$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: U0CarMYEAVHmc85xOhjHq2df8x4BgH6h+QO5o4i/iIk= Subject key identifier: 7F:09:B3:C0:2F:70:F0:3B:F3:BC:4B:65:24:B6:50:21:F6:7F:EE:1E Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 1431 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 141A Signing time: Sat 04 Apr 2026 16:48:53 +0000 Manifest this update: Sat 04 Apr 2026 16:48:53 +0000 Manifest next update: Sat 11 Apr 2026 16:48:53 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: Pj18bpYXNWHYM1PXjSpoeYvWfys0TJ30YQcFD8UPRvI=) 2: 813A255423A611F09025FC11C4F9AE02.roa (hash: RaOIdSyJbLBmHHTBAcqvM2xNuH84JM4tWrC9RYmAhrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5169 (0x1431) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Apr 4 16:48:53 2026 GMT Not After : Apr 11 16:48:53 2026 GMT Subject: CN=69d140f5-e7a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:02:af:36:be:10:03:5c:33:5a:d5:ee:5f:05: 9b:3d:35:28:70:5a:da:56:c0:8f:d1:c8:6c:28:84: 7d:19:88:38:49:1d:69:d9:bb:4c:b5:69:af:1b:52: 11:33:57:60:0c:e0:34:c2:c0:0f:13:2c:bb:30:6e: 8a:cd:23:fe:98:b0:58:f9:96:b9:72:81:b3:40:5c: 41:a4:a9:5e:1e:3a:5d:50:a6:e1:af:2b:f1:c8:17: 8c:86:76:9f:a9:c5:ba:bf:48:2f:66:4b:b9:a3:0f: 33:00:a6:19:41:14:11:fb:b8:73:8a:73:55:3c:71: a4:8c:8a:c4:88:96:5c:5e:30:8b:98:50:e2:46:1f: c8:01:9d:0c:62:03:31:be:50:21:14:6a:4d:37:db: 70:fc:df:29:88:ed:4f:9c:92:e2:52:79:78:6f:d2: 60:d7:20:99:8e:6b:75:c1:95:9e:a9:ce:e4:80:8d: bf:42:3f:37:e6:41:40:37:f0:ae:2b:74:53:55:7b: 86:f9:0a:92:10:66:1c:14:4c:7d:cf:b9:a8:79:36: 34:29:23:41:51:38:b9:33:82:11:72:e2:8f:b6:8c: 8f:b3:fb:06:8b:61:7e:57:47:56:60:ec:a0:2f:04: 42:ee:c7:04:8e:38:24:59:cf:c6:33:64:d4:e0:ca: c4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:09:B3:C0:2F:70:F0:3B:F3:BC:4B:65:24:B6:50:21:F6:7F:EE:1E X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:aa:63:79:78:d4:8a:80:54:94:46:86:e9:f0:29:ad:1c:75: 1c:59:1b:20:4f:d3:f9:79:8f:28:5d:01:30:3e:03:95:9e:41: dd:64:c6:ce:05:90:2e:b0:60:b2:18:51:15:23:54:97:53:bb: 72:7f:86:20:62:fc:ae:12:be:49:eb:54:b5:61:72:7b:c1:22: 66:a0:93:05:10:07:22:c7:93:2b:41:0e:69:a4:97:b0:30:d5: c2:77:6e:f4:b1:35:2d:98:86:2d:5a:15:76:2b:95:dc:96:7a: 19:c4:90:a6:96:db:28:06:10:e7:28:44:63:a4:3f:f1:98:b7: ae:e8:74:89:08:3a:2a:aa:1d:a6:a0:1f:87:f5:19:64:21:35: 5e:05:d1:e5:27:33:a8:7c:76:2e:8e:2d:41:40:2a:55:21:4f: a6:36:c1:99:2c:33:3b:52:3a:3e:d8:c3:fc:b1:39:d0:33:85: 81:4a:10:26:35:83:d1:23:fc:ea:3a:f4:15:55:9e:0a:73:51: bd:7a:15:f9:a2:a5:6a:72:6a:4b:32:ba:49:34:3c:5f:7e:b6: 4e:16:19:20:73:2f:01:82:46:75:8f:1f:a9:ff:9a:bf:6e:1b: 7b:ea:3c:c8:25:2b:41:4e:65:f2:49:58:dd:f0:83:0c:f5:82: 01:b7:93:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjYwNDA0MTY0ODUzWhcNMjYwNDExMTY0ODUzWjAYMRYwFAYD VQQDEw02OWQxNDBmNS1lN2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswKvNr4QA1wzWtXuXwWbPTUocFraVsCP0chsKIR9GYg4SR1p2btMtWmvG1IR M1dgDOA0wsAPEyy7MG6KzSP+mLBY+Za5coGzQFxBpKleHjpdUKbhryvxyBeMhnaf qcW6v0gvZku5ow8zAKYZQRQR+7hzinNVPHGkjIrEiJZcXjCLmFDiRh/IAZ0MYgMx vlAhFGpNN9tw/N8piO1PnJLiUnl4b9Jg1yCZjmt1wZWeqc7kgI2/Qj835kFAN/Cu K3RTVXuG+QqSEGYcFEx9z7moeTY0KSNBUTi5M4IRcuKPtoyPs/sGi2F+V0dWYOyg LwRC7scEjjgkWc/GM2TU4MrEwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH8Js8Av cPA787xLZSS2UCH2f+4eMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANKpjeXjUioBUlEaG6fAprRx1HFkbIE/T+XmPKF0BMD4DlZ5B3WTGzgWQLrBg shhRFSNUl1O7cn+GIGL8rhK+SetUtWFye8EiZqCTBRAHIseTK0EOaaSXsDDVwndu 9LE1LZiGLVoVdiuV3JZ6GcSQppbbKAYQ5yhEY6Q/8Zi3ruh0iQg6KqodpqAfh/UZ ZCE1XgXR5SczqHx2Lo4tQUAqVSFPpjbBmSwzO1I6PtjD/LE50DOFgUoQJjWD0SP8 6jr0FVWeCnNRvXoV+aKlanJqSzK6STQ8X362ThYZIHMvAYJGdY8fqf+av24be+o8 yCUrQU5l8klY3fCDDPWCAbeTQA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:04 2026 by rpki-client