$ rpki-client -vvf rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft File: hctAGQp33J5olNhX9zu3qQ4JdOQ.mft (raw, json) Hash identifier: UsRBrTyC+H3u6sy6y8g/UdlrRMc3Dp2DzoagwZmG0/s= Subject key identifier: 3E:35:42:81:E1:97:DC:B8:D1:44:D1:5A:AD:AB:77:66:A7:8F:5E:70 Authority key identifier: 85:CB:40:19:0A:77:DC:9E:68:94:D8:57:F7:3B:B7:A9:0E:09:74:E4 Certificate issuer: /CN=A9169BB4/serialNumber=85CB40190A77DC9E6894D857F73BB7A90E0974E4 Certificate serial: 0613 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft Manifest number: 0603 Signing time: Thu 26 Mar 2026 22:44:02 +0000 Manifest this update: Thu 26 Mar 2026 22:44:02 +0000 Manifest next update: Thu 02 Apr 2026 22:44:02 +0000 Files and hashes: 1: hctAGQp33J5olNhX9zu3qQ4JdOQ.crl (hash: F+kUaLvA4mQBwDmx/BKAlENDZScTbbhBZeru4vEuTd4=) 2: FD9A4AA0E53111EBAB62446EC4F9AE02.roa (hash: aXUNgdPZaRVWUWRyzVl3gVNo/2yllW0aODydzNYrLyQ=) 3: 7FCFB4745E8411EE89DF693EC4F9AE02.roa (hash: eopWrcCTKAsMxcnNdOCRso+7nTOlyhMbbG0+6DVN/mA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.crl rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:44:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1555 (0x613) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169BB4, serialNumber=85CB40190A77DC9E6894D857F73BB7A90E0974E4 Validity Not Before: Mar 26 22:44:02 2026 GMT Not After : Apr 2 22:44:02 2026 GMT Subject: CN=69c5b6b2-cbd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:4c:67:2f:db:7e:2f:4f:e3:d8:75:f0:55:be: 0d:58:f4:d6:0b:60:f3:b3:d8:40:84:4a:1c:d0:dd: 48:e7:8c:e0:b3:05:8b:ba:25:94:a9:5f:29:2e:eb: 6b:57:a2:29:3e:e4:8a:96:a7:57:13:2c:93:01:2a: 63:c4:e5:ae:af:39:9b:b8:7b:42:14:19:0e:85:f6: 7d:b3:56:21:a0:09:be:4d:74:5e:cd:da:2b:52:a3: f7:9a:ea:47:f1:d5:77:ce:db:78:1a:64:01:25:43: a6:5a:cd:ae:56:25:18:22:5c:10:45:05:2c:a4:ee: 5d:65:29:1a:e0:3d:ac:dd:73:c2:cc:cb:da:7c:13: 9e:a8:a6:77:bd:4b:34:0d:d6:49:72:09:73:94:d6: dd:0f:75:9b:42:82:2e:fb:4c:29:8d:dd:df:a2:fa: 54:27:08:fe:5a:b9:a4:57:9e:a8:e4:79:03:ab:2b: 9b:ff:10:c6:35:be:8a:9a:26:27:c5:db:4d:2f:9f: 7c:b3:85:21:59:bb:bf:29:a2:eb:0a:df:d5:db:c8: 64:d5:f5:a7:4d:3d:10:ae:17:b3:fe:36:40:ba:79: 11:8d:fb:94:51:4a:f1:d0:94:ce:01:dd:d9:9b:68: 46:e6:d6:c3:e8:9d:40:cf:72:ba:6a:66:cd:77:70: fa:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:35:42:81:E1:97:DC:B8:D1:44:D1:5A:AD:AB:77:66:A7:8F:5E:70 X509v3 Authority Key Identifier: