$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft File: HfNLnj96ONdYmO1LBfntTEAEzrw.mft (raw, json) Hash identifier: zrhVKnQS8ZHy+1tLOJfRuUMwX5vhuLaXP6pzttQLLAg= Subject key identifier: 16:2E:80:49:61:C1:05:98:63:B8:8D:06:F9:AE:4D:A1:09:BA:9E:3D Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 0AA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft Manifest number: 0A96 Signing time: Thu 16 Apr 2026 19:27:12 +0000 Manifest this update: Thu 16 Apr 2026 19:27:12 +0000 Manifest next update: Thu 23 Apr 2026 19:27:12 +0000 Files and hashes: 1: HfNLnj96ONdYmO1LBfntTEAEzrw.crl (hash: xNXnFriMDmZIFr0mf78bXNvHQ7bQ5NAVKfXfU273vHQ=) 2: A23D5DE87A6911EA930EB439C4F9AE02.roa (hash: 0tnUQM8nUOKmP6zcIR5mibnCQ76vuNJWrUF9kNBfQsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2722 (0xaa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227, serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: Apr 16 19:27:12 2026 GMT Not After : Apr 23 19:27:12 2026 GMT Subject: CN=69e13810-2a47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b9:96:f9:ae:23:a1:67:49:be:09:94:81:55: 5b:34:1f:05:b8:5b:2b:2a:3e:24:90:03:e2:86:9d: 20:6a:91:fa:17:49:e0:77:c5:da:81:9f:c6:c7:df: 5b:ce:c2:40:43:4a:96:ed:d1:71:10:68:98:ff:76: 2d:d7:57:83:51:77:d8:1c:2d:4e:9e:ff:ae:a7:fe: e6:e1:6b:1d:8e:5c:45:77:27:f3:bb:58:41:6d:81: ed:bf:3c:45:8d:6c:7c:09:67:78:50:68:91:ef:3a: d8:c3:4f:36:71:aa:ac:c6:db:ed:6a:65:70:50:fb: 07:6a:2c:c2:29:d4:e2:92:f4:3f:b0:02:2d:58:09: c1:ec:dd:b9:6f:d4:44:8d:67:95:35:49:ee:e4:f1: 61:7e:77:8c:16:5f:68:80:5a:1d:12:a6:73:8f:9e: 6d:dc:57:a6:4b:96:0b:06:80:56:ba:11:f7:b1:b3: a5:84:ef:a7:2b:07:ee:d6:58:09:6e:1f:60:c5:26: f5:d9:23:6e:ba:fd:ae:d8:38:55:ba:b3:0f:6d:cc: b2:e6:08:0f:4e:bd:fa:f8:62:ca:6a:c7:44:f0:c6: 7a:f1:d0:40:da:3b:7b:96:87:37:57:05:97:7d:87: 60:4e:dc:a0:c4:7c:a1:09:60:47:8f:76:af:78:53: f3:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:2E:80:49:61:C1:05:98:63:B8:8D:06:F9:AE:4D:A1:09:BA:9E:3D X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:9f:58:7a:55:5f:5a:79:65:b9:ab:af:a5:7e:26:ef:ba:2f: 99:5f:f3:d6:05:97:4d:14:3b:16:69:b3:11:e7:e0:09:0b:20: 88:d5:15:20:6b:93:d3:e7:dd:be:46:64:b8:98:76:d0:a4:46: 79:68:20:f1:5d:93:fd:f1:33:5c:dc:03:6a:7b:d2:ea:f1:b8: 69:c1:62:4a:d7:02:7b:ef:08:98:20:23:cc:c2:0b:59:e9:8a: de:bc:1e:db:77:b3:05:bb:ab:e1:95:d7:93:1e:6a:b5:67:53: ba:92:34:02:d0:9a:a9:c3:ca:4e:ef:8b:00:b5:09:97:60:ae: 22:b5:10:8c:1f:70:1c:6b:e0:eb:7d:64:65:79:4a:e7:11:af: ff:06:55:f1:47:aa:88:ce:2d:ea:c7:50:e8:d8:3b:08:b6:11: b2:cf:9a:42:a0:bc:ea:60:9f:08:f6:a6:df:08:2c:1d:4a:2e: 62:ae:60:01:07:ae:8d:e0:8a:3f:a2:0b:ca:43:a1:c3:de:4c: 6a:ec:17:5e:01:8b:f7:89:17:0f:ab:74:80:8e:4c:3a:cb:f0: 77:3b:8e:a6:4b:0f:da:ab:89:8a:5c:8c:6b:6d:09:8c:c1:d9: c9:a6:15:7f:f4:63:e6:02:64:d8:21:1d:a7:35:cb:f1:4e:8c: ef:74:fd:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjYwNDE2MTkyNzEyWhcNMjYwNDIzMTkyNzEyWjAYMRYwFAYD VQQDEw02OWUxMzgxMC0yYTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7mW+a4joWdJvgmUgVVbNB8FuFsrKj4kkAPihp0gapH6F0ngd8XagZ/Gx99b zsJAQ0qW7dFxEGiY/3Yt11eDUXfYHC1Onv+up/7m4WsdjlxFdyfzu1hBbYHtvzxF jWx8CWd4UGiR7zrYw082caqsxtvtamVwUPsHaizCKdTikvQ/sAItWAnB7N25b9RE jWeVNUnu5PFhfneMFl9ogFodEqZzj55t3FemS5YLBoBWuhH3sbOlhO+nKwfu1lgJ bh9gxSb12SNuuv2u2DhVurMPbcyy5ggPTr36+GLKasdE8MZ68dBA2jt7loc3VwWX fYdgTtygxHyhCWBHj3aveFPzJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBYugElh wQWYY7iNBvmuTaEJup49MB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjIyNy8wRDcyOEEwQTdBM0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9O ZFltTzFMQmZudFRFQUV6cncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb59YelVfWnlluauvpX4m77ovmV/z1gWXTRQ7FmmzEefgCQsgiNUVIGuT0+fd vkZkuJh20KRGeWgg8V2T/fEzXNwDanvS6vG4acFiStcCe+8ImCAjzMILWemK3rwe 23ezBbur4ZXXkx5qtWdTupI0AtCaqcPKTu+LALUJl2CuIrUQjB9wHGvg631kZXlK 5xGv/wZV8UeqiM4t6sdQ6Ng7CLYRss+aQqC86mCfCPam3wgsHUouYq5gAQeujeCK P6ILykOhw95MauwXXgGL94kXD6t0gI5MOsvwdzuOpksP2quJilyMa20JjMHZyaYV f/Rj5gJk2CEdpzXL8U6M73T9uA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:28:31 2026 by rpki-client