$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft File: Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft (raw, json) Hash identifier: SEUfwnHnLXt/HJukI9TGODn6ctl47dMzI6DLjPLEF4Y= Subject key identifier: 07:46:82:E6:43:35:19:FB:3D:79:95:13:23:5F:71:32:86:BE:2F:5A Authority key identifier: 1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE Certificate issuer: /CN=A91E3C9A/serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Certificate serial: 08F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft Manifest number: 08ED Signing time: Sat 04 Apr 2026 20:08:03 +0000 Manifest this update: Sat 04 Apr 2026 20:08:02 +0000 Manifest next update: Sat 11 Apr 2026 20:08:02 +0000 Files and hashes: 1: Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl (hash: AdR98VMG1l5S+/HdDG1CTHYENK7xrkwfiL4gppk/OUw=) 2: 3A5B01A0CA8F11EAA35BF958C4F9AE02.roa (hash: C9SJEB+K9J+a2aEjNLQZMOXVR8Yr7jgVdMpBsNeJ+gI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:08:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2293 (0x8f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C9A, serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Validity Not Before: Apr 4 20:08:02 2026 GMT Not After : Apr 11 20:08:02 2026 GMT Subject: CN=69d16fa3-a75a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:58:01:31:47:c2:50:19:03:e9:b5:91:93:f0: 2d:c4:2b:1d:33:9d:3d:e3:50:23:92:8b:50:f0:20: 93:d5:15:d1:f4:e9:ad:d7:96:1d:32:b2:1c:04:8c: 19:f2:1b:2b:d1:6c:cd:ee:6d:a0:85:a9:fa:b2:b2: f4:d6:4d:5d:15:21:ca:68:6f:07:10:03:41:aa:47: 70:54:40:c2:6f:34:87:70:f3:8d:f7:0f:02:63:5a: 7f:48:8b:ba:af:a1:7f:67:a5:2e:f4:d3:9e:b0:df: ec:34:1f:6d:17:4b:b2:14:3d:e5:55:75:2e:62:74: 4a:51:9f:15:54:a2:60:a6:7e:a3:b0:c3:0c:59:ca: 33:26:16:b4:66:76:6c:be:a9:9f:f9:b9:8e:5e:47: 01:fb:18:53:91:2c:e1:7a:e0:5c:5c:37:d3:94:f0: 3f:9e:65:cd:03:0b:2a:63:57:f7:68:7d:b3:88:0c: eb:48:61:cb:a0:47:3b:01:1d:c5:86:a2:fc:3e:a7: 85:2e:86:e9:4c:d7:b7:c2:b6:9a:4d:ac:db:8d:d1: 64:0f:6a:74:6e:69:d7:2d:74:aa:af:32:64:f1:cb: a3:54:0c:45:c4:2a:2f:3f:7f:d7:06:e9:5a:b8:cd: cf:d5:89:5e:e6:ff:37:8f:50:f8:d2:19:b8:37:9d: c0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:46:82:E6:43:35:19:FB:3D:79:95:13:23:5F:71:32:86:BE:2F:5A X509v3 Authority Key Identifier: keyid:1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:ed:ed:94:86:4b:dc:37:7e:ba:e2:f1:74:aa:ce:13:d9:66: 30:0c:1d:39:dd:c4:fc:7d:a6:a6:cf:1b:00:8a:7e:e5:66:40: 84:b6:53:84:8e:f9:14:6d:21:bb:e2:f4:1c:1f:e3:a4:36:80: f1:22:70:87:e6:7b:ac:82:91:d1:cd:f1:3c:e6:67:d5:96:78: 66:46:85:ac:3a:9a:40:71:62:7d:3f:c0:11:5a:7b:22:67:63: 5d:34:d6:d0:6e:98:4a:42:79:5d:17:29:2c:b6:fd:f6:5e:78: 42:55:e2:7c:a1:d5:50:b3:95:4e:00:1c:49:71:81:18:2c:d1: ee:30:90:70:19:a2:69:c5:81:d4:d6:ff:fb:72:72:44:5a:e4: e2:70:a8:da:d1:27:df:70:00:66:a4:b3:b2:43:2d:4c:a4:47: 94:2d:67:ee:ee:b8:b7:58:34:cd:99:5d:85:ae:61:25:18:19: fe:33:93:dc:5d:3d:ab:ad:7a:53:53:7a:75:5f:71:27:fa:72: e9:26:42:2f:07:d7:26:cc:c1:04:37:d3:44:e2:31:20:95:7d: 59:6d:f4:7b:ca:3f:45:9e:ca:7f:13:3f:75:ae:95:bd:db:72: 70:c6:49:e2:0c:07:54:82:eb:18:c6:b4:cd:42:98:be:fa:32: c1:d2:8a:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDOUExMTAvBgNVBAUTKDFFN0UwRDg5NDZCQzQ4RDA3NTRCMDNFOTg3MkFEMzg4 MEM1NEU0QkUwHhcNMjYwNDA0MjAwODAyWhcNMjYwNDExMjAwODAyWjAYMRYwFAYD VQQDEw02OWQxNmZhMy1hNzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVgBMUfCUBkD6bWRk/AtxCsdM50941AjkotQ8CCT1RXR9Omt15YdMrIcBIwZ 8hsr0WzN7m2ghan6srL01k1dFSHKaG8HEANBqkdwVEDCbzSHcPON9w8CY1p/SIu6 r6F/Z6Uu9NOesN/sNB9tF0uyFD3lVXUuYnRKUZ8VVKJgpn6jsMMMWcozJha0ZnZs vqmf+bmOXkcB+xhTkSzheuBcXDfTlPA/nmXNAwsqY1f3aH2ziAzrSGHLoEc7AR3F hqL8PqeFLobpTNe3wraaTazbjdFkD2p0bmnXLXSqrzJk8cujVAxFxCovP3/XBula uM3P1Yle5v83j1D40hm4N53AxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAdGguZD NRn7PXmVEyNfcTKGvi9aMB8GA1UdIwQYMBaAFB5+DYlGvEjQdUsD6Ycq04gMVOS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M5QS9BMUQ2MUQzQUNB OEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNOQjFTd1BwaHlyVGlBeFU1 TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huNE5pVWE4U05CMVN3UHBoeXJUaUF4VTVMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0M5QS9BMUQ2MUQzQUNBOEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNO QjFTd1BwaHlyVGlBeFU1TDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYO3tlIZL3Dd+uuLxdKrOE9lmMAwdOd3E/H2mps8bAIp+5WZAhLZThI75FG0h u+L0HB/jpDaA8SJwh+Z7rIKR0c3xPOZn1ZZ4ZkaFrDqaQHFifT/AEVp7ImdjXTTW 0G6YSkJ5XRcpLLb99l54QlXifKHVULOVTgAcSXGBGCzR7jCQcBmiacWB1Nb/+3Jy RFrk4nCo2tEn33AAZqSzskMtTKRHlC1n7u64t1g0zZldha5hJRgZ/jOT3F09q616 U1N6dV9xJ/py6SZCLwfXJszBBDfTROIxIJV9WW30e8o/RZ7KfxM/da6VvdtycMZJ 4gwHVILrGMa0zUKYvvoywdKKYQ== -----END CERTIFICATE-----Generated at Sun Apr 5 22:24:47 2026 by rpki-client