$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft File: h7HuPp7irRoRPyeipU4sC41a-zQ.mft (raw, json) Hash identifier: L/KErPqxCeyEsGsOjuqrm55FHX0XdB5Z6vv8Y5/aGNE= Subject key identifier: 4F:04:0E:C4:34:64:17:40:AD:63:34:12:58:5C:D1:09:6E:C5:C6:7A Authority key identifier: 87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 Certificate issuer: /CN=A91CF9F5/serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Certificate serial: 013B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft Manifest number: 0132 Signing time: Sat 21 Mar 2026 04:33:47 +0000 Manifest this update: Sat 21 Mar 2026 04:33:46 +0000 Manifest next update: Sat 28 Mar 2026 04:33:46 +0000 Files and hashes: 1: h7HuPp7irRoRPyeipU4sC41a-zQ.crl (hash: CJCjs0QvUCbHclPwI7I5Xu2fmukG9sI44FSxmfkSI4M=) 2: 56EC0F5EABD411F0ADCDD73CC4F9AE02.roa (hash: LRGLmwGa2a/I5gvOrv+UPiIF3N2WlDmpx8kIsDZcKzI=) 3: 2FAD450250E411F0A6B4892AC4F9AE02.roa (hash: 5FVZeeMmHHgD5LWgKUCAHIiyRLhCr4xloYA6n+HE21g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 04:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9F5, serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Validity Not Before: Mar 21 04:33:46 2026 GMT Not After : Mar 28 04:33:46 2026 GMT Subject: CN=69be1fab-ebb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:60:26:7b:f9:38:f5:44:3b:f2:11:7f:e0:3f: ad:42:56:9e:1f:be:f3:71:9e:fc:78:3d:ed:ee:e3: 55:68:fc:d8:c6:d8:f8:77:57:a2:50:b3:6f:d0:b9: 3d:a4:16:86:c2:6b:72:3f:f1:24:c6:44:12:be:8b: d7:18:39:65:b3:e5:1d:95:5b:64:ae:33:75:1d:30: 5e:bf:28:46:4a:2a:26:e4:44:9b:26:5d:fb:94:15: 85:87:fd:58:54:e2:a0:7f:ee:ea:57:02:f8:0a:e1: 62:ff:8a:72:a6:f4:20:14:f6:87:3c:40:1e:ad:f6: 4f:8d:88:13:22:18:2f:42:5a:f6:60:37:4d:34:89: d0:56:5e:48:af:e0:b3:ee:c0:da:e7:36:eb:2a:6c: 19:ef:69:45:ab:c3:80:b3:d4:26:e4:1b:dc:72:08: a3:b1:a0:1b:bf:76:8b:fb:aa:a2:3c:1d:e6:66:08: 94:d5:68:52:24:2e:b3:94:b3:98:27:1a:ab:51:ee: 36:3b:3d:a8:ab:28:3e:b9:c4:b0:ae:7d:19:5e:64: 46:ba:d2:e2:34:d9:b1:9f:da:5d:ae:19:07:c4:2d: cd:46:21:6a:ad:ec:12:d4:ce:e5:f9:7a:27:59:6d: 19:4f:16:1b:bd:1b:76:16:c7:e6:de:3f:d3:49:6e: d6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:04:0E:C4:34:64:17:40:AD:63:34:12:58:5C:D1:09:6E:C5:C6:7A X509v3 Authority Key Identifier: keyid:87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:85:35:44:38:76:ca:33:4b:56:de:6a:cd:a3:c0:dc:38:6d: 