$ rpki-client -vvf rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft File: hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft (raw, json) Hash identifier: eSwQmBUcngvBpQ/dvaSFVVp0PYLHcPjANnAAR1PD64Q= Subject key identifier: 1F:77:2F:59:8D:3C:B3:8E:95:0C:5C:91:96:C5:B3:09:38:09:7F:0F Authority key identifier: 86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 Certificate issuer: /CN=A91973D2/serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Certificate serial: 068E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft Manifest number: 0681 Signing time: Wed 20 May 2026 22:35:09 +0000 Manifest this update: Wed 20 May 2026 22:35:08 +0000 Manifest next update: Wed 27 May 2026 22:35:08 +0000 Files and hashes: 1: hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl (hash: YWFU9Tr1ULP9nQ4dIjoJKWLcUNUk6PbpX1TU3RpwK2s=) 2: 6959BDA8C05B11EB9540776AC4F9AE02.roa (hash: o9LJvDAWoOpgjlM3ZhhTsc5yhOvJHm6q+nsIvmgifUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 22:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1678 (0x68e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91973D2, serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Validity Not Before: May 20 22:35:08 2026 GMT Not After : May 27 22:35:08 2026 GMT Subject: CN=6a0e371c-24d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c6:50:78:8d:cf:5d:dc:c5:b2:bb:42:cb:c2: 5d:27:b9:30:e4:79:04:91:66:0e:48:f4:61:cd:b4: 54:24:68:7f:2a:59:24:b8:e5:73:2b:7b:f8:70:bc: 31:d7:37:13:4d:b4:a2:09:ae:7f:de:02:10:9e:0e: a8:8e:b5:e3:fd:b3:10:70:e8:3e:a9:ee:85:26:13: 2f:05:1c:34:89:8a:e3:fe:60:d3:6d:02:2c:f2:54: 5c:5e:81:8c:00:58:d6:c6:37:be:35:e6:f6:6b:43: 39:f1:73:9b:f2:00:e7:38:c1:c1:49:be:e7:12:48: 4c:ac:59:1f:47:48:40:63:f4:bf:72:0d:92:b3:2f: f5:36:9b:f3:b5:8c:94:99:b5:69:ad:84:eb:72:22: ec:e9:53:8c:17:c2:dc:e2:57:61:48:bb:bf:96:80: b1:5b:ef:ac:90:04:25:6c:cd:79:01:54:5c:59:88: 6d:1e:4d:cf:5e:5f:4b:11:e4:30:45:7f:af:6a:4d: e6:da:b7:e2:61:d6:2a:66:bf:01:c8:1c:02:07:4f: 17:c0:68:d2:fc:c8:1f:12:9c:8b:11:34:14:8b:e5: 22:2d:3e:f9:7f:b7:ca:8f:a1:50:ab:ed:16:d0:ee: a4:02:0b:00:53:ba:07:05:86:fe:00:10:cd:08:ef: 4d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:77:2F:59:8D:3C:B3:8E:95:0C:5C:91:96:C5:B3:09:38:09:7F:0F X509v3 Authority Key Identifier: keyid:86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:d3:78:c2:85:dd:29:f8:a9:2e:07:12:a3:0d:6c:4f:9a:95: e4:dc:b7:3c:dc:3e:a5:ea:96:13:ae:5a:84:ec:33:cb:fa:d1: 7d:87:5d:e3:c6:54:1d:8b:cb:e2:f6:a6:c3:ba:1d:b6:fc:82: 54:cb:13:95:9a:6b:eb:61:b5:3d:ae:23:ad:b4:d4:ad:80:da: b0:e2:3e:08:f5:07:e3:54:99:a9:7d:38:35:28:13:02:76:cb: 11:08:24:c3:73:19:a2:b5:c7:d1:23:df:c3:1a:cb:74:22:af: be:28:e4:1e:26:69:b0:92:71:c6:14:8d:32:37:b5:09:e7:7c: da:35:71:96:19:57:18:55:0a:ce:bc:b4:b9:84:54:ac:ce:6a: 2c:de:a8:cb:85:06:56:59:d9:fd:41:ef:49:e8:32:0c:b9:8c: bd:38:1b:ea:09:4e:21:66:13:e8:01:58:2c:ee:07:71:8f:25: 3b:8b:92:fc:42:01:77:42:ee:67:63:4a:3d:e3:48:74:81:14: 42:29:a4:14:40:1d:d0:3f:3a:4c:37:bf:28:66:d5:32:59:1c: 9c:0c:d2:eb:0d:8c:5b:63:ad:6c:78:ee:c7:67:0d:1b:95:b5: 15:02:db:94:18:cf:7c:ea:4e:0a:0c:78:ee:c2:73:80:3a:74: 51:79:2c:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczRDIxMTAvBgNVBAUTKDg2QUIzRUJEN0M0MUU2NTZDQ0VFQ0RCNUE4NTBDN0E0 QjFFMjY3RTMwHhcNMjYwNTIwMjIzNTA4WhcNMjYwNTI3MjIzNTA4WjAYMRYwFAYD VQQDEw02YTBlMzcxYy0yNGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sZQeI3PXdzFsrtCy8JdJ7kw5HkEkWYOSPRhzbRUJGh/KlkkuOVzK3v4cLwx 1zcTTbSiCa5/3gIQng6ojrXj/bMQcOg+qe6FJhMvBRw0iYrj/mDTbQIs8lRcXoGM AFjWxje+Neb2a0M58XOb8gDnOMHBSb7nEkhMrFkfR0hAY/S/cg2Ssy/1NpvztYyU mbVprYTrciLs6VOMF8Lc4ldhSLu/loCxW++skAQlbM15AVRcWYhtHk3PXl9LEeQw RX+vak3m2rfiYdYqZr8ByBwCB08XwGjS/MgfEpyLETQUi+UiLT75f7fKj6FQq+0W 0O6kAgsAU7oHBYb+ABDNCO9NZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB93L1mN PLOOlQxckZbFswk4CX8PMB8GA1UdIwQYMBaAFIarPr18QeZWzO7NtahQx6Sx4mfj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzNEMi9EQTgzOUM5NEJG QzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVsYk03czIxcUZESHBMSGla LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hxcy12WHhCNWxiTTdzMjFxRkRIcExIaVotTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzNEMi9EQTgzOUM5NEJGQzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVs Yk03czIxcUZESHBMSGlaLU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcdN4woXdKfipLgcSow1sT5qV5Ny3PNw+peqWE65ahOwzy/rRfYdd48ZUHYvL 4vamw7odtvyCVMsTlZpr62G1Pa4jrbTUrYDasOI+CPUH41SZqX04NSgTAnbLEQgk w3MZorXH0SPfwxrLdCKvvijkHiZpsJJxxhSNMje1Ced82jVxlhlXGFUKzry0uYRU rM5qLN6oy4UGVlnZ/UHvSegyDLmMvTgb6glOIWYT6AFYLO4HcY8lO4uS/EIBd0Lu Z2NKPeNIdIEUQimkFEAd0D86TDe/KGbVMlkcnAzS6w2MW2OtbHjux2cNG5W1FQLb lBjPfOpOCgx47sJzgDp0UXksVg== -----END CERTIFICATE-----Generated at Thu May 21 10:14:43 2026 by rpki-client