$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft File: hn09aLZZeAOvVkZcDptTq2Z7cqg.mft (raw, json) Hash identifier: JxEQ1JfO0G/3Ljazv0+3foc1ayhb6q7NJQDbhlNsUyQ= Subject key identifier: 8D:11:C5:DA:71:CD:62:D1:B5:75:0E:F5:49:68:EA:15:28:5B:E6:15 Authority key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 Certificate issuer: /CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Certificate serial: 0713 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft Manifest number: 070B Signing time: Sat 04 Apr 2026 21:46:01 +0000 Manifest this update: Sat 04 Apr 2026 21:46:00 +0000 Manifest next update: Sat 11 Apr 2026 21:46:00 +0000 Files and hashes: 1: hn09aLZZeAOvVkZcDptTq2Z7cqg.crl (hash: ZTuZmAAHshlkVPRLijUo+lfw9zn6eTInjn26Cn+vHZg=) 2: 4EC5B52480B811EBBEE2CA7FC4F9AE02.roa (hash: oGpaoJnN0XSnyU8TN0NZVM9McHxZfbUaTEUnM8LnSNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:46:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1811 (0x713) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDC5, serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Validity Not Before: Apr 4 21:46:00 2026 GMT Not After : Apr 11 21:46:00 2026 GMT Subject: CN=69d18699-49b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e6:63:0d:3c:f9:08:1a:97:b1:14:02:b9:29: d4:69:b1:b9:1b:7f:04:70:2d:c3:53:27:e5:04:06: 24:8c:dd:0b:03:d5:4b:9c:46:ba:91:0e:7d:00:79: f9:22:19:e2:27:fd:f2:80:c8:6c:82:f0:a3:ed:90: a2:ff:f7:7c:3b:2d:45:f0:19:b7:85:ad:66:af:19: 5a:be:94:02:1e:d9:00:bc:88:7f:90:83:16:66:bf: 11:85:99:f1:b4:93:67:27:4a:ef:6b:aa:76:7b:b6: cb:a1:78:6b:82:4e:b9:8a:44:5a:aa:72:00:e9:c9: cf:4a:0f:97:0b:ed:13:93:07:27:82:fd:a2:ec:98: 33:da:c2:a6:c8:78:63:fe:91:c3:50:c0:a8:96:3d: c5:d6:4e:62:a5:57:f6:bb:9a:e0:1f:42:70:6d:5a: f7:f8:12:21:a3:7e:95:4d:c5:e1:b4:10:e3:ea:15: f3:07:60:3b:0a:31:bf:a3:0c:6c:27:0b:b2:f6:5c: 2b:1c:55:1c:c5:10:09:75:1e:1d:cb:ea:5f:be:0c: 20:d9:75:85:2e:24:10:79:f0:9c:22:59:01:2b:11: 3a:c2:ee:e5:24:ae:ea:d2:94:d0:22:60:9d:ce:13: 55:ad:59:71:e2:6f:04:2c:ec:6a:0a:f5:7f:44:6b: 29:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:11:C5:DA:71:CD:62:D1:B5:75:0E:F5:49:68:EA:15:28:5B:E6:15 X509v3 Authority Key Identifier: keyid:86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:61:23:d6:90:a4:1a:b3:48:1d:09:0d:f5:d2:9f:00:78:d0: 51:16:ec:43:6a:83:05:f2:0c:f4:01:88:20:72:4d:a6:46:f5: e2:1c:61:dd:1e:ef:d9:eb:3c:ff:78:e9:8b:3d:b6:49:22:9f: 83:81:b5:6f:7f:71:1e:4f:72:77:24:30:45:1a:8d:10:1f:01: cd:e1:02:26:c4:d0:8f:0c:4a:6e:90:09:b4:31:a4:73:8a:99: b5:5b:48:3b:8b:05:2a:69:8f:8f:a8:5d:af:71:6e:ac:2a:bf: e8:b7:5b:8a:4f:6c:02:af:c2:bb:86:fd:a8:8d:ba:ef:13:8e: dd:be:0f:b4:b4:6c:8b:66:76:18:c1:dc:81:6a:ab:4e:64:e2: d8:f0:ef:06:41:ab:ae:58:1b:d7:e6:04:11:9b:70:a2:ab:ab: 38:12:81:3d:cd:e7:1a:3a:91:35:45:2d:77:3a:1c:9e:6b:f8: e6:b6:88:ce:11:da:4e:e7:19:96:24:fa:0b:1d:d9:7f:39:93: 28:74:8f:c1:4a:27:ff:e2:1f:77:49:85:fa:da:94:4a:95:db: dc:8d:97:03:19:79:31:17:d7:46:71:bb:a7:fa:17:c4:62:e4: f3:10:49:25:25:47:2b:6c:43:aa:ee:9f:55:dc:26:a7:bd:99: 6b:f4:44:55 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQzUxMTAvBgNVBAUTKDg2N0QzRDY4QjY1OTc4MDNBRjU2NDY1QzBFOUI1M0FC NjY3QjcyQTgwHhcNMjYwNDA0MjE0NjAwWhcNMjYwNDExMjE0NjAwWjAYMRYwFAYD VQQDEw02OWQxODY5OS00OWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueZjDTz5CBqXsRQCuSnUabG5G38EcC3DUyflBAYkjN0LA9VLnEa6kQ59AHn5 IhniJ/3ygMhsgvCj7ZCi//d8Oy1F8Bm3ha1mrxlavpQCHtkAvIh/kIMWZr8RhZnx tJNnJ0rva6p2e7bLoXhrgk65ikRaqnIA6cnPSg+XC+0Tkwcngv2i7Jgz2sKmyHhj /pHDUMColj3F1k5ipVf2u5rgH0JwbVr3+BIho36VTcXhtBDj6hXzB2A7CjG/owxs Jwuy9lwrHFUcxRAJdR4dy+pfvgwg2XWFLiQQefCcIlkBKxE6wu7lJK7q0pTQImCd zhNVrVlx4m8ELOxqCvV/RGspUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI0Rxdpx zWLRtXUO9Ulo6hUoW+YVMB8GA1UdIwQYMBaAFIZ9PWi2WXgDr1ZGXA6bU6tme3Ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDNS9FOUYyOTJDNjgw QjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVBT3ZWa1pjRHB0VHEyWjdj cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2huMDlhTFpaZUFPdlZrWmNEcHRUcTJaN2NxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDNS9FOUYyOTJDNjgwQjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVB T3ZWa1pjRHB0VHEyWjdjcWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMWEj1pCkGrNIHQkN9dKfAHjQURbsQ2qDBfIM9AGIIHJNpkb14hxh3R7v2es8 /3jpiz22SSKfg4G1b39xHk9ydyQwRRqNEB8BzeECJsTQjwxKbpAJtDGkc4qZtVtI O4sFKmmPj6hdr3FurCq/6Ldbik9sAq/Cu4b9qI267xOO3b4PtLRsi2Z2GMHcgWqr TmTi2PDvBkGrrlgb1+YEEZtwoqurOBKBPc3nGjqRNUUtdzocnmv45raIzhHaTucZ liT6Cx3ZfzmTKHSPwUon/+Ifd0mF+tqUSpXb3I2XAxl5MRfXRnG7p/oXxGLk8xBJ JSVHK2xDqu6fVdwmp72Za/REVQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:42:03 2026 by rpki-client