$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft File: HQ2sEe2C41wjsMvv--4AYmOwmVc.mft (raw, json) Hash identifier: 976VQASQoZ2Lj7FW2Z/va45DqFhHAVBmnTo82Y6a9Q4= Subject key identifier: 8B:F5:D4:C0:3F:47:F8:92:AB:27:57:2C:13:58:31:1B:F3:94:45:C4 Authority key identifier: 1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 Certificate issuer: /CN=A91EA9C0/serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft Manifest number: A4 Signing time: Sun 05 Apr 2026 06:39:02 +0000 Manifest this update: Sun 05 Apr 2026 06:39:02 +0000 Manifest next update: Sun 12 Apr 2026 06:39:02 +0000 Files and hashes: 1: HQ2sEe2C41wjsMvv--4AYmOwmVc.crl (hash: YaFM5b9cj1qpDpNLgzSornGOeTTZBZnczE4KNYnxmdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9C0, serialNumber=1D0DAC11ED82E35C23B0CBEFFBEE006263B09957 Validity Not Before: Apr 5 06:39:02 2026 GMT Not After : Apr 12 06:39:02 2026 GMT Subject: CN=69d20386-87d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:89:fa:a7:f8:9e:74:4a:e0:3a:d8:11:a8:c4: 02:22:02:bb:98:d2:1a:d3:d3:3b:f6:1c:87:83:52: 34:18:bc:25:19:c1:a8:3a:6f:76:96:66:b0:20:f4: 3f:2e:a7:fd:6d:02:92:ca:1c:78:a1:3a:0a:96:b5: 0f:e2:a7:dd:ab:17:9c:39:2b:6e:18:db:ce:b9:90: 48:95:18:26:b1:29:76:88:1c:3f:82:32:7b:77:fc: 28:3e:01:7e:bb:23:55:92:43:90:80:13:48:de:2b: e7:0f:f8:15:2b:6f:ec:22:a7:da:47:4d:5e:64:20: ba:7c:e6:ef:a7:5a:22:11:fb:e8:aa:42:e6:7a:b7: a0:f2:3a:58:a8:ee:cf:51:9d:77:93:7a:ba:9e:42: 6f:45:78:19:1b:fc:02:b9:2d:44:35:79:38:90:7f: 1f:6c:fd:89:e1:8f:e8:4c:af:2c:94:6a:f9:2b:4d: fd:e9:44:62:52:e3:17:3c:1e:9d:7a:05:9e:fa:c3: 5a:d5:ad:c4:52:0b:85:7b:c6:20:7b:f0:60:99:77: 22:30:bf:11:da:a3:2b:6b:4d:30:bf:20:f7:7b:91: 95:b3:5f:af:5d:8f:5c:0c:db:62:6e:5b:0c:33:00: c0:1b:70:95:ca:25:64:bb:18:75:41:a9:71:42:3f: 12:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F5:D4:C0:3F:47:F8:92:AB:27:57:2C:13:58:31:1B:F3:94:45:C4 X509v3 Authority Key Identifier: keyid:1D:0D:AC:11:ED:82:E3:5C:23:B0:CB:EF:FB:EE:00:62:63:B0:99:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQ2sEe2C41wjsMvv--4AYmOwmVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9C0/5AFB148E388211F08CCB1866C4F9AE02/HQ2sEe2C41wjsMvv--4AYmOwmVc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:e9:3c:81:0e:e6:c5:f2:b6:89:e9:b8:cc:00:e7:eb:2b:08: