$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft File: hemZwivuAcMmTT0iZ1ghCS__0Cw.mft (raw, json) Hash identifier: dHPy80I8DWbr7+taP0XQ0kLZRg58XRioEAmp24B288M= Subject key identifier: 3A:B4:C9:D0:0E:20:41:84:8E:3B:E2:3C:DA:AD:53:17:F4:E0:41:AE Authority key identifier: 85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C Certificate issuer: /CN=A91AC132/serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft Manifest number: 011F Signing time: Sun 21 Jun 2026 05:52:12 +0000 Manifest this update: Sun 21 Jun 2026 05:52:12 +0000 Manifest next update: Sun 28 Jun 2026 05:52:12 +0000 Files and hashes: 1: hemZwivuAcMmTT0iZ1ghCS__0Cw.crl (hash: dWilAyfFY9SpNwLPpjysGQqMBns6s3zd6/0mD9AlAW4=) 2: 8B91AD8CD6B811EF86FC5149C4F9AE02.roa (hash: UTKE8OB36Bwcjc1JGfweQcZlItW6iUFLSvYsOlfMWTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Jun 2026 05:52:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC132, serialNumber=85E999C22BEE01C3264D3D22675821092FFFD02C Validity Not Before: Jun 21 05:52:12 2026 GMT Not After : Jun 28 05:52:12 2026 GMT Subject: CN=6a377c0c-fc47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5b:39:dc:88:3a:cd:39:29:4b:28:c8:02:f8: 4a:51:2e:35:61:65:7e:c0:ea:8d:b8:92:59:27:04: 54:08:d4:97:a6:a7:ba:27:2e:d2:d2:2c:aa:f4:82: c9:bf:9c:a9:4e:f1:85:b8:f1:8d:fc:14:fc:b4:66: 51:93:b5:87:97:02:5c:97:15:da:1e:5d:01:00:18: b5:83:5e:c6:d1:68:c4:d7:15:d0:d6:c5:7f:57:65: 02:6c:48:3a:a2:89:36:f4:f7:5e:3b:98:3d:e0:c9: 13:61:59:6a:df:b7:87:7b:a7:6f:86:27:b9:b0:25: 5b:4f:cd:71:1d:76:b7:7f:97:95:8a:39:93:ca:76: 8f:a3:2f:32:e6:5e:ff:77:fd:60:69:6a:bd:07:bb: db:d1:20:bc:56:0b:e3:f8:12:40:c4:71:06:5a:64: 41:be:2d:c6:ef:b2:cd:d8:20:4f:52:af:ab:cc:62: 5d:4a:79:4c:3c:bd:f0:c2:d3:0a:43:f0:d5:f9:15: b7:70:34:42:3f:4a:76:54:f6:8d:25:46:20:b5:fb: a3:d8:7a:ef:a9:ec:ca:21:b1:39:0c:16:95:74:f1: a9:51:45:2e:fe:a8:b5:78:4a:e3:64:f9:11:71:fb: 3d:2e:5d:5f:d1:fa:51:e2:0e:d7:8e:56:d7:fc:f0: 04:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:B4:C9:D0:0E:20:41:84:8E:3B:E2:3C:DA:AD:53:17:F4:E0:41:AE X509v3 Authority Key Identifier: keyid:85:E9:99:C2:2B:EE:01:C3:26:4D:3D:22:67:58:21:09:2F:FF:D0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hemZwivuAcMmTT0iZ1ghCS__0Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC132/C4FA14F8B80C11EF84FA3E35C4F9AE02/hemZwivuAcMmTT0iZ1ghCS__0Cw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:e2:9d:61:d3:08:32:48:6f:3f:c5:45:c0:86:9d:52:d0:b9: 