$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft File: hRAOWh-65f4aZcvxVzQTCo5UG7I.mft (raw, json) Hash identifier: FIiYfEUuzKyJ11zTA6xtF+JE2icKZVzNAs1PGSoNz2Y= Subject key identifier: CE:6A:F8:A9:30:00:04:80:91:72:66:E2:60:65:3E:4D:07:2A:97:2E Authority key identifier: 85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 Certificate issuer: /CN=A91B3087/serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft Manifest number: 74 Signing time: Sun 05 Apr 2026 07:14:33 +0000 Manifest this update: Sun 05 Apr 2026 07:14:32 +0000 Manifest next update: Sun 12 Apr 2026 07:14:32 +0000 Files and hashes: 1: hRAOWh-65f4aZcvxVzQTCo5UG7I.crl (hash: +Ll1+M+miDlmUJzbpDGSwGS/LAUmJTVulRIMf6lwHQ8=) 2: 8F35765ACF5811F085DD836EC4F9AE02.roa (hash: Rt4TGbr/K+WJ5nQlhD3lcCPl9EyJK1zP7OfMfktiw14=) 3: 3D51EF7C8F0111F087307F35C4F9AE02.roa (hash: ZTYnYrXftu4EMVac2jtmasDDa1311QW4YkSq9Et/mjo=) 4: 1F578DB08F0111F0BF750433C4F9AE02.roa (hash: hmo0JZjqsUcXR1CeyKb5AUyvewOo9tGw1tDFanCmkiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 07:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3087, serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Validity Not Before: Apr 5 07:14:32 2026 GMT Not After : Apr 12 07:14:32 2026 GMT Subject: CN=69d20bd8-a4b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:7c:8d:1b:f3:5d:47:65:43:7d:1b:a2:ea:42: 88:68:ba:54:2d:ec:e9:b4:ff:18:e0:ef:04:4f:d4: 90:d9:71:a4:d1:e9:92:ab:49:ad:6b:b3:a5:bb:87: 59:38:b4:de:49:71:2c:e8:9a:6a:f6:f2:78:14:a8: 2f:dc:77:e3:d0:8b:81:b1:54:d5:85:a9:b3:96:91: 94:bf:35:38:57:30:f7:db:70:61:1c:ae:17:db:a3: 19:a7:ac:8f:1e:d4:72:76:14:1d:e4:ef:d2:2a:39: b6:12:d2:12:15:92:8d:34:fb:2f:b6:b7:3f:10:9e: c3:d7:34:94:1e:41:1f:87:88:5a:1d:b9:5f:d0:f9: 0b:26:8b:45:2b:6f:e3:67:e2:77:61:4b:5c:26:b7: 6b:3c:18:45:2c:d7:3b:7c:c0:34:66:2b:0b:df:c0: 80:4a:7a:6b:84:c0:c2:b7:c6:a0:a8:2f:a5:1e:45: a4:fb:dd:eb:f2:8a:f9:42:5a:b5:40:82:1d:d4:64: 09:00:15:b7:79:90:a9:3c:03:e9:e5:1f:6e:2c:82: e9:14:fc:30:bd:89:03:68:1f:60:fe:16:2e:5e:58: ee:92:9b:75:5a:f4:af:4e:35:dc:1c:78:05:c2:4b: 88:bf:83:13:4e:6f:bc:26:a6:e7:73:44:d6:0c:21: 6d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:6A:F8:A9:30:00:04:80:91:72:66:E2:60:65:3E:4D:07:2A:97:2E X509v3 Authority Key Identifier: keyid:85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:90:f5:14:88:bb:ec:8d:b9:78:a0:31:3a:63:5f:96:21:32: