$ rpki-client -vvf rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft File: hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft (raw, json) Hash identifier: 3P5A06cB6AQ3mpytQWpMvkzALBg03FGit1rhe7aqIiM= Subject key identifier: 3A:97:54:06:B0:4D:88:6B:15:8A:F4:C6:8A:75:DD:13:1E:02:B4:4B Authority key identifier: 87:19:7F:D5:46:DC:31:52:31:11:DD:93:90:B1:BA:3F:3D:70:26:56 Certificate issuer: /CN=A91982EF/serialNumber=87197FD546DC31523111DD9390B1BA3F3D702656 Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft Manifest number: 011E Signing time: Thu 21 May 2026 06:04:55 +0000 Manifest this update: Thu 21 May 2026 06:04:55 +0000 Manifest next update: Thu 28 May 2026 06:04:55 +0000 Files and hashes: 1: hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl (hash: 9iULk0S6atTCDafEUaCmOFP3Lqt/1lFinYywlfAcx7k=) 2: F33309A2B72011EFB3A5D772C4F9AE02.roa (hash: HYHec9orOca+00gsDqMx8Gss9C7gqHvPJgzKMMmNDKk=) 3: 3A8C7518B72111EFA9A92F26C4F9AE02.roa (hash: wy1fO8emrrb11LIF29YjzsQF2VR/akidMRTHMxAcTfI=) 4: 98AEAB84B72111EF8A087D30C4F9AE02.roa (hash: j2Hz+mynGpqLJnmZlqehevWYxoqbcW99ZISJiOfwTiY=) 5: 1A3A1E2C287D11F18C83C945A7833773.roa (hash: Ga/vGf3pYAE0aZeA1OVe1QY6DoiwmNjQ7QadAkBsWIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 04:46:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982EF, serialNumber=87197FD546DC31523111DD9390B1BA3F3D702656 Validity Not Before: May 21 06:04:55 2026 GMT Not After : May 28 06:04:55 2026 GMT Subject: CN=6a0ea087-c003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:83:ea:1f:54:64:f5:eb:07:86:53:b2:0b:1d: 31:00:dd:23:a5:f8:0a:e6:da:b3:ec:7b:d2:05:6f: 72:eb:2c:f4:f7:33:a2:2b:a9:dc:65:9f:bb:db:97: b3:66:32:f0:f7:2a:db:93:3f:4b:f9:cd:3c:2d:29: 4b:5d:d3:93:db:75:2f:68:69:79:f5:c8:1f:62:28: ee:f5:53:ab:b8:cf:0b:62:d7:84:d1:7f:91:4f:9b: ae:36:77:15:a7:fc:96:36:8e:ad:5f:0f:86:b4:f2: 34:08:a5:0d:1f:3e:7c:aa:69:70:88:a5:00:91:8a: 23:11:c3:62:c3:91:ec:52:e7:6a:88:3c:d1:11:31: 09:07:f0:2a:ec:d3:f4:0d:28:e2:8d:22:40:0c:14: 0d:e5:91:3b:26:8e:e2:81:6f:8c:09:a9:4e:7d:3d: 93:d7:a6:ce:ab:24:df:b4:ea:7e:b4:00:0b:47:51: 65:f3:0c:b3:5e:ab:a8:1e:db:29:18:3a:61:8c:27: 84:ca:59:a6:c7:66:c9:25:22:c8:b1:e8:97:d3:b6: 8b:99:dc:05:b0:e1:d6:0f:00:4f:c6:71:7c:f0:4d: 81:96:ef:83:ac:79:9b:d7:28:9e:cb:f8:84:a8:ad: d5:8c:36:fe:52:65:ae:99:94:ab:66:46:76:fb:79: 6e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:97:54:06:B0:4D:88:6B:15:8A:F4:C6:8A:75:DD:13:1E:02:B4:4B X509v3 Authority Key Identifier: