$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft File: HUA-MjAeWHgKBwV8syty7K9G19k.mft (raw, json) Hash identifier: 1u0w3nmcEaccoxr3NeHFwpZW+yX+hKCAZsP4HJNat6k= Subject key identifier: 82:55:48:88:B0:88:92:10:76:16:7B:A7:02:3A:8A:99:55:78:80:AC Authority key identifier: 1D:40:3E:32:30:1E:58:78:0A:07:05:7C:B3:2B:72:EC:AF:46:D7:D9 Certificate issuer: /CN=A91FA645/serialNumber=1D403E32301E58780A07057CB32B72ECAF46D7D9 Certificate serial: 045B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUA-MjAeWHgKBwV8syty7K9G19k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft Manifest number: 0450 Signing time: Sun 01 Mar 2026 00:59:03 +0000 Manifest this update: Sun 01 Mar 2026 00:59:02 +0000 Manifest next update: Sun 08 Mar 2026 00:59:02 +0000 Files and hashes: 1: HUA-MjAeWHgKBwV8syty7K9G19k.crl (hash: Unf6rCRyxC8lf4UV9uFIbpWo5vtRloAzCWf9xbKfga0=) 2: F4639D76356211F09A66C487C4F9AE02.roa (hash: PHU5aUvAOrBIKy7huYHffiKA6xh2xWAfjAUu0W1+Jtw=) 3: 76EBCD3E8C9911ECB051A327C4F9AE02.roa (hash: XE/ZbmFKgtcJ8d/T46yRFJ9hkQIFqFEENN93aFpVlI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.crl rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUA-MjAeWHgKBwV8syty7K9G19k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1115 (0x45b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA645, serialNumber=1D403E32301E58780A07057CB32B72ECAF46D7D9 Validity Not Before: Mar 1 00:59:02 2026 GMT Not After : Mar 8 00:59:02 2026 GMT Subject: CN=69a38f56-6aa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9a:48:24:ea:e0:ef:0d:e3:9b:92:1d:5d:36: ab:64:fe:9c:77:5a:d2:21:60:3d:7d:f0:c8:0c:2b: 4e:66:26:56:0c:11:82:98:3f:d2:0f:99:e3:b0:7e: c9:fd:c4:a2:e1:57:2d:ee:70:15:ec:c6:fa:c8:ad: f4:11:02:2f:0e:b0:73:93:4b:27:f2:f5:9c:4a:5a: af:a9:5c:8b:0c:3c:3c:ac:3c:bc:2d:5e:fa:f8:34: 58:d7:9f:eb:3d:58:94:ba:bb:d1:45:e3:d3:f8:53: f2:d4:0f:63:f4:08:40:6c:12:22:c4:53:79:aa:ef: ed:1f:3d:bc:df:ad:ed:ac:ca:88:5a:ba:0e:5e:a9: a5:1f:e1:e4:01:9c:1e:04:c7:0b:76:7c:6c:fa:e1: a1:93:9b:e0:ae:2b:60:b7:cd:11:5f:37:32:f0:c8: 81:fa:1f:86:99:e3:79:30:06:e5:c3:55:26:28:69: 2f:6f:91:f7:86:37:29:51:4f:c0:1e:91:cd:1d:fb: d9:2c:14:57:cd:5d:8f:2c:f4:89:f0:38:d9:0f:5a: 5a:4e:62:c7:b6:f3:36:b1:35:5e:ff:30:67:c2:1a: 65:40:08:77:ec:c1:dc:4f:f8:c4:b8:29:d4:06:b7: 75:88:95:86:91:02:68:ae:46:e8:70:08:20:68:d7: 6f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:55:48:88:B0:88:92:10:76:16:7B:A7:02:3A:8A:99:55:78:80:AC X509v3 Authority Key Identifier: