$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft File: HLlfP3vebhmbdAuSgqxyKk7amZs.mft (raw, json) Hash identifier: MMwipfPEQ9JjzQ9oX4H0z6Cup/YK8ls32h25ibwe1U0= Subject key identifier: 7D:0E:AB:5F:FA:90:CA:2D:7E:93:64:BC:30:C6:FC:E3:CF:67:52:DC Authority key identifier: 1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B Certificate issuer: /CN=A91E4EEF/serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft Manifest number: 48 Signing time: Sun 05 Apr 2026 07:53:43 +0000 Manifest this update: Sun 05 Apr 2026 07:53:43 +0000 Manifest next update: Sun 12 Apr 2026 07:53:43 +0000 Files and hashes: 1: HLlfP3vebhmbdAuSgqxyKk7amZs.crl (hash: 5G2ddMsWUmvRo4xsU876DIncVrHF9vyJ6szleHzuSKc=) 2: 0C1F9D8CF13A11F08789470C566F56BC.roa (hash: sgoDIUBe0jr7XN1MyW0ONqjTLm6kK+bIbhy55Li2/S8=) 3: 304D9EDEF13A11F0A5B04E41566F56BC.roa (hash: AC/jIeXBOHw70y2QOJSmCZ+NDE9I0e7M9WpwuYpLz9U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 07:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4EEF, serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Validity Not Before: Apr 5 07:53:43 2026 GMT Not After : Apr 12 07:53:43 2026 GMT Subject: CN=69d21507-bd70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c3:fd:75:b8:29:1c:3a:41:54:05:c9:c5:fe: c8:d1:05:78:a3:21:bc:b7:57:d1:2f:17:59:86:87: f0:af:a8:ab:32:e7:5b:46:8f:c3:47:a5:1d:2c:51: 61:4f:ae:20:0f:bd:d0:bd:31:a0:7a:3b:24:86:5d: 3e:12:30:a5:dd:87:cd:96:92:12:1b:d5:77:13:b5: 50:e8:34:3b:4e:38:cb:04:bb:99:cd:36:b0:30:ee: ed:be:eb:7b:c7:7b:a6:46:bf:2e:a8:54:d2:d0:fe: c8:d2:a4:07:88:08:01:2f:5d:f8:e9:33:ee:40:6b: b0:3e:60:da:64:e3:45:96:ab:69:e8:46:61:2b:4c: f4:de:1d:6f:31:9f:e9:95:18:94:15:ff:0d:b3:ab: 2f:d8:a6:8c:e0:60:98:d2:f8:2f:2a:7f:60:b5:df: 78:ed:d4:8b:1e:9e:3a:91:81:87:11:ed:cb:0e:6d: 4d:bf:17:6a:a0:f0:a8:cf:92:6a:f5:af:e0:5c:34: 15:d3:d6:c5:56:6e:59:d0:4a:8e:3e:cf:d8:4c:e2: 5c:d1:13:fa:1d:12:df:23:21:b4:44:3c:18:8c:00: 6a:38:9b:41:88:6f:35:4e:8f:07:f6:0c:46:1f:c6: ee:be:32:5f:1a:03:a6:57:9b:b0:7e:2a:4d:7e:a0: 98:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:0E:AB:5F:FA:90:CA:2D:7E:93:64:BC:30:C6:FC:E3:CF:67:52:DC X509v3 Authority Key Identifier: keyid:1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:7f:12:82:32:88:d6:f9:1e:d8:ca:20:3b:27:39:a9:8c:5d: d4:b4:6c:ea:f9:ea:7c:9c:61:bc:fd:ec:f3:1f:28:d6:12:fb: 