$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft File: HNLU8yahhKSHvyKs14rVwGj0ZmE.mft (raw, json) Hash identifier: lKVDUWpcSv8TWD8/4IQJYlW086Asd90gH2nnJl1Inh4= Subject key identifier: D8:28:3E:71:91:79:E3:55:55:18:40:6D:AB:C7:AF:B2:83:07:3A:28 Authority key identifier: 1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 Certificate issuer: /CN=A91F8177/serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft Manifest number: AA Signing time: Fri 17 Apr 2026 06:57:50 +0000 Manifest this update: Fri 17 Apr 2026 06:57:50 +0000 Manifest next update: Fri 24 Apr 2026 06:57:50 +0000 Files and hashes: 1: HNLU8yahhKSHvyKs14rVwGj0ZmE.crl (hash: pKhhW7XGE8nULMgeY1IKM2UtB7RK38XHtGLVpMB47SI=) 2: 447A88023DDC11F0ACD9F475C4F9AE02.roa (hash: yApvKnBxIUvq7AlUwJW85McmrlejDSLKrMcrZmKRC/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8177, serialNumber=1CD2D4F326A184A487BF22ACD78AD5C068F46661 Validity Not Before: Apr 17 06:57:50 2026 GMT Not After : Apr 24 06:57:50 2026 GMT Subject: CN=69e1d9ee-a257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:39:0f:12:8a:34:68:fb:e3:61:56:45:e4:ce: f5:a7:5e:27:15:f7:d6:6a:cd:29:e1:67:09:87:a2: 3f:5c:e5:d8:9c:2e:c4:15:99:81:d6:a3:e1:d9:7d: 3f:f6:52:31:c2:21:e0:3e:5c:0b:33:19:ef:5d:ea: 29:45:53:52:05:c5:09:26:45:fa:a6:41:be:fe:3c: f6:84:2a:d6:eb:46:e7:ef:01:eb:50:98:cd:6f:81: ea:81:1c:ce:76:ba:2b:fb:89:78:b2:d4:60:4f:45: a7:9e:f0:3f:1e:b5:53:a6:55:c6:87:9b:c8:c9:57: 1d:e4:d0:2c:a5:e1:60:48:29:1b:3a:be:44:65:91: 84:5b:ae:bb:d4:40:db:fc:ad:d0:7c:83:2c:67:43: f1:e3:e1:7a:36:e0:4a:e5:5c:d6:ac:74:3d:cd:65: 6d:53:39:eb:4f:b3:e7:b1:ac:9a:0a:e3:8e:a1:6c: a8:26:9e:68:0c:09:b8:2f:fe:eb:ea:ae:69:e5:69: f0:9d:a0:10:0c:07:2d:66:6b:39:0a:da:88:31:2f: 1f:81:28:e5:db:83:91:ec:44:b6:98:b9:a4:0d:08: 35:f8:bb:94:a4:21:31:c9:14:10:c3:9a:ab:92:e1: 4c:1d:ac:06:86:de:30:ec:2c:20:c1:aa:a6:9a:8f: be:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:28:3E:71:91:79:E3:55:55:18:40:6D:AB:C7:AF:B2:83:07:3A:28 X509v3 Authority Key Identifier: keyid:1C:D2:D4:F3:26:A1:84:A4:87:BF:22:AC:D7:8A:D5:C0:68:F4:66:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNLU8yahhKSHvyKs14rVwGj0ZmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8177/8BA3D8C43DDB11F0AC93D432C4F9AE02/HNLU8yahhKSHvyKs14rVwGj0ZmE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:41:a7:68:e6:b8:a7:12:d0:25:c7:cc:fa:61:5a:e0:3f:a9: 