$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft File: HSpVFaipmzCyHRhxvPr9J-saEyo.mft (raw, json) Hash identifier: UTEopp2+mXzAJy3pJA381mncK6IT+bySlgn3J4OWJUU= Subject key identifier: 5D:43:F0:29:93:F6:20:7C:47:CE:4E:6B:46:61:A0:49:D4:3B:1F:6D Authority key identifier: 1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A Certificate issuer: /CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Certificate serial: 0300 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft Manifest number: 02FA Signing time: Sun 05 Apr 2026 01:01:49 +0000 Manifest this update: Sun 05 Apr 2026 01:01:48 +0000 Manifest next update: Sun 12 Apr 2026 01:01:48 +0000 Files and hashes: 1: HSpVFaipmzCyHRhxvPr9J-saEyo.crl (hash: awBigXMtSXS7H9xBhc74wM6e9n+S3VHRItjn7l1fwyM=) 2: D6E7D65C192E11ED927BF512C4F9AE02.roa (hash: DVr0amxAWZgoxiAH+g9huvxmF7FumJsE61KGOjDJl5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 768 (0x300) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B30, serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Validity Not Before: Apr 5 01:01:48 2026 GMT Not After : Apr 12 01:01:48 2026 GMT Subject: CN=69d1b47d-8db9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fd:e6:ed:79:59:a0:d9:65:bb:46:4a:b9:ed: de:3f:a3:9a:e6:d7:d0:0d:40:c4:70:53:0e:39:12: 96:d8:2a:ac:52:af:e4:3a:cc:2d:2b:1b:ac:37:ee: ed:9a:c8:0a:39:fe:28:ca:9f:b5:9f:65:f9:97:fd: 1b:0c:04:66:9f:d2:a3:93:01:68:22:01:44:41:80: e0:53:72:ae:2f:ee:1f:c7:a9:e5:10:d2:49:08:63: a5:d1:e9:6d:d1:26:67:98:fd:20:20:b0:be:60:a9: 33:26:75:30:f4:c3:5a:f7:41:56:4a:6d:a8:1c:bc: 94:1a:b6:cc:8c:6c:96:2f:f7:1c:f3:fe:d1:76:47: 55:94:99:29:9d:a9:38:c4:ef:dc:5e:54:c9:1e:bd: 1e:51:3a:e5:19:fd:7c:ad:da:09:d6:99:b0:ca:96: 99:73:8d:f9:81:ef:43:a7:70:9c:02:32:51:ee:2e: a4:8e:44:55:2a:9b:50:87:68:6d:f4:12:85:d0:bf: 3a:b6:93:17:ba:9c:73:8d:95:57:b7:e7:a1:c1:5f: 24:ec:2b:9a:ea:40:94:bf:70:f5:55:4f:77:38:67: 86:89:8d:f3:a5:5c:00:9d:44:a1:e1:8c:01:0f:2d: 81:5c:3b:29:a2:6d:d3:ae:8a:2f:bb:95:a7:91:85: 4f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:43:F0:29:93:F6:20:7C:47:CE:4E:6B:46:61:A0:49:D4:3B:1F:6D X509v3 Authority Key Identifier: keyid:1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:9c:02:d6:5b:0a:58:54:36:60:db:a5:d4:50:65:4f:8e:a0: 12:8a:35:1f:b4:a7:d3:67:2a:e0:00:76:1c:ea:0d:7d:4a:d9: 2f:55:12:e1:c7:c9:d3:8d:3d:a9:95:5d:da:18:34:89:fe:35: c2:77:84:5a:e7:66:2e:de:9e:47:07:e4:9d:61:c9:53:c9:ab: fc:05:32:05:6b:54:02:df:92:a6:f0:07:c7:90:94:f4:db:d0: 22:d0:aa:9d:55:6f:51:bc:49:73:cb:b2:f6:d0:97:6b:da:bb: 05:8d:7a:b3:28:65:f1:84:fc:89:51:d5:7f:a8:a5:db:d0:af: b6:bc:0f:b4:77:08:6e:b1:38:c2:2c:e3:01:fb:60:5e:bd:d8: 73:b3:51:ea:bc:1c:6e:35:e5:86:c6:cc:6e:96:3f:3e:71:2f: ba:90:35:72:ca:d9:cd:d5:16:0f:3e:54:02:02:6a:f5:0d:17: 6d:a0:b0:d0:94:a4:40:ff:85:72:99:0b:79:fb:63:1c:0a:7b: 6d:2a:41:b5:8a:3b:6a:48:5c:b4:89:4f:5b:d7:88:25:6d:65: 19:36:78:dc:aa:93:0c:aa:19:4f:e7:c4:6f:c4:72:9f:7d:ff: e0:7a:5c:43:ef:c2:fa:3d:be:d3:50:b7:c6:de:c9:19:99:1f: 94:46:21:b5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMzAxMTAvBgNVBAUTKDFEMkE1NTE1QThBOTlCMzBCMjFEMTg3MUJDRkFGRDI3 RUIxQTEzMkEwHhcNMjYwNDA1MDEwMTQ4WhcNMjYwNDEyMDEwMTQ4WjAYMRYwFAYD VQQDEw02OWQxYjQ3ZC04ZGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/3m7XlZoNllu0ZKue3eP6Oa5tfQDUDEcFMOORKW2CqsUq/kOswtKxusN+7t msgKOf4oyp+1n2X5l/0bDARmn9KjkwFoIgFEQYDgU3KuL+4fx6nlENJJCGOl0elt 0SZnmP0gILC+YKkzJnUw9MNa90FWSm2oHLyUGrbMjGyWL/cc8/7RdkdVlJkpnak4 xO/cXlTJHr0eUTrlGf18rdoJ1pmwypaZc435ge9Dp3CcAjJR7i6kjkRVKptQh2ht 9BKF0L86tpMXupxzjZVXt+ehwV8k7Cua6kCUv3D1VU93OGeGiY3zpVwAnUSh4YwB Dy2BXDspom3Troovu5WnkYVPrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF1D8CmT 9iB8R85Oa0ZhoEnUOx9tMB8GA1UdIwQYMBaAFB0qVRWoqZswsh0Ycbz6/SfrGhMq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIzMC84OTc3QzY3NDE5 MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16Q3lIUmh4dlByOUotc2FF eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hTcFZGYWlwbXpDeUhSaHh2UHI5Si1zYUV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIzMC84OTc3QzY3NDE5MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16 Q3lIUmh4dlByOUotc2FFeW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArZwC1lsKWFQ2YNul1FBlT46gEoo1H7Sn02cq4AB2HOoNfUrZL1US4cfJ0409 qZVd2hg0if41wneEWudmLt6eRwfknWHJU8mr/AUyBWtUAt+SpvAHx5CU9NvQItCq nVVvUbxJc8uy9tCXa9q7BY16syhl8YT8iVHVf6il29CvtrwPtHcIbrE4wizjAftg Xr3Yc7NR6rwcbjXlhsbMbpY/PnEvupA1csrZzdUWDz5UAgJq9Q0XbaCw0JSkQP+F cpkLeftjHAp7bSpBtYo7akhctIlPW9eIJW1lGTZ43KqTDKoZT+fEb8Ryn33/4Hpc Q+/C+j2+01C3xt7JGZkflEYhtQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:54:31 2026 by rpki-client