dd:5c:13:0c:2f:0b:5e:39:45:ee:49:2b:8d:db:91:71:e9:cf: d7:f5:db:a3:bb:82:b2:65:c3:50:4d:43:71:19:97:90:15:1d: 16:7a:de:6a:97:55:3c:c6:58:75:bc:01:39:a7:11:d6:da:72: 89:26:fd:2b:b7:c6:56:e9:a2:f2:87:7d:96:41:bb:95:4c:b4: 78:8b:78:6a:db:7d:fb:fb:a0:86:83:4f:7a:0c:97:27:de:cf: 93:5c:b8:72:da:11:9e:10:78:98:df:f3:08:59:b4:df:9c:5c: 9b:4a:b3:18:d0:59:6f:91:fc:1f:3c:3f:77:4a:f9:b0:a4:ca: 28:b7:6d:90:8e:aa:48:b4:73:c1:a7:10:47:4e:a3:d0:8d:c1: ae:c7:17:6a:76:b8:4f:5b:10:85:a7:b9:90:9b:02:c7:33:f7: 40:1a:6c:a1:6b:d0:06:d8:bd:3a:82:d2:5f:17:13:00:53:b7: 4d:5c:d3:e7:42:ac:fc:bc:ea:1f:a7:ef:71:77:81:44:3e:07: 71:c6:4c:00:41:a7:a2:a9:c3:b3:c0:6a:6c:93:fc:7d:d5:24: 98:e1:94:99:88:07:71:a9:0d:70:cd:60:34:83:50:c2:25:17: 84:53:ce:36 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QzAxMTAvBgNVBAUTKDFEMERBQzExRUQ4MkUzNUMyM0IwQ0JFRkZCRUUwMDYy NjNCMDk5NTcwHhcNMjYwNDA1MDYzOTAyWhcNMjYwNDEyMDYzOTAyWjAYMRYwFAYD VQQDEw02OWQyMDM4Ni04N2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4n6p/iedErgOtgRqMQCIgK7mNIa09M79hyHg1I0GLwlGcGoOm92lmawIPQ/ Lqf9bQKSyhx4oToKlrUP4qfdqxecOStuGNvOuZBIlRgmsSl2iBw/gjJ7d/woPgF+ uyNVkkOQgBNI3ivnD/gVK2/sIqfaR01eZCC6fObvp1oiEfvoqkLmereg8jpYqO7P UZ13k3q6nkJvRXgZG/wCuS1ENXk4kH8fbP2J4Y/oTK8slGr5K0396URiUuMXPB6d egWe+sNa1a3EUguFe8Yge/BgmXciML8R2qMra00wvyD3e5GVs1+vXY9cDNtiblsM MwDAG3CVyiVkuxh1QalxQj8SIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIv11MA/ R/iSqydXLBNYMRvzlEXEMB8GA1UdIwQYMBaAFB0NrBHtguNcI7DL7/vuAGJjsJlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlDMC81QUZCMTQ4RTM4 ODIxMUYwOENDQjE4NjZDNEY5QUUwMi9IUTJzRWUyQzQxd2pzTXZ2LS00QVltT3dt VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRMnNFZTJDNDF3anNNdnYtLTRBWW1Pd21WYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlDMC81QUZCMTQ4RTM4ODIxMUYwOENDQjE4NjZDNEY5QUUwMi9IUTJzRWUyQzQx d2pzTXZ2LS00QVltT3dtVmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMOk8gQ7mxfK2iem4zADn6ysI3VwTDC8LXjlF7kkrjduRcenP1/Xbo7uCsmXD UE1DcRmXkBUdFnreapdVPMZYdbwBOacR1tpyiSb9K7fGVumi8od9lkG7lUy0eIt4 att9+/ughoNPegyXJ97Pk1y4ctoRnhB4mN/zCFm035xcm0qzGNBZb5H8Hzw/d0r5 sKTKKLdtkI6qSLRzwacQR06j0I3BrscXana4T1sQhae5kJsCxzP3QBpsoWvQBti9 OoLSXxcTAFO3TVzT50Ks/LzqH6fvcXeBRD4HccZMAEGnoqnDs8BqbJP8fdUkmOGU mYgHcakNcM1gNINQwiUXhFPONg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:53:59 2026 by rpki-client