$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft File: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft (raw, json) Hash identifier: WUpzmBiNs4fuBUxsTYpViDVGzKM6eFyfrD1Nh4v+K1Y= Subject key identifier: A0:15:07:D4:C5:46:73:FE:AE:C7:EC:94:35:A4:31:07:DE:44:89:2A Authority key identifier: 1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 Certificate issuer: /CN=A91F5BCC/serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft Manifest number: DA Signing time: Sun 01 Mar 2026 23:38:27 +0000 Manifest this update: Sun 01 Mar 2026 23:38:25 +0000 Manifest next update: Sun 08 Mar 2026 23:38:25 +0000 Files and hashes: 1: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl (hash: MBf3XXkFzf0pt/hT988vvwgXjnLvFYpLiGE0P3cCyVc=) 2: 7A092C88E9E211EFAD188675C4F9AE02.roa (hash: VYzj3AeenQpibuJcJi+RGSfALT2kN6QBqvlUfKfEKWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:38:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5BCC, serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Validity Not Before: Mar 1 23:38:25 2026 GMT Not After : Mar 8 23:38:25 2026 GMT Subject: CN=69a4cdf2-a286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fc:b4:d6:d4:5e:40:fe:dc:82:46:f8:5a:e7: d1:e6:a6:cf:e7:04:86:48:15:08:29:79:a5:10:b4: f0:be:da:93:a0:c7:99:b1:02:21:56:e9:9b:54:c0: 45:13:ba:1c:2f:be:6d:a5:e3:2a:46:2d:f4:92:32: c7:12:92:c4:f2:51:6a:35:ac:c5:3e:18:52:02:e0: 31:9a:01:e0:cd:78:48:fb:7c:e7:66:c1:b2:19:a1: a1:d0:67:0a:fc:2c:ff:ea:8c:90:da:b9:04:bb:2f: a5:c0:f1:b1:67:7a:39:b2:79:74:ef:56:bb:8f:e4: 3d:df:01:d4:13:8b:b7:3a:73:4e:8c:f0:97:b7:30: 89:47:61:73:2a:50:09:57:8b:e0:9a:46:29:f9:b3: 05:15:fe:8f:10:20:ef:46:7f:2a:aa:d2:f0:67:c8: 17:f0:29:d5:72:ae:36:18:ff:c4:b7:b6:25:23:6f: c4:d0:aa:a1:d1:74:c9:83:3c:a4:5d:85:da:a6:96: 7e:86:ab:02:d6:b1:f4:eb:5e:0d:eb:d9:29:b0:9b: fc:18:be:28:41:a5:10:cd:70:bd:cb:a2:52:e5:97: be:89:a2:d4:89:87:b5:f7:6a:fe:16:c7:5d:b1:7f: ef:b9:62:5f:b6:0e:9a:a4:b3:e4:5f:b2:90:1e:b9: ac:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:15:07:D4:C5:46:73:FE:AE:C7:EC:94:35:A4:31:07:DE:44:89:2A X509v3 Authority Key Identifier: keyid:1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:ca:b7:8f:cb:2a:f9:74:bc:1a:32:4c:c8:b6:dd:f5:07:6c: 16:f2:0d:4e:ef:a5:f2:cf:03:87:ff:6e:ea:81:af:d1:0e:26: b4:54:ab:6e:81:b5:80:1b:b4:50:27:54:e6:f0:5f:1e:bf:8f: 0a:07:d2:9e:cb:61:25:22:89:e6:cd:dd:26:12:d8:00:c7:d1: a6:51:56:fb:db:9e:d7:ad:e8:7c:4e:c4:d2:58:b5:c0:fb:a9: 2b:58:7d:96:a7:b0:fa:52:ae:b1:57:f0:3e:eb:19:5c:77:28: 8d:ef:01:76:d2:84:df:27:cf:60:60:67:0e:e5:ef:7d:9b:77: 44:d5:7f:25:49:71:02:0e:9d:1e:8e:e6:af:31:2a:94:ec:09: 29:4d:80:ad:34:93:5a:06:b7:3c:96:cb:d4:58:2d:f0:12:83: ea:28:7f:a7:20:3e:24:e1:fe:80:82:f7:fa:7c:5a:22:79:81: 1e:a3:6f:61:31:29:60:ad:9c:d7:26:77:e5:49:c5:e2:3e:0e: f0:12:48:00:c1:49:1b:e0:ef:31:5e:bf:df:68:c5:59:8e:07: ae:e3:e7:9e:d8:45:33:ec:f2:cb:d4:94:e9:70:0f:1c:c4:d0: c1:98:2e:9c:7c:c2:aa:2d:6f:ed:8f:35:eb:ac:16:b8:d8:63: 4a:1a:d2:c5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVCQ0MxMTAvBgNVBAUTKDFFNDhFRkU1M0U2MkVEMjA0QkE3QTY5NDM4NENCQUM5 MjQ2Nzk0QTcwHhcNMjYwMzAxMjMzODI1WhcNMjYwMzA4MjMzODI1WjAYMRYwFAYD VQQDEw02OWE0Y2RmMi1hMjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPy01tReQP7cgkb4WufR5qbP5wSGSBUIKXmlELTwvtqToMeZsQIhVumbVMBF E7ocL75tpeMqRi30kjLHEpLE8lFqNazFPhhSAuAxmgHgzXhI+3znZsGyGaGh0GcK /Cz/6oyQ2rkEuy+lwPGxZ3o5snl071a7j+Q93wHUE4u3OnNOjPCXtzCJR2FzKlAJ V4vgmkYp+bMFFf6PECDvRn8qqtLwZ8gX8CnVcq42GP/Et7YlI2/E0Kqh0XTJgzyk XYXappZ+hqsC1rH0614N69kpsJv8GL4oQaUQzXC9y6JS5Ze+iaLUiYe192r+Fsdd sX/vuWJftg6apLPkX7KQHrmsewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKAVB9TF RnP+rsfslDWkMQfeRIkqMB8GA1UdIwQYMBaAFB5I7+U+Yu0gS6emlDhMuskkZ5Sn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUJDQy9COTU4OEJBQ0NF NzgxMUVGODBFRjRENDRDNEY5QUUwMi9Ia2p2NVQ1aTdTQkxwNmFVT0V5NnlTUm5s S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hranY1VDVpN1NCTHA2YVVPRXk2eVNSbmxLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUJDQy9COTU4OEJBQ0NFNzgxMUVGODBFRjRENDRDNEY5QUUwMi9Ia2p2NVQ1aTdT QkxwNmFVT0V5NnlTUm5sS2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArcq3j8sq+XS8GjJMyLbd9QdsFvINTu+l8s8Dh/9u6oGv0Q4mtFSrboG1gBu0 UCdU5vBfHr+PCgfSnsthJSKJ5s3dJhLYAMfRplFW+9ue163ofE7E0li1wPupK1h9 lqew+lKusVfwPusZXHcoje8BdtKE3yfPYGBnDuXvfZt3RNV/JUlxAg6dHo7mrzEq lOwJKU2ArTSTWga3PJbL1Fgt8BKD6ih/pyA+JOH+gIL3+nxaInmBHqNvYTEpYK2c 1yZ35UnF4j4O8BJIAMFJG+DvMV6/32jFWY4HruPnnthFM+zyy9SU6XAPHMTQwZgu nHzCqi1v7Y8166wWuNhjShrSxQ== -----END CERTIFICATE-----Generated at Mon Mar 2 22:21:37 2026 by rpki-client