$ rpki-client -vvf rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft File: HKNtz8PAQzP4g7g18sjd0CXVQQY.mft (raw, json) Hash identifier: kLvrs+83Gb1zrejxZGAVCt1+SPmtQxgw6HCTFYJd23I= Subject key identifier: 62:5F:A4:DA:19:C4:06:32:C6:D8:84:EF:AB:66:E6:F9:B6:49:C1:DB Authority key identifier: 1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 Certificate issuer: /CN=A9142F59/serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft Manifest number: 91 Signing time: Sun 05 Apr 2026 06:58:41 +0000 Manifest this update: Sun 05 Apr 2026 06:58:41 +0000 Manifest next update: Sun 12 Apr 2026 06:58:41 +0000 Files and hashes: 1: HKNtz8PAQzP4g7g18sjd0CXVQQY.crl (hash: moDCTiRELZYaniKd+OBGBL6gurP5LPC60+thfox5N4o=) 2: C7A29726A65311F091E2CF10C4F9AE02.roa (hash: RXr/2IJ/9MWQk0OdqW4xmP/C7ZFOJQkVQv3V5AO424U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:58:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142F59, serialNumber=1CA36DCFC3C04333F883B835F2C8DDD025D54106 Validity Not Before: Apr 5 06:58:41 2026 GMT Not After : Apr 12 06:58:41 2026 GMT Subject: CN=69d20821-b869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:bc:14:76:dc:0e:d6:35:1b:ea:dd:eb:74:40: b9:e1:4d:b0:40:04:b5:34:29:aa:5e:9e:9f:12:a9: 31:09:96:74:cd:e2:4e:e4:a7:da:47:aa:62:19:69: 1a:0c:3b:01:4b:57:af:5f:6e:77:f0:e5:81:4d:56: da:15:ad:b9:04:84:31:fc:40:07:da:13:a4:64:45: 54:3b:32:cb:fe:02:74:4b:26:6c:37:fb:a5:03:06: 75:6c:75:e6:fa:f6:cf:0e:d9:92:66:b9:ef:66:58: da:97:25:64:d4:bb:09:75:ae:56:11:40:d6:96:c4: 7f:f9:79:c1:ed:f1:10:c7:ba:7d:f9:db:5e:7f:66: 05:55:f4:c1:33:50:d3:63:fc:fe:60:9a:9c:e8:f8: a4:e7:ac:56:45:bc:48:05:a2:95:75:17:ae:67:d7: ae:7c:5d:a7:55:85:0d:27:60:07:9a:0a:25:cc:bb: 6f:cf:4c:fc:47:9e:b8:e5:bb:41:a6:ae:b6:37:92: 7a:95:62:e3:a0:c2:65:07:64:8e:9d:77:d0:68:01: 90:0c:e4:16:86:6b:29:6f:08:a6:a1:a9:23:8f:36: 1a:3e:a4:b9:8d:3e:b3:15:43:ee:5b:46:c1:67:92: 83:ad:6b:15:57:c1:c0:e6:c5:03:9f:a2:7c:9c:22: 2b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:5F:A4:DA:19:C4:06:32:C6:D8:84:EF:AB:66:E6:F9:B6:49:C1:DB X509v3 Authority Key Identifier: keyid:1C:A3:6D:CF:C3:C0:43:33:F8:83:B8:35:F2:C8:DD:D0:25:D5:41:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HKNtz8PAQzP4g7g18sjd0CXVQQY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142F59/0526D62E623011F0A0207630C4F9AE02/HKNtz8PAQzP4g7g18sjd0CXVQQY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:e8:9c:ee:c1:17:f6:57:29:25:f9:f3:f1:35:11:dc:4f:94: