$ rpki-client -vvf rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft File: hlMymlHbxnnxvxfXkdg-x2ib564.mft (raw, json) Hash identifier: BkdWZCfSzqMFLhJxCrK+QeH5yMPteWx0K+RMNqT8i30= Subject key identifier: 7E:82:A4:BC:F7:DA:13:5A:FF:27:58:B9:38:14:5A:BD:F5:6F:2C:47 Authority key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE Certificate issuer: /CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Certificate serial: 08D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft Manifest number: 08CC Signing time: Sat 04 Apr 2026 20:12:13 +0000 Manifest this update: Sat 04 Apr 2026 20:12:13 +0000 Manifest next update: Sat 11 Apr 2026 20:12:13 +0000 Files and hashes: 1: hlMymlHbxnnxvxfXkdg-x2ib564.crl (hash: oUOWxzwC65lVVHvb+6vbW03oc1R0AH2WvWwvMJcV04w=) 2: 2611C806D1AA11EA82C4313FC4F9AE02.roa (hash: 7N3nKDQ3w2NhBshlECEhRg3G3BG+HugNnq2CvYT6jGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2265 (0x8d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91177D4, serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Validity Not Before: Apr 4 20:12:13 2026 GMT Not After : Apr 11 20:12:13 2026 GMT Subject: CN=69d1709d-9bb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:eb:cb:86:5b:3d:8c:29:11:39:fd:d2:66:04: 79:4c:9f:b3:67:4f:f1:bb:d4:0c:09:48:4f:c3:48: bc:0b:f5:9e:a4:6a:f0:82:0f:f1:ad:69:89:26:4b: 62:d2:f1:76:0f:bc:f9:5f:89:d8:b9:73:36:98:71: 28:c6:ad:32:86:3e:08:fb:f2:04:99:a0:f2:e9:d0: 66:44:40:d6:be:9b:a6:0c:a1:63:79:e2:82:8e:77: f9:45:a1:97:a0:b9:e3:74:34:32:43:a2:78:e1:0c: 90:49:c3:f1:20:0b:26:da:aa:b2:51:d7:0b:1d:fa: f4:c9:67:03:81:92:ad:41:e1:0e:1e:69:92:e3:86: 99:84:aa:b9:88:da:cf:29:ba:51:ba:f2:e3:5c:62: 47:c0:62:9b:dd:f9:b2:fb:82:b8:57:99:73:f1:e6: 79:a8:86:d0:8e:f6:49:33:1c:22:67:4f:26:05:bd: 59:65:46:32:4b:46:45:fe:20:92:ae:0a:be:c8:c2: ea:64:63:c1:66:af:35:3b:ef:4e:31:1e:23:6a:91: ac:3a:07:fd:ad:eb:8e:fe:7f:14:c4:2a:8f:24:14: ac:e4:d3:bd:4a:b8:52:2d:9a:15:ae:44:df:c1:63: 8b:73:f5:88:ef:99:b3:bd:01:79:82:57:c3:e4:2f: 13:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:82:A4:BC:F7:DA:13:5A:FF:27:58:B9:38:14:5A:BD:F5:6F:2C:47 X509v3 Authority Key Identifier: keyid:86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:cf:92:5a:c0:3a:b5:f0:7e:35:ff:64:27:60:90:bf:2a:d4: 27:b1:5d:e5:1a:80:e1:fd:80:45:68:97:a8:40:82:bf:2b:a2: bf:07:ed:78:c0:46:65:d7:4c:ce:24:ae:50:9e:2b:87:95:d9: 0e:2a:57:7e:5e:08:d4:5e:95:91:32:31:2b:38:5b:4d:6c:ee: 17:94:45:79:50:58:7c:7c:4f:92:e5:2a:16:bc:77:2e:48:46: c8:b6:c3:15:7f:81:56:27:b5:41:0e:6f:c7:2a:e4:a8:97:b9: 34:b5:b7:aa:46:c5:bd:82:d2:b9:04:bc:4f:ab:f8:0b:0d:24: 0c:43:63:46:cd:e6:00:52:b1:03:aa:1d:a1:d8:24:50:78:ea: 93:cf:98:f2:25:86:c1:26:e6:11:a5:a4:bf:58:d2:d0:69:0c: d3:f4:45:ed:33:4c:87:59:52:40:aa:3a:80:a5:1a:33:97:30: f5:08:91:e4:85:ca:22:6a:6c:82:1d:ff:34:db:45:86:7e:f7: 30:c1:d3:58:d5:fc:4d:e3:06:5e:85:04:d5:ad:a1:72:07:29: 28:a0:1c:94:c9:25:da:91:a8:79:79:23:f9:67:8a:57:b3:d9: 81:cd:67:8f:01:ff:65:65:09:da:32:3c:d2:38:90:f3:51:f4: 65:ed:e6:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdENzkxRDgzRUM3 Njg5QkU3QUUwHhcNMjYwNDA0MjAxMjEzWhcNMjYwNDExMjAxMjEzWjAYMRYwFAYD VQQDEw02OWQxNzA5ZC05YmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+vLhls9jCkROf3SZgR5TJ+zZ0/xu9QMCUhPw0i8C/WepGrwgg/xrWmJJkti 0vF2D7z5X4nYuXM2mHEoxq0yhj4I+/IEmaDy6dBmREDWvpumDKFjeeKCjnf5RaGX oLnjdDQyQ6J44QyQScPxIAsm2qqyUdcLHfr0yWcDgZKtQeEOHmmS44aZhKq5iNrP KbpRuvLjXGJHwGKb3fmy+4K4V5lz8eZ5qIbQjvZJMxwiZ08mBb1ZZUYyS0ZF/iCS rgq+yMLqZGPBZq81O+9OMR4japGsOgf9reuO/n8UxCqPJBSs5NO9SrhSLZoVrkTf wWOLc/WI75mzvQF5glfD5C8TEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH6CpLz3 2hNa/ydYuTgUWr31byxHMB8GA1UdIwQYMBaAFIZTMppR28Z58b8X15HYPsdom+eu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzdENC8yQ0VFRkUzNEQx QTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhubnh2eGZYa2RnLXgyaWI1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hsTXltbEhieG5ueHZ4ZlhrZGcteDJpYjU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzdENC8yQ0VFRkUzNEQxQTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhu bnh2eGZYa2RnLXgyaWI1NjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACc+SWsA6tfB+Nf9kJ2CQvyrUJ7Fd5RqA4f2ARWiXqECCvyuivwfteMBGZddM ziSuUJ4rh5XZDipXfl4I1F6VkTIxKzhbTWzuF5RFeVBYfHxPkuUqFrx3LkhGyLbD FX+BVie1QQ5vxyrkqJe5NLW3qkbFvYLSuQS8T6v4Cw0kDENjRs3mAFKxA6ododgk UHjqk8+Y8iWGwSbmEaWkv1jS0GkM0/RF7TNMh1lSQKo6gKUaM5cw9QiR5IXKImps gh3/NNtFhn73MMHTWNX8TeMGXoUE1a2hcgcpKKAclMkl2pGoeXkj+WeKV7PZgc1n jwH/ZWUJ2jI80jiQ81H0Ze3mCA== -----END CERTIFICATE-----Generated at Mon Apr 6 10:10:03 2026 by rpki-client