$ rpki-client -vvf rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft File: HJuixf6owDTaVR_a3GKlOnoC5ds.mft (raw, json) Hash identifier: NFRvP7NG0HHb3ueNdQpbZTFWfA0dtasqyrSiaoBVNWM= Subject key identifier: 9F:6A:DC:CC:EF:64:F4:9C:85:A6:76:A2:25:40:87:B1:65:95:16:9C Authority key identifier: 1C:9B:A2:C5:FE:A8:C0:34:DA:55:1F:DA:DC:62:A5:3A:7A:02:E5:DB Certificate issuer: /CN=A9193D86/serialNumber=1C9BA2C5FEA8C034DA551FDADC62A53A7A02E5DB Certificate serial: 0A0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft Manifest number: 09EA Signing time: Sun 22 Mar 2026 19:35:07 +0000 Manifest this update: Sun 22 Mar 2026 19:35:06 +0000 Manifest next update: Sun 29 Mar 2026 19:35:06 +0000 Files and hashes: 1: HJuixf6owDTaVR_a3GKlOnoC5ds.crl (hash: AEEDov9T+kQO6MPVijqAMyuKFzJar9/zW2R2MI5eml0=) 2: 52FC6006A19911EA96035C38C4F9AE02.roa (hash: WcxNaiIGqzItQBb7CYbwvBMMYMGcLD8tEl0Q7aIbezo=) 3: 7B136C42CC8511EC8D238672C4F9AE02.roa (hash: f4XaB+bRmsoNFuDMRRMiph6D0qfKs6SQvSg9M2XJC3I=) 4: 79C02FB0CC8511EC8D238672C4F9AE02.roa (hash: PEyE0w8+UrcKJlHY3jaK16cYhVK4lg74ijcsWV2DoxU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.crl rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 19:35:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2572 (0xa0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193D86, serialNumber=1C9BA2C5FEA8C034DA551FDADC62A53A7A02E5DB Validity Not Before: Mar 22 19:35:06 2026 GMT Not After : Mar 29 19:35:06 2026 GMT Subject: CN=69c0446b-f388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e8:3e:be:1a:f4:60:3e:df:ef:f3:bd:8b:1a: 80:66:a5:80:f7:ba:90:f4:02:22:32:e8:9d:1f:7b: a5:bd:22:40:80:1d:14:ab:63:0e:03:84:d0:36:fc: cc:0f:85:54:b9:af:17:5a:c4:6f:c8:53:a3:ef:a1: 07:0a:25:7f:6c:d5:0f:eb:f3:5c:72:6d:38:5c:85: 9a:07:dc:6e:8b:03:26:47:ec:f9:3f:a9:6d:fb:1e: 03:b2:5b:c1:44:d6:c6:02:fc:b9:14:33:a1:82:90: ad:12:06:07:36:6f:a3:cb:b4:03:c2:fc:77:f4:e6: a1:af:0d:ba:f4:27:ff:06:ac:aa:c9:6f:43:bd:9d: 4a:b5:26:94:4a:be:66:eb:2b:f4:c2:5e:b9:b2:bf: 55:c0:ff:41:c5:c5:d1:45:08:a4:7e:3e:e8:da:ea: 30:14:08:2e:f1:36:e0:e3:03:f3:39:46:b0:bd:97: 62:1d:ea:28:e2:54:ea:13:5d:9b:c3:c7:d6:1e:f3: e3:40:67:80:02:69:83:e8:ea:c0:a8:3c:06:ea:23: 12:0c:df:fd:a6:50:f6:53:bb:19:db:5e:29:e9:fb: 28:89:42:e9:ba:1d:a6:a8:f6:94:76:f0:18:04:76: 8a:2a:f4:de:92:da:3e:7e:59:1f:01:9c:f3:bc:fc: a2:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:6A:DC:CC:EF:64:F4:9C:85:A6:76:A2:25:40:87:B1:65:95:16:9C X509v3 Authority Key Identifier: