$ rpki-client -vvf rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft File: cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft (raw, json) Hash identifier: s84SLe1E6OODmDpzGdsZuE+/GF0NivrdCeiejU0a2qQ= Subject key identifier: 54:C2:2A:8E:07:1E:76:E5:4A:A3:6D:A3:6B:97:09:77:DA:B6:38:5E Authority key identifier: 70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C Certificate issuer: /CN=A917B540/serialNumber=702FA1AE9682B2B22ECDD9A53012F0E6F1BA1B9C Certificate serial: 022A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft Manifest number: 0222 Signing time: Sun 05 Apr 2026 02:22:12 +0000 Manifest this update: Sun 05 Apr 2026 02:22:12 +0000 Manifest next update: Sun 12 Apr 2026 02:22:12 +0000 Files and hashes: 1: cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl (hash: jWB8aW1cNFD4kEpgNlZLCewoXS8G9rh/2Yfdfut2B4k=) 2: 1966C856FB9E11ED8309FC1DC4F9AE02.roa (hash: gwP3PNE674NeJVzpcX/6dV+VmggMeTrL/+BFEHoqdPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:22:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B540, serialNumber=702FA1AE9682B2B22ECDD9A53012F0E6F1BA1B9C Validity Not Before: Apr 5 02:22:12 2026 GMT Not After : Apr 12 02:22:12 2026 GMT Subject: CN=69d1c754-fa0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:10:15:ff:c2:db:fa:fa:fe:27:8c:36:af:34: e8:53:ac:2b:97:d6:14:49:e4:d8:7f:a3:75:96:de: 97:99:56:bc:0b:f2:39:8c:9c:7e:d3:96:9f:b4:1e: c1:51:99:ab:13:ad:38:d6:97:a8:16:9e:50:c5:96: c9:73:f6:4c:96:73:ff:ed:ec:52:ac:e3:40:2d:68: 83:b1:f5:7d:69:3b:14:73:fd:67:42:83:08:f7:f1: 90:7f:24:0a:6c:75:8b:a3:db:00:7c:ca:ef:44:9d: 06:7f:93:ae:25:1d:24:fa:a7:27:5a:90:eb:4f:02: dc:cd:1f:a2:da:69:cd:90:cb:70:cc:3c:d9:ab:39: 47:5a:7b:5e:67:9b:f5:73:92:93:72:87:93:42:26: a6:a3:3a:2c:91:c3:a4:db:bc:a0:37:47:9a:e0:df: 65:15:81:74:3e:c7:50:e1:17:7a:ff:58:47:2c:58: 6f:43:b8:26:95:98:52:ac:ab:50:2d:a2:88:50:19: fa:52:01:55:72:b9:1d:71:f9:0b:67:78:2f:3d:a5: 76:5a:5b:fb:0d:75:f4:56:91:b6:51:96:d1:09:83: e0:3b:ee:77:bd:1a:9f:8d:5e:50:08:9d:01:42:53: 91:f4:72:b5:85:f6:bc:67:40:02:1c:03:78:cd:3e: 8f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C2:2A:8E:07:1E:76:E5:4A:A3:6D:A3:6B:97:09:77:DA:B6:38:5E X509v3 Authority Key Identifier: keyid:70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:a3:df:68:04:db:6b:23:3b:31:5c:53:b5:d2:6d:9a:ba:17: