$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: koV/BtGL1kDSRLmsu/sttAuRp06PTWwKyIkHSHTdGgs= Subject key identifier: 3E:B7:70:76:40:E7:06:4C:FD:44:A5:26:E1:80:D1:4B:75:0A:72:78 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 089D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 0884 Signing time: Sat 16 May 2026 20:39:28 +0000 Manifest this update: Sat 16 May 2026 20:39:27 +0000 Manifest next update: Sat 23 May 2026 20:39:27 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: Hl9snKV0M6YRAuWGPsqc7qyiD7G2WCQ6VfBnCSJmJPY=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: n2hlAVM9PTTT2Scjp8/RzlDa+bb55gqeGOADAsXpei0=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: DHN4e0JrosxaWqhhvniYwJn8xIsHqQd0pj3UDSpuBlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 May 2026 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2205 (0x89d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: May 16 20:39:27 2026 GMT Not After : May 23 20:39:27 2026 GMT Subject: CN=6a08d600-544c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:06:dd:7a:1e:82:5b:be:64:44:1f:d0:de:d2: d4:67:28:dc:43:6e:45:8a:96:8d:1e:41:9d:56:86: 6b:05:73:b3:6a:af:ae:db:a5:c0:7f:ed:7b:4d:3d: cc:27:72:12:69:f5:be:ba:4a:09:3c:70:e8:40:2b: 1e:0f:57:0f:f2:4a:6e:28:4e:02:92:ae:5e:aa:f3: 5c:bf:82:b1:3f:64:88:72:9d:12:a3:a7:ee:9c:79: d4:8d:85:06:eb:c3:10:c6:f5:4e:ce:b0:18:52:60: 5e:be:e6:37:ab:74:7e:f4:be:25:23:da:fb:ef:13: ea:5e:71:50:06:62:fc:e6:f8:a4:3f:e5:f8:30:1a: ad:85:60:01:9b:43:75:84:b3:e6:d5:8d:a5:06:4f: d3:a5:37:86:16:4a:49:88:de:0c:15:dc:1a:4c:bf: 2e:e0:6e:ae:f8:ab:33:65:a0:33:c3:1a:a8:a2:3f: ca:c6:da:29:fb:74:41:1a:fe:c9:ce:ca:f4:01:e2: 70:9b:80:9e:9e:1d:b3:b8:a9:04:1f:8a:44:f5:b8: 85:ca:26:95:e4:fb:6e:61:e6:e7:0d:f3:f8:e5:6d: f8:0f:2d:b7:eb:03:22:cd:d6:f9:28:43:db:13:e0: 82:99:38:4c:c8:6b:f8:0d:48:75:d3:be:83:34:bb: 75:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:B7:70:76:40:E7:06:4C:FD:44:A5:26:E1:80:D1:4B:75:0A:72:78 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:9b:ad:cf:9c:22:59:ff:51:50:15:b2:b5:de:0a:cb:88:f5: ef:a6:27:22:1d:33:c4:99:8e:f5:d4:98:26:42:7b:43:ef:cb: 01:51:52:45:2b:66:5c:78:43:ef:ab:a3:54:19:a2:fc:67:93: f3:2d:99:cf:7c:60:db:5f:58:bd:77:23:f8:33:e6:ad:1d:3b: 53:d8:5d:d2:04:11:98:d8:be:c5:c1:2f:a0:64:4e:1f:dc:19: 25:f7:90:12:f3:bb:10:b2:49:f1:8a:c7:aa:e0:58:90:e2:29: 0b:0f:75:85:0d:c1:6a:1b:1c:a0:e6:92:62:95:55:ef:9b:96: a6:00:86:65:b4:8f:bb:f8:18:34:64:e0:26:12:be:90:c9:75: e2:44:e3:28:d7:ea:3e:f2:dc:2a:c8:a9:5e:f6:14:01:c9:72: 14:ff:a9:2b:93:da:09:60:9d:7a:e2:35:4c:f7:c9:21:9f:db: 09:2a:70:97:b7:82:54:94:74:82:73:51:94:b2:fb:8e:38:4e: 68:c2:e9:f1:8f:5c:44:e3:00:b9:98:40:f1:04:ad:e6:1a:ba: 7c:c6:1e:39:2d:a2:5b:34:e6:bf:77:b8:7d:60:75:22:6d:2e: 4b:d8:a7:0e:96:3d:d6:e2:8a:54:d6:8b:e5:85:e6:63:9a:6c: 67:c9:fc:a4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjYwNTE2MjAzOTI3WhcNMjYwNTIzMjAzOTI3WjAYMRYwFAYD VQQDEw02YTA4ZDYwMC01NDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0gbdeh6CW75kRB/Q3tLUZyjcQ25FipaNHkGdVoZrBXOzaq+u26XAf+17TT3M J3ISafW+ukoJPHDoQCseD1cP8kpuKE4Ckq5eqvNcv4KxP2SIcp0So6funHnUjYUG 68MQxvVOzrAYUmBevuY3q3R+9L4lI9r77xPqXnFQBmL85vikP+X4MBqthWABm0N1 hLPm1Y2lBk/TpTeGFkpJiN4MFdwaTL8u4G6u+KszZaAzwxqooj/Kxtop+3RBGv7J zsr0AeJwm4Cenh2zuKkEH4pE9biFyiaV5PtuYebnDfP45W34Dy236wMizdb5KEPb E+CCmThMyGv4DUh1076DNLt1LQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD63cHZA 5wZM/USlJuGA0Ut1CnJ4MB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAn5utz5wiWf9RUBWytd4Ky4j176YnIh0zxJmO9dSYJkJ7Q+/LAVFSRStmXHhD 76ujVBmi/GeT8y2Zz3xg219YvXcj+DPmrR07U9hd0gQRmNi+xcEvoGROH9wZJfeQ EvO7ELJJ8YrHquBYkOIpCw91hQ3BahscoOaSYpVV75uWpgCGZbSPu/gYNGTgJhK+ kMl14kTjKNfqPvLcKsipXvYUAclyFP+pK5PaCWCdeuI1TPfJIZ/bCSpwl7eCVJR0 gnNRlLL7jjhOaMLp8Y9cROMAuZhA8QSt5hq6fMYeOS2iWzTmv3e4fWB1Im0uS9in DpY91uKKVNaL5YXmY5psZ8n8pA== -----END CERTIFICATE-----Generated at Sun May 17 03:45:37 2026 by rpki-client