$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft File: htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft (raw, json) Hash identifier: zBiNfIqQ9a+BHAaFwhauKgrnUjHO0O1+gwCdSh/a7Mw= Subject key identifier: FE:28:F7:45:31:13:3A:9B:A5:5E:36:96:25:A2:F6:DE:00:A3:E7:A2 Authority key identifier: 86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D Certificate issuer: /CN=A91A99C5/serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft Manifest number: 8D Signing time: Sun 05 Apr 2026 06:54:49 +0000 Manifest this update: Sun 05 Apr 2026 06:54:48 +0000 Manifest next update: Sun 12 Apr 2026 06:54:48 +0000 Files and hashes: 1: htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl (hash: rjEOHWOOnMYLVPulJTQ03K82NUTZat1fLxzjkLgVtyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99C5, serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D Validity Not Before: Apr 5 06:54:48 2026 GMT Not After : Apr 12 06:54:48 2026 GMT Subject: CN=69d20739-e6c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:78:b4:22:b6:23:d5:48:43:19:fb:59:62:88: 0b:2c:1a:55:f4:cb:b3:0e:4e:53:7f:d6:81:35:c7: b9:30:c3:65:3b:6f:1f:b5:5f:5b:8f:7f:85:b8:57: 85:20:95:d8:80:37:d8:b8:68:e3:8e:cc:d7:0f:e6: 8c:27:d0:c0:eb:06:26:aa:fc:f9:c0:dd:93:4f:20: 14:49:cf:1d:ef:39:52:1a:cb:82:ed:d7:cd:7f:67: 95:d3:26:06:75:b7:c5:02:b3:fd:ce:5c:0c:f9:ef: 1e:78:df:5c:6b:7c:79:9c:39:03:e9:4c:2f:3a:1a: ff:e8:72:fb:c7:e9:de:6f:dc:79:10:ef:94:9c:81: a6:0c:4a:05:22:84:9f:a7:18:f0:ea:10:93:98:c1: 59:96:5e:ee:e8:e4:6c:6c:c2:93:18:0a:34:53:74: 40:e3:e4:88:d8:a9:aa:46:81:a7:92:f8:c6:41:45: 36:e4:ea:55:9d:eb:76:fb:10:13:76:a2:a6:c8:a2: 53:40:58:4a:c3:1a:f9:ad:fc:8f:3e:57:89:f0:0a: 53:43:a9:a5:8a:8b:4f:3c:25:14:ba:d4:33:bb:33: 3d:d2:ae:9a:84:68:f6:ea:5b:ef:c0:b0:85:c9:54: 5b:bd:3c:0d:8d:0d:df:29:e7:67:15:7c:d1:65:84: a8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:28:F7:45:31:13:3A:9B:A5:5E:36:96:25:A2:F6:DE:00:A3:E7:A2 X509v3 Authority Key Identifier: keyid:86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:7f:a3:01:d4:28:2e:55:5a:69:5a:b4:48:09:e9:34:5a:58: ac:b0:ca:df:a9:4f:8d:77:eb:f5:03:b2:55:b0:b8:36:c8:b6: 6a:0d:2e:c9:7c:45:3c:bd:b2:66:0b:35:af:dd:99:ba:16:15: a3:b3:75:2e:1b:ee:cc:05:28:86:55:5b:4b:3f:90:e1:b2:91: 29:47:10:f5:44:61:b0:d1:55:a4:91:65:59:99:5c:46:c1:19: 69:45:37:a5:d4:39:f0:e6:99:69:38:29:4a:2c:b8:88:2a:dc: 3a:53:ad:0e:1d:a9:2e:c1:51:da:8a:cc:85:2a:1f:7c:89:67: 85:97:9d:87:23:5d:2f:28:6e:78:ee:0d:3a:72:12:78:9f:91: e3:c9:f1:4d:c2:9a:25:62:75:76:3e:aa:13:40:61:03:30:ec: 34:a8:da:07:25:44:91:b6:46:ea:3a:76:43:c5:80:be:6d:86: 06:12:b3:55:87:dc:97:28:2b:c8:67:70:28:66:0b:0b:f1:18: 7c:3b:79:0d:5a:92:19:d7:db:79:b2:bc:5a:50:8a:ee:47:6a: bd:de:10:e2:10:29:9c:7e:3e:56:7d:03:7b:96:56:e3:9a:0d: 1e:fd:12:89:13:88:c0:2f:ef:4a:0c:d4:e6:3e:e9:c4:84:5a: 05:23:b9:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk5QzUxMTAvBgNVBAUTKDg2RDk1RjQxRUQxOTgxRkE4RDBCNTkwOEQ2NDQ0NjUx MEU2RUFDN0QwHhcNMjYwNDA1MDY1NDQ4WhcNMjYwNDEyMDY1NDQ4WjAYMRYwFAYD VQQDEw02OWQyMDczOS1lNmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Xi0IrYj1UhDGftZYogLLBpV9MuzDk5Tf9aBNce5MMNlO28ftV9bj3+FuFeF IJXYgDfYuGjjjszXD+aMJ9DA6wYmqvz5wN2TTyAUSc8d7zlSGsuC7dfNf2eV0yYG dbfFArP9zlwM+e8eeN9ca3x5nDkD6UwvOhr/6HL7x+neb9x5EO+UnIGmDEoFIoSf pxjw6hCTmMFZll7u6ORsbMKTGAo0U3RA4+SI2KmqRoGnkvjGQUU25OpVnet2+xAT dqKmyKJTQFhKwxr5rfyPPleJ8ApTQ6mliotPPCUUutQzuzM90q6ahGj26lvvwLCF yVRbvTwNjQ3fKednFXzRZYSoiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP4o90Ux EzqbpV42liWi9t4Ao+eiMB8GA1UdIwQYMBaAFIbZX0HtGYH6jQtZCNZERlEObqx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTlDNS8wNjAzRTVCRTVE QkMxMUYwOUFBMTc4NTBDNEY5QUUwMi9odGxmUWUwWmdmcU5DMWtJMWtSR1VRNXVy SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h0bGZRZTBaZ2ZxTkMxa0kxa1JHVVE1dXJIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTlDNS8wNjAzRTVCRTVEQkMxMUYwOUFBMTc4NTBDNEY5QUUwMi9odGxmUWUwWmdm cU5DMWtJMWtSR1VRNXVySDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeH+jAdQoLlVaaVq0SAnpNFpYrLDK36lPjXfr9QOyVbC4Nsi2ag0uyXxFPL2y Zgs1r92ZuhYVo7N1LhvuzAUohlVbSz+Q4bKRKUcQ9URhsNFVpJFlWZlcRsEZaUU3 pdQ58OaZaTgpSiy4iCrcOlOtDh2pLsFR2orMhSoffIlnhZedhyNdLyhueO4NOnIS eJ+R48nxTcKaJWJ1dj6qE0BhAzDsNKjaByVEkbZG6jp2Q8WAvm2GBhKzVYfclygr yGdwKGYLC/EYfDt5DVqSGdfbebK8WlCK7kdqvd4Q4hApnH4+Vn0De5ZW45oNHv0S iROIwC/vSgzU5j7pxIRaBSO5CA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:46 2026 by rpki-client