$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: TgS/4qR0bawkptcSI/n8b0NVLzm2cIOb7wwCrjjjniM= Subject key identifier: 0F:BE:D2:C5:BF:6D:CD:04:CF:52:60:0A:03:78:EC:59:A5:B1:4B:2C Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0E56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0E20 Signing time: Sun 26 Apr 2026 17:45:12 +0000 Manifest this update: Sun 26 Apr 2026 17:45:12 +0000 Manifest next update: Sun 03 May 2026 17:45:12 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: d/8U5J2r2MA/F9kWI8KggW1jXlGm9SKedzk0hwzBVZc=) 2: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: fHXngSTjkehnoyzfzZzWQmngco23iukL2koF5Ddr+ak=) 3: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: bJa45JxM0BM6SHPylrF6iczdI3TR6YwWJGhmk5n+6Co=) 4: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: m40Au0D9D53HHKA3UY789RoJoXUIJ7gV5QbX6BIo4EU=) 5: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: OYQ8Q3ql6qFWt6j+WB79+jUAS4lPKWiDOJJ6WWsPhFE=) 6: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: kuKfhwok7IV2xZV+q15Uru1Qvlc7Ty7LyqYda2rZjaY=) 7: F2826A504FCF11EB88444467C4F9AE02.roa (hash: Ucwe0TblfY65Z8jyUiAbiD9N4E5gQiucEqZR5BprIfA=) 8: D0551B50046411F09760073DC4F9AE02.roa (hash: rp8AtmMvaJKirkqtM8xsbLFfIx4jMN0u7R5/2vGn/yo=) 9: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: hFX5YE8MCfCx/kmb790trFxkpl5n33coYoMd9aDEGes=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 17:45:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3670 (0xe56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Apr 26 17:45:12 2026 GMT Not After : May 3 17:45:12 2026 GMT Subject: CN=69ee4f28-e488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a0:b5:8a:bb:1b:8d:2a:8c:fa:29:af:d4:16: 22:89:c9:97:47:b1:ae:fe:12:25:1f:e5:35:c7:b1: e6:45:ab:e7:c8:b7:02:17:ec:b9:60:4b:16:e1:c7: 9f:14:c5:23:74:bb:97:31:32:6c:7b:fb:59:2d:70: d4:cf:72:c4:ce:06:19:ad:97:4d:6b:97:25:c6:e7: 43:8d:2a:a5:69:1c:66:1c:f7:18:8d:0f:8b:cc:4c: de:04:b6:9d:2d:1b:44:6c:4a:34:4c:44:ba:29:3b: ab:41:07:24:8a:91:5a:82:5c:8a:d8:57:76:ee:45: 06:05:db:cb:29:b0:1f:bf:d8:5f:9e:89:8c:01:fe: 4c:01:7c:33:78:9e:6b:30:eb:04:99:84:64:5c:f7: ce:08:51:d7:ac:9a:84:d9:ce:5a:93:c1:2c:b0:09: c4:ab:15:99:85:b5:e3:e6:1e:df:7e:e4:b2:82:31: e4:30:56:dd:2a:4a:bd:c9:ec:08:90:9a:e3:22:47: 3f:34:b8:d8:90:ff:87:58:46:d1:11:41:56:68:d2: 02:32:bb:1d:3d:e5:bc:b2:4c:a7:89:b8:6a:47:3c: c7:f3:df:58:80:7b:14:a7:91:39:99:7e:33:c6:61: 37:aa:d1:97:f7:1e:f2:82:71:5b:5a:69:6c:83:70: ad:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:BE:D2:C5:BF:6D:CD:04:CF:52:60:0A:03:78:EC:59:A5:B1:4B:2C X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:05:26:ea:57:b5:f7:b9:60:88:d5:70:54:00:e8:28:8a:ed: 32:8e:67:28:1f:31:d0:b3:78:e7:83:69:8e:26:6b:ed:9d:e7: 36:6a:6c:1c:6a:60:5f:3a:b3:a1:c3:6a:9b:b6:df:04:b3:fd: 26:34:02:ec:a9:c0:5a:65:aa:eb:f1:03:81:d5:84:bb:87:e3: 1e:a6:56:37:7d:9b:ef:c5:42:92:ff:c3:c2:a3:ab:19:b6:b9: 85:bb:61:b5:5c:32:9a:ff:3d:27:9c:4f:54:12:cf:c2:a0:a1: 6d:56:ac:b1:93:31:d7:88:99:f5:1f:09:1d:a3:f1:92:d9:44: 88:25:b2:50:a4:96:61:b6:31:b0:dc:9a:79:a7:3f:7b:36:48: de:0e:81:2e:65:d3:1b:65:2a:53:9a:91:79:d7:fa:b2:65:12: aa:1c:94:7d:5d:3b:2f:00:43:47:f3:1d:aa:b3:8a:75:1e:32: e7:6f:95:ec:f5:aa:b4:1a:fa:81:cd:59:10:70:d4:4c:7d:c8: d0:38:18:20:34:6f:5f:cd:af:a2:e1:31:ef:d5:27:79:41:ae: a6:e6:9e:49:55:ec:8c:07:c1:cd:eb:3e:4a:84:e1:80:35:1c: 5d:a5:b9:97:84:49:a4:02:21:b1:ae:a2:41:b5:e9:93:ca:79: 78:07:b4:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjYwNDI2MTc0NTEyWhcNMjYwNTAzMTc0NTEyWjAYMRYwFAYD VQQDEw02OWVlNGYyOC1lNDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaC1irsbjSqM+imv1BYiicmXR7Gu/hIlH+U1x7HmRavnyLcCF+y5YEsW4cef FMUjdLuXMTJse/tZLXDUz3LEzgYZrZdNa5clxudDjSqlaRxmHPcYjQ+LzEzeBLad LRtEbEo0TES6KTurQQckipFaglyK2Fd27kUGBdvLKbAfv9hfnomMAf5MAXwzeJ5r MOsEmYRkXPfOCFHXrJqE2c5ak8EssAnEqxWZhbXj5h7ffuSygjHkMFbdKkq9yewI kJrjIkc/NLjYkP+HWEbREUFWaNICMrsdPeW8skynibhqRzzH899YgHsUp5E5mX4z xmE3qtGX9x7ygnFbWmlsg3CtFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA++0sW/ bc0Ez1JgCgN47FmlsUssMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxwUm6le197lgiNVwVADoKIrtMo5nKB8x0LN454NpjiZr7Z3nNmpsHGpgXzqz ocNqm7bfBLP9JjQC7KnAWmWq6/EDgdWEu4fjHqZWN32b78VCkv/DwqOrGba5hbth tVwymv89J5xPVBLPwqChbVassZMx14iZ9R8JHaPxktlEiCWyUKSWYbYxsNyaeac/ ezZI3g6BLmXTG2UqU5qRedf6smUSqhyUfV07LwBDR/MdqrOKdR4y52+V7PWqtBr6 gc1ZEHDUTH3I0DgYIDRvX82vouEx79UneUGupuaeSVXsjAfBzes+SoThgDUcXaW5 l4RJpAIhsa6iQbXpk8p5eAe05A== -----END CERTIFICATE-----Generated at Mon Apr 27 04:42:12 2026 by rpki-client