$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft File: hs2LQhipuaG84vrF7m3HhbAKkx0.mft (raw, json) Hash identifier: XZ+8HkPY7dP8mN61LNk0+C8VZ6im/lEbLLPS1i4WYQ4= Subject key identifier: 26:6C:6B:89:09:4F:68:09:CA:C5:E0:AE:6A:63:86:07:EA:8F:B6:BC Authority key identifier: 86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D Certificate issuer: /CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Certificate serial: 02ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft Manifest number: 02C8 Signing time: Thu 21 May 2026 01:38:42 +0000 Manifest this update: Thu 21 May 2026 01:38:41 +0000 Manifest next update: Thu 28 May 2026 01:38:41 +0000 Files and hashes: 1: hs2LQhipuaG84vrF7m3HhbAKkx0.crl (hash: EOpdzSGEO/H9/C/lxbD0ZhxZrYcg24/KDqGMejNkskY=) 2: FB9DB0B8778011EFA197A558C4F9AE02.roa (hash: NdFnlMSr/V5noQXIsNx/D5f9zVB2iTgM5spp/nQu96Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:38:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 749 (0x2ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF28F, serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Validity Not Before: May 21 01:38:41 2026 GMT Not After : May 28 01:38:41 2026 GMT Subject: CN=6a0e6222-c3be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8a:31:a2:95:9b:1e:1a:ae:e5:6c:92:95:a3: 7f:0e:fc:95:46:2c:0a:b1:b7:58:58:88:1c:f5:40: 88:3b:d4:36:b5:24:e4:c7:1e:1c:09:a2:7f:37:c5: a7:4b:16:7d:6f:73:98:84:13:b3:50:56:e8:d5:88: 8f:98:3d:ea:4c:05:63:bb:07:23:c7:6e:ed:eb:8e: 96:29:d0:55:27:22:41:29:b7:42:ce:32:34:12:cf: aa:c1:18:7c:6b:45:d1:63:82:26:d1:e1:7a:9a:79: 5f:35:46:0e:b6:21:5b:fe:79:42:d0:20:53:9c:04: 39:09:8e:25:a4:57:67:98:9a:ed:09:51:4f:be:4a: aa:d9:24:42:22:58:89:52:91:78:ca:75:b5:6a:64: ae:7e:22:91:3e:27:69:c8:bb:2c:3e:4d:9a:47:1a: b1:58:92:f8:78:2e:ee:55:b2:4d:0d:55:ba:b9:ed: 17:90:86:a1:00:e4:ca:f4:7d:cb:4d:12:97:63:f6: 4f:13:9a:d4:65:2c:31:f0:cf:d6:fc:ec:19:38:67: 2a:ef:cf:cd:f6:b5:22:f6:a6:02:34:fd:a1:e5:4b: e3:69:95:61:95:35:18:62:e5:ae:e3:84:b5:37:3b: 0f:d1:15:01:9b:f1:a9:e2:8d:04:32:48:fc:f6:95: d1:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:6C:6B:89:09:4F:68:09:CA:C5:E0:AE:6A:63:86:07:EA:8F:B6:BC X509v3 Authority Key Identifier: keyid:86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:cf:38:10:d5:88:04:79:66:73:a9:61:3a:76:32:3d:63:f0: 14:2d:a9:9c:77:64:92:ad:d9:af:7c:7b:81:c5:6b:a5:68:01: c5:39:ea:c0:43:70:a1:ab:ee:d5:33:8e:af:67:7a:6b:1a:a2: 0c:56:d0:8b:bf:8c:59:94:07:a6:c6:31:09:20:de:21:1b:5f: 99:5b:3d:3e:de:ac:af:c7:97:93:50:54:3f:6c:b3:80:ac:29: b6:eb:04:41:43:63:ba:e9:81:ab:db:3e:e4:87:59:88:e9:09: 3c:1e:a5:83:9b:01:76:16:ff:09:f4:83:51:51:f1:3b:bf:92: 36:ec:a4:fe:c5:ad:5e:2b:29:91:00:bf:a3:7e:a2:8f:bb:db: 02:02:11:eb:ce:df:e1:4c:4b:bc:31:86:3e:9c:74:93:93:95: ce:6a:7c:39:5a:24:09:92:4d:b2:7e:14:74:c5:44:61:d3:71: 4d:8e:1b:2c:5e:1b:d9:1f:77:5f:f7:25:1e:c4:c4:54:be:7a: 26:08:4c:3e:e1:b6:05:6b:d8:65:a5:d4:19:f0:05:68:55:30: b4:a8:d5:df:79:29:ff:8e:15:09:73:3d:7f:8d:59:1d:8d:6d: 0e:67:8d:c5:db:43:05:2c:fd:36:d0:dc:af:6d:86:38:21:22: 60:72:a9:a5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyOEYxMTAvBgNVBAUTKDg2Q0Q4QjQyMThBOUI5QTFCQ0UyRkFDNUVFNkRDNzg1 QjAwQTkzMUQwHhcNMjYwNTIxMDEzODQxWhcNMjYwNTI4MDEzODQxWjAYMRYwFAYD VQQDEw02YTBlNjIyMi1jM2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnooxopWbHhqu5WySlaN/DvyVRiwKsbdYWIgc9UCIO9Q2tSTkxx4cCaJ/N8Wn SxZ9b3OYhBOzUFbo1YiPmD3qTAVjuwcjx27t646WKdBVJyJBKbdCzjI0Es+qwRh8 a0XRY4Im0eF6mnlfNUYOtiFb/nlC0CBTnAQ5CY4lpFdnmJrtCVFPvkqq2SRCIliJ UpF4ynW1amSufiKRPidpyLssPk2aRxqxWJL4eC7uVbJNDVW6ue0XkIahAOTK9H3L TRKXY/ZPE5rUZSwx8M/W/OwZOGcq78/N9rUi9qYCNP2h5UvjaZVhlTUYYuWu44S1 NzsP0RUBm/Gp4o0EMkj89pXR1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCZsa4kJ T2gJysXgrmpjhgfqj7a8MB8GA1UdIwQYMBaAFIbNi0IYqbmhvOL6xe5tx4WwCpMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI4Ri83RERDNUEyRTU1 NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVhRzg0dnJGN20zSGhiQUtr eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzMkxRaGlwdWFHODR2ckY3bTNIaGJBS2t4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI4Ri83RERDNUEyRTU1NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVh Rzg0dnJGN20zSGhiQUtreDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPs84ENWIBHlmc6lhOnYyPWPwFC2pnHdkkq3Zr3x7gcVrpWgBxTnqwENwoavu 1TOOr2d6axqiDFbQi7+MWZQHpsYxCSDeIRtfmVs9Pt6sr8eXk1BUP2yzgKwptusE QUNjuumBq9s+5IdZiOkJPB6lg5sBdhb/CfSDUVHxO7+SNuyk/sWtXispkQC/o36i j7vbAgIR687f4UxLvDGGPpx0k5OVzmp8OVokCZJNsn4UdMVEYdNxTY4bLF4b2R93 X/clHsTEVL56JghMPuG2BWvYZaXUGfAFaFUwtKjV33kp/44VCXM9f41ZHY1tDmeN xdtDBSz9NtDcr22GOCEiYHKppQ== -----END CERTIFICATE-----Generated at Thu May 21 10:18:06 2026 by rpki-client