$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft File: HaAa_AiIyqYXHgoOdBz8kE7S328.mft (raw, json) Hash identifier: hk5gW21ZkrKX8Se++PJpmShwsWnJivrle6a/koPtsbA= Subject key identifier: 48:FE:A6:7C:8D:F8:4A:75:E7:FB:CA:7D:21:C8:BD:C7:DB:E9:90:60 Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 0976 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft Manifest number: 096E Signing time: Sat 04 Apr 2026 19:53:03 +0000 Manifest this update: Sat 04 Apr 2026 19:53:02 +0000 Manifest next update: Sat 11 Apr 2026 19:53:02 +0000 Files and hashes: 1: HaAa_AiIyqYXHgoOdBz8kE7S328.crl (hash: IvI1CsH16TZrm+ysqORHrHyTNV8pW+MgUF8Mfubnm8g=) 2: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (hash: V81dD3x6Xu9JhvlyqWC7cihyerGfmzPLwxY1DFEcyJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2422 (0x976) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Apr 4 19:53:02 2026 GMT Not After : Apr 11 19:53:02 2026 GMT Subject: CN=69d16c1f-24cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:77:f1:98:8f:16:fd:13:36:3e:9e:56:ea:fa: 8a:fd:3e:51:d7:76:0f:c6:b1:45:33:ba:83:10:8e: 1b:91:a5:c0:28:38:89:91:a4:00:28:37:1c:56:69: 47:a7:ff:3e:4a:27:f0:22:b7:5b:61:6b:a8:df:02: a9:72:91:7f:93:8e:03:f7:e6:c3:3f:c1:67:bc:75: 19:4f:e0:95:e3:c1:14:b2:83:27:ca:dd:35:fb:75: 10:c8:d1:50:1f:12:2b:5d:c3:6e:51:0a:04:ab:c0: a1:af:cf:b4:c7:21:2a:28:62:31:10:c0:16:65:18: bb:03:2c:93:83:5a:0a:95:07:07:12:e3:8c:1a:00: ff:12:ae:3f:38:54:e7:fe:b3:46:38:cf:28:78:6e: ff:49:57:10:74:8e:77:e6:88:dc:36:97:81:3c:9c: 39:75:e6:b0:ea:7e:29:fd:57:06:3e:75:df:ec:30: 53:53:a7:bf:1a:62:86:a4:87:e5:be:fb:ce:ea:2e: 09:e9:78:41:3b:11:d7:89:80:f6:52:34:26:72:d7: ce:f4:28:ba:37:91:66:d2:5b:43:ad:41:9b:bd:e6: 12:52:d2:23:da:97:dc:64:70:72:63:b7:a9:45:30: 3a:72:7f:be:84:04:3f:50:83:26:73:02:93:c0:d1: 85:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:FE:A6:7C:8D:F8:4A:75:E7:FB:CA:7D:21:C8:BD:C7:DB:E9:90:60 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:0b:f2:06:1c:46:92:a5:55:21:be:5e:d8:e2:e7:e1:17:63: 72:e7:6d:32:b5:75:86:cc:53:d9:36:df:56:08:17:3b:b4:a8: c8:05:14:ea:01:46:ad:4a:12:f1:ea:4c:27:a0:72:22:15:8c: 6c:ae:7a:0e:84:8d:1f:e5:6a:5a:68:8a:25:b8:6c:df:69:87: 8c:7c:bb:ba:38:21:ca:7a:8f:45:dd:f4:5f:a8:59:52:54:07: 34:f7:56:8f:8f:0d:81:08:aa:c5:97:50:36:48:5c:26:54:50: 82:9a:83:83:bf:bc:9b:ea:50:46:8b:8a:84:a4:d2:b2:d0:89: 97:34:32:d3:06:b2:2a:7e:21:3f:85:4f:e0:0e:30:b5:73:5b: a1:f6:b0:60:a6:f9:84:cc:b8:d4:a0:f5:2d:cb:23:3a:4f:96: c8:eb:dc:58:51:96:f7:09:7d:39:01:76:e0:e2:cd:5f:e9:a2: 3f:83:31:ea:04:2b:71:79:2c:6d:9c:7f:b8:1a:72:16:e9:4b: d9:25:94:54:24:77:42:85:f3:45:8a:9d:f8:44:41:ce:5e:2c: ec:e1:99:99:2a:95:04:48:13:f4:e3:3f:1e:10:5c:04:1e:fe: 7f:0b:13:18:e4:4d:66:37:d1:2f:af:8a:15:89:e0:3d:56:56: 52:f5:b8:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjYwNDA0MTk1MzAyWhcNMjYwNDExMTk1MzAyWjAYMRYwFAYD VQQDEw02OWQxNmMxZi0yNGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHfxmI8W/RM2Pp5W6vqK/T5R13YPxrFFM7qDEI4bkaXAKDiJkaQAKDccVmlH p/8+SifwIrdbYWuo3wKpcpF/k44D9+bDP8FnvHUZT+CV48EUsoMnyt01+3UQyNFQ HxIrXcNuUQoEq8Chr8+0xyEqKGIxEMAWZRi7AyyTg1oKlQcHEuOMGgD/Eq4/OFTn /rNGOM8oeG7/SVcQdI535ojcNpeBPJw5deaw6n4p/VcGPnXf7DBTU6e/GmKGpIfl vvvO6i4J6XhBOxHXiYD2UjQmctfO9Ci6N5Fm0ltDrUGbveYSUtIj2pfcZHByY7ep RTA6cn++hAQ/UIMmcwKTwNGFlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEj+pnyN +Ep15/vKfSHIvcfb6ZBgMB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlx WVhIZ29PZEJ6OGtFN1MzMjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVwvyBhxGkqVVIb5e2OLn4RdjcudtMrV1hsxT2TbfVggXO7SoyAUU6gFGrUoS 8epMJ6ByIhWMbK56DoSNH+VqWmiKJbhs32mHjHy7ujghynqPRd30X6hZUlQHNPdW j48NgQiqxZdQNkhcJlRQgpqDg7+8m+pQRouKhKTSstCJlzQy0wayKn4hP4VP4A4w tXNbofawYKb5hMy41KD1LcsjOk+WyOvcWFGW9wl9OQF24OLNX+miP4Mx6gQrcXks bZx/uBpyFulL2SWUVCR3QoXzRYqd+ERBzl4s7OGZmSqVBEgT9OM/HhBcBB7+fwsT GORNZjfRL6+KFYngPVZWUvW4ig== -----END CERTIFICATE-----Generated at Mon Apr 6 09:04:39 2026 by rpki-client