$ rpki-client -vvf rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft File: hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft (raw, json) Hash identifier: JHUVMgsFCrebeLQgxQH5R6T89GDxBZ1w0lwNved/GG8= Subject key identifier: BA:BD:14:26:F2:65:00:31:E6:64:D2:DC:45:D7:CC:AC:FC:1E:EE:85 Authority key identifier: 84:E4:FF:B6:92:7F:77:F5:C3:F0:A2:52:68:2F:71:DD:B3:77:B1:1D Certificate issuer: /CN=A911C743/serialNumber=84E4FFB6927F77F5C3F0A252682F71DDB377B11D Certificate serial: 0EF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft Manifest number: 0EE1 Signing time: Sat 04 Apr 2026 17:31:32 +0000 Manifest this update: Sat 04 Apr 2026 17:31:32 +0000 Manifest next update: Sat 11 Apr 2026 17:31:32 +0000 Files and hashes: 1: hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl (hash: pCQ4uvaN43NWo+b6RqRckz4Pf7hm0d64KCX1mPCUvxg=) 2: 2B21EC2EE4E111E981365C17C4F9AE02.roa (hash: iut8EEVryRG83jh5a/5UJcx3oIfMx7vlVFCC3Vozxn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3829 (0xef5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C743, serialNumber=84E4FFB6927F77F5C3F0A252682F71DDB377B11D Validity Not Before: Apr 4 17:31:32 2026 GMT Not After : Apr 11 17:31:32 2026 GMT Subject: CN=69d14af4-c975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:03:cc:0a:3f:8b:5d:7b:36:b2:ab:f1:b7:56: 3e:9e:c9:40:de:92:68:4d:45:0b:a6:65:c4:01:04: b6:e0:02:e8:44:ea:44:ad:a9:1c:a1:e0:65:4d:75: a5:d9:55:39:17:6e:f1:08:60:ea:4d:e1:42:3e:e7: 8e:9e:c5:c4:4d:19:88:1b:44:dd:06:e5:4d:25:52: 68:bd:a6:64:a4:62:bb:f6:a5:23:8b:76:5c:b5:91: ce:47:b6:7b:68:d6:94:9b:d2:13:b0:ce:6d:17:a9: 9d:55:f7:15:69:c3:5b:6d:0c:3b:a2:a9:e4:48:f0: 22:75:7e:1e:6d:10:01:18:ab:3c:46:1c:ed:2d:18: 4a:38:14:4a:08:71:a4:9d:48:a6:31:15:23:fc:cd: 9f:25:05:78:fe:e7:72:30:7d:d3:c0:46:49:11:d9: dd:81:01:de:e1:1b:ac:b8:b2:97:19:3e:05:eb:6c: de:f2:0b:22:f4:f7:ef:0d:4e:c1:98:26:be:b0:aa: 48:59:5b:2e:39:c4:59:94:9d:96:83:5e:84:92:a4: 54:6f:cc:df:66:61:4e:2a:f1:34:ca:cd:90:31:38: c9:8e:80:32:52:41:d3:3d:bb:fd:c5:f1:1e:a0:34: f6:3a:a1:df:0a:e3:e4:cb:7e:d0:18:1b:c2:1f:87: 47:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:BD:14:26:F2:65:00:31:E6:64:D2:DC:45:D7:CC:AC:FC:1E:EE:85 X509v3 Authority Key Identifier: keyid:84:E4:FF:B6:92:7F:77:F5:C3:F0:A2:52:68:2F:71:DD:B3:77:B1:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:49:6f:76:62:a6:3e:98:42:27:2e:6b:c3:83:c9:24:48:cf: 