$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: AbnJCptaaZQVCGKyG+yaWxpF58jPRY9hfmPVp8SdOsM= Subject key identifier: 4A:FA:D3:3F:F0:FB:98:04:C5:57:B6:76:41:79:F3:5E:BA:18:97:11 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 0884 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 086B Signing time: Sat 28 Mar 2026 20:36:52 +0000 Manifest this update: Sat 28 Mar 2026 20:36:52 +0000 Manifest next update: Sat 04 Apr 2026 20:36:52 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: PYKEIp8P3p0PvQ8pYU70MTkcZNw4BoNi6tp/jxyPm1E=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: n2hlAVM9PTTT2Scjp8/RzlDa+bb55gqeGOADAsXpei0=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: DHN4e0JrosxaWqhhvniYwJn8xIsHqQd0pj3UDSpuBlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 20:36:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2180 (0x884) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Mar 28 20:36:52 2026 GMT Not After : Apr 4 20:36:52 2026 GMT Subject: CN=69c83be4-6183 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a6:3c:9a:7e:bd:bf:cb:c8:4d:00:7e:e4:f6: db:72:27:5f:68:ec:92:0b:3a:dd:83:e5:32:bd:f8: 58:71:0f:06:03:b9:30:77:69:59:58:9c:37:40:de: a2:b9:ca:e7:65:e2:86:cc:8c:b4:d1:50:16:d8:7c: e1:7d:53:8d:3a:3c:78:95:e2:6a:d9:f2:7b:e4:27: f2:53:7c:4c:f0:aa:25:d6:2d:2b:5e:ea:2d:7d:78: 35:97:3d:7a:be:c9:70:09:a7:0f:45:94:72:5a:b5: ef:24:0a:e0:8c:32:34:15:18:22:af:cf:15:3d:c1: 3f:6e:be:05:c2:2c:c9:b7:42:a1:6e:a9:a0:a9:39: 3c:93:2c:42:b3:94:5c:39:fc:dd:9e:17:53:b5:b2: b1:60:cc:13:e8:03:8a:de:2e:cf:6c:78:38:8a:53: 61:ef:ff:73:a3:58:15:f6:4c:d8:af:75:8d:ca:da: 96:fc:63:b8:60:3b:54:ba:7a:f6:dd:88:fa:d4:d6: a6:21:6e:aa:db:4d:71:5e:7e:fd:59:82:0b:8b:f4: a1:58:ae:03:10:c3:4b:0f:87:a1:ce:86:2e:80:dd: cf:f0:c4:26:b0:9d:cd:03:4b:e5:92:d6:8a:8a:90: 70:84:dd:f5:6f:e4:fa:6c:04:f7:ec:18:8f:2f:3c: 41:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:FA:D3:3F:F0:FB:98:04:C5:57:B6:76:41:79:F3:5E:BA:18:97:11 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:af:d1:49:44:63:49:42:72:fc:a2:80:60:f8:3e:99:8f:ab: 1f:b7:43:b3:7f:48:b3:c3:53:4f:1b:5a:da:ac:0c:dc:3f:5e: 26:c3:b4:06:d9:12:e9:7f:e8:fa:57:0a:db:a6:5e:09:36:93: 2b:fb:f6:be:52:2b:e3:7b:98:7d:79:38:ac:41:4c:4f:82:10: 0e:ea:76:65:5e:70:06:47:a5:2d:1a:b4:e7:9e:0d:63:cb:9c: 86:09:5a:c8:f4:81:3f:8e:11:b5:04:ab:4e:90:19:a7:17:2d: 25:f6:84:2a:01:b2:a2:7e:66:63:2c:5e:a6:7d:5d:4b:27:20: 1c:11:84:07:ea:e9:fa:96:a3:cb:ab:00:db:4e:2e:7b:a8:08: 49:79:00:7d:1c:19:c3:d6:8b:d9:6c:10:7b:29:cd:da:79:c5: 4c:39:21:8f:b6:59:5a:9e:f0:f5:9b:01:87:24:cd:c1:aa:9a: 45:dd:57:ba:d3:21:fd:e1:80:99:a2:8f:6a:4a:8a:e7:bc:ad: d6:a8:df:c0:0c:51:ae:ff:9a:b4:33:0d:9a:0e:b3:23:3d:44: ad:5a:24:5b:7e:dc:51:53:d5:f0:68:c3:be:81:0f:49:15:b2: f1:8c:25:e5:d7:9a:f8:4f:6c:1e:9a:08:f9:a1:a7:f3:a8:5a: 01:d4:5d:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjYwMzI4MjAzNjUyWhcNMjYwNDA0MjAzNjUyWjAYMRYwFAYD VQQDEw02OWM4M2JlNC02MTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKY8mn69v8vITQB+5PbbcidfaOySCzrdg+UyvfhYcQ8GA7kwd2lZWJw3QN6i ucrnZeKGzIy00VAW2HzhfVONOjx4leJq2fJ75CfyU3xM8Kol1i0rXuotfXg1lz16 vslwCacPRZRyWrXvJArgjDI0FRgir88VPcE/br4FwizJt0KhbqmgqTk8kyxCs5Rc OfzdnhdTtbKxYMwT6AOK3i7PbHg4ilNh7/9zo1gV9kzYr3WNytqW/GO4YDtUunr2 3Yj61NamIW6q201xXn79WYILi/ShWK4DEMNLD4ehzoYugN3P8MQmsJ3NA0vlktaK ipBwhN31b+T6bAT37BiPLzxBYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEr60z/w +5gExVe2dkF58166GJcRMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC6/RSURjSUJy/KKAYPg+mY+rH7dDs39Is8NTTxta2qwM3D9eJsO0BtkS6X/o +lcK26ZeCTaTK/v2vlIr43uYfXk4rEFMT4IQDup2ZV5wBkelLRq0554NY8uchgla yPSBP44RtQSrTpAZpxctJfaEKgGyon5mYyxepn1dSycgHBGEB+rp+pajy6sA204u e6gISXkAfRwZw9aL2WwQeynN2nnFTDkhj7ZZWp7w9ZsBhyTNwaqaRd1XutMh/eGA maKPakqK57yt1qjfwAxRrv+atDMNmg6zIz1ErVokW37cUVPV8GjDvoEPSRWy8Ywl 5dea+E9sHpoI+aGn86haAdRdgA== -----END CERTIFICATE-----Generated at Sun Mar 29 20:05:34 2026 by rpki-client