$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft File: hpBNLQLbigWb7ZOPL46u88Qgb9A.mft (raw, json) Hash identifier: ctqaRc1Mc0TUNzus43ksuy/jQP/joFJh6zQCYkXavhU= Subject key identifier: 9C:5C:32:56:74:C2:96:3C:59:8C:B6:C4:B2:88:28:9C:D8:DC:16:FC Authority key identifier: 86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 Certificate issuer: /CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft Manifest number: 0117 Signing time: Tue 03 Mar 2026 05:28:41 +0000 Manifest this update: Tue 03 Mar 2026 05:28:40 +0000 Manifest next update: Tue 10 Mar 2026 05:28:40 +0000 Files and hashes: 1: hpBNLQLbigWb7ZOPL46u88Qgb9A.crl (hash: omlDEb/3av2bR+ULAs7/fkvpeNjzCTcaB6TJ30hWtJc=) 2: 388D7E38797D11EF8CA64711C4F9AE02.roa (hash: tcJP6ckIisiXaSRaPvtWnl6KwRGfZck/uk3eudyqJEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:28:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4ACD, serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Validity Not Before: Mar 3 05:28:40 2026 GMT Not After : Mar 10 05:28:40 2026 GMT Subject: CN=69a67188-737c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ec:bf:33:9c:eb:d2:0e:9d:2a:68:90:0a:53: 3f:d5:30:e1:ed:2f:bb:ab:4a:d4:60:31:c3:ce:8e: 80:a8:68:ca:a3:89:67:2c:8e:ea:89:56:df:77:e3: 5e:90:87:15:e2:8c:f6:29:a1:22:67:35:f3:e6:f8: 4b:3c:da:bf:32:76:31:9e:3d:c2:57:81:93:91:9f: 16:f0:19:0f:f9:f3:c0:df:e2:83:ed:0a:7b:cb:4a: 7e:1f:66:69:24:5c:b6:c8:e6:cf:40:81:b2:82:7b: 3f:30:b4:2d:12:b0:b8:c8:35:df:20:c7:ef:fb:2c: 44:61:e4:3e:b9:86:04:c3:97:a0:84:89:75:4d:7c: 2c:6c:a4:e1:6a:c8:3b:ec:69:b0:d0:3f:16:db:0a: 17:0c:9e:3c:88:07:76:2f:e2:a5:df:fa:73:c5:83: fa:66:2b:a4:f6:af:ac:36:32:de:20:ef:cf:d0:75: e6:60:84:dd:78:a0:be:e7:b7:ce:b9:59:4f:d1:ba: 1d:f7:b1:3d:13:9e:12:b3:b0:fb:2f:6b:27:c8:47: 98:9c:98:9b:cf:f4:b1:40:55:e9:aa:98:a1:6d:eb: ec:29:5d:67:88:4a:06:b7:62:19:81:be:2e:09:e8: 7e:e4:2c:fd:1b:45:e8:00:62:52:18:3c:de:27:ce: 02:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:5C:32:56:74:C2:96:3C:59:8C:B6:C4:B2:88:28:9C:D8:DC:16:FC X509v3 Authority Key Identifier: keyid:86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:89:0a:f4:ba:10:39:e1:95:66:93:00:37:80:9b:54:5f:db: 6c:74:a5:77:d6:7a:49:ee:d6:5f:a1:3a:4e:d5:b8:9f:d1:50: 3c:73:65:a3:01:80:29:76:4a:b7:14:cc:58:1f:31:8e:0b:9d: 8a:2c:9c:58:a9:f9:f4:f6:08:65:23:2e:8c:e7:65:87:7f:4c: 39:b5:af:98:af:4c:12:d0:fb:b7:0b:66:ba:68:4d:c3:c7:0e: 14:20:74:c5:b7:36:3f:2f:90:5e:d2:5b:9b:5a:bb:a9:99:cc: a5:cd:be:7f:cb:2c:9e:83:6e:44:88:f7:b1:bf:3e:17:1e:4f: c8:a0:e7:fd:86:03:49:62:75:94:c7:57:7b:ea:09:24:ea:11: f6:fe:8d:55:da:8c:0e:fa:21:95:8a:c2:a7:45:b5:ec:6d:9c: 83:55:f6:bc:9e:b8:96:72:db:57:c9:0d:11:51:51:5c:88:c3: 5d:67:34:4c:05:9e:8d:b2:1a:f2:1d:7b:07:59:5e:20:43:ad: 0e:af:1b:87:a1:6f:f1:21:e1:d1:37:b9:7b:c3:5e:c8:1d:c1: 29:f1:34:c0:41:c6:bd:8f:4b:a7:42:80:e2:32:02:44:39:b3: 91:9c:75:7c:f4:aa:03:61:b9:3c:39:52:58:b0:3c:d8:cb:57: 7d:de:af:7e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBQ0QxMTAvBgNVBAUTKDg2OTA0RDJEMDJEQjhBMDU5QkVEOTM4RjJGOEVBRUYz QzQyMDZGRDAwHhcNMjYwMzAzMDUyODQwWhcNMjYwMzEwMDUyODQwWjAYMRYwFAYD VQQDEw02OWE2NzE4OC03MzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Oy/M5zr0g6dKmiQClM/1TDh7S+7q0rUYDHDzo6AqGjKo4lnLI7qiVbfd+Ne kIcV4oz2KaEiZzXz5vhLPNq/MnYxnj3CV4GTkZ8W8BkP+fPA3+KD7Qp7y0p+H2Zp JFy2yObPQIGygns/MLQtErC4yDXfIMfv+yxEYeQ+uYYEw5eghIl1TXwsbKThasg7 7Gmw0D8W2woXDJ48iAd2L+Kl3/pzxYP6Ziuk9q+sNjLeIO/P0HXmYITdeKC+57fO uVlP0bod97E9E54Ss7D7L2snyEeYnJibz/SxQFXpqpihbevsKV1niEoGt2IZgb4u Ceh+5Cz9G0XoAGJSGDzeJ84C7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJxcMlZ0 wpY8WYy2xLKIKJzY3Bb8MB8GA1UdIwQYMBaAFIaQTS0C24oFm+2Tjy+OrvPEIG/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEFDRC8xRjUzNTY5RTc1 NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmlnV2I3Wk9QTDQ2dTg4UWdi OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hwQk5MUUxiaWdXYjdaT1BMNDZ1ODhRZ2I5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEFDRC8xRjUzNTY5RTc1NkUxMUVGOUNBNDZFNTFDNEY5QUUwMi9ocEJOTFFMYmln V2I3Wk9QTDQ2dTg4UWdiOUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADIkK9LoQOeGVZpMAN4CbVF/bbHSld9Z6Se7WX6E6TtW4n9FQPHNlowGAKXZK txTMWB8xjgudiiycWKn59PYIZSMujOdlh39MObWvmK9MEtD7twtmumhNw8cOFCB0 xbc2Py+QXtJbm1q7qZnMpc2+f8ssnoNuRIj3sb8+Fx5PyKDn/YYDSWJ1lMdXe+oJ JOoR9v6NVdqMDvohlYrCp0W17G2cg1X2vJ64lnLbV8kNEVFRXIjDXWc0TAWejbIa 8h17B1leIEOtDq8bh6Fv8SHh0Te5e8NeyB3BKfE0wEHGvY9Lp0KA4jICRDmzkZx1 fPSqA2G5PDlSWLA82MtXfd6vfg== -----END CERTIFICATE-----Generated at Wed Mar 4 08:40:09 2026 by rpki-client