$ rpki-client -vvf rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft File: HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft (raw, json) Hash identifier: iEJmhzHFdAlmofOsO6kHb0LZ64mYwJplQbCXzno6Clo= Subject key identifier: 55:97:FB:26:F7:A6:5B:8D:37:3E:C6:78:EB:F0:24:E0:12:B7:62:AB Authority key identifier: 1D:63:41:6C:47:3B:0C:09:12:BD:AB:37:10:27:01:09:5F:C6:C3:5A Certificate issuer: /CN=A91707D0/serialNumber=1D63416C473B0C0912BDAB37102701095FC6C35A Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft Manifest number: CA Signing time: Sun 05 Apr 2026 06:15:18 +0000 Manifest this update: Sun 05 Apr 2026 06:15:18 +0000 Manifest next update: Sun 12 Apr 2026 06:15:18 +0000 Files and hashes: 1: HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl (hash: zLB34fvbMDrQK2TiTUYp3kcmYUIYVUS/RBaumbAVGgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:15:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91707D0, serialNumber=1D63416C473B0C0912BDAB37102701095FC6C35A Validity Not Before: Apr 5 06:15:18 2026 GMT Not After : Apr 12 06:15:18 2026 GMT Subject: CN=69d1fdf6-d292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:db:a5:8c:eb:ee:e5:1c:88:64:5e:5e:b3:f3: 83:c9:9b:57:99:11:79:51:b6:3f:39:e5:3b:b4:16: 68:65:a0:7c:12:52:71:c9:a3:df:86:ec:1a:31:4c: 8a:5d:4b:a2:7b:40:c7:69:0e:43:7b:66:34:4e:4f: bf:b9:99:fb:2d:3d:3f:9c:df:f5:fd:a5:06:d8:a1: 4f:4d:5f:36:e4:ad:17:ee:e8:42:c6:4a:31:d5:df: 21:fe:5c:39:9d:0f:f5:ad:8d:f3:68:7d:92:d8:82: e0:fe:b1:ba:d8:d6:91:bf:15:3e:b6:3a:e3:04:dd: b7:e5:be:0e:be:2a:8f:92:d0:2b:54:bc:c0:6d:82: c6:77:ef:84:89:a3:ab:64:03:3f:06:61:d1:39:9d: 2a:7a:28:00:27:51:57:6c:a1:59:b4:7e:75:9b:6e: 4f:0f:a2:ba:dc:d4:77:4c:94:14:72:d3:eb:11:ee: 2d:1c:79:2d:9a:6c:e5:d2:53:7f:80:d7:43:3f:9f: 4f:69:0e:18:ac:d6:67:52:45:57:5e:a6:e6:74:8a: ef:1e:cd:22:5c:3e:be:30:fb:6c:1f:0c:2f:f1:30: e1:d6:f0:1c:e9:8b:e9:72:e9:ec:4e:07:aa:30:d5: cc:0b:90:84:1d:e5:2b:1c:bb:a3:3f:8d:d1:49:06: 3f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:97:FB:26:F7:A6:5B:8D:37:3E:C6:78:EB:F0:24:E0:12:B7:62:AB X509v3 Authority Key Identifier: keyid:1D:63:41:6C:47:3B:0C:09:12:BD:AB:37:10:27:01:09:5F:C6:C3:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:6e:a9:0c:3f:b0:da:8e:e7:aa:7e:ef:47:2d:d7:29:81:74: 