fe:53:af:28:99:9c:e7:14:ed:37:36:a9:8a:88:e3:d7:ee:f8: 23:03:ac:a0:40:25:a2:ed:61:a9:16:69:53:49:f3:6a:f7:c0: 29:30:58:a6:b1:56:53:a4:3c:72:cc:5d:ef:b0:92:e1:64:9f: 1e:b2:04:f5:d3:a2:42:3e:4c:e8:bf:2c:16:95:1c:94:42:d1: 99:29:2c:4e:ac:4f:1d:30:15:d4:9d:e8:34:62:fd:ef:4e:1a: 89:c1:2d:e1:05:86:40:a4:e3:f6:8c:c2:7b:84:fe:ae:de:d4: 17:5d:54:38:8a:51:a7:d1:12:59:ab:36:7d:ad:98:48:d2:12: 1f:64:64:5b:fa:0e:a3:e3:51:b1:34:28:44:78:07:29:73:20: 28:24:00:25:c2:83:c6:46:be:72:41:88:b3:65:40:86:28:83: ea:c1:c1:fb:e2:45:cf:bf:fe:d4:27:fb:9a:19:08:20:d1:86: 6b:3b:94:29:76:b4:79:c5:de:85:93:94:24:3c:66:40:c6:4e: 0b:a6:34:65:f0:75:b5:7c:aa:44:f7:d4:41:f9:48:28:3c:76: 9c:58:22:26:d9:13:15:1b:53:17:96:51:fd:c8:b2:45:b7:0b: a8:3e:00:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMwODcxMTAvBgNVBAUTKDg1MTAwRTVBMUZCQUU1RkUxQTY1Q0JGMTU3MzQxMzBB OEU1NDFCQjIwHhcNMjYwNDA1MDcxNDMyWhcNMjYwNDEyMDcxNDMyWjAYMRYwFAYD VQQDEw02OWQyMGJkOC1hNGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjnyNG/NdR2VDfRui6kKIaLpULezptP8Y4O8ET9SQ2XGk0emSq0mta7Olu4dZ OLTeSXEs6Jpq9vJ4FKgv3Hfj0IuBsVTVhamzlpGUvzU4VzD323BhHK4X26MZp6yP HtRydhQd5O/SKjm2EtISFZKNNPsvtrc/EJ7D1zSUHkEfh4haHblf0PkLJotFK2/j Z+J3YUtcJrdrPBhFLNc7fMA0ZisL38CASnprhMDCt8agqC+lHkWk+93r8or5Qlq1 QIId1GQJABW3eZCpPAPp5R9uLILpFPwwvYkDaB9g/hYuXljukpt1WvSvTjXcHHgF wkuIv4MTTm+8Jqbnc0TWDCFtfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM5q+Kkw AASAkXJm4mBlPk0HKpcuMB8GA1UdIwQYMBaAFIUQDlofuuX+GmXL8Vc0EwqOVBuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzA4Ny80ODg4MzEzMjhF QUExMUYwQjgzNTI5NDlDNEY5QUUwMi9oUkFPV2gtNjVmNGFaY3Z4VnpRVENvNVVH N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hSQU9XaC02NWY0YVpjdnhWelFUQ281VUc3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzA4Ny80ODg4MzEzMjhFQUExMUYwQjgzNTI5NDlDNEY5QUUwMi9oUkFPV2gtNjVm NGFaY3Z4VnpRVENvNVVHN0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARZD1FIi77I25eKAxOmNfliEy/lOvKJmc5xTtNzapiojj1+74IwOsoEAlou1h qRZpU0nzavfAKTBYprFWU6Q8csxd77CS4WSfHrIE9dOiQj5M6L8sFpUclELRmSks TqxPHTAV1J3oNGL9704aicEt4QWGQKTj9ozCe4T+rt7UF11UOIpRp9ESWas2fa2Y SNISH2RkW/oOo+NRsTQoRHgHKXMgKCQAJcKDxka+ckGIs2VAhiiD6sHB++JFz7/+ 1Cf7mhkIINGGazuUKXa0ecXehZOUJDxmQMZOC6Y0ZfB1tXyqRPfUQflIKDx2nFgi JtkTFRtTF5ZR/ciyRbcLqD4Acw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:32:08 2026 by rpki-client