$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft File: 0hsNWsWvkZAPUK2WADMT5R7WChA.mft (raw, json) Hash identifier: IXwIB3xhQVaDbC3WQu4We2PQmcJ1jZPwCyHRxUsOc/g= Subject key identifier: E8:3F:C0:21:BC:A0:4C:4B:80:82:BC:DD:7F:04:96:45:E0:57:8C:6C Authority key identifier: D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 Certificate issuer: /CN=A91A0E9D/serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft Manifest number: 0119 Signing time: Sun 05 Apr 2026 05:23:05 +0000 Manifest this update: Sun 05 Apr 2026 05:23:05 +0000 Manifest next update: Sun 12 Apr 2026 05:23:05 +0000 Files and hashes: 1: 0hsNWsWvkZAPUK2WADMT5R7WChA.crl (hash: Q76L9xC9P31Td4Ve2n639f9vj/HCaEvPYEojP/i1je8=) 2: 3996C94896D211EF924C486FC4F9AE02.roa (hash: RSWSsqKVGFqnc5MjQ5V0wfdqY1cc/uC9LzB1g38vtcs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:23:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0E9D, serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Validity Not Before: Apr 5 05:23:05 2026 GMT Not After : Apr 12 05:23:05 2026 GMT Subject: CN=69d1f1b9-c946 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:60:68:27:e1:68:14:d6:6b:ba:f4:0a:0d:22: 2c:82:c0:ce:08:67:f8:ac:3b:2d:f3:9b:65:5e:e7: 40:56:62:47:77:e2:28:64:40:68:8f:f5:d8:6f:95: 7b:10:95:81:25:7d:f9:cb:1d:48:dd:bd:90:26:ad: 32:7e:9b:2f:d7:9d:88:46:ed:d4:c0:79:ab:34:79: b7:47:aa:b1:22:dd:e4:d2:d8:7d:64:80:ef:65:36: b0:35:89:1f:f9:c3:1e:d6:64:d0:4d:f9:9b:09:f4: e0:4f:e2:d6:df:c5:d8:b8:e1:c4:76:5d:b0:d9:e6: 94:cc:42:13:00:f4:9b:da:67:9e:1c:e2:53:36:08: a6:d9:48:1f:55:b3:1e:ca:d5:0c:35:54:e5:b2:61: 06:af:1a:2d:57:5d:a0:c1:4c:d0:10:d5:9f:54:94: c0:2e:f4:79:29:22:ba:c6:00:85:66:56:76:fc:14: 0e:dc:e7:94:d7:a1:bc:1d:f2:42:db:ce:68:46:a3: 85:b8:b1:4e:45:fb:c4:47:ca:31:26:6b:98:d5:ef: f4:ab:58:8d:5e:5d:3b:80:8d:97:70:0a:93:64:6c: 3a:c3:dc:e6:90:08:13:4e:26:7f:f2:6b:e9:06:ad: fd:dd:d6:25:09:a7:6d:b4:e8:d3:ae:a1:5f:9d:34: c7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:3F:C0:21:BC:A0:4C:4B:80:82:BC:DD:7F:04:96:45:E0:57:8C:6C X509v3 Authority Key Identifier: keyid:D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:0a:1a:98:29:63:f4:35:e4:08:53:a2:b8:e9:8f:4a:5d:21: 3c:85:ce:e1:35:12:0a:8c:2b:18:83:1e:69:d2:3d:b1:11:84: 09:4c:b6:af:93:7c:41:ac:93:bf:60:e5:8d:cd:a3:88:65:74: fc:d6:5e:3a:97:6e:dc:07:c1:ed:05:b0:65:c7:e0:e0:11:de: 04:98:3d:f4:b3:03:c3:4a:42:65:d4:06:0d:f1:c8:5d:95:73: df:2a:68:ae:2c:2a:53:3b:0a:bc:e4:fe:97:7b:36:36:92:e5: c7:5d:1c:18:eb:23:96:b8:e2:e5:84:3f:2b:b8:be:c0:8d:ae: cb:81:c9:e7:9c:96:49:47:79:61:da:d8:6e:ec:06:87:a5:05: 2d:8d:4a:d1:51:89:71:7c:34:4f:5d:4d:eb:b5:d4:4c:f1:2f: 6d:23:86:00:f4:b8:10:dc:56:62:6e:b9:ad:12:98:49:1b:58: ed:f8:16:9f:50:7a:6e:e5:8c:6c:80:a9:02:b8:f4:9c:0a:2a: b8:cc:d7:75:7d:2e:d8:76:50:cf:b2:cc:f8:d8:10:07:60:9b: b7:4f:18:f0:d6:f5:a8:7a:2e:4b:88:78:47:e5:6b:f9:0e:1f: 8e:0a:51:bc:70:d6:7d:37:b3:c3:cc:13:3c:7e:6b:b6:2c:99: c5:89:0d:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBFOUQxMTAvBgNVBAUTKEQyMUIwRDVBQzVBRjkxOTAwRjUwQUQ5NjAwMzMxM0U1 MUVENjBBMTAwHhcNMjYwNDA1MDUyMzA1WhcNMjYwNDEyMDUyMzA1WjAYMRYwFAYD VQQDEw02OWQxZjFiOS1jOTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0WBoJ+FoFNZruvQKDSIsgsDOCGf4rDst85tlXudAVmJHd+IoZEBoj/XYb5V7 EJWBJX35yx1I3b2QJq0yfpsv152IRu3UwHmrNHm3R6qxIt3k0th9ZIDvZTawNYkf +cMe1mTQTfmbCfTgT+LW38XYuOHEdl2w2eaUzEITAPSb2meeHOJTNgim2UgfVbMe ytUMNVTlsmEGrxotV12gwUzQENWfVJTALvR5KSK6xgCFZlZ2/BQO3OeU16G8HfJC 285oRqOFuLFORfvER8oxJmuY1e/0q1iNXl07gI2XcAqTZGw6w9zmkAgTTiZ/8mvp Bq393dYlCadttOjTrqFfnTTHMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOg/wCG8 oExLgIK83X8ElkXgV4xsMB8GA1UdIwQYMBaAFNIbDVrFr5GQD1CtlgAzE+Ue1goQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEU5RC85NTY5QURCNDk1 REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmtaQVBVSzJXQURNVDVSN1dD aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoc05Xc1d2a1pBUFVLMldBRE1UNVI3V0NoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEU5RC85NTY5QURCNDk1REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmta QVBVSzJXQURNVDVSN1dDaEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUwoamClj9DXkCFOiuOmPSl0hPIXO4TUSCowrGIMeadI9sRGECUy2r5N8QayT v2Dljc2jiGV0/NZeOpdu3AfB7QWwZcfg4BHeBJg99LMDw0pCZdQGDfHIXZVz3ypo riwqUzsKvOT+l3s2NpLlx10cGOsjlrji5YQ/K7i+wI2uy4HJ55yWSUd5YdrYbuwG h6UFLY1K0VGJcXw0T11N67XUTPEvbSOGAPS4ENxWYm65rRKYSRtY7fgWn1B6buWM bICpArj0nAoquMzXdX0u2HZQz7LM+NgQB2Cbt08Y8Nb1qHouS4h4R+Vr+Q4fjgpR vHDWfTezw8wTPH5rtiyZxYkNIA== -----END CERTIFICATE-----Generated at Mon Apr 6 09:01:20 2026 by rpki-client