4e:37:bc:f6:ce:fb:c5:16:04:30:d8:9b:26:84:e2:86:96:f0: 5e:1f:f2:85:f5:30:46:22:5c:c2:ea:83:cc:99:b5:11:62:58: 53:50:2e:34:75:cd:08:98:85:58:73:fd:2f:2c:28:fc:57:56: 63:b3:c2:14:7c:7a:fe:cd:71:e5:da:e0:5e:9e:70:9c:64:e1: a4:fb:95:0f:d7:b5:b4:14:e7:aa:a6:7e:c1:b9:79:f3:89:ab: d8:59:82:ed:58:ca:3e:fb:7e:30:6d:d7:5c:eb:c2:70:25:1f: 54:99:91:3a:88:ad:e0:0a:25:88:f5:8c:a2:68:b2:47:c1:f3: 18:56:6a:39:8c:34:9f:57:ba:3b:ed:c6:c2:54:44:3c:0c:e6: 93:29:ac:c2:f8:f8:94:bb:1d:ee:cb:03:29:39:67:33:85:42: 7b:69:91:11:73:76:fd:c5:64:ec:c3:7f:a1:a3:5a:60:ab:b5: c1:34:93:af:91:81:92:5e:ec:78:68:ed:af:e3:49:10:42:6a: f1:c5:e9:12:22:04:81:27:64:ed:c0:b6:56:93:61:1a:0a:4d: c2:05:ce:18:de:91:d3:19:a8:0b:26:67:1c:f8:82:cd:49:7d: d7:ab:5c:33 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA3RDAxMTAvBgNVBAUTKDFENjM0MTZDNDczQjBDMDkxMkJEQUIzNzEwMjcwMTA5 NUZDNkMzNUEwHhcNMjYwNDA1MDYxNTE4WhcNMjYwNDEyMDYxNTE4WjAYMRYwFAYD VQQDEw02OWQxZmRmNi1kMjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwduljOvu5RyIZF5es/ODyZtXmRF5UbY/OeU7tBZoZaB8ElJxyaPfhuwaMUyK XUuie0DHaQ5De2Y0Tk+/uZn7LT0/nN/1/aUG2KFPTV825K0X7uhCxkox1d8h/lw5 nQ/1rY3zaH2S2ILg/rG62NaRvxU+tjrjBN235b4OviqPktArVLzAbYLGd++EiaOr ZAM/BmHROZ0qeigAJ1FXbKFZtH51m25PD6K63NR3TJQUctPrEe4tHHktmmzl0lN/ gNdDP59PaQ4YrNZnUkVXXqbmdIrvHs0iXD6+MPtsHwwv8TDh1vAc6YvpcunsTgeq MNXMC5CEHeUrHLujP43RSQY/UwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFWX+yb3 pluNNz7GeOvwJOASt2KrMB8GA1UdIwQYMBaAFB1jQWxHOwwJEr2rNxAnAQlfxsNa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDdEMC82NUI2OEU5NjAw NzIxMUYwQjM2M0RGNUVDNEY5QUUwMi9IV05CYkVjN0RBa1N2YXMzRUNjQkNWX0d3 MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXTkJiRWM3REFrU3ZhczNFQ2NCQ1ZfR3cxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDdEMC82NUI2OEU5NjAwNzIxMUYwQjM2M0RGNUVDNEY5QUUwMi9IV05CYkVjN0RB a1N2YXMzRUNjQkNWX0d3MW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARG6pDD+w2o7nqn7vRy3XKYF0Tje89s77xRYEMNibJoTihpbwXh/yhfUwRiJc wuqDzJm1EWJYU1AuNHXNCJiFWHP9Lywo/FdWY7PCFHx6/s1x5drgXp5wnGThpPuV D9e1tBTnqqZ+wbl584mr2FmC7VjKPvt+MG3XXOvCcCUfVJmROoit4AoliPWMomiy R8HzGFZqOYw0n1e6O+3GwlREPAzmkymswvj4lLsd7ssDKTlnM4VCe2mREXN2/cVk 7MN/oaNaYKu1wTSTr5GBkl7seGjtr+NJEEJq8cXpEiIEgSdk7cC2VpNhGgpNwgXO GN6R0xmoCyZnHPiCzUl916tcMw== -----END CERTIFICATE-----Generated at Sun Apr 5 19:38:28 2026 by rpki-client