keyid:87:19:7F:D5:46:DC:31:52:31:11:DD:93:90:B1:BA:3F:3D:70:26:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:df:53:8a:fc:cf:b7:82:34:bc:ac:ea:16:09:28:14:51:a2: 71:64:9c:a9:02:4c:eb:4c:15:91:ef:41:3c:6a:41:9a:b3:6f: 40:a6:5d:43:66:d5:20:e9:53:0e:ab:ec:68:80:40:e1:53:1d: 7f:e9:56:ce:7d:0a:87:aa:22:9c:19:48:47:ff:ed:af:8c:ea: ff:77:b8:3c:40:07:9a:41:6f:65:0e:c6:24:52:7f:0f:a2:b3: 7c:7b:50:d7:53:3d:bb:c1:28:85:bd:71:ce:64:a2:8f:d9:9b: 5f:91:db:d5:0e:44:47:2d:64:bd:fb:b5:95:e1:54:4d:30:0b: c8:13:17:d3:43:c9:64:8f:61:54:d3:61:2d:3f:76:13:47:9a: cd:93:0f:0d:21:99:18:89:f7:db:8f:7f:0e:23:56:aa:d0:31: a9:1b:e8:be:36:1a:42:33:5d:c9:23:b0:19:c1:26:43:c0:0b: d4:7c:b9:74:87:0a:ab:a9:cf:30:6c:26:69:a5:0a:5d:4c:7d: fa:e9:31:1f:26:ba:f9:ab:f8:a1:1b:4f:56:93:5b:fa:1b:e0: 31:ac:9c:34:3e:06:e7:9d:d1:9e:9c:b8:30:64:0e:70:4c:c5: 26:4c:fe:86:d7:b1:26:dd:22:7d:05:e6:44:7a:f0:e8:9a:5a: c2:94:7e:b9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyRUYxMTAvBgNVBAUTKDg3MTk3RkQ1NDZEQzMxNTIzMTExREQ5MzkwQjFCQTNG M0Q3MDI2NTYwHhcNMjYwNTIxMDYwNDU1WhcNMjYwNTI4MDYwNDU1WjAYMRYwFAYD VQQDEw02YTBlYTA4Ny1jMDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIPqH1Rk9esHhlOyCx0xAN0jpfgK5tqz7HvSBW9y6yz09zOiK6ncZZ+725ez ZjLw9yrbkz9L+c08LSlLXdOT23UvaGl59cgfYiju9VOruM8LYteE0X+RT5uuNncV p/yWNo6tXw+GtPI0CKUNHz58qmlwiKUAkYojEcNiw5HsUudqiDzRETEJB/Aq7NP0 DSjijSJADBQN5ZE7Jo7igW+MCalOfT2T16bOqyTftOp+tAALR1Fl8wyzXquoHtsp GDphjCeEylmmx2bJJSLIseiX07aLmdwFsOHWDwBPxnF88E2Blu+DrHmb1yiey/iE qK3VjDb+UmWumZSrZkZ2+3luWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDqXVAaw TYhrFYr0xop13RMeArRLMB8GA1UdIwQYMBaAFIcZf9VG3DFSMRHdk5Cxuj89cCZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODJFRi9GQzY1MEI3MkI3 MUQxMUVGODk4MkM0MENDNEY5QUUwMi9oeGxfMVViY01WSXhFZDJUa0xHNlB6MXdK bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h4bF8xVWJjTVZJeEVkMlRrTEc2UHoxd0psWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODJFRi9GQzY1MEI3MkI3MUQxMUVGODk4MkM0MENDNEY5QUUwMi9oeGxfMVViY01W SXhFZDJUa0xHNlB6MXdKbFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAld9TivzPt4I0vKzqFgkoFFGicWScqQJM60wVke9BPGpBmrNvQKZdQ2bVIOlT DqvsaIBA4VMdf+lWzn0Kh6oinBlIR//tr4zq/3e4PEAHmkFvZQ7GJFJ/D6KzfHtQ 11M9u8Eohb1xzmSij9mbX5Hb1Q5ERy1kvfu1leFUTTALyBMX00PJZI9hVNNhLT92 E0eazZMPDSGZGIn3249/DiNWqtAxqRvovjYaQjNdySOwGcEmQ8AL1Hy5dIcKq6nP MGwmaaUKXUx9+ukxHya6+av4oRtPVpNb+hvgMaycND4G553Rnpy4MGQOcEzFJkz+ htexJt0ifQXmRHrw6JpawpR+uQ== -----END CERTIFICATE-----Generated at Thu May 21 09:39:13 2026 by rpki-client