$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3805/400C5DECD01011F09F0DD81CC4F9AE02/HlMPqfZgqNwXOMeqDIr8d_Twu7M.mft File: HlMPqfZgqNwXOMeqDIr8d_Twu7M.mft (raw, json) Hash identifier: idgWm4uKnGJdCZZjCRThrfqYBUinGnq3khBczYJrAUs= Subject key identifier: 5A:3F:34:77:24:A5:CD:A3:2A:3C:9D:C1:EE:66:BC:B9:67:2E:71:AA Authority key identifier: 1E:53:0F:A9:F6:60:A8:DC:17:38:C7:AA:0C:8A:FC:77:F4:F0:BB:B3 Certificate issuer: /CN=A91F3805/serialNumber=1E530FA9F660A8DC1738C7AA0C8AFC77F4F0BBB3 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlMPqfZgqNwXOMeqDIr8d_Twu7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3805/400C5DECD01011F09F0DD81CC4F9AE02/HlMPqfZgqNwXOMeqDIr8d_Twu7M.mft Manifest number: 35 Signing time: Sun 01 Mar 2026 10:06:50 +0000 Manifest this update: Sun 01 Mar 2026 10:06:50 +0000 Manifest next update: Sun 08 Mar 2026 10:06:50 +0000 Files and hashes: 1: HlMPqfZgqNwXOMeqDIr8d_Twu7M.crl (hash: QBf3sFvx2IQ0J01L4suDK3YRQ90kPtfY69FHP8B0Csw=) 2: C598E8DCD0EB11F08228F063C4F9AE02.roa (hash: Hi6se8LEGyhgp/b0G+d22teZcTwcQ2maa7DY8eg/6Bw=) 3: C673BB1AD0EB11F088F8F063C4F9AE02.roa (hash: +lTLwLrmEGRpnIGIwjJCBRzNe7yk7RhMSey/Pk+Y8/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3805/400C5DECD01011F09F0DD81CC4F9AE02/HlMPqfZgqNwXOMeqDIr8d_Twu7M.crl rsync://rpki.apnic.net/member_repository/A91F3805/400C5DECD01011F09F0DD81CC4F9AE02/HlMPqfZgqNwXOMeqDIr8d_Twu7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlMPqfZgqNwXOMeqDIr8d_Twu7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3805, serialNumber=1E530FA9F660A8DC1738C7AA0C8AFC77F4F0BBB3 Validity Not Before: Mar 1 10:06:50 2026 GMT Not After : Mar 8 10:06:50 2026 GMT Subject: CN=69a40fba-24db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:07:2d:4d:ac:b9:48:cb:46:83:97:2b:72:e3: 66:01:10:5e:61:26:e1:79:c1:f9:69:24:14:d3:62: 6c:02:03:a3:44:ba:59:7a:4e:cc:a9:9b:5e:93:5a: 82:72:15:02:d2:09:df:ef:bc:02:53:16:a3:c9:41: ba:27:e3:92:bf:57:f0:cc:03:1c:ac:77:15:6e:86: 80:09:81:a6:9a:fb:92:64:02:42:84:27:37:3a:29: d5:c7:35:1a:25:9c:6d:52:a5:82:2e:b0:f7:71:07: f7:2e:26:bd:63:8a:90:f4:bd:5f:73:bb:c8:9f:72: 40:ae:a3:5c:95:30:81:e7:bc:44:5a:bb:c2:39:9b: f6:92:18:68:89:49:3d:17:5f:7c:d8:cd:3f:28:67: fb:74:3d:93:62:7a:25:3b:bb:38:9e:89:45:b3:e2: b4:f8:ed:c4:54:43:fe:c1:f8:0f:2b:eb:e0:bd:39: 8e:aa:f7:bc:a0:88:43:5d:8b:3b:13:9a:6a:8a:d7: e5:5d:60:32:3f:e3:db:db:f0:30:0c:59:17:ba:14: be:9b:9e:c7:a9:78:6f:2f:c7:05:a2:33:91:af:c7: c9:c2:8c:8e:1f:27:8e:f4:77:8b:2c:c5:87:5c:32: 24:96:e3:40:73:8a:85:dd:78:94:71:91:c5:bf:a1: 60:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:3F:34:77:24:A5:CD:A3:2A:3C:9D:C1:EE:66:BC:B9:67:2E:71:AA X509v3 Authority Key Identifier: