$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json) Hash identifier: oz2VANTBB88D9nw7vxPi1897Rq+7EqAgHU0B7VkiLnk= Subject key identifier: D5:D5:D2:03:9F:22:CC:6D:C0:7E:8A:4A:14:93:DB:7A:7C:1B:87:1F Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Certificate serial: 0CAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft Manifest number: 0CA2 Signing time: Mon 22 Jun 2026 18:32:34 +0000 Manifest this update: Mon 22 Jun 2026 18:32:34 +0000 Manifest next update: Mon 29 Jun 2026 18:32:34 +0000 Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: X7c2JDWuvaMh0WHwQKsCsRUi4HcjUjxCx8jWCCd/3Nw=) 2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: 7Dz9hu6gjsKF7rOCaXHWUeixpnR4qVyHb9xN6ykXLfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 18:32:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3246 (0xcae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FD74, serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Validity Not Before: Jun 22 18:32:34 2026 GMT Not After : Jun 29 18:32:34 2026 GMT Subject: CN=6a397fc2-6a1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c5:0a:72:da:1c:ff:35:bf:69:d4:92:b6:1b: c3:3d:53:4d:b2:cd:b5:39:51:b6:bf:a0:c1:b1:ee: 68:35:0f:75:32:09:cc:6e:4b:da:a1:f5:ca:7b:5f: f0:da:9a:b4:b5:2a:d2:74:d0:91:4b:3e:e2:05:74: 72:ff:2a:8b:e4:9f:c3:c0:3b:3b:4e:a8:52:9c:ed: 0b:9a:76:a8:1b:00:18:53:db:27:01:95:75:5d:2f: eb:43:2f:47:a1:83:c7:02:06:bd:2c:92:c2:16:d9: f9:40:3a:a7:06:69:27:c3:47:ef:71:de:cd:7e:68: c5:fe:bf:ee:c4:d7:28:be:76:52:78:9f:a3:48:fb: 9f:80:12:b4:f1:2e:14:82:d9:ba:21:4f:a4:73:f8: 71:b4:bc:3e:75:2f:2c:2a:5c:af:c5:27:5a:0a:1b: 89:61:69:27:32:30:11:6f:cc:c9:6e:97:71:03:fb: 09:d5:39:54:fc:87:6b:b3:7d:32:41:d8:86:6c:22: d9:43:ff:e2:6f:ab:c2:12:c0:08:6f:50:29:89:51: d0:f2:9b:b8:48:e9:85:bb:b2:6c:ce:18:e8:0d:7f: 54:d7:df:6e:1c:d8:03:00:38:90:a2:35:85:0c:73: 08:8e:78:8b:6a:1e:7e:fa:e6:6a:f7:61:08:27:9e: 14:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:D5:D2:03:9F:22:CC:6D:C0:7E:8A:4A:14:93:DB:7A:7C:1B:87:1F X509v3 Authority Key Identifier: keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:b4:82:34:24:17:1e:35:91:d9:a7:ae:41:0f:cd:9b:a8:a3: 83:80:ae:ef:37:5e:68:9c:20:8a:02:36:04:4c:43:b0:2b:d5: f3:ef:eb:3c:07:7f:70:f5:db:e5:d1:de:37:7b:24:8f:d8:3b: 0c:a4:96:f5:39:42:22:16:ff:d1:7b:19:da:d3:10:77:08:de: 71:32:ac:eb:85:46:9e:13:14:ab:3e:ea:2c:c1:49:1a:53:1f: 79:24:8c:06:05:12:46:d1:61:2b:1f:5b:60:5a:31:ca:2b:35: f1:c6:4e:37:a5:85:0b:a1:cb:ae:2d:74:89:1f:b3:34:06:1b: 45:e4:ba:24:1d:8e:c0:d9:d1:f2:86:6f:c0:71:72:bb:21:24: 39:f7:db:c4:45:43:1b:37:f8:1d:75:c6:7e:33:60:5e:a5:01: 89:f8:47:97:e3:d7:88:82:32:be:01:88:73:a1:a5:3a:7e:bd: 86:f2:e2:a4:12:29:32:8e:74:66:57:b0:d2:d0:87:ae:af:6f: 73:bc:f5:24:7f:04:43:11:8b:60:14:88:d7:b3:8f:0f:b9:e7: 5e:a3:a3:c8:5b:0d:66:9b:56:ed:c2:99:cb:3f:00:bd:b1:bc: 64:a5:c0:f0:34:89:20:ce:d7:41:d9:e5:d3:93:57:10:20:03: a2:13:d7:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND MDJDMDM2MjcwHhcNMjYwNjIyMTgzMjM0WhcNMjYwNjI5MTgzMjM0WjAYMRYwFAYD VQQDEw02YTM5N2ZjMi02YTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MUKctoc/zW/adSSthvDPVNNss21OVG2v6DBse5oNQ91MgnMbkvaofXKe1/w 2pq0tSrSdNCRSz7iBXRy/yqL5J/DwDs7TqhSnO0LmnaoGwAYU9snAZV1XS/rQy9H oYPHAga9LJLCFtn5QDqnBmknw0fvcd7NfmjF/r/uxNcovnZSeJ+jSPufgBK08S4U gtm6IU+kc/hxtLw+dS8sKlyvxSdaChuJYWknMjARb8zJbpdxA/sJ1TlU/Idrs30y QdiGbCLZQ//ib6vCEsAIb1ApiVHQ8pu4SOmFu7JszhjoDX9U199uHNgDADiQojWF DHMIjniLah5++uZq92EIJ54UQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNXV0gOf IsxtwH6KShST23p8G4cfMB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y MkxJQzM3SGVJaFBBTEFOaWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnrSCNCQXHjWR2aeuQQ/Nm6ijg4Cu7zdeaJwgigI2BExDsCvV8+/rPAd/cPXb 5dHeN3skj9g7DKSW9TlCIhb/0XsZ2tMQdwjecTKs64VGnhMUqz7qLMFJGlMfeSSM BgUSRtFhKx9bYFoxyis18cZON6WFC6HLri10iR+zNAYbReS6JB2OwNnR8oZvwHFy uyEkOffbxEVDGzf4HXXGfjNgXqUBifhHl+PXiIIyvgGIc6GlOn69hvLipBIpMo50 Zlew0tCHrq9vc7z1JH8EQxGLYBSI17OPD7nnXqOjyFsNZptW7cKZyz8AvbG8ZKXA 8DSJIM7XQdnl05NXECADohPX5A== -----END CERTIFICATE-----Generated at Wed Jun 24 11:18:05 2026 by rpki-client