$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: BTgGF2LHnGD131flJL+vdDh7Ugqo6kMkm4blBNJ6Qkc= Subject key identifier: 5E:D2:2A:5F:C5:42:62:23:01:BD:88:5A:1D:7D:63:B2:79:78:E8:8E Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 164F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 15EE Signing time: Tue 02 Jun 2026 16:48:43 +0000 Manifest this update: Tue 02 Jun 2026 16:48:43 +0000 Manifest next update: Tue 09 Jun 2026 16:48:43 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: p1jqEufryTOoTvu1P6yiUHxheoTG+R//v+hdBgqKjBI=) 2: 0BFFC86E3FC211F18966A53AC7833773.roa (hash: W+YOe6hixH3mn1KveOHweplDujCY7TsXxGCoVqjHzBw=) 3: C9203DF43D5E11F19F1D0B4EAB833773.roa (hash: fhBWCudWssjjCZ/zBynhZzcCH3noLL5P4oCjMcFv1HI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 15:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5711 (0x164f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: Jun 2 16:48:43 2026 GMT Not After : Jun 9 16:48:43 2026 GMT Subject: CN=6a1f096b-3d7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8b:37:dd:20:c6:8b:7e:40:08:72:e4:97:1e: 6b:f6:48:95:69:dd:2b:0e:5b:43:21:06:7d:51:a0: aa:48:b1:8d:77:7e:8e:10:e8:4a:25:ad:81:88:69: 67:2d:4b:f5:68:be:f1:e0:64:b8:b7:72:55:8d:26: 47:53:a1:53:fd:b9:b6:00:b5:31:82:ba:5d:91:20: 38:5a:c8:3b:60:37:3e:31:8b:a9:62:9e:e6:b1:b8: 50:68:30:91:4e:fc:b8:8f:3b:2b:91:30:71:7f:d3: bb:55:6d:02:a6:3f:9e:06:27:59:9c:61:50:00:18: 9b:77:68:16:ca:99:0e:c8:fe:5e:f7:60:19:d4:e2: 53:86:f2:c3:d3:4b:ab:c6:8d:ac:07:62:c0:d7:47: 71:9f:6b:f8:13:a1:96:27:e1:14:39:37:f7:81:83: 32:7c:b2:44:cf:59:43:7f:39:6f:5f:c3:8e:6a:01: e2:ce:2c:39:a8:ca:24:78:fd:93:ee:ad:d7:6a:e0: 1d:85:3e:1b:0e:de:73:b0:f2:24:23:9c:49:44:5e: 35:e2:14:78:7a:d5:2c:c0:1f:a2:de:52:bf:97:db: ed:0d:7e:ec:d2:24:03:4c:9d:28:a0:e7:c1:3d:79: e5:3f:de:e4:00:59:7e:77:3f:ed:05:8a:c7:95:92: af:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:D2:2A:5F:C5:42:62:23:01:BD:88:5A:1D:7D:63:B2:79:78:E8:8E X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:7e:dc:c0:08:03:50:36:fa:ee:df:eb:90:d9:24:36:ce:dd: 04:05:f5:52:4c:e4:c3:91:c2:71:75:f8:d9:a5:9f:0f:96:c6: 4e:38:e5:1e:fe:f4:00:71:25:78:fd:bd:ca:32:d5:94:71:be: 69:0c:1d:1f:ab:15:59:df:25:68:f4:7a:e1:0a:6c:f8:dd:69: fb:27:a6:9c:e4:1f:06:ff:96:b2:60:10:12:74:6d:90:56:58: e8:4f:b2:cf:d7:76:c8:21:d3:a4:32:8a:c6:e5:ab:c9:03:6f: dc:48:dd:68:5b:1d:44:e7:21:3e:a9:f6:62:8e:21:b6:8e:22: 42:a4:b6:f3:90:82:f5:41:fd:b5:b3:19:cd:0b:fe:3a:2f:7e: b0:02:10:cc:84:d1:09:a2:f2:8d:c9:62:10:41:25:d7:53:b7: 66:04:bf:d0:00:c0:b7:7f:e9:5a:13:ca:c0:84:43:e4:78:e2: 1b:61:a8:52:a2:51:ae:0e:d1:72:c2:8f:bb:22:c4:3e:25:af: c4:0c:26:78:6f:4f:f5:b8:b5:54:28:24:bc:36:e4:fb:b8:ec: 84:08:da:e8:0d:67:a4:7c:f9:04:67:5a:78:45:ce:9d:67:64: e3:34:38:2f:2c:97:4f:ba:30:5e:37:4f:f1:50:a8:2e:9e:a2: 79:ff:44:59 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjYwNjAyMTY0ODQzWhcNMjYwNjA5MTY0ODQzWjAYMRYwFAYD VQQDEw02YTFmMDk2Yi0zZDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYs33SDGi35ACHLklx5r9kiVad0rDltDIQZ9UaCqSLGNd36OEOhKJa2BiGln LUv1aL7x4GS4t3JVjSZHU6FT/bm2ALUxgrpdkSA4Wsg7YDc+MYupYp7msbhQaDCR Tvy4jzsrkTBxf9O7VW0Cpj+eBidZnGFQABibd2gWypkOyP5e92AZ1OJThvLD00ur xo2sB2LA10dxn2v4E6GWJ+EUOTf3gYMyfLJEz1lDfzlvX8OOagHiziw5qMokeP2T 7q3XauAdhT4bDt5zsPIkI5xJRF414hR4etUswB+i3lK/l9vtDX7s0iQDTJ0ooOfB PXnlP97kAFl+dz/tBYrHlZKv3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF7SKl/F QmIjAb2IWh19Y7J5eOiOMB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFH7cwAgDUDb67t/rkNkkNs7dBAX1Ukzkw5HCcXX42aWfD5bGTjjlHv70AHEl eP29yjLVlHG+aQwdH6sVWd8laPR64Qps+N1p+yemnOQfBv+WsmAQEnRtkFZY6E+y z9d2yCHTpDKKxuWryQNv3EjdaFsdROchPqn2Yo4hto4iQqS285CC9UH9tbMZzQv+ Oi9+sAIQzITRCaLyjcliEEEl11O3ZgS/0ADAt3/pWhPKwIRD5HjiG2GoUqJRrg7R csKPuyLEPiWvxAwmeG9P9bi1VCgkvDbk+7jshAja6A1npHz5BGdaeEXOnWdk4zQ4 LyyXT7owXjdP8VCoLp6ief9EWQ== -----END CERTIFICATE-----Generated at Tue Jun 2 21:23:44 2026 by rpki-client