11:8f:5a:fe:ed:f1:b1:41:5b:40:ed:0a:b8:35:54:a6:8e:16: d7:95:28:bd:69:b6:04:28:3c:e0:be:6e:66:b5:8e:94:97:e7: b4:96:33:df:f1:53:6a:28:75:36:80:8e:ca:8d:c9:58:95:8f: 40:00:c8:22:e9:2b:9f:19:86:03:1a:48:d9:04:fa:4e:96:62: 52:fc:80:85:ea:3a:e5:47:82:f9:35:ff:a0:99:9d:2f:c4:de: fc:e7:df:aa:ab:5b:e2:df:cb:99:e2:89:b9:cb:7a:78:6c:5a: 1c:25:b2:ce:2d:13:ce:7d:66:a6:79:a5:3d:e4:0f:73:e5:a3: dd:ce:51:e2:4f:c3:72:b8:e5:eb:7e:ce:64:0f:69:38:39:b0: eb:1e:36:f5:8e:41:f6:19:9e:1a:d0:88:b9:ad:9d:fb:c5:28: 45:7d:07:ac:6a:29:95:b3:bd:00:f0:56:95:76:80:fd:62:2b: 7e:41:89:5d:fa:93:8d:00:44:c4:6d:83:82:d8:de:22:2b:9f: 39:e8:4f:c8:23:79:6b:5a:a0:ce:39:8a:4d:87:0d:82:9c:9a: 6e:b5:13:61:fa:63:ca:a6:18:fb:0a:98:d7:7b:eb:b7:e9:d3: c4:af:cd:86 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxNzcxMTAvBgNVBAUTKDFDRDJENEYzMjZBMTg0QTQ4N0JGMjJBQ0Q3OEFENUMw NjhGNDY2NjEwHhcNMjYwNDE3MDY1NzUwWhcNMjYwNDI0MDY1NzUwWjAYMRYwFAYD VQQDEw02OWUxZDllZS1hMjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTkPEoo0aPvjYVZF5M71p14nFffWas0p4WcJh6I/XOXYnC7EFZmB1qPh2X0/ 9lIxwiHgPlwLMxnvXeopRVNSBcUJJkX6pkG+/jz2hCrW60bn7wHrUJjNb4HqgRzO dror+4l4stRgT0WnnvA/HrVTplXGh5vIyVcd5NAspeFgSCkbOr5EZZGEW6671EDb /K3QfIMsZ0Px4+F6NuBK5VzWrHQ9zWVtUznrT7PnsayaCuOOoWyoJp5oDAm4L/7r 6q5p5WnwnaAQDActZms5CtqIMS8fgSjl24OR7ES2mLmkDQg1+LuUpCExyRQQw5qr kuFMHawGht4w7Cwgwaqmmo++hQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNgoPnGR eeNVVRhAbavHr7KDBzooMB8GA1UdIwQYMBaAFBzS1PMmoYSkh78irNeK1cBo9GZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODE3Ny84QkEzRDhDNDNE REIxMUYwQUM5M0Q0MzJDNEY5QUUwMi9ITkxVOHlhaGhLU0h2eUtzMTRyVndHajBa bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hOTFU4eWFoaEtTSHZ5S3MxNHJWd0dqMFptRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODE3Ny84QkEzRDhDNDNEREIxMUYwQUM5M0Q0MzJDNEY5QUUwMi9ITkxVOHlhaGhL U0h2eUtzMTRyVndHajBabUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAk0GnaOa4pxLQJcfM+mFa4D+pEY9a/u3xsUFbQO0KuDVUpo4W15UovWm2BCg8 4L5uZrWOlJfntJYz3/FTaih1NoCOyo3JWJWPQADIIukrnxmGAxpI2QT6TpZiUvyA heo65UeC+TX/oJmdL8Te/Offqqtb4t/LmeKJuct6eGxaHCWyzi0Tzn1mpnmlPeQP c+Wj3c5R4k/Dcrjl637OZA9pODmw6x429Y5B9hmeGtCIua2d+8UoRX0HrGoplbO9 APBWlXaA/WIrfkGJXfqTjQBExG2DgtjeIiufOehPyCN5a1qgzjmKTYcNgpyabrUT YfpjyqYY+wqY13vrt+nTxK/Nhg== -----END CERTIFICATE-----Generated at Fri Apr 17 18:59:33 2026 by rpki-client