$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft File: HLQwTtZoyPcWQT79ZhdMOGcMics.mft (raw, json) Hash identifier: y5SnMaJTLvJzyqWCV/qeQTgvMpQaeb8iohAah1OeApw= Subject key identifier: 0A:61:D0:62:3E:E3:6E:85:54:10:6D:3A:C1:D4:17:5D:B7:07:B1:0D Authority key identifier: 1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB Certificate issuer: /CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Certificate serial: 14AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft Manifest number: 14A3 Signing time: Sat 04 Apr 2026 16:45:47 +0000 Manifest this update: Sat 04 Apr 2026 16:45:46 +0000 Manifest next update: Sat 11 Apr 2026 16:45:46 +0000 Files and hashes: 1: HLQwTtZoyPcWQT79ZhdMOGcMics.crl (hash: AuosvAk7nDSPAYMKj9/KRDiafDdmq3pRGfU4HgtH3LI=) 2: 1CA71D84493D11EAAB30C638C4F9AE02.roa (hash: wDjfOh8609HdFw/YVyLAqOmKGoMVNeZ+2qVSszT55y4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:45:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5293 (0x14ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4286, serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Validity Not Before: Apr 4 16:45:46 2026 GMT Not After : Apr 11 16:45:46 2026 GMT Subject: CN=69d1403a-5636 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:68:ff:0e:22:7e:0b:4c:10:f1:f1:c3:55:37: 98:34:1e:3b:17:19:01:c6:96:d1:bf:18:ac:7e:c7: 09:34:9b:b1:10:f6:18:89:c5:bd:2f:cc:ce:df:e3: 79:b7:9e:c1:42:54:b5:1c:0e:3d:c9:0c:5b:a4:bc: 6f:63:c4:9e:18:c7:90:fa:54:45:d3:60:1d:b0:6a: 1c:ba:22:5c:36:0d:6c:1b:c4:b9:ba:ed:a7:d8:a9: 02:1c:44:ac:47:92:c7:c2:fd:7e:30:07:50:19:c6: 0f:d9:e3:64:7f:00:46:ff:d9:b1:63:a9:93:5c:a4: e8:ac:48:3d:0d:ba:8c:ec:e7:65:76:c4:62:99:8a: 1e:38:bb:e6:e5:b5:b4:0b:19:ea:94:cb:98:32:da: d6:29:96:da:6b:bb:19:5a:2d:c1:4b:55:31:0b:39: e1:8f:13:36:d0:6d:c6:b3:6a:70:6e:21:e0:23:65: 0f:2c:69:08:8c:23:59:c6:37:6f:06:6c:11:4e:9f: 7c:0d:4a:e8:91:e1:e0:09:97:41:46:eb:46:0f:d5: dc:18:56:93:91:c0:71:3b:43:af:a7:56:08:29:70: 8f:ff:5f:73:ec:28:21:4e:5d:3e:18:47:e5:c9:59: 5c:3d:8b:4d:9d:b3:84:c4:2f:a2:98:ff:50:e7:29: 0c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:61:D0:62:3E:E3:6E:85:54:10:6D:3A:C1:D4:17:5D:B7:07:B1:0D X509v3 Authority Key Identifier: keyid:1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:6d:1a:69:30:4a:e3:dc:53:c6:52:df:96:6c:ba:79:2a:55: 46:33:0b:a3:24:27:61:ba:52:ce:fa:25:c5:2d:9b:39:f0:fa: 98:a7:b4:bc:4c:8a:82:7b:6a:e4:5d:a0:b7:86:6a:b2:6b:1f: 59:a5:f2:7c:9b:2c:cd:70:67:40:3a:47:50:27:d5:99:2d:cf: fd:7e:20:49:78:ad:29:1d:4f:a6:7f:4c:a9:8b:e7:dc:b4:d7: 36:04:0b:0e:d7:20:6b:ec:d3:7d:e5:9a:4f:2d:4a:a1:33:53: 37:50:be:37:2a:76:e4:90:61:3a:e4:a4:b8:ec:cb:7a:cd:38: 10:9c:e1:fc:83:f5:6b:ea:e4:60:e6:0b:00:c8:94:ff:83:de: 1d:a5:21:31:e8:e1:2c:cb:ae:37:6c:d3:d6:6e:94:c6:92:85: 43:6c:9a:be:1e:f1:ae:c0:67:d8:fd:71:88:d1:aa:28:21:06: e1:b1:ad:bf:9d:4c:69:c5:fc:6f:eb:53:6c:78:40:35:e7:11: 93:6b:8f:2a:ec:24:49:7e:8c:7e:4e:ae:57:d3:5d:12:06:a8: fb:d6:9f:4c:9a:bb:ec:f2:6b:54:46:e6:07:96:86:a0:3b:47: 27:54:14:9d:85:4a:07:bc:eb:bd:0a:49:c2:34:91:ca:34:5a: b0:01:c3:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyODYxMTAvBgNVBAUTKDFDQjQzMDRFRDY2OEM4RjcxNjQxM0VGRDY2MTc0QzM4 NjcwQzg5Q0IwHhcNMjYwNDA0MTY0NTQ2WhcNMjYwNDExMTY0NTQ2WjAYMRYwFAYD VQQDEw02OWQxNDAzYS01NjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp2j/DiJ+C0wQ8fHDVTeYNB47FxkBxpbRvxisfscJNJuxEPYYicW9L8zO3+N5 t57BQlS1HA49yQxbpLxvY8SeGMeQ+lRF02AdsGocuiJcNg1sG8S5uu2n2KkCHESs R5LHwv1+MAdQGcYP2eNkfwBG/9mxY6mTXKTorEg9DbqM7OdldsRimYoeOLvm5bW0 CxnqlMuYMtrWKZbaa7sZWi3BS1UxCznhjxM20G3Gs2pwbiHgI2UPLGkIjCNZxjdv BmwRTp98DUrokeHgCZdBRutGD9XcGFaTkcBxO0Ovp1YIKXCP/19z7CghTl0+GEfl yVlcPYtNnbOExC+imP9Q5ykMCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAph0GI+ 426FVBBtOsHUF123B7ENMB8GA1UdIwQYMBaAFBy0ME7WaMj3FkE+/WYXTDhnDInL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Ni9CMjFBQTA5NDdG NDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQY1dRVDc5WmhkTU9HY01p Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMUXdUdFpveVBjV1FUNzlaaGRNT0djTWljcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Ni9CMjFBQTA5NDdGNDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQ Y1dRVDc5WmhkTU9HY01pY3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArW0aaTBK49xTxlLflmy6eSpVRjMLoyQnYbpSzvolxS2bOfD6mKe0vEyKgntq 5F2gt4ZqsmsfWaXyfJsszXBnQDpHUCfVmS3P/X4gSXitKR1Ppn9MqYvn3LTXNgQL Dtcga+zTfeWaTy1KoTNTN1C+Nyp25JBhOuSkuOzLes04EJzh/IP1a+rkYOYLAMiU /4PeHaUhMejhLMuuN2zT1m6UxpKFQ2yavh7xrsBn2P1xiNGqKCEG4bGtv51MacX8 b+tTbHhANecRk2uPKuwkSX6Mfk6uV9NdEgao+9afTJq77PJrVEbmB5aGoDtHJ1QU nYVKB7zrvQpJwjSRyjRasAHDig== -----END CERTIFICATE-----Generated at Mon Apr 6 14:54:25 2026 by rpki-client