$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft File: HfNLnj96ONdYmO1LBfntTEAEzrw.mft (raw, json) Hash identifier: ZeThx/nb1oY8ZExRAghSWJwejlAvwW566/VTNX1V/Kk= Subject key identifier: 24:17:77:1D:94:B1:B2:8B:F2:44:55:F7:84:0A:1A:36:EC:7E:34:9A Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 0A8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft Manifest number: 0A7E Signing time: Mon 02 Mar 2026 01:30:20 +0000 Manifest this update: Mon 02 Mar 2026 01:30:17 +0000 Manifest next update: Mon 09 Mar 2026 01:30:17 +0000 Files and hashes: 1: HfNLnj96ONdYmO1LBfntTEAEzrw.crl (hash: Mt9BEyImodExBejFeCcNGhjemmAvcI6Vf+7z6LzhfK8=) 2: A23D5DE87A6911EA930EB439C4F9AE02.roa (hash: 0tnUQM8nUOKmP6zcIR5mibnCQ76vuNJWrUF9kNBfQsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2698 (0xa8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227, serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: Mar 2 01:30:17 2026 GMT Not After : Mar 9 01:30:17 2026 GMT Subject: CN=69a4e82b-81f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:6c:b0:49:94:5c:7e:e0:42:79:77:98:fd:25: 33:3f:91:eb:86:16:59:e2:c1:c4:0b:71:3b:67:e5: 88:a8:1f:f5:a1:b7:b9:cd:87:85:38:9b:e6:18:dd: 5b:12:59:bd:a0:d3:07:31:de:f1:4e:09:9b:f9:c3: e3:ae:f5:65:d1:83:c9:67:15:e1:f2:cc:f5:07:13: 51:4e:3f:ef:b7:45:8f:02:0a:39:1d:ae:7e:6f:1d: fb:81:d4:36:dd:c1:0a:44:81:cf:df:d7:cb:78:d8: 76:63:47:7e:1e:54:cd:be:1a:e6:51:4b:7d:df:2b: a3:49:7e:b6:20:11:bb:fb:8f:c9:36:4a:c3:12:d7: f8:f8:b9:87:ea:a2:6f:e6:bd:9e:95:b7:b1:0d:43: c1:44:07:7f:9e:1b:f4:c0:6c:75:2b:97:a6:20:fd: 60:20:5e:73:68:c0:cb:20:32:58:7f:a7:66:b0:b6: f1:e0:7f:9c:ba:ac:ed:40:52:fe:e4:b0:97:d2:eb: f5:fc:62:4c:12:f4:41:ea:2f:ea:ba:0b:87:04:0f: 02:9c:f4:94:4c:f6:01:cf:74:54:c7:10:c8:75:96: e7:60:cd:00:b9:ba:44:db:39:07:19:d0:4c:83:d2: 67:99:ff:8a:1c:79:49:ec:0c:bb:9d:42:c1:e5:f5: 85:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:17:77:1D:94:B1:B2:8B:F2:44:55:F7:84:0A:1A:36:EC:7E:34:9A X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:b4:ba:52:2e:ab:e0:27:24:7b:13:c6:09:76:bf:6e:6b:b7: 55:59:24:e9:af:36:8f:e3:fc:bb:24:8f:2d:c0:7f:5d:c4:5c: 08:94:6e:0b:9d:30:69:3c:b0:c2:9e:b2:fb:0f:e7:9e:16:c2: fd:f4:3a:c5:a3:a2:f3:28:e7:19:b9:3d:9e:33:df:67:84:e8: d8:55:0e:de:e4:a3:43:50:42:fa:b1:a8:ca:c5:00:01:b9:5e: 6e:c5:74:dd:ff:0e:40:6d:e6:c1:19:13:33:14:83:d0:67:9d: ca:a6:8e:75:15:82:23:f7:af:14:84:29:75:f1:71:6f:50:ee: 55:7f:f8:b7:f2:8e:82:1d:15:91:68:92:90:bc:0a:58:4c:ee: 39:53:df:f4:2b:9b:b1:21:59:21:89:05:9d:fa:c0:33:98:a8: 4a:25:75:3b:78:b6:1d:76:46:b5:97:9b:90:f4:be:4f:e3:87: 91:35:05:05:76:8a:07:db:43:08:c6:19:f9:64:da:77:1f:98: 49:f7:e7:69:29:21:4b:09:4e:e5:67:03:e7:63:97:65:25:5e: f1:a1:cc:00:0e:3d:c9:9b:0d:e5:e0:0b:7e:d3:df:af:38:dc: 27:54:04:67:31:c3:d6:2a:96:7e:13:e1:83:41:a1:91:f7:f2: a0:a6:af:9f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjYwMzAyMDEzMDE3WhcNMjYwMzA5MDEzMDE3WjAYMRYwFAYD VQQDEw02OWE0ZTgyYi04MWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnmywSZRcfuBCeXeY/SUzP5HrhhZZ4sHEC3E7Z+WIqB/1obe5zYeFOJvmGN1b Elm9oNMHMd7xTgmb+cPjrvVl0YPJZxXh8sz1BxNRTj/vt0WPAgo5Ha5+bx37gdQ2 3cEKRIHP39fLeNh2Y0d+HlTNvhrmUUt93yujSX62IBG7+4/JNkrDEtf4+LmH6qJv 5r2elbexDUPBRAd/nhv0wGx1K5emIP1gIF5zaMDLIDJYf6dmsLbx4H+cuqztQFL+ 5LCX0uv1/GJMEvRB6i/quguHBA8CnPSUTPYBz3RUxxDIdZbnYM0AubpE2zkHGdBM g9Jnmf+KHHlJ7Ay7nULB5fWFrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCQXdx2U sbKL8kRV94QKGjbsfjSaMB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjIyNy8wRDcyOEEwQTdBM0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9O ZFltTzFMQmZudFRFQUV6cncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH7S6Ui6r4CckexPGCXa/bmu3VVkk6a82j+P8uySPLcB/XcRcCJRuC50waTyw wp6y+w/nnhbC/fQ6xaOi8yjnGbk9njPfZ4To2FUO3uSjQ1BC+rGoysUAAblebsV0 3f8OQG3mwRkTMxSD0GedyqaOdRWCI/evFIQpdfFxb1DuVX/4t/KOgh0VkWiSkLwK WEzuOVPf9CubsSFZIYkFnfrAM5ioSiV1O3i2HXZGtZebkPS+T+OHkTUFBXaKB9tD CMYZ+WTadx+YSffnaSkhSwlO5WcD52OXZSVe8aHMAA49yZsN5eALftPfrzjcJ1QE ZzHD1iqWfhPhg0GhkffyoKavnw== -----END CERTIFICATE-----Generated at Mon Mar 2 13:24:18 2026 by rpki-client