keyid:1D:40:3E:32:30:1E:58:78:0A:07:05:7C:B3:2B:72:EC:AF:46:D7:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUA-MjAeWHgKBwV8syty7K9G19k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA645/E0D9F3648C9511ECAE4F1D23C4F9AE02/HUA-MjAeWHgKBwV8syty7K9G19k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:ee:65:ec:6f:3d:15:9c:39:ea:4c:ff:84:56:4d:bc:01:83: a6:44:34:2d:32:9b:a1:35:cc:3b:0c:1e:42:39:9e:b6:9f:3e: 60:ea:b4:ba:05:f9:e1:ed:37:f3:61:69:77:8b:88:ab:b3:af: 7e:cb:ee:ca:43:4a:76:f0:f5:07:37:fe:9e:82:f4:a7:20:73: d4:07:18:e3:c1:9c:10:21:cd:e6:bf:f7:04:1c:2c:e3:cc:1b: 6e:9d:58:1b:28:50:ef:a3:c5:15:d7:8a:1f:72:33:86:e6:48: 2d:41:94:cc:f9:d1:9d:01:8f:72:9a:ec:66:35:61:3d:92:35: d5:b2:f7:bd:02:2c:0f:ff:ca:b7:3a:f5:c7:66:70:ba:08:86: 2e:f5:25:02:cd:d6:e8:79:cd:ea:22:58:0c:6f:5f:9b:e0:5c: 33:39:79:cd:fc:72:03:8a:96:f0:72:9e:cf:f4:3b:e9:d0:78: 00:51:be:a2:a7:26:ab:78:5b:76:83:7b:9a:f9:e2:cc:5c:7e: 54:55:33:d1:b8:32:61:41:29:b3:fb:93:e6:3c:cf:44:fd:f6: bb:9d:33:86:a5:d0:f7:88:6f:6a:48:00:d2:15:27:5e:a5:23: 62:79:7c:fb:13:83:a9:c4:53:64:86:9f:cb:7f:fc:f2:f6:bb: f2:59:94:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NDUxMTAvBgNVBAUTKDFENDAzRTMyMzAxRTU4NzgwQTA3MDU3Q0IzMkI3MkVD QUY0NkQ3RDkwHhcNMjYwMzAxMDA1OTAyWhcNMjYwMzA4MDA1OTAyWjAYMRYwFAYD VQQDDA02OWEzOGY1Ni02YWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJpIJOrg7w3jm5IdXTarZP6cd1rSIWA9ffDIDCtOZiZWDBGCmD/SD5njsH7J /cSi4Vct7nAV7Mb6yK30EQIvDrBzk0sn8vWcSlqvqVyLDDw8rDy8LV76+DRY15/r PViUurvRRePT+FPy1A9j9AhAbBIixFN5qu/tHz28363trMqIWroOXqmlH+HkAZwe BMcLdnxs+uGhk5vgritgt80RXzcy8MiB+h+GmeN5MAblw1UmKGkvb5H3hjcpUU/A HpHNHfvZLBRXzV2PLPSJ8DjZD1paTmLHtvM2sTVe/zBnwhplQAh37MHcT/jEuCnU Brd1iJWGkQJorkbocAggaNdvNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIJVSIiw iJIQdhZ7pwI6iplVeICsMB8GA1UdIwQYMBaAFB1APjIwHlh4CgcFfLMrcuyvRtfZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0NS9FMEQ5RjM2NDhD OTUxMUVDQUU0RjFEMjNDNEY5QUUwMi9IVUEtTWpBZVdIZ0tCd1Y4c3l0eTdLOUcx OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVQS1NakFlV0hnS0J3VjhzeXR5N0s5RzE5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0NS9FMEQ5RjM2NDhDOTUxMUVDQUU0RjFEMjNDNEY5QUUwMi9IVUEtTWpBZVdI Z0tCd1Y4c3l0eTdLOUcxOWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAne5l7G89FZw56kz/hFZNvAGDpkQ0LTKboTXMOwweQjmetp8+YOq0ugX54e03 82Fpd4uIq7OvfsvuykNKdvD1Bzf+noL0pyBz1AcY48GcECHN5r/3BBws48wbbp1Y GyhQ76PFFdeKH3IzhuZILUGUzPnRnQGPcprsZjVhPZI11bL3vQIsD//Ktzr1x2Zw ugiGLvUlAs3W6HnN6iJYDG9fm+BcMzl5zfxyA4qW8HKez/Q76dB4AFG+oqcmq3hb doN7mvnizFx+VFUz0bgyYUEps/uT5jzPRP32u50zhqXQ94hvakgA0hUnXqUjYnl8 +xODqcRTZIafy3/88va78lmUZA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:34:44 2026 by rpki-client