$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft File: HfNLnj96ONdYmO1LBfntTEAEzrw.mft (raw, json) Hash identifier: qqmmkzS2Fgt4WPXhF58CT/eCgdyzux+TnrV+URQOJpQ= Subject key identifier: 66:CE:A5:DE:7A:A5:18:94:FD:4F:47:64:AA:73:1C:21:FE:BB:81:84 Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 0A9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft Manifest number: 0A90 Signing time: Sat 04 Apr 2026 19:21:50 +0000 Manifest this update: Sat 04 Apr 2026 19:21:50 +0000 Manifest next update: Sat 11 Apr 2026 19:21:50 +0000 Files and hashes: 1: HfNLnj96ONdYmO1LBfntTEAEzrw.crl (hash: dcQZkxAJNGSO5+U9VOWNQQc8za5dWhqWj0oxR41Fjto=) 2: A23D5DE87A6911EA930EB439C4F9AE02.roa (hash: 0tnUQM8nUOKmP6zcIR5mibnCQ76vuNJWrUF9kNBfQsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:21:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2716 (0xa9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227, serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: Apr 4 19:21:50 2026 GMT Not After : Apr 11 19:21:50 2026 GMT Subject: CN=69d164ce-9dfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:63:90:9e:6d:36:0c:69:af:8e:4b:21:d7:58: 1f:09:c2:32:b7:9b:60:76:c6:23:43:bf:04:4d:46: bb:8a:3c:6a:39:b9:da:78:b9:d2:38:16:02:00:ea: 0e:f9:ce:e1:b6:82:71:66:35:fa:53:6f:20:a9:80: d2:a9:a7:37:07:13:d2:d4:a0:f3:9a:b0:7e:6d:76: aa:97:c2:69:7a:f8:1f:fa:13:0b:38:75:3f:1b:7f: 6a:30:48:9f:e7:00:61:17:5d:a2:d7:b3:8a:46:ac: f9:cf:ce:6a:d9:73:1c:a6:54:bf:35:6e:3d:80:45: af:14:12:9e:62:2d:37:b4:2d:c3:ce:2d:b0:7c:a0: 8f:10:cd:6a:2d:f0:f5:e3:99:ee:fe:c6:27:9e:97: fb:f7:f9:70:d8:86:d3:93:e5:10:67:f9:bc:ae:e9: d7:71:79:1c:c5:c8:c6:b0:81:ff:7c:32:6c:83:86: d0:0f:f7:38:c8:da:28:ae:df:3e:28:6a:64:45:19: 4e:99:47:ee:40:da:6c:6c:e2:1d:96:2e:92:f8:9a: 87:07:cc:48:1b:ce:ce:7a:25:4f:f1:b1:d9:42:1f: 32:b9:13:c5:c3:38:b9:64:b2:02:4a:35:8a:3f:10: 1c:df:97:88:98:d8:f9:91:49:2a:38:34:35:2f:7d: 3a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:CE:A5:DE:7A:A5:18:94:FD:4F:47:64:AA:73:1C:21:FE:BB:81:84 X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:2b:63:78:e6:3f:99:a5:82:88:d4:fd:8a:a6:75:5b:6c:ce: 47:c5:ad:00:4e:14:a5:56:96:f0:d0:25:99:f2:67:d1:22:92: 5f:e3:a0:09:9d:6c:62:04:a8:e7:cc:31:2b:fd:30:ea:9c:53: 2c:c3:4a:a8:ed:04:37:e6:f6:b6:d4:12:44:a2:cd:f1:b5:ed: 55:43:7a:58:33:7f:62:a6:7d:43:74:7b:0c:8e:e0:10:72:e1: e4:2d:a5:c2:19:ce:25:c1:c4:01:77:d6:48:bc:9a:6d:fd:1a: 38:59:0b:72:4f:c9:c7:28:20:d0:c1:0b:a5:d3:17:84:ac:7c: 2e:1f:6c:80:cf:cf:8b:3f:60:31:47:49:f3:62:0d:1d:ec:51: 2b:68:9b:8b:26:e3:a5:3e:a6:ee:b1:9f:30:3f:19:8f:54:ca: 6e:d1:39:e3:c8:37:38:78:ee:61:b8:17:81:21:64:7d:ca:75: f5:d3:1f:82:b8:5a:a2:a2:56:b2:d5:2b:42:10:fb:08:d0:5a: a0:30:8d:1d:da:e6:ab:1c:74:ff:f7:18:6d:ca:fc:5e:9d:d0: e3:6d:8c:4b:c2:a6:54:ff:02:16:35:f6:7f:7a:78:36:96:b9: 7a:23:d5:af:d2:1b:86:5d:0f:e5:7d:7b:23:4a:d2:98:39:83: 29:bc:c1:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjYwNDA0MTkyMTUwWhcNMjYwNDExMTkyMTUwWjAYMRYwFAYD VQQDEw02OWQxNjRjZS05ZGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2OQnm02DGmvjksh11gfCcIyt5tgdsYjQ78ETUa7ijxqObnaeLnSOBYCAOoO +c7htoJxZjX6U28gqYDSqac3BxPS1KDzmrB+bXaql8Jpevgf+hMLOHU/G39qMEif 5wBhF12i17OKRqz5z85q2XMcplS/NW49gEWvFBKeYi03tC3Dzi2wfKCPEM1qLfD1 45nu/sYnnpf79/lw2IbTk+UQZ/m8runXcXkcxcjGsIH/fDJsg4bQD/c4yNoort8+ KGpkRRlOmUfuQNpsbOIdli6S+JqHB8xIG87OeiVP8bHZQh8yuRPFwzi5ZLICSjWK PxAc35eImNj5kUkqODQ1L306YQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGbOpd56 pRiU/U9HZKpzHCH+u4GEMB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjIyNy8wRDcyOEEwQTdBM0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9O ZFltTzFMQmZudFRFQUV6cncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA0itjeOY/maWCiNT9iqZ1W2zOR8WtAE4UpVaW8NAlmfJn0SKSX+OgCZ1sYgSo 58wxK/0w6pxTLMNKqO0EN+b2ttQSRKLN8bXtVUN6WDN/YqZ9Q3R7DI7gEHLh5C2l whnOJcHEAXfWSLyabf0aOFkLck/Jxygg0MELpdMXhKx8Lh9sgM/Piz9gMUdJ82IN HexRK2ibiybjpT6m7rGfMD8Zj1TKbtE548g3OHjuYbgXgSFkfcp19dMfgrhaoqJW stUrQhD7CNBaoDCNHdrmqxx0//cYbcr8Xp3Q422MS8KmVP8CFjX2f3p4Npa5eiPV r9Ibhl0P5X17I0rSmDmDKbzBzg== -----END CERTIFICATE-----Generated at Mon Apr 6 10:11:14 2026 by rpki-client