93:59:e0:10:ac:d9:b8:0f:d7:cf:36:25:3c:64:42:22:5a:b1: 0f:3d:90:0d:76:a1:b9:53:b3:f9:ed:ea:49:a5:dc:db:a4:43: 1a:9d:2f:92:6a:56:9c:72:2f:d2:4d:91:86:5c:63:b3:27:a9: 5b:41:f2:24:26:7b:50:6c:33:5f:14:fa:8a:e7:b6:f5:0f:cc: 75:0c:b0:70:ef:43:54:a7:c0:11:2b:58:8d:5a:e6:79:34:51: b9:f9:57:0e:7b:7d:0c:ac:07:d9:58:c2:00:a9:b6:7c:ee:a1: 8e:c1:50:2a:27:f5:a6:54:5d:1d:50:14:cc:46:ca:8f:6b:fb: fd:f8:26:89:2a:5e:ec:1b:9b:2c:fb:44:d0:41:c3:07:ae:cf: d9:58:46:6c:a5:db:87:7c:75:07:a8:6a:cd:6e:0a:3a:fa:75: c1:7e:9d:39:71:da:f6:93:36:18:35:6d:97:97:6e:ee:5d:d9: c1:7f:7d:81:b6:67:18:02:00:6b:6f:60:02:97:c1:2c:27:11: 36:6f:ae:60:87:4a:19:8e:6e:ec:96:17:ef:f2:5a:d4:f9:04: 8b:d8:b5:ca -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NEVFRjExMC8GA1UEBRMoMUNCOTVGM0Y3QkRFNkUxOTlCNzQwQjkyODJBQzcyMkE0 RURBOTk5QjAeFw0yNjA0MDUwNzUzNDNaFw0yNjA0MTIwNzUzNDNaMBgxFjAUBgNV BAMTDTY5ZDIxNTA3LWJkNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+w/11uCkcOkFUBcnF/sjRBXijIby3V9EvF1mGh/CvqKsy51tGj8NHpR0sUWFP riAPvdC9MaB6OySGXT4SMKXdh82WkhIb1XcTtVDoNDtOOMsEu5nNNrAw7u2+63vH e6ZGvy6oVNLQ/sjSpAeICAEvXfjpM+5Aa7A+YNpk40WWq2noRmErTPTeHW8xn+mV GJQV/w2zqy/YpozgYJjS+C8qf2C133jt1IsenjqRgYcR7csObU2/F2qg8KjPkmr1 r+BcNBXT1sVWblnQSo4+z9hM4lzRE/odEt8jIbREPBiMAGo4m0GIbzVOjwf2DEYf xu6+Ml8aA6ZXm7B+Kk1+oJhBAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUfQ6rX/qQ yi1+k2S8MMb8489nUtwwHwYDVR0jBBgwFoAUHLlfP3vebhmbdAuSgqxyKk7amZsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0RUVGL0NFQTgzNkJBREVG MzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmhtYmRBdVNncXh5S2s3YW1a cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSExsZlAzdmViaG1iZEF1U2dxeHlLazdhbVpzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 RUVGL0NFQTgzNkJBREVGMzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmht YmRBdVNncXh5S2s3YW1acy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBefxKCMojW+R7YyiA7JzmpjF3UtGzq+ep8nGG8/ezzHyjWEvuTWeAQrNm4D9fP NiU8ZEIiWrEPPZANdqG5U7P57epJpdzbpEManS+Salacci/STZGGXGOzJ6lbQfIk JntQbDNfFPqK57b1D8x1DLBw70NUp8ARK1iNWuZ5NFG5+VcOe30MrAfZWMIAqbZ8 7qGOwVAqJ/WmVF0dUBTMRsqPa/v9+CaJKl7sG5ss+0TQQcMHrs/ZWEZspduHfHUH qGrNbgo6+nXBfp05cdr2kzYYNW2Xl27uXdnBf32BtmcYAgBrb2ACl8EsJxE2b65g h0oZjm7slhfv8lrU+QSL2LXK -----END CERTIFICATE-----Generated at Mon Apr 6 13:36:47 2026 by rpki-client