$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft File: hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json) Hash identifier: n1V8rkkPJ4VORzUe6ooWpFQH5Cd5Kp2nUocQ47h04Z0= Subject key identifier: 0D:06:08:F8:41:79:11:0A:BF:95:9B:6F:80:73:4A:B7:16:73:62:0F Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 044E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft Manifest number: 0439 Signing time: Sun 05 Apr 2026 00:08:49 +0000 Manifest this update: Sun 05 Apr 2026 00:08:49 +0000 Manifest next update: Sun 12 Apr 2026 00:08:49 +0000 Files and hashes: 1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: PgNWQJGWwWTuhWhQ1iiGjlhrOEbucQGTngWeTpqT8Ws=) 2: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: 4Ev/beoW0fM+Gbd3cQLyDxalQ01x9FRD/kJEwmhsUog=) 3: 06FA5A64774011F0BE2D3736C4F9AE02.roa (hash: aA9cK/N/lAbMkkVhRCBwbPPBYdEHxyo7VEBog7rBFOw=) 4: F570D764773F11F09FC02036C4F9AE02.roa (hash: 2UT6wgZiFdEEgA+nz0spF/hOUy1AHR+NcZJ7A+nI8to=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:08:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1102 (0x44e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: Apr 5 00:08:49 2026 GMT Not After : Apr 12 00:08:49 2026 GMT Subject: CN=69d1a811-1085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:3b:55:2f:f7:92:2b:4d:02:77:e1:72:ca:de: a2:3c:9d:aa:00:22:37:43:88:ab:f4:d6:e4:03:c5: 25:32:a9:99:9f:8a:2e:e1:c6:da:5b:e7:0d:41:a6: 9d:82:57:c4:64:a0:6d:f9:17:ba:83:8d:ab:41:e7: 1e:36:56:9a:1a:01:11:ca:34:24:37:b5:31:36:a6: 85:2f:ec:59:98:83:3f:db:00:2c:0a:1a:08:29:a7: 98:ce:7e:11:1e:fe:4a:dd:a2:d7:88:88:e2:84:e0: d2:de:c2:ba:86:ac:96:12:84:e2:a8:2d:27:4c:ee: aa:e4:06:ba:e5:17:36:92:73:29:61:f6:3e:f6:8e: 79:2c:8d:81:c4:2f:f5:2b:1d:60:52:6d:8b:89:7b: 7e:a2:15:71:55:c7:2d:7a:3f:9e:ad:9a:2d:09:2f: f7:32:e7:76:6b:99:04:fd:f5:86:fc:8c:85:a8:9e: ad:78:1b:67:84:09:9b:6e:50:0b:a6:5b:99:72:27: 71:11:98:15:03:88:fc:ff:46:91:89:54:7b:69:cf: cc:91:0d:9d:b9:99:6f:dd:45:1c:7d:c0:f6:7e:b1: 78:54:33:70:6e:9b:76:7f:ae:5c:a3:94:2c:50:4a: ce:bb:c6:4f:01:48:3d:92:ef:60:f8:56:9d:87:51: 95:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:06:08:F8:41:79:11:0A:BF:95:9B:6F:80:73:4A:B7:16:73:62:0F X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:49:26:5c:ef:87:7a:f2:72:3d:b7:64:64:c0:b2:96:e3:c8: 20:38:be:4d:5f:c8:b5:32:81:eb:e2:d9:78:19:a1:b4:47:8c: 0c:bf:81:40:62:f9:0d:dc:68:1b:1f:ea:d2:6f:4d:47:46:14: 46:dd:93:94:13:6b:6b:4c:05:56:30:8d:e7:22:cd:50:ca:15: 60:33:f3:4f:5a:4f:67:e4:0b:28:9e:52:a2:b5:ba:c0:7a:7b: 54:05:dd:b4:e9:e9:f6:83:35:ec:83:2c:7e:28:98:27:f2:e0: 43:31:86:b2:22:54:46:05:81:f6:a4:4f:32:a6:f4:06:a6:6a: 54:64:a8:ed:bb:21:ad:b4:8c:53:d5:ee:a0:51:c4:b0:ac:1f: d3:0b:d1:d0:7d:0c:d3:1d:1e:7c:3f:3a:d6:ff:ef:04:b6:a6: d2:b8:46:af:dc:a5:37:ac:82:39:a5:e3:5a:ae:90:b9:ba:23: bb:56:c4:c3:de:7e:6b:51:b8:f1:f4:98:3b:8f:91:4c:77:c3: 2f:ff:d3:74:59:1b:18:fd:69:68:d0:59:be:65:7a:c4:a4:2f: d2:52:80:f6:1f:66:2a:3f:40:55:74:6d:52:11:cd:7b:9d:cb: ad:37:9b:0c:6d:65:84:2e:17:c6:0c:88:e9:1e:8e:38:04:df: e9:45:37:76 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjYwNDA1MDAwODQ5WhcNMjYwNDEyMDAwODQ5WjAYMRYwFAYD VQQDEw02OWQxYTgxMS0xMDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjjtVL/eSK00Cd+Fyyt6iPJ2qACI3Q4ir9NbkA8UlMqmZn4ou4cbaW+cNQaad glfEZKBt+Re6g42rQeceNlaaGgERyjQkN7UxNqaFL+xZmIM/2wAsChoIKaeYzn4R Hv5K3aLXiIjihODS3sK6hqyWEoTiqC0nTO6q5Aa65Rc2knMpYfY+9o55LI2BxC/1 Kx1gUm2LiXt+ohVxVcctej+erZotCS/3Mud2a5kE/fWG/IyFqJ6teBtnhAmbblAL pluZcidxEZgVA4j8/0aRiVR7ac/MkQ2duZlv3UUcfcD2frF4VDNwbpt2f65co5Qs UErOu8ZPAUg9ku9g+Fadh1GVlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA0GCPhB eREKv5Wbb4BzSrcWc2IPMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh cU1pS3RzWG5qQl9NUDNqUWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJkkmXO+HevJyPbdkZMCyluPIIDi+TV/ItTKB6+LZeBmhtEeMDL+BQGL5Ddxo Gx/q0m9NR0YURt2TlBNra0wFVjCN5yLNUMoVYDPzT1pPZ+QLKJ5SorW6wHp7VAXd tOnp9oM17IMsfiiYJ/LgQzGGsiJURgWB9qRPMqb0BqZqVGSo7bshrbSMU9XuoFHE sKwf0wvR0H0M0x0efD861v/vBLam0rhGr9ylN6yCOaXjWq6Quboju1bEw95+a1G4 8fSYO4+RTHfDL//TdFkbGP1paNBZvmV6xKQv0lKA9h9mKj9AVXRtUhHNe53LrTeb DG1lhC4XxgyI6R6OOATf6UU3dg== -----END CERTIFICATE-----Generated at Mon Apr 6 04:15:45 2026 by rpki-client