keyid:1E:53:0F:A9:F6:60:A8:DC:17:38:C7:AA:0C:8A:FC:77:F4:F0:BB:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3805/400C5DECD01011F09F0DD81CC4F9AE02/HlMPqfZgqNwXOMeqDIr8d_Twu7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlMPqfZgqNwXOMeqDIr8d_Twu7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3805/400C5DECD01011F09F0DD81CC4F9AE02/HlMPqfZgqNwXOMeqDIr8d_Twu7M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:28:c1:d4:bb:44:31:36:67:db:62:b6:ce:25:ed:bc:e9:bd: b4:ed:4b:51:ba:4d:9a:7c:86:d2:d4:21:50:95:48:df:e9:d8: 55:d8:c0:da:04:44:1a:49:56:78:39:8b:61:eb:99:e7:22:a7: ef:b6:26:8f:bb:ae:d7:28:9a:45:c8:c7:3b:9b:18:c1:7f:eb: d0:0d:4d:ed:44:98:86:6a:46:0a:e5:e4:35:8c:db:a6:6a:0d: 44:dc:63:fe:87:52:9a:24:4b:13:7a:2d:27:49:20:58:79:c4: f9:21:e2:ff:51:16:a1:11:e6:31:ad:8e:06:ed:8d:b1:48:3d: 2b:e3:b2:f5:76:a0:a5:ff:da:c1:93:47:2f:07:66:3b:c9:82: 67:25:65:33:09:c7:2b:bd:45:78:3f:aa:8f:e4:03:0c:16:7c: 51:29:41:6c:fe:05:51:34:21:d1:55:3c:73:dd:82:46:2f:5c: c7:ce:c2:01:80:15:c2:7e:bc:33:ff:d5:ce:16:4b:4e:7f:41: 36:be:50:f7:3f:fe:74:d1:46:5a:a8:67:5d:36:c5:0b:8b:63: 6e:d8:57:42:48:0a:b0:a8:d5:3d:24:b2:9a:a2:b1:cd:9b:a2: 98:04:43:2e:49:c4:ae:00:38:a4:61:ea:82:5c:22:6d:e9:a4: d9:2d:2c:88 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MzgwNTExMC8GA1UEBRMoMUU1MzBGQTlGNjYwQThEQzE3MzhDN0FBMEM4QUZDNzdG NEYwQkJCMzAeFw0yNjAzMDExMDA2NTBaFw0yNjAzMDgxMDA2NTBaMBgxFjAUBgNV BAMTDTY5YTQwZmJhLTI0ZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJBy1NrLlIy0aDlyty42YBEF5hJuF5wflpJBTTYmwCA6NEull6Tsypm16TWoJy FQLSCd/vvAJTFqPJQbon45K/V/DMAxysdxVuhoAJgaaa+5JkAkKEJzc6KdXHNRol nG1SpYIusPdxB/cuJr1jipD0vV9zu8ifckCuo1yVMIHnvERau8I5m/aSGGiJST0X X3zYzT8oZ/t0PZNieiU7uzieiUWz4rT47cRUQ/7B+A8r6+C9OY6q97ygiENdizsT mmqK1+VdYDI/49vb8DAMWRe6FL6bnsepeG8vxwWiM5Gvx8nCjI4fJ470d4ssxYdc MiSW40BzioXdeJRxkcW/oWBfAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUWj80dySl zaMqPJ3B7ma8uWcucaowHwYDVR0jBBgwFoAUHlMPqfZgqNwXOMeqDIr8d/Twu7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzODA1LzQwMEM1REVDRDAx MDExRjA5RjBERDgxQ0M0RjlBRTAyL0hsTVBxZlpncU53WE9NZXFESXI4ZF9Ud3U3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGxNUHFmWmdxTndYT01lcURJcjhkX1R3dTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYz ODA1LzQwMEM1REVDRDAxMDExRjA5RjBERDgxQ0M0RjlBRTAyL0hsTVBxZlpncU53 WE9NZXFESXI4ZF9Ud3U3TS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQDPKMHUu0QxNmfbYrbOJe286b207UtRuk2afIbS1CFQlUjf6dhV2MDaBEQaSVZ4 OYth65nnIqfvtiaPu67XKJpFyMc7mxjBf+vQDU3tRJiGakYK5eQ1jNumag1E3GP+ h1KaJEsTei0nSSBYecT5IeL/URahEeYxrY4G7Y2xSD0r47L1dqCl/9rBk0cvB2Y7 yYJnJWUzCccrvUV4P6qP5AMMFnxRKUFs/gVRNCHRVTxz3YJGL1zHzsIBgBXCfrwz /9XOFktOf0E2vlD3P/500UZaqGddNsULi2Nu2FdCSAqwqNU9JLKaorHNm6KYBEMu ScSuADikYeqCXCJt6aTZLSyI -----END CERTIFICATE-----Generated at Mon Mar 2 05:41:09 2026 by rpki-client