f9:5e:29:18:a6:7c:cf:10:d8:bc:4a:16:01:9c:fd:6e:3b:07: 0d:62:a3:ba:04:62:7b:17:2f:e5:d9:92:75:c2:4a:45:90:24: 4b:94:fd:ba:ca:5b:7a:2b:18:74:0e:2c:85:a1:3f:35:36:02: d9:66:82:e3:38:f8:a5:0e:34:4f:7f:da:b8:f6:04:07:11:db: d4:ac:c2:87:ad:d0:e2:11:19:a1:6c:d8:2f:3a:9f:95:2a:24: 7e:70:92:8a:ac:cd:01:82:64:67:99:61:94:dc:f4:86:74:91: 04:0a:84:c2:64:a0:79:4d:57:bb:54:49:6a:f5:d7:22:b7:c2: 7f:32:0d:c0:95:af:9c:7d:13:36:e4:40:da:96:b9:7e:8a:80: 73:72:4d:35:41:1e:c7:ec:bc:0d:49:a9:a6:95:8c:f3:17:c0: 51:55:ca:5a:6d:e4:e5:24:b8:1b:78:bf:f7:3c:77:df:ef:db: 65:84:88:bc:26:f9:9b:b8:7f:72:ba:f4:49:54:22:6e:30:1f: 36:43:d1:9b:9c:54:4d:26:d7:ae:d0:68:84:d8:11:c1:1c:80: 3a:cb:99:61:54:27:4f:c8:15:0d:05:1d:a8:26:7e:c6:dd:61: 2e:67:53:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1NDAxMTAvBgNVBAUTKDcwMkZBMUFFOTY4MkIyQjIyRUNERDlBNTMwMTJGMEU2 RjFCQTFCOUMwHhcNMjYwNDA1MDIyMjEyWhcNMjYwNDEyMDIyMjEyWjAYMRYwFAYD VQQDEw02OWQxYzc1NC1mYTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BAV/8Lb+vr+J4w2rzToU6wrl9YUSeTYf6N1lt6XmVa8C/I5jJx+05aftB7B UZmrE6041peoFp5QxZbJc/ZMlnP/7exSrONALWiDsfV9aTsUc/1nQoMI9/GQfyQK bHWLo9sAfMrvRJ0Gf5OuJR0k+qcnWpDrTwLczR+i2mnNkMtwzDzZqzlHWnteZ5v1 c5KTcoeTQiamozoskcOk27ygN0ea4N9lFYF0PsdQ4Rd6/1hHLFhvQ7gmlZhSrKtQ LaKIUBn6UgFVcrkdcfkLZ3gvPaV2Wlv7DXX0VpG2UZbRCYPgO+53vRqfjV5QCJ0B QlOR9HK1hfa8Z0ACHAN4zT6PjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFTCKo4H HnblSqNto2uXCXfatjheMB8GA1UdIwQYMBaAFHAvoa6WgrKyLs3ZpTAS8Obxuhuc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjU0MC9EOTdBOTVCQ0Y4 ODAxMUVEQjlBQkZDNTZDNEY5QUUwMi9jQy1ocnBhQ3NySXV6ZG1sTUJMdzV2RzZH NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NDLWhycGFDc3JJdXpkbWxNQkx3NXZHNkc1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjU0MC9EOTdBOTVCQ0Y4ODAxMUVEQjlBQkZDNTZDNEY5QUUwMi9jQy1ocnBhQ3Ny SXV6ZG1sTUJMdzV2RzZHNXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOaPfaATbayM7MVxTtdJtmroX+V4pGKZ8zxDYvEoWAZz9bjsHDWKjugRiexcv 5dmSdcJKRZAkS5T9uspbeisYdA4shaE/NTYC2WaC4zj4pQ40T3/auPYEBxHb1KzC h63Q4hEZoWzYLzqflSokfnCSiqzNAYJkZ5lhlNz0hnSRBAqEwmSgeU1Xu1RJavXX IrfCfzINwJWvnH0TNuRA2pa5foqAc3JNNUEex+y8DUmpppWM8xfAUVXKWm3k5SS4 G3i/9zx33+/bZYSIvCb5m7h/crr0SVQibjAfNkPRm5xUTSbXrtBohNgRwRyAOsuZ YVQnT8gVDQUdqCZ+xt1hLmdT8Q== -----END CERTIFICATE-----Generated at Mon Apr 6 13:40:38 2026 by rpki-client