2b:d0:0d:6f:dd:4d:73:aa:a7:e6:60:63:eb:c8:ad:9f:b2:1f: 97:e2:dc:f0:f3:32:64:c0:da:2d:da:54:d4:84:43:d0:2f:d4: 3d:39:4b:13:62:ad:8c:d7:ac:9b:57:86:7d:48:9a:4b:c9:c0: 0b:1f:d5:fd:de:d0:de:2e:5f:49:a6:60:47:2c:3a:32:11:e7: 9e:c2:89:50:fb:eb:15:78:28:01:4c:30:83:50:71:8e:4e:98: f3:5b:b3:e7:45:fe:54:23:99:1b:59:68:7d:ab:a1:67:f2:ca: 1a:ef:c4:0b:a3:6f:cd:6b:a6:72:99:50:36:f3:23:c3:be:88: 95:99:be:b7:2e:52:87:34:12:53:15:34:7a:10:66:0f:ec:43: 38:b4:ab:53:82:87:11:d2:c2:b7:08:90:b7:81:90:12:5f:7d: ee:e6:62:ad:c1:f5:2d:75:d1:f2:e4:43:89:c3:df:39:3c:44: f8:1c:81:45:2a:b5:f9:aa:04:45:ff:b1:6c:90:b5:97:6e:d8: 40:44:2b:b6:d6:30:9b:8a:af:37:f8:23:55:a9:56:1b:5f:18: 55:14:b6:f0:e5:30:cb:4c:8a:fd:f8:d0:41:b6:aa:27:4a:43: 12:af:fc:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM3NDMxMTAvBgNVBAUTKDg0RTRGRkI2OTI3Rjc3RjVDM0YwQTI1MjY4MkY3MURE QjM3N0IxMUQwHhcNMjYwNDA0MTczMTMyWhcNMjYwNDExMTczMTMyWjAYMRYwFAYD VQQDEw02OWQxNGFmNC1jOTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmAPMCj+LXXs2sqvxt1Y+nslA3pJoTUULpmXEAQS24ALoROpErakcoeBlTXWl 2VU5F27xCGDqTeFCPueOnsXETRmIG0TdBuVNJVJovaZkpGK79qUji3ZctZHOR7Z7 aNaUm9ITsM5tF6mdVfcVacNbbQw7oqnkSPAidX4ebRABGKs8RhztLRhKOBRKCHGk nUimMRUj/M2fJQV4/udyMH3TwEZJEdndgQHe4RusuLKXGT4F62ze8gsi9PfvDU7B mCa+sKpIWVsuOcRZlJ2Wg16EkqRUb8zfZmFOKvE0ys2QMTjJjoAyUkHTPbv9xfEe oDT2OqHfCuPky37QGBvCH4dHLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLq9FCby ZQAx5mTS3EXXzKz8Hu6FMB8GA1UdIwQYMBaAFITk/7aSf3f1w/CiUmgvcd2zd7Ed MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzc0My9GOEFFMjg4MEEy MUQxMUU5ODI0MkFEODFDNEY5QUUwMi9oT1RfdHBKX2RfWEQ4S0pTYUM5eDNiTjNz UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hPVF90cEpfZF9YRDhLSlNhQzl4M2JOM3NSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Qzc0My9GOEFFMjg4MEEyMUQxMUU5ODI0MkFEODFDNEY5QUUwMi9oT1RfdHBKX2Rf WEQ4S0pTYUM5eDNiTjNzUjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuElvdmKmPphCJy5rw4PJJEjPK9ANb91Nc6qn5mBj68itn7Ifl+Lc8PMyZMDa LdpU1IRD0C/UPTlLE2KtjNesm1eGfUiaS8nACx/V/d7Q3i5fSaZgRyw6MhHnnsKJ UPvrFXgoAUwwg1Bxjk6Y81uz50X+VCOZG1lofauhZ/LKGu/EC6NvzWumcplQNvMj w76IlZm+ty5ShzQSUxU0ehBmD+xDOLSrU4KHEdLCtwiQt4GQEl997uZircH1LXXR 8uRDicPfOTxE+ByBRSq1+aoERf+xbJC1l27YQEQrttYwm4qvN/gjValWG18YVRS2 8OUwy0yK/fjQQbaqJ0pDEq/8HA== -----END CERTIFICATE-----Generated at Mon Apr 6 15:25:54 2026 by rpki-client