$ rpki-client -vvf rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft File: hEIqhfpOTNTW7plGMaPQ8OboLTo.mft (raw, json) Hash identifier: 4PwMkl92ACjLydugyhF/8aVG+b99zxK6Xhqi8fkKtK0= Subject key identifier: 2C:DF:2E:5E:70:15:48:9D:E7:09:F5:A9:2F:04:9D:6B:89:9D:CC:35 Authority key identifier: 84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A Certificate issuer: /CN=A911C61C/serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Certificate serial: 0403 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft Manifest number: 03FB Signing time: Sun 05 Apr 2026 00:14:35 +0000 Manifest this update: Sun 05 Apr 2026 00:14:35 +0000 Manifest next update: Sun 12 Apr 2026 00:14:35 +0000 Files and hashes: 1: hEIqhfpOTNTW7plGMaPQ8OboLTo.crl (hash: w0UPYi1mPid1XKWUZ0arhhs+BmFBRTAVEsysMM5EcQM=) 2: 214E0454B58A11ECAF32FE29C4F9AE02.roa (hash: DeN5+WLuYB95EX5XxNOKqEvwckp++ai7lfprhRYcj3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1027 (0x403) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C61C, serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Validity Not Before: Apr 5 00:14:35 2026 GMT Not After : Apr 12 00:14:35 2026 GMT Subject: CN=69d1a96b-dc1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:14:83:8f:67:da:40:83:52:42:75:43:1b:06: 67:77:30:74:42:f8:e1:d5:69:25:09:6e:95:06:17: 06:00:16:7d:37:35:10:4e:e1:45:a0:f3:e0:41:aa: 34:51:bd:74:bf:9e:ee:56:ad:89:88:b6:29:de:00: 1a:8f:1a:d6:a8:28:bc:83:24:70:16:39:41:ad:5c: bc:97:06:58:30:2a:d6:b0:e4:73:61:23:ef:1e:3e: 23:3f:98:a8:20:3b:9e:0d:86:bf:23:77:4e:22:d2: 92:62:9f:d4:60:09:e6:39:9e:60:e3:30:72:27:a9: 74:57:35:b1:db:89:a0:84:7f:3e:a6:64:8d:42:34: 21:65:94:69:4b:69:91:60:da:50:c2:32:40:37:ce: 18:d2:e5:54:96:85:b1:49:56:84:ff:02:a4:1b:1b: 5d:8c:20:33:8d:3e:53:0b:2e:65:42:3b:c9:15:b1: 38:3c:da:06:a6:90:ea:50:94:f7:e5:99:8a:57:90: 9f:08:b4:8a:a0:6f:bb:4b:3c:ce:c0:69:b2:84:75: 72:dc:e8:f5:3f:c4:8c:66:67:fb:14:f1:cb:d9:aa: 85:b9:f7:98:a4:77:5d:1c:3d:30:2e:0e:8e:cd:7a: 6a:96:16:71:57:42:1e:c1:65:8a:4f:3c:99:ab:91: de:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:DF:2E:5E:70:15:48:9D:E7:09:F5:A9:2F:04:9D:6B:89:9D:CC:35 X509v3 Authority Key Identifier: keyid:84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:84:35:2a:50:b3:cf:27:c4:df:1f:5e:30:c1:62:ac:25:68: 59:af:b0:ac:26:24:78:25:0b:64:ea:99:17:68:77:df:71:0f: e7:57:ac:8c:ac:d3:fd:6c:1a:fd:e4:73:30:24:2a:e0:e9:47: cb:5d:a1:c7:bf:e7:7a:c9:c1:34:7d:6a:48:4c:84:fd:8f:9f: 6a:f1:e9:43:78:08:88:e5:79:90:f9:68:c4:e3:57:38:f5:c6: 51:2a:b3:98:af:80:be:9a:b5:17:fb:75:e6:6c:ec:0e:71:1a: 65:4c:92:91:de:30:3c:87:0b:74:39:60:4c:e4:78:a1:91:bd: 60:4d:f0:1c:3b:ec:0b:65:fe:e5:2b:c4:bd:2a:35:90:38:83: 12:a1:42:4d:db:be:9d:c1:55:98:5c:b6:57:05:2f:e9:ca:ce: 49:ae:74:df:c2:49:da:a0:36:44:98:63:50:2d:70:42:4f:81: 78:3b:61:8f:77:b7:a1:78:d9:b9:8f:03:dc:6c:d7:e4:d9:3b: 81:4e:c5:3d:6c:40:22:68:2a:82:01:fa:93:e7:55:2e:a9:ff: a0:35:ab:56:8d:18:0b:7b:7d:38:3c:a7:f7:7a:10:69:84:df: 6e:06:c7:09:d6:45:71:ea:7f:37:98:c6:73:b2:dc:7e:a2:04: 7a:03:13:bc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MUMxMTAvBgNVBAUTKDg0NDIyQTg1RkE0RTRDRDRENkVFOTk0NjMxQTNEMEYw RTZFODJEM0EwHhcNMjYwNDA1MDAxNDM1WhcNMjYwNDEyMDAxNDM1WjAYMRYwFAYD VQQDEw02OWQxYTk2Yi1kYzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRSDj2faQINSQnVDGwZndzB0Qvjh1WklCW6VBhcGABZ9NzUQTuFFoPPgQao0 Ub10v57uVq2JiLYp3gAajxrWqCi8gyRwFjlBrVy8lwZYMCrWsORzYSPvHj4jP5io IDueDYa/I3dOItKSYp/UYAnmOZ5g4zByJ6l0VzWx24mghH8+pmSNQjQhZZRpS2mR YNpQwjJAN84Y0uVUloWxSVaE/wKkGxtdjCAzjT5TCy5lQjvJFbE4PNoGppDqUJT3 5ZmKV5CfCLSKoG+7SzzOwGmyhHVy3Oj1P8SMZmf7FPHL2aqFufeYpHddHD0wLg6O zXpqlhZxV0IewWWKTzyZq5HeuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCzfLl5w FUid5wn1qS8EnWuJncw1MB8GA1UdIwQYMBaAFIRCKoX6TkzU1u6ZRjGj0PDm6C06 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYxQy8yQTcwOTBGQUI1 ODYxMUVDQUU4MUVEMjJDNEY5QUUwMi9oRUlxaGZwT1ROVFc3cGxHTWFQUThPYm9M VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hFSXFoZnBPVE5UVzdwbEdNYVBROE9ib0xUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzYxQy8yQTcwOTBGQUI1ODYxMUVDQUU4MUVEMjJDNEY5QUUwMi9oRUlxaGZwT1RO VFc3cGxHTWFQUThPYm9MVG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi4Q1KlCzzyfE3x9eMMFirCVoWa+wrCYkeCULZOqZF2h333EP51esjKzT/Wwa /eRzMCQq4OlHy12hx7/nesnBNH1qSEyE/Y+favHpQ3gIiOV5kPloxONXOPXGUSqz mK+Avpq1F/t15mzsDnEaZUySkd4wPIcLdDlgTOR4oZG9YE3wHDvsC2X+5SvEvSo1 kDiDEqFCTdu+ncFVmFy2VwUv6crOSa5038JJ2qA2RJhjUC1wQk+BeDthj3e3oXjZ uY8D3GzX5Nk7gU7FPWxAImgqggH6k+dVLqn/oDWrVo0YC3t9ODyn93oQaYTfbgbH CdZFcep/N5jGc7LcfqIEegMTvA== -----END CERTIFICATE-----Generated at Mon Apr 6 09:53:38 2026 by rpki-client