53:b1:cc:cc:b3:e3:33:5e:2f:16:a5:20:3a:b5:87:4a:3e:13: ee:10:7b:12:18:ea:3c:63:e5:55:8e:ef:c4:e6:73:1c:2d:73: 99:ab:70:14:d2:35:68:b1:a9:e5:59:cf:d8:c3:fb:a8:be:27: b4:95:45:c0:68:df:d8:35:ef:2e:ff:8a:d9:2b:fa:7b:42:a9: 55:21:28:6f:a5:1b:b7:98:18:05:07:ee:a0:fd:88:e1:8c:f8: 7e:b9:71:f2:6d:f1:58:7d:2c:ab:6e:ff:8f:a0:02:48:b8:90: 73:54:b3:18:46:db:61:cf:6c:2e:2d:61:5a:2d:7f:9f:b8:53: f8:3a:fb:cb:ca:0b:9d:ed:e2:8d:8b:bf:12:a2:98:89:e0:2e: 50:48:56:75:2d:a4:2b:10:c6:d9:29:9d:4a:42:18:1b:43:21: e7:bd:38:46:db:54:72:4b:d9:e7:d5:c6:0c:82:60:56:61:1c: 0f:24:99:8c:28:f7:d3:68:f0:be:37:d6:4d:dc:ea:fe:5d:4c: 0e:0e:dc:04:5c:c1:5e:3e:83:10:17:ff:f0:94:17:14:7a:97: 6f:a2:4f:3c:db:4d:ce:f0:80:08:a4:2d:cc:17:b7:bd:86:e3: 0a:e4:33:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUMxMzIxMTAvBgNVBAUTKDg1RTk5OUMyMkJFRTAxQzMyNjREM0QyMjY3NTgyMTA5 MkZGRkQwMkMwHhcNMjYwNjIxMDU1MjEyWhcNMjYwNjI4MDU1MjEyWjAYMRYwFAYD VQQDEw02YTM3N2MwYy1mYzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Fs53Ig6zTkpSyjIAvhKUS41YWV+wOqNuJJZJwRUCNSXpqe6Jy7S0iyq9ILJ v5ypTvGFuPGN/BT8tGZRk7WHlwJclxXaHl0BABi1g17G0WjE1xXQ1sV/V2UCbEg6 ook29PdeO5g94MkTYVlq37eHe6dvhie5sCVbT81xHXa3f5eVijmTynaPoy8y5l7/ d/1gaWq9B7vb0SC8Vgvj+BJAxHEGWmRBvi3G77LN2CBPUq+rzGJdSnlMPL3wwtMK Q/DV+RW3cDRCP0p2VPaNJUYgtfuj2HrvqezKIbE5DBaVdPGpUUUu/qi1eErjZPkR cfs9Ll1f0fpR4g7XjlbX/PAE3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDq0ydAO IEGEjjviPNqtUxf04EGuMB8GA1UdIwQYMBaAFIXpmcIr7gHDJk09ImdYIQkv/9As MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzEzMi9DNEZBMTRGOEI4 MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFjTW1UVDBpWjFnaENTX18w Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlbVp3aXZ1QWNNbVRUMGlaMWdoQ1NfXzBDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzEzMi9DNEZBMTRGOEI4MEMxMUVGODRGQTNFMzVDNEY5QUUwMi9oZW1ad2l2dUFj TW1UVDBpWjFnaENTX18wQ3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOeKdYdMIMkhvP8VFwIadUtC5U7HMzLPjM14vFqUgOrWHSj4T7hB7EhjqPGPl VY7vxOZzHC1zmatwFNI1aLGp5VnP2MP7qL4ntJVFwGjf2DXvLv+K2Sv6e0KpVSEo b6Ubt5gYBQfuoP2I4Yz4frlx8m3xWH0sq27/j6ACSLiQc1SzGEbbYc9sLi1hWi1/ n7hT+Dr7y8oLne3ijYu/EqKYieAuUEhWdS2kKxDG2SmdSkIYG0Mh5704RttUckvZ 59XGDIJgVmEcDySZjCj302jwvjfWTdzq/l1MDg7cBFzBXj6DEBf/8JQXFHqXb6JP PNtNzvCACKQtzBe3vYbjCuQzXQ== -----END CERTIFICATE-----Generated at Sun Jun 21 12:38:26 2026 by rpki-client