$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft File: hIP9VFfRHgUTVSER9bovNxLphfc.mft (raw, json) Hash identifier: R6Ysd35s9Rjt0BeIe0btGO3TuzZXpoVF5+P94YTwIwU= Subject key identifier: 7E:8E:5C:E7:79:E8:96:3D:1F:09:D6:D1:35:C2:13:7B:FC:75:74:0B Authority key identifier: 84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 Certificate issuer: /CN=A91DC9C4/serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Certificate serial: 028F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft Manifest number: 0284 Signing time: Sun 15 Mar 2026 01:02:28 +0000 Manifest this update: Sun 15 Mar 2026 01:02:28 +0000 Manifest next update: Sun 22 Mar 2026 01:02:28 +0000 Files and hashes: 1: hIP9VFfRHgUTVSER9bovNxLphfc.crl (hash: EDlpD0Fq7IWmby7MaTp1Ddt7OJOyi9ykiO2LTqf59KA=) 2: 153EBE3ADEF711EF84C57421C4F9AE02.roa (hash: JEoXZriBqJJhzP1nkyHSHN9MJNXjkBusjNVR9oT/r4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 00:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 655 (0x28f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC9C4, serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Validity Not Before: Mar 15 01:02:28 2026 GMT Not After : Mar 22 01:02:28 2026 GMT Subject: CN=69b60524-b38f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:64:11:3e:a4:3b:0c:c8:0f:c1:d0:77:a8:32: 2b:52:6b:c1:76:a5:74:6c:c1:38:37:dc:7f:64:3b: 65:8d:a7:29:ad:0d:57:1d:40:68:b3:c5:3e:bf:27: 99:ba:d4:cf:51:7d:2a:a7:40:20:16:ec:a8:8f:a3: ab:df:2f:30:b6:9a:fd:3f:13:43:06:b5:23:10:70: 64:a2:f2:c8:10:c0:44:a2:66:3a:22:2b:b7:ec:24: fe:04:8b:6c:75:a1:85:b5:5e:dd:e7:27:29:d4:f6: 03:b5:dd:31:1d:3c:f0:3c:5e:99:3a:ad:05:40:34: 00:87:c9:77:4e:15:fb:76:ce:e3:c1:5e:05:1a:53: e7:1d:5a:0c:ec:0e:6b:40:d5:dc:bc:eb:63:b5:50: 15:e4:6c:b9:5d:4d:02:2c:01:5d:e6:9c:67:79:6c: 52:63:8e:66:b2:ae:a9:4c:e1:63:e4:f5:24:6e:1a: 60:3e:95:c6:cf:44:ad:d9:1d:66:b4:0d:3e:b3:01: 21:5a:0d:7d:be:c0:c8:e6:4e:6e:3a:65:c4:b6:50: 63:8b:09:6b:38:39:16:d5:69:51:fc:e7:82:c0:f4: 1d:92:08:8c:b6:df:5b:b0:be:ff:a2:93:36:74:06: 44:b4:b4:1e:4b:b6:6e:be:6e:29:96:8d:2d:ec:01: 1d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:8E:5C:E7:79:E8:96:3D:1F:09:D6:D1:35:C2:13:7B:FC:75:74:0B X509v3 Authority Key Identifier: keyid:84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:f7:af:b4:c1:d9:3d:b7:7c:10:7b:b6:68:4b:27:b7:bd:9c: bf:42:1a:34:e2:ba:ac:05:5f:b4:c5:3c:3b:aa:aa:2f:c6:a6: 18:e8:2d:43:3e:75:44:4e:95:ed:5b:51:22:db:d4:1e:18:ea: 7e:c2:a2:04:6a:f6:0b:f2:ef:44:13:a6:20:09:98:32:8a:4b: ee:0a:39:98:08:38:12:ea:f0:64:58:cb:55:88:4e:81:ef:8b: 01:9c:19:a6:a9:dc:77:7c:6f:fa:8f:62:73:2f:d9:15:ad:e1: a2:76:98:56:4a:77:3b:1d:8d:3a:50:4d:ba:1d:14:e6:65:36: 55:a8:cb:08:75:68:be:bd:65:42:a2:33:3d:b8:33:66:a4:68: ac:6f:c7:6d:d5:a5:09:1f:95:fb:de:fd:08:1c:ac:13:8b:47: 36:23:4b:28:54:18:8f:72:27:89:ae:ef:c6:0e:b1:9d:8c:38: b9:14:e1:a1:a8:a5:8a:47:8b:89:f7:fb:1b:3c:2b:18:d6:78: 23:ff:1b:41:c0:47:9c:ac:1b:02:01:5f:7a:36:11:38:5e:9d: 6f:5b:83:f8:f6:08:a7:d5:5f:b3:3e:00:89:46:1b:bf:dd:68: 9c:9d:75:76:78:1f:2f:a0:a7:28:99:10:d1:57:01:71:5b:6d: 2c:21:52:ad -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5QzQxMTAvBgNVBAUTKDg0ODNGRDU0NTdEMTFFMDUxMzU1MjExMUY1QkEyRjM3 MTJFOTg1RjcwHhcNMjYwMzE1MDEwMjI4WhcNMjYwMzIyMDEwMjI4WjAYMRYwFAYD VQQDEw02OWI2MDUyNC1iMzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+mQRPqQ7DMgPwdB3qDIrUmvBdqV0bME4N9x/ZDtljacprQ1XHUBos8U+vyeZ utTPUX0qp0AgFuyoj6Or3y8wtpr9PxNDBrUjEHBkovLIEMBEomY6Iiu37CT+BIts daGFtV7d5ycp1PYDtd0xHTzwPF6ZOq0FQDQAh8l3ThX7ds7jwV4FGlPnHVoM7A5r QNXcvOtjtVAV5Gy5XU0CLAFd5pxneWxSY45msq6pTOFj5PUkbhpgPpXGz0St2R1m tA0+swEhWg19vsDI5k5uOmXEtlBjiwlrODkW1WlR/OeCwPQdkgiMtt9bsL7/opM2 dAZEtLQeS7Zuvm4plo0t7AEd/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH6OXOd5 6JY9HwnW0TXCE3v8dXQLMB8GA1UdIwQYMBaAFISD/VRX0R4FE1UhEfW6LzcS6YX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzlDNC8xQTcwREM4NjRF OTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhnVVRWU0VSOWJvdk54THBo ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJUDlWRmZSSGdVVFZTRVI5Ym92TnhMcGhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzlDNC8xQTcwREM4NjRFOTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhn VVRWU0VSOWJvdk54THBoZmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGPevtMHZPbd8EHu2aEsnt72cv0IaNOK6rAVftMU8O6qqL8amGOgtQz51RE6V 7VtRItvUHhjqfsKiBGr2C/LvRBOmIAmYMopL7go5mAg4EurwZFjLVYhOge+LAZwZ pqncd3xv+o9icy/ZFa3honaYVkp3Ox2NOlBNuh0U5mU2VajLCHVovr1lQqIzPbgz ZqRorG/HbdWlCR+V+979CBysE4tHNiNLKFQYj3Inia7vxg6xnYw4uRThoailikeL iff7GzwrGNZ4I/8bQcBHnKwbAgFfejYROF6db1uD+PYIp9Vfsz4AiUYbv91onJ11 dngfL6CnKJkQ0VcBcVttLCFSrQ== -----END CERTIFICATE-----Generated at Sun Mar 15 04:40:01 2026 by rpki-client