$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9706/DDDC3916114711F18BB454AF223D8C67/hfItkhU_IB1ZI6nyf5Yfx21xGbg.mft File: hfItkhU_IB1ZI6nyf5Yfx21xGbg.mft (raw, json) Hash identifier: CMD5EiqIaob+aTBe1bcSQaB6HnUuXE3aQg5FXNnL7wM= Subject key identifier: 27:AF:F9:71:33:FF:33:0E:C6:79:11:EC:D6:5C:83:6D:13:31:9B:E9 Authority key identifier: 85:F2:2D:92:15:3F:20:1D:59:23:A9:F2:7F:96:1F:C7:6D:71:19:B8 Certificate issuer: /CN=A91C9706/serialNumber=85F22D92153F201D5923A9F27F961FC76D7119B8 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hfItkhU_IB1ZI6nyf5Yfx21xGbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9706/DDDC3916114711F18BB454AF223D8C67/hfItkhU_IB1ZI6nyf5Yfx21xGbg.mft Manifest number: 0C Signing time: Sat 07 Mar 2026 08:23:25 +0000 Manifest this update: Sat 07 Mar 2026 08:23:24 +0000 Manifest next update: Sat 14 Mar 2026 08:23:24 +0000 Files and hashes: 1: hfItkhU_IB1ZI6nyf5Yfx21xGbg.crl (hash: QBMeM5xE0A7pMJpji8QMbT0YdWMIgIZ94ufVXjHCEkI=) 2: B735FEEA118411F1951E019C333D8C67.roa (hash: qdQyipYaThgccgmXAXR/iB4/lWGcn5evCaadYGd7lUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9706/DDDC3916114711F18BB454AF223D8C67/hfItkhU_IB1ZI6nyf5Yfx21xGbg.crl rsync://rpki.apnic.net/member_repository/A91C9706/DDDC3916114711F18BB454AF223D8C67/hfItkhU_IB1ZI6nyf5Yfx21xGbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hfItkhU_IB1ZI6nyf5Yfx21xGbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 08:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9706, serialNumber=85F22D92153F201D5923A9F27F961FC76D7119B8 Validity Not Before: Mar 7 08:23:24 2026 GMT Not After : Mar 14 08:23:24 2026 GMT Subject: CN=69abe07c-071d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c1:3c:34:3e:86:4f:a5:b9:7c:bb:ce:8d:2d: 17:91:72:5e:a2:d5:e5:88:d7:b1:34:8f:72:b7:da: 35:ec:4c:74:af:bc:08:d6:ba:fe:7b:9c:33:ab:83: 4d:ed:76:d6:c3:3c:78:70:40:46:91:34:65:bc:e0: 29:14:11:30:47:e5:15:39:d3:ad:3f:90:1c:da:ab: 8c:b4:50:0b:f2:71:8a:f6:5d:64:7d:7f:47:d5:ea: ce:3d:4a:23:34:a7:2c:18:cd:77:c8:8e:11:7c:46: 78:93:ad:73:b5:06:e7:c2:8c:7d:7a:f0:80:c7:9f: 47:07:ab:94:b9:c1:2d:b9:8e:24:ad:5e:7f:f0:51: 40:6b:6e:72:c4:82:e9:e4:b5:db:a5:f8:54:03:dc: bd:9f:65:71:19:3d:64:7f:cf:87:46:cb:80:a4:74: ac:12:80:fb:96:f9:02:2c:2c:5b:0e:23:c3:9b:67: ee:7b:76:b4:68:c2:80:23:73:35:e1:56:31:93:20: db:40:a6:a7:44:91:b3:ea:ad:89:c0:6e:fd:07:d2: 4c:77:fd:30:97:70:76:e1:19:d4:74:2f:3c:28:93: 18:ff:95:15:0a:6d:2c:1a:cb:05:c0:e6:c9:8d:38: 1a:ec:7b:ec:b4:95:d7:27:ae:e5:b9:8f:38:2a:62: a3:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:AF:F9:71:33:FF:33:0E:C6:79:11:EC:D6:5C:83:6D:13:31:9B:E9 X509v3 Authority Key Identifier: