$ rpki-client -vvf rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft File: hlMymlHbxnnxvxfXkdg-x2ib564.mft (raw, json) Hash identifier: lLLf+dEfnc5aB3KpDWVWvA44nnsREpKzdoB1ShR1WX4= Subject key identifier: 93:6A:EA:9A:E3:B1:2C:DE:8C:34:F0:D1:8A:87:20:C5:2D:7C:61:0E Authority key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE Certificate issuer: /CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Certificate serial: 08F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft Manifest number: 08E3 Signing time: Wed 20 May 2026 20:23:05 +0000 Manifest this update: Wed 20 May 2026 20:23:04 +0000 Manifest next update: Wed 27 May 2026 20:23:04 +0000 Files and hashes: 1: hlMymlHbxnnxvxfXkdg-x2ib564.crl (hash: k/OoIlvqrNKjEW28UX2XlECeMIGsV9utPQBPNa73oAc=) 2: 2611C806D1AA11EA82C4313FC4F9AE02.roa (hash: 7N3nKDQ3w2NhBshlECEhRg3G3BG+HugNnq2CvYT6jGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:23:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2288 (0x8f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91177D4, serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Validity Not Before: May 20 20:23:04 2026 GMT Not After : May 27 20:23:04 2026 GMT Subject: CN=6a0e1829-5489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:08:01:e6:df:3f:ef:89:1e:2b:37:88:df:f8: ba:2f:9e:7f:b6:99:77:40:d8:aa:9f:f7:db:cc:65: 61:08:4a:df:6c:19:50:f8:ac:4b:b1:7c:f7:b6:8f: df:14:9c:de:ae:4f:1a:53:22:8e:d5:d7:34:6b:24: e7:67:41:4a:25:7d:d3:59:31:97:4c:ac:e2:c1:1e: fe:9d:73:e4:18:ca:bf:89:8e:64:ff:a0:de:c4:f0: 58:98:6f:21:da:f2:8e:98:80:90:c2:e1:20:7d:25: 83:f5:40:70:78:d1:7f:ae:a2:4d:39:9c:09:7e:d5: 6e:e1:86:bb:22:0d:b6:19:7d:02:ec:79:c1:ab:9e: d4:33:cf:33:55:d4:8f:7f:98:33:56:12:55:84:03: ec:17:92:4f:ba:24:76:6b:91:b1:7c:c5:8e:c4:6d: 91:a7:4d:55:e4:a4:d9:67:1f:91:6e:aa:fd:31:23: 38:78:ed:66:0b:60:23:00:90:e9:ef:94:1f:8b:0d: 58:b9:d3:24:3f:aa:be:4c:99:2c:ca:3d:fd:33:a7: 1e:b7:f0:f6:34:eb:0e:1f:63:64:67:45:b8:bc:76: 6c:25:f5:8c:81:1e:03:1b:32:4c:da:67:55:0f:19: 3d:f7:f3:e3:b7:c1:44:56:8c:1d:0e:4e:1d:fb:54: f9:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:6A:EA:9A:E3:B1:2C:DE:8C:34:F0:D1:8A:87:20:C5:2D:7C:61:0E X509v3 Authority Key Identifier: keyid:86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:53:b4:bc:da:f3:70:bd:2d:56:b3:d0:1f:09:a9:23:f4:b8: e5:12:76:ae:af:15:5e:a9:06:57:04:10:fe:ae:4f:b7:8e:f2: 62:51:87:29:db:d8:ad:83:cc:22:03:95:c7:b2:bb:38:d9:fc: b9:89:48:e7:7d:26:fc:a6:bc:1b:d7:12:84:a8:5e:2f:62:7f: 67:ac:0b:9e:7f:37:94:8d:4e:f1:92:97:bc:28:20:15:6c:f6: b1:98:cf:46:2d:ae:ac:de:ef:d1:04:a2:17:a6:b0:62:7f:93: ff:94:c7:fc:bc:40:b1:ca:1d:33:fc:c7:72:82:d4:53:4e:6c: d8:95:e3:78:b8:fa:32:46:df:c3:ce:06:32:ae:fd:52:ce:7d: c8:59:57:1a:ce:2d:dd:05:b1:c9:a5:1a:a4:13:0e:f1:81:02: 88:3d:77:0f:11:ff:32:c1:c3:9b:4e:f4:fb:8b:73:e1:76:3c: 5f:ac:44:45:78:8f:b9:64:aa:e3:51:ac:8a:de:44:f3:87:04: 9e:ed:98:2a:80:1c:2a:68:ed:e5:42:c3:e6:9b:c1:03:63:b4: b0:1e:84:93:04:31:3a:c3:d6:ab:fe:cf:16:3d:38:43:c6:d8: ca:05:d8:d3:8f:d3:28:d6:15:92:92:08:39:c8:4c:71:b8:9e: 7d:af:15:5a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdENzkxRDgzRUM3 Njg5QkU3QUUwHhcNMjYwNTIwMjAyMzA0WhcNMjYwNTI3MjAyMzA0WjAYMRYwFAYD VQQDEw02YTBlMTgyOS01NDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wgB5t8/74keKzeI3/i6L55/tpl3QNiqn/fbzGVhCErfbBlQ+KxLsXz3to/f FJzerk8aUyKO1dc0ayTnZ0FKJX3TWTGXTKziwR7+nXPkGMq/iY5k/6DexPBYmG8h 2vKOmICQwuEgfSWD9UBweNF/rqJNOZwJftVu4Ya7Ig22GX0C7HnBq57UM88zVdSP f5gzVhJVhAPsF5JPuiR2a5GxfMWOxG2Rp01V5KTZZx+Rbqr9MSM4eO1mC2AjAJDp 75Qfiw1YudMkP6q+TJksyj39M6cet/D2NOsOH2NkZ0W4vHZsJfWMgR4DGzJM2mdV Dxk99/Pjt8FEVowdDk4d+1T5NwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJNq6prj sSzejDTw0YqHIMUtfGEOMB8GA1UdIwQYMBaAFIZTMppR28Z58b8X15HYPsdom+eu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzdENC8yQ0VFRkUzNEQx QTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhubnh2eGZYa2RnLXgyaWI1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hsTXltbEhieG5ueHZ4ZlhrZGcteDJpYjU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzdENC8yQ0VFRkUzNEQxQTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhu bnh2eGZYa2RnLXgyaWI1NjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAt1O0vNrzcL0tVrPQHwmpI/S45RJ2rq8VXqkGVwQQ/q5Pt47yYlGHKdvYrYPM IgOVx7K7ONn8uYlI530m/Ka8G9cShKheL2J/Z6wLnn83lI1O8ZKXvCggFWz2sZjP Ri2urN7v0QSiF6awYn+T/5TH/LxAscodM/zHcoLUU05s2JXjeLj6Mkbfw84GMq79 Us59yFlXGs4t3QWxyaUapBMO8YECiD13DxH/MsHDm070+4tz4XY8X6xERXiPuWSq 41Gsit5E84cEnu2YKoAcKmjt5ULD5pvBA2O0sB6EkwQxOsPWq/7PFj04Q8bYygXY 04/TKNYVkpIIOchMcbiefa8VWg== -----END CERTIFICATE-----Generated at Thu May 21 14:29:08 2026 by rpki-client