$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json) Hash identifier: 0K35qFv4fpmFVkbyXLsygrHp3AidDMTjq/yU+r9IpIs= Subject key identifier: 01:A2:83:7C:20:74:98:88:B3:C1:98:95:96:D2:13:AD:48:EB:54:22 Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Certificate serial: 0C86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft Manifest number: 0C7A Signing time: Sat 04 Apr 2026 18:26:18 +0000 Manifest this update: Sat 04 Apr 2026 18:26:17 +0000 Manifest next update: Sat 11 Apr 2026 18:26:17 +0000 Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: 7Y4+PJWXQOA/3WytcbtIbpmTe5lgzZG7c/0ZII564so=) 2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: 7Dz9hu6gjsKF7rOCaXHWUeixpnR4qVyHb9xN6ykXLfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3206 (0xc86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FD74, serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Validity Not Before: Apr 4 18:26:17 2026 GMT Not After : Apr 11 18:26:17 2026 GMT Subject: CN=69d157ca-657b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b2:8b:f8:b6:e4:7a:69:f5:23:b2:8e:b1:68: 73:36:33:15:62:68:87:df:63:cd:43:06:a7:90:95: 09:2c:b9:cc:3f:56:32:63:2a:06:d8:97:7f:eb:39: 27:71:93:1f:29:3f:f2:d6:92:63:11:6b:20:60:4f: ca:d1:c5:b9:8a:f3:a4:2a:a8:8c:47:86:ab:4e:4e: 2a:13:dd:e1:7b:3e:ae:3e:7e:95:57:d0:1b:47:e8: 99:84:9b:6c:89:f7:d2:37:6d:1f:9c:fb:6d:aa:43: 4e:81:17:18:5b:16:3d:0a:89:6c:3e:bc:50:67:75: e7:c8:53:79:21:2f:fc:61:41:27:23:56:6c:51:fd: bc:f9:00:7c:bc:8b:03:1b:8b:f3:9c:0a:6e:61:af: c4:9f:07:28:4b:43:cb:6e:fe:16:09:87:34:6f:69: e5:5d:a5:f0:ff:9a:13:eb:4b:0e:aa:e5:2e:b4:45: 99:54:7b:b5:bf:f1:df:fb:74:4f:f8:b0:a0:c7:cf: e9:91:92:60:c6:89:22:80:38:50:85:b1:08:a7:a5: 9f:fb:a1:3b:6a:a5:15:17:96:1d:fb:ab:99:0e:2c: 10:82:bb:e6:e8:b3:20:2c:d1:6e:c2:34:45:67:67: a3:08:37:bd:7e:7c:96:a2:ad:98:9d:91:56:86:18: f2:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:A2:83:7C:20:74:98:88:B3:C1:98:95:96:D2:13:AD:48:EB:54:22 X509v3 Authority Key Identifier: keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:d7:42:0c:96:bb:62:8a:ff:fd:a5:52:56:99:4a:32:1a:ce: b1:8d:c0:09:a6:57:c1:58:64:00:d5:3c:a5:98:5f:a1:63:ab: ab:57:00:1a:30:2d:08:2b:86:c2:8d:b1:b8:c0:45:02:2e:c2: 8e:87:b8:e7:6b:67:52:63:2d:b3:08:50:ba:f8:67:22:d6:d0: e8:1e:e4:a7:b3:70:8e:3c:cf:3b:3a:a9:3c:ed:86:0c:0f:f8: c9:d8:55:3b:d9:63:c9:67:18:ee:94:07:f0:4b:6c:5d:18:65: 9f:08:d6:ad:f7:3c:3c:86:3b:b5:b1:ff:04:ad:fa:53:3a:a2: 2b:13:a9:04:ec:f5:c5:55:ae:2d:2b:39:e7:e6:52:ce:93:8a: 2f:6a:bf:85:a6:57:30:a3:a3:7d:ea:8a:dd:ae:b8:8d:ab:22: 41:95:e4:93:be:5a:ab:59:6a:26:96:74:51:8a:6e:d9:29:9e: a2:22:eb:49:b0:96:c2:95:8c:11:45:d2:77:5e:41:0c:2f:85: 3a:53:a0:3d:cf:d5:b0:34:ad:6e:44:36:14:64:73:0a:98:90: ce:0d:7e:a4:57:da:43:3f:e4:6e:49:0f:b8:bb:34:47:04:ca: 51:7e:4f:f0:45:7c:79:5a:a5:f7:ef:23:72:b7:55:51:8f:d0: 7e:53:61:42 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND MDJDMDM2MjcwHhcNMjYwNDA0MTgyNjE3WhcNMjYwNDExMTgyNjE3WjAYMRYwFAYD VQQDEw02OWQxNTdjYS02NTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAobKL+Lbkemn1I7KOsWhzNjMVYmiH32PNQwankJUJLLnMP1YyYyoG2Jd/6zkn cZMfKT/y1pJjEWsgYE/K0cW5ivOkKqiMR4arTk4qE93hez6uPn6VV9AbR+iZhJts iffSN20fnPttqkNOgRcYWxY9ColsPrxQZ3XnyFN5IS/8YUEnI1ZsUf28+QB8vIsD G4vznApuYa/EnwcoS0PLbv4WCYc0b2nlXaXw/5oT60sOquUutEWZVHu1v/Hf+3RP +LCgx8/pkZJgxokigDhQhbEIp6Wf+6E7aqUVF5Yd+6uZDiwQgrvm6LMgLNFuwjRF Z2ejCDe9fnyWoq2YnZFWhhjyOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAGig3wg dJiIs8GYlZbSE61I61QiMB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y MkxJQzM3SGVJaFBBTEFOaWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc9dCDJa7Yor//aVSVplKMhrOsY3ACaZXwVhkANU8pZhfoWOrq1cAGjAtCCuG wo2xuMBFAi7Cjoe452tnUmMtswhQuvhnItbQ6B7kp7NwjjzPOzqpPO2GDA/4ydhV O9ljyWcY7pQH8EtsXRhlnwjWrfc8PIY7tbH/BK36UzqiKxOpBOz1xVWuLSs55+ZS zpOKL2q/haZXMKOjfeqK3a64jasiQZXkk75aq1lqJpZ0UYpu2SmeoiLrSbCWwpWM EUXSd15BDC+FOlOgPc/VsDStbkQ2FGRzCpiQzg1+pFfaQz/kbkkPuLs0RwTKUX5P 8EV8eVql9+8jcrdVUY/QflNhQg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:37 2026 by rpki-client