0yOWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKSmMErQl8hWa0PiH2xx8TEaUbG3qq8My8W3eoNmB54xAoaTokIgbo7V6JMk 9AesovSACmR90HA/L0o8jP7LJnHuOtenrw/kUbvhH6kviHv+V5Znwer5LKkwt5Hk LFARcgjgHewZsb2k2mJ/grAZw3wKkXzFHvdX/HaKJiwShQ9HEYEgtXcbCBHwLIrQ gAv2Urn9kTJ6eibpCfxeAzagS8l0DLNyzREikFYR7AN6BSg2Gro9ZKVSJdu9iSS1 uDGuYO9h64Atd5wpdNwbP/XI9+5PrKyvnSiUeyen9YkHBqeWmu4Tm6+0zjuG/yX5 TPxcbkawHm0k3/M/eM4tmWILoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFq3+8yO VpS3BxZdNyX0L1jBHBp+MB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU9R0WaxOcYLKLqlCkzU0HADFqKp1RV+9V7m2MS/qWoVQG1xW+65Gk5QRpPg1 Lea8838Y2ke/qec5eMIwryQGjXCASn7ht0sFE+W/FSNdZAYHI9YG64Sp8ONdZaM6 WPhIdY98E8tIs+2tpVAf2TGwZCRIgunrPbOh8pe68jU8ROPCgRGZT0BQyQatsCJq CE4kadAHupB8MckB6Ze7jbj0aIChMxnQYZAPxVXnFcLrXAU/05quWpCny4VoyasL z/jN7ie3ts2pnWbbJybJPdHvSdR+fGdM+JQblk6w7lkA5crpvxx4P2ot6IbtAL1C d1WLunj//AmGN744Y2A+O5tA4w== -----END CERTIFICATE-----Generated at Mon Mar 2 13:24:14 2026 by rpki-client