21:96:bf:bb:47:56:cb:a4:e0:4d:a9:36:fc:7c:b0:de:6c:d0: 95:44:06:41:d4:16:8f:65:85:8d:d8:5f:de:70:8f:24:d1:fb: 6a:36:7d:9b:76:2a:d3:a3:8b:f0:08:0f:05:3f:eb:70:c3:31: 1e:a5:1a:b9:e2:33:0a:c4:3a:0d:7e:01:81:f5:02:5e:43:2f: 6c:44:b9:7a:77:1f:0c:de:c7:f5:5e:a7:26:74:f2:b1:7f:7d: ba:1f:e5:62:9d:75:e2:34:18:e2:61:6e:66:75:2f:57:2b:e0: fe:ad:ce:55:78:93:a1:fa:e4:bd:fd:a2:4e:ce:6e:85:ed:b7: 6c:84:2e:df:fd:3c:a9:57:e3:1b:c0:3b:6e:69:ad:24:b6:13: a8:18:65:88:ce:cd:cf:5b:59:d5:a3:66:e2:fb:3d:93:22:2e: 2d:9d:9a:9f:a6:68:e9:db:ba:8f:31:7b:aa:d0:e4:1e:62:f1: b2:52:f6:41:63:be:c3:d9:1e:69:ae:ff:e9:ee:53:b1:d9:37: 3b:a7:34:c5:8b:09:38:46:81:d8:5d:7d:55:3b:f4:81:92:ac: 8b:bd:1d:1a:5c:25:f4:67:88:ba:32:1f:28:4a:05:65:d1:de: 61:ec:28:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5RjUxMTAvBgNVBAUTKDg3QjFFRTNFOUVFMkFEMUExMTNGMjdBMkE1NEUyQzBC OEQ1QUZCMzQwHhcNMjYwMzIxMDQzMzQ2WhcNMjYwMzI4MDQzMzQ2WjAYMRYwFAYD VQQDEw02OWJlMWZhYi1lYmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mAme/k49UQ78hF/4D+tQlaeH77zcZ78eD3t7uNVaPzYxtj4d1eiULNv0Lk9 pBaGwmtyP/EkxkQSvovXGDlls+UdlVtkrjN1HTBevyhGSiom5ESbJl37lBWFh/1Y VOKgf+7qVwL4CuFi/4pypvQgFPaHPEAerfZPjYgTIhgvQlr2YDdNNInQVl5Ir+Cz 7sDa5zbrKmwZ72lFq8OAs9Qm5BvccgijsaAbv3aL+6qiPB3mZgiU1WhSJC6zlLOY JxqrUe42Oz2oqyg+ucSwrn0ZXmRGutLiNNmxn9pdrhkHxC3NRiFqrewS1M7l+Xon WW0ZTxYbvRt2Fsfm3j/TSW7WNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE8EDsQ0 ZBdArWM0Elhc0QluxcZ6MB8GA1UdIwQYMBaAFIex7j6e4q0aET8noqVOLAuNWvs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlGNS84QjkyNkQyQTVC OUUxMUVGOEJGOTE3NUJDNEY5QUUwMi9oN0h1UHA3aXJSb1JQeWVpcFU0c0M0MWEt elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3SHVQcDdpclJvUlB5ZWlwVTRzQzQxYS16US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlGNS84QjkyNkQyQTVCOUUxMUVGOEJGOTE3NUJDNEY5QUUwMi9oN0h1UHA3aXJS b1JQeWVpcFU0c0M0MWEtelEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAooU1RDh2yjNLVt5qzaPA3DhtIZa/u0dWy6TgTak2/Hyw3mzQlUQGQdQWj2WF jdhf3nCPJNH7ajZ9m3Yq06OL8AgPBT/rcMMxHqUaueIzCsQ6DX4BgfUCXkMvbES5 encfDN7H9V6nJnTysX99uh/lYp114jQY4mFuZnUvVyvg/q3OVXiTofrkvf2iTs5u he23bIQu3/08qVfjG8A7bmmtJLYTqBhliM7Nz1tZ1aNm4vs9kyIuLZ2an6Zo6du6 jzF7qtDkHmLxslL2QWO+w9keaa7/6e5Tsdk3O6c0xYsJOEaB2F19VTv0gZKsi70d Glwl9GeIujIfKEoFZdHeYewo/g== -----END CERTIFICATE-----Generated at Sat Mar 21 20:04:57 2026 by rpki-client