keyid:85:F2:2D:92:15:3F:20:1D:59:23:A9:F2:7F:96:1F:C7:6D:71:19:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9706/DDDC3916114711F18BB454AF223D8C67/hfItkhU_IB1ZI6nyf5Yfx21xGbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hfItkhU_IB1ZI6nyf5Yfx21xGbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9706/DDDC3916114711F18BB454AF223D8C67/hfItkhU_IB1ZI6nyf5Yfx21xGbg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:ad:35:b5:75:fd:f5:ff:8b:2f:53:75:af:9e:b5:2c:63:30: 7f:1e:3c:cd:f0:8c:a1:70:cc:f9:f6:d1:82:71:7a:47:8c:81: d2:b2:53:64:99:4c:8c:41:f7:96:b7:70:52:5a:07:17:9b:1f: 8a:9a:86:67:2b:f9:5f:42:9d:42:10:01:30:09:20:7f:85:e3: 48:2c:44:97:e6:c8:f4:eb:f3:44:39:c3:54:c6:d2:3a:d3:32: 0b:2b:06:75:2d:97:73:75:1a:91:1d:ec:7c:7d:cc:cf:57:43: 4c:ec:62:16:78:97:94:db:98:cb:bb:0a:d3:7a:6b:ca:75:ef: d3:b1:62:37:7e:b3:b6:44:d9:8d:33:7f:32:61:0b:be:01:ef: a7:91:de:de:de:91:62:93:72:6d:c5:e6:fc:00:b4:cc:cb:0d: 00:c4:19:08:cb:ae:f6:b2:d6:85:22:1c:e1:25:d9:d2:b0:30: 79:33:cd:99:a6:b7:07:d8:4e:bc:fb:d7:1d:59:f7:a1:4b:3e: 2c:ee:5e:cb:ae:3a:47:76:7f:17:08:83:c4:02:e7:21:61:6b: 21:c1:2a:46:47:79:22:78:26:1e:ba:46:c7:f0:54:fe:1b:d7: a5:36:36:be:04:b1:f4:45:a5:37:0b:ee:b6:5b:96:72:58:73: 10:00:c3:3d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OTcwNjExMC8GA1UEBRMoODVGMjJEOTIxNTNGMjAxRDU5MjNBOUYyN0Y5NjFGQzc2 RDcxMTlCODAeFw0yNjAzMDcwODIzMjRaFw0yNjAzMTQwODIzMjRaMBgxFjAUBgNV BAMTDTY5YWJlMDdjLTA3MWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+wTw0PoZPpbl8u86NLReRcl6i1eWI17E0j3K32jXsTHSvvAjWuv57nDOrg03t dtbDPHhwQEaRNGW84CkUETBH5RU5060/kBzaq4y0UAvycYr2XWR9f0fV6s49SiM0 pywYzXfIjhF8RniTrXO1BufCjH168IDHn0cHq5S5wS25jiStXn/wUUBrbnLEgunk tdul+FQD3L2fZXEZPWR/z4dGy4CkdKwSgPuW+QIsLFsOI8ObZ+57drRowoAjczXh VjGTINtApqdEkbPqrYnAbv0H0kx3/TCXcHbhGdR0Lzwokxj/lRUKbSwaywXA5smN OBrse+y0ldcnruW5jzgqYqNJAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUJ6/5cTP/ Mw7GeRHs1lyDbRMxm+kwHwYDVR0jBBgwFoAUhfItkhU/IB1ZI6nyf5Yfx21xGbgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5NzA2L0REREMzOTE2MTE0 NzExRjE4QkI0NTRBRjIyM0Q4QzY3L2hmSXRraFVfSUIxWkk2bnlmNVlmeDIxeEdi Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGZJdGtoVV9JQjFaSTZueWY1WWZ4MjF4R2JnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5 NzA2L0REREMzOTE2MTE0NzExRjE4QkI0NTRBRjIyM0Q4QzY3L2hmSXRraFVfSUIx Wkk2bnlmNVlmeDIxeEdiZy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAsrTW1df31/4svU3WvnrUsYzB/HjzN8IyhcMz59tGCcXpHjIHSslNkmUyMQfeW t3BSWgcXmx+KmoZnK/lfQp1CEAEwCSB/heNILESX5sj06/NEOcNUxtI60zILKwZ1 LZdzdRqRHex8fczPV0NM7GIWeJeU25jLuwrTemvKde/TsWI3frO2RNmNM38yYQu+ Ae+nkd7e3pFik3Jtxeb8ALTMyw0AxBkIy672staFIhzhJdnSsDB5M82ZprcH2E68 +9cdWfehSz4s7l7LrjpHdn8XCIPEAuchYWshwSpGR3kieCYeukbH8FT+G9elNja+ BLH0RaU3C+62W5ZyWHMQAMM9 -----END CERTIFICATE-----Generated at Sat Mar 7 20:54:34 2026 by rpki-client