bb:7f:ff:d8:a6:1c:14:e8:9e:32:d9:f4:4b:f6:94:7d:70:82: 3b:81:41:5f:7f:b5:05:59:40:f4:9c:27:43:5c:ff:b7:a3:61: 05:98:64:95:be:3a:bd:9b:97:34:be:bb:34:99:57:d4:ec:2c: 63:59:f3:4b:c1:cc:51:25:44:4a:69:67:0c:c6:0e:f0:5f:ad: a2:4e:0e:11:84:b8:f0:55:2f:c6:8a:14:b8:f8:5a:ca:bc:52: 8e:7d:88:4b:ba:8c:fb:af:0c:e7:54:f1:8a:96:25:31:78:d5: 3e:4e:a3:3f:e3:70:14:2e:53:3a:ca:fa:d0:21:a9:aa:4f:ee: 5f:81:9e:49:35:a8:72:9b:f1:36:84:87:9c:95:c6:fd:ad:f0: 4c:8e:65:b4:13:f4:26:78:ca:62:59:b4:26:8d:94:c7:8c:17: 00:ce:87:66:b0:7f:93:f0:b8:75:e5:29:ec:d4:e3:02:63:8a: 08:18:2d:eb:92:18:8a:74:96:e6:fc:81:2a:05:2d:01:b0:1b: f7:17:2d:2b:9c:9f:ed:86:f3:7b:02:d2:60:d9:ec:22:85:34: 61:1e:f1:c8:e1:43:a0:f4:34:47:52:de:62:fb:64:61:07:3b: d0:a8:f3:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJGNTkxMTAvBgNVBAUTKDFDQTM2RENGQzNDMDQzMzNGODgzQjgzNUYyQzhEREQw MjVENTQxMDYwHhcNMjYwNDA1MDY1ODQxWhcNMjYwNDEyMDY1ODQxWjAYMRYwFAYD VQQDEw02OWQyMDgyMS1iODY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7wUdtwO1jUb6t3rdEC54U2wQAS1NCmqXp6fEqkxCZZ0zeJO5KfaR6piGWka DDsBS1evX2538OWBTVbaFa25BIQx/EAH2hOkZEVUOzLL/gJ0SyZsN/ulAwZ1bHXm +vbPDtmSZrnvZljalyVk1LsJda5WEUDWlsR/+XnB7fEQx7p9+dtef2YFVfTBM1DT Y/z+YJqc6Pik56xWRbxIBaKVdReuZ9eufF2nVYUNJ2AHmgolzLtvz0z8R5645btB pq62N5J6lWLjoMJlB2SOnXfQaAGQDOQWhmspbwimoakjjzYaPqS5jT6zFUPuW0bB Z5KDrWsVV8HA5sUDn6J8nCIrBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGJfpNoZ xAYyxtiE76tm5vm2ScHbMB8GA1UdIwQYMBaAFByjbc/DwEMz+IO4NfLI3dAl1UEG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkY1OS8wNTI2RDYyRTYy MzAxMUYwQTAyMDc2MzBDNEY5QUUwMi9IS050ejhQQVF6UDRnN2cxOHNqZDBDWFZR UVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hLTnR6OFBBUXpQNGc3ZzE4c2pkMENYVlFRWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkY1OS8wNTI2RDYyRTYyMzAxMUYwQTAyMDc2MzBDNEY5QUUwMi9IS050ejhQQVF6 UDRnN2cxOHNqZDBDWFZRUVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgeic7sEX9lcpJfnz8TUR3E+Uu3//2KYcFOieMtn0S/aUfXCCO4FBX3+1BVlA 9JwnQ1z/t6NhBZhklb46vZuXNL67NJlX1OwsY1nzS8HMUSVESmlnDMYO8F+tok4O EYS48FUvxooUuPhayrxSjn2IS7qM+68M51TxipYlMXjVPk6jP+NwFC5TOsr60CGp qk/uX4GeSTWocpvxNoSHnJXG/a3wTI5ltBP0JnjKYlm0Jo2Ux4wXAM6HZrB/k/C4 deUp7NTjAmOKCBgt65IYinSW5vyBKgUtAbAb9xctK5yf7YbzewLSYNnsIoU0YR7x yOFDoPQ0R1LeYvtkYQc70KjzeA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:45 2026 by rpki-client