keyid:1C:9B:A2:C5:FE:A8:C0:34:DA:55:1F:DA:DC:62:A5:3A:7A:02:E5:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:2f:02:33:83:7c:7c:a5:f7:78:52:6b:43:4e:01:54:c4:16: 9d:fc:02:b4:fa:5d:e7:de:65:57:ac:ff:bf:b5:ea:bf:bf:aa: b2:09:38:da:c9:f7:49:67:df:61:f2:e2:a0:ea:ef:ba:9c:5e: 73:81:c0:68:8b:7b:15:71:f1:3a:36:ea:43:2d:0a:16:d6:b8: 18:b1:7f:2f:2e:5f:74:54:21:96:b6:1a:eb:da:2a:93:6c:19: e5:2e:96:ef:ea:4a:be:07:c1:5d:0c:e6:50:f8:c7:4c:d0:27: 62:03:08:d1:dc:58:57:05:32:3c:34:c3:52:6d:1b:3c:74:c8: c2:af:71:5d:48:12:42:4e:af:46:4c:19:6c:54:f3:e8:ba:4c: b1:4d:71:eb:57:41:11:b4:6e:e1:a6:18:7b:ed:c8:54:55:94: 4d:1b:c5:eb:41:c5:a8:c6:58:59:a5:c2:95:8a:43:04:c7:15: 5f:6b:43:69:4d:82:a2:0a:0b:9f:13:ca:1f:07:d0:f6:c9:f3: 3e:50:92:49:2f:f4:af:b6:eb:18:e4:a0:3b:b8:64:86:a6:d0: 81:c7:2e:86:3c:dd:9a:84:3f:35:51:3b:ca:7c:23:76:20:7b: 98:4c:03:85:e3:4d:ac:10:e0:c8:34:6e:86:06:57:9c:e3:2a: c1:55:f0:94 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNEODYxMTAvBgNVBAUTKDFDOUJBMkM1RkVBOEMwMzREQTU1MUZEQURDNjJBNTNB N0EwMkU1REIwHhcNMjYwMzIyMTkzNTA2WhcNMjYwMzI5MTkzNTA2WjAYMRYwFAYD VQQDEw02OWMwNDQ2Yi1mMzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwug+vhr0YD7f7/O9ixqAZqWA97qQ9AIiMuidH3ulvSJAgB0Uq2MOA4TQNvzM D4VUua8XWsRvyFOj76EHCiV/bNUP6/Nccm04XIWaB9xuiwMmR+z5P6lt+x4DslvB RNbGAvy5FDOhgpCtEgYHNm+jy7QDwvx39Oahrw269Cf/BqyqyW9DvZ1KtSaUSr5m 6yv0wl65sr9VwP9BxcXRRQikfj7o2uowFAgu8Tbg4wPzOUawvZdiHeoo4lTqE12b w8fWHvPjQGeAAmmD6OrAqDwG6iMSDN/9plD2U7sZ214p6fsoiULpuh2mqPaUdvAY BHaKKvTekto+flkfAZzzvPyirQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ9q3Mzv ZPSchaZ2oiVAh7FllRacMB8GA1UdIwQYMBaAFBybosX+qMA02lUf2txipTp6AuXb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0Q4Ni9DNjdEMTc2RTlB NUYxMUVBOUY2MjZCNUVDNEY5QUUwMi9ISnVpeGY2b3dEVGFWUl9hM0dLbE9ub0M1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hKdWl4ZjZvd0RUYVZSX2EzR0tsT25vQzVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0Q4Ni9DNjdEMTc2RTlBNUYxMUVBOUY2MjZCNUVDNEY5QUUwMi9ISnVpeGY2b3dE VGFWUl9hM0dLbE9ub0M1ZHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJS8CM4N8fKX3eFJrQ04BVMQWnfwCtPpd595lV6z/v7Xqv7+qsgk42sn3SWff YfLioOrvupxec4HAaIt7FXHxOjbqQy0KFta4GLF/Ly5fdFQhlrYa69oqk2wZ5S6W 7+pKvgfBXQzmUPjHTNAnYgMI0dxYVwUyPDTDUm0bPHTIwq9xXUgSQk6vRkwZbFTz 6LpMsU1x61dBEbRu4aYYe+3IVFWUTRvF60HFqMZYWaXClYpDBMcVX2tDaU2CogoL nxPKHwfQ9snzPlCSSS/0r7brGOSgO7hkhqbQgccuhjzdmoQ/NVE7ynwjdiB7mEwD heNNrBDgyDRuhgZXnOMqwVXwlA== -----END CERTIFICATE-----Generated at Tue Mar 24 09:20:05 2026 by rpki-client