keyid:85:CB:40:19:0A:77:DC:9E:68:94:D8:57:F7:3B:B7:A9:0E:09:74:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:77:24:c4:ff:64:be:7b:73:57:15:e4:95:44:d5:74:96:3e: 71:9e:a6:89:e4:af:0d:f1:59:e1:0a:d0:81:92:8e:0a:be:4e: 74:07:16:0a:ba:ab:c2:1a:17:5d:a6:cd:24:6b:9a:a3:0b:5e: c1:b3:15:93:f1:be:82:8a:f3:5b:a2:fb:73:cd:54:7c:72:ea: 67:e1:78:56:78:06:0e:da:88:a3:ae:6c:07:d9:8b:66:8f:8c: 0a:d9:cb:9d:f2:43:9f:5d:64:be:f6:a1:f7:71:54:47:c9:16: 97:12:9d:50:cc:35:d9:6d:75:a0:2a:f3:6f:6f:39:86:95:a8: 21:89:e4:0f:d0:c1:32:b9:1a:93:07:47:62:60:92:88:6e:70: a9:99:2d:b1:aa:5b:41:67:2a:fb:ba:f8:02:6f:72:c0:01:62: 41:d7:d0:74:c7:7f:c9:79:3f:0d:b0:bf:83:e8:88:96:21:d4: 31:2f:69:96:6f:af:a2:de:50:cd:ad:2c:6c:59:91:7f:f1:fc: cf:20:c5:58:6f:5a:94:7c:53:aa:a3:b1:94:76:2d:b6:9b:a8: 10:1a:de:2a:83:ee:06:23:7f:5e:d2:49:6f:5e:c8:af:e5:7e: 4b:3a:18:5d:47:34:8f:b1:1b:d7:0f:0c:28:d6:1f:58:58:3d: dc:b2:23:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlCQjQxMTAvBgNVBAUTKDg1Q0I0MDE5MEE3N0RDOUU2ODk0RDg1N0Y3M0JCN0E5 MEUwOTc0RTQwHhcNMjYwMzI2MjI0NDAyWhcNMjYwNDAyMjI0NDAyWjAYMRYwFAYD VQQDEw02OWM1YjZiMi1jYmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkExnL9t+L0/j2HXwVb4NWPTWC2Dzs9hAhEoc0N1I54zgswWLuiWUqV8pLutr V6IpPuSKlqdXEyyTASpjxOWurzmbuHtCFBkOhfZ9s1YhoAm+TXRezdorUqP3mupH 8dV3ztt4GmQBJUOmWs2uViUYIlwQRQUspO5dZSka4D2s3XPCzMvafBOeqKZ3vUs0 DdZJcglzlNbdD3WbQoIu+0wpjd3fovpUJwj+WrmkV56o5HkDqyub/xDGNb6KmiYn xdtNL598s4UhWbu/KaLrCt/V28hk1fWnTT0Qrhez/jZAunkRjfuUUUrx0JTOAd3Z m2hG5tbD6J1Az3K6ambNd3D67QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD41QoHh l9y40UTRWq2rd2anj15wMB8GA1UdIwQYMBaAFIXLQBkKd9yeaJTYV/c7t6kOCXTk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUJCNC9CM0U3MzA5Q0U1 MkUxMUVCOUVCMUZENjlDNEY5QUUwMi9oY3RBR1FwMzNKNW9sTmhYOXp1M3FRNEpk T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hjdEFHUXAzM0o1b2xOaFg5enUzcVE0SmRPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUJCNC9CM0U3MzA5Q0U1MkUxMUVCOUVCMUZENjlDNEY5QUUwMi9oY3RBR1FwMzNK NW9sTmhYOXp1M3FRNEpkT1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAknckxP9kvntzVxXklUTVdJY+cZ6mieSvDfFZ4QrQgZKOCr5OdAcWCrqrwhoX XabNJGuaowtewbMVk/G+gorzW6L7c81UfHLqZ+F4VngGDtqIo65sB9mLZo+MCtnL nfJDn11kvvah93FUR8kWlxKdUMw12W11oCrzb285hpWoIYnkD9DBMrkakwdHYmCS iG5wqZktsapbQWcq+7r4Am9ywAFiQdfQdMd/yXk/DbC/g+iIliHUMS9plm+vot5Q za0sbFmRf/H8zyDFWG9alHxTqqOxlHYttpuoEBreKoPuBiN/XtJJb17Ir+V+SzoY XUc0j7Eb1w8MKNYfWFg93LIjYg== -----END CERTIFICATE-----Generated at Sat Mar 28 19:50:51 2026 by rpki-client