$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: iHocDiFbrSFpZ4vbYCTgeYqWEsqNL6VmJuN3bPITb3c= Subject key identifier: 63:71:86:D9:CF:D5:47:C0:13:26:02:5A:AE:23:64:AC:84:D6:D6:0D Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0E3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0E08 Signing time: Tue 10 Mar 2026 17:39:34 +0000 Manifest this update: Tue 10 Mar 2026 17:39:34 +0000 Manifest next update: Tue 17 Mar 2026 17:39:34 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: LrudSsba9haGugTzk5Z8sqcmqE7XCebdjAHNPwrV3lw=) 2: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: bJa45JxM0BM6SHPylrF6iczdI3TR6YwWJGhmk5n+6Co=) 3: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: fHXngSTjkehnoyzfzZzWQmngco23iukL2koF5Ddr+ak=) 4: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: m40Au0D9D53HHKA3UY789RoJoXUIJ7gV5QbX6BIo4EU=) 5: D0551B50046411F09760073DC4F9AE02.roa (hash: rp8AtmMvaJKirkqtM8xsbLFfIx4jMN0u7R5/2vGn/yo=) 6: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: OYQ8Q3ql6qFWt6j+WB79+jUAS4lPKWiDOJJ6WWsPhFE=) 7: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: kuKfhwok7IV2xZV+q15Uru1Qvlc7Ty7LyqYda2rZjaY=) 8: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: hFX5YE8MCfCx/kmb790trFxkpl5n33coYoMd9aDEGes=) 9: F2826A504FCF11EB88444467C4F9AE02.roa (hash: Ucwe0TblfY65Z8jyUiAbiD9N4E5gQiucEqZR5BprIfA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 17:39:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3646 (0xe3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Mar 10 17:39:34 2026 GMT Not After : Mar 17 17:39:34 2026 GMT Subject: CN=69b05756-b265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c4:59:14:1b:64:00:9d:c0:a8:3a:08:74:02: 31:ea:9d:5f:b9:e6:1b:34:5b:c3:18:c5:b0:06:88: 76:8e:b0:f6:d6:d5:1f:44:65:b3:94:4c:54:05:a1: f7:62:99:7a:47:a0:f0:5b:56:50:e3:05:c1:a3:02: 3d:df:f0:0c:97:fa:e5:67:f5:75:5c:5e:f1:41:d9: d7:75:da:d0:63:ee:f6:6d:90:6d:44:b6:75:cc:b8: 38:4d:44:5e:ce:7a:9e:b9:28:74:b1:8c:31:d0:73: 43:4f:53:e3:49:52:6a:ca:e0:f4:ae:ce:98:4a:2d: 95:d5:36:ea:4e:df:dd:5e:30:fb:8e:12:6b:dd:ce: c4:23:90:8a:a6:6f:75:60:77:6d:c6:97:b2:68:3c: 96:9d:33:60:25:2d:67:18:4e:6d:c3:fc:ac:cf:a7: 78:11:48:01:97:58:5b:94:ce:39:1c:28:ca:c0:bd: f3:e8:e7:d3:5c:a0:e0:0f:c3:44:69:a2:19:0d:84: 54:0d:34:9f:f7:c4:b3:e6:8a:71:fe:d8:db:b2:98: 20:69:1e:63:64:8f:93:11:19:a8:9f:5b:20:10:88: 99:77:5c:70:66:5b:d2:6b:c0:39:8b:d3:b9:e6:69: 22:56:53:1e:09:c3:0c:87:86:36:d5:b3:32:09:66: f7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:71:86:D9:CF:D5:47:C0:13:26:02:5A:AE:23:64:AC:84:D6:D6:0D X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:72:31:5c:dc:fe:f0:4b:c5:b8:c2:40:08:44:b5:13:15:1d: 6c:15:fe:05:5b:aa:75:4e:61:4c:64:e4:1e:f9:10:e9:b0:cc: 4c:59:bc:29:8f:5b:b4:c6:26:ad:ee:cd:f0:e3:eb:ef:df:3c: 05:e6:b8:e3:aa:04:08:fe:b7:61:93:f3:2e:7c:4a:05:05:8f: f5:d5:7c:31:e1:f4:01:e6:6f:db:c4:18:71:51:48:9f:7d:30: 19:0d:ec:8a:c4:92:c5:47:de:fa:87:e1:af:b7:55:75:ac:72: 3f:cc:3c:20:03:0c:94:5c:2a:bc:a7:bf:2a:fc:c5:ab:28:d4: e9:88:cd:53:3a:c2:76:70:bd:7c:e1:22:99:f3:5d:eb:c6:1e: 0b:d4:90:65:e1:38:40:16:8e:65:4a:4a:28:71:8e:20:33:6f: a9:3f:fc:f2:48:41:65:9f:cd:63:a6:ab:5b:24:ef:4f:7b:12: ab:ab:03:78:8f:c2:bc:41:da:11:53:6d:cf:91:51:24:b1:e7: bc:b3:c9:36:4a:85:6c:05:15:c9:57:db:80:15:24:17:d3:63: 01:ec:42:c2:2b:be:41:82:a8:a2:60:31:1a:94:d0:65:59:ac: 7a:ed:98:93:80:39:cf:80:46:9c:77:9b:40:85:5f:5b:01:5b: 3e:70:de:04 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjYwMzEwMTczOTM0WhcNMjYwMzE3MTczOTM0WjAYMRYwFAYD VQQDEw02OWIwNTc1Ni1iMjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnMRZFBtkAJ3AqDoIdAIx6p1fueYbNFvDGMWwBoh2jrD21tUfRGWzlExUBaH3 Ypl6R6DwW1ZQ4wXBowI93/AMl/rlZ/V1XF7xQdnXddrQY+72bZBtRLZ1zLg4TURe znqeuSh0sYwx0HNDT1PjSVJqyuD0rs6YSi2V1TbqTt/dXjD7jhJr3c7EI5CKpm91 YHdtxpeyaDyWnTNgJS1nGE5tw/ysz6d4EUgBl1hblM45HCjKwL3z6OfTXKDgD8NE aaIZDYRUDTSf98Sz5opx/tjbspggaR5jZI+TERmon1sgEIiZd1xwZlvSa8A5i9O5 5mkiVlMeCcMMh4Y21bMyCWb3rQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGNxhtnP 1UfAEyYCWq4jZKyE1tYNMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAY3IxXNz+8EvFuMJACES1ExUdbBX+BVuqdU5hTGTkHvkQ6bDMTFm8KY9btMYm re7N8OPr7988Bea446oECP63YZPzLnxKBQWP9dV8MeH0AeZv28QYcVFIn30wGQ3s isSSxUfe+ofhr7dVdaxyP8w8IAMMlFwqvKe/KvzFqyjU6YjNUzrCdnC9fOEimfNd 68YeC9SQZeE4QBaOZUpKKHGOIDNvqT/88khBZZ/NY6arWyTvT3sSq6sDeI/CvEHa EVNtz5FRJLHnvLPJNkqFbAUVyVfbgBUkF9NjAexCwiu+QYKoomAxGpTQZVmseu2Y k4A5z4BGnHebQIVfWwFbPnDeBA== -----END CERTIFICATE-----Generated at Thu Mar 12 15:22:48 2026 by rpki-client