$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft File: HRIX74_oS1glUWcbyjXmhEhpJJc.mft (raw, json) Hash identifier: YrrPT1SiyKrNxp/wRC+PIKgXbazOcLrNftQjD7k9rFI= Subject key identifier: 88:6D:78:BB:A7:99:23:C4:5A:0B:C7:9D:64:19:D0:8F:7B:7F:C2:E7 Authority key identifier: 1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 Certificate issuer: /CN=A91C8BB4/serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Certificate serial: 0B1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft Manifest number: 0B13 Signing time: Mon 22 Jun 2026 19:20:59 +0000 Manifest this update: Mon 22 Jun 2026 19:20:58 +0000 Manifest next update: Mon 29 Jun 2026 19:20:58 +0000 Files and hashes: 1: HRIX74_oS1glUWcbyjXmhEhpJJc.crl (hash: 0Dg4bf1wNWkEwE0wCXrKhdN+ecJt0I1+v8eZkJ/Xyc8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 19:20:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2845 (0xb1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8BB4, serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Validity Not Before: Jun 22 19:20:58 2026 GMT Not After : Jun 29 19:20:58 2026 GMT Subject: CN=6a398b1b-66f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:21:bf:32:15:73:96:e2:8c:c7:b8:00:55:ef: 79:ce:5b:b1:f9:fb:f9:df:c9:92:c8:83:1d:a5:d7: 04:e9:61:87:66:6c:f8:9d:50:2b:96:99:ae:5a:23: ca:fb:01:cc:3e:d4:f7:75:2d:08:a8:88:47:d4:b7: 13:3b:43:58:f5:4a:a3:c4:c9:7d:65:1f:7f:b4:f0: fc:4c:e1:6d:33:41:ec:fe:9f:80:39:a7:5e:f6:ad: 03:18:7e:48:ba:da:a5:93:e7:eb:00:c0:5e:da:3e: d7:ac:1c:5d:98:db:3b:35:50:96:43:1e:ee:ca:d0: 5b:0a:00:da:fc:3a:ab:c7:44:5e:22:a6:dc:2f:aa: 46:c0:95:80:85:ab:3d:eb:8c:89:ff:70:9f:a0:ac: 05:76:a5:93:c8:01:41:3b:33:56:41:0d:a9:87:e6: 9f:92:7c:01:bc:e8:02:17:45:5a:92:8d:01:a2:75: 83:cd:5e:f8:87:00:15:50:fe:15:2a:f2:c5:fe:5e: 36:d7:e9:2f:1b:e9:38:9e:4e:a2:c3:67:9b:7a:75: fd:ce:80:40:d4:ef:2e:6e:52:83:e8:06:06:15:d2: 5a:fa:33:6d:24:48:e1:9a:df:5a:bc:b6:9e:c5:54: d4:8a:8a:a6:b0:f5:96:22:8e:42:ec:f1:a9:82:4f: 79:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:6D:78:BB:A7:99:23:C4:5A:0B:C7:9D:64:19:D0:8F:7B:7F:C2:E7 X509v3 Authority Key Identifier: keyid:1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:fe:4e:94:3a:53:cb:aa:88:d3:1f:39:23:40:dd:09:1e:ff: 1e:46:9b:76:e3:67:da:75:6b:f7:50:a1:02:32:c1:e0:00:ed: a4:70:dd:05:21:5e:89:7f:7b:66:b9:2f:60:dd:68:9b:25:0d: 14:6c:76:e5:88:d1:36:40:be:2a:81:68:ff:47:26:2e:0a:35: a9:78:12:c1:2c:4b:ff:c1:27:9a:60:51:4b:49:3b:f7:0e:37: a6:ca:7d:a8:af:90:a9:ef:59:db:b6:91:78:b4:6d:09:9a:42: 34:17:35:4c:ca:16:ce:f9:be:d9:51:77:c0:59:70:7a:92:c8: 4c:5e:d5:7c:ca:2c:a7:41:67:d9:78:76:f8:45:56:95:c3:3c: 3a:4c:91:c0:f4:4f:30:8f:59:1f:8a:72:5e:b0:cb:4d:4a:8a: e7:0d:59:b7:7b:6b:f1:eb:5d:40:b3:1a:29:f5:1c:0c:ae:e1: 4b:76:4c:c7:ba:ca:2a:aa:5e:96:74:c7:ef:37:60:16:48:ff: 63:f7:75:10:b8:f7:38:d9:cb:e1:48:0a:29:b5:61:62:5e:65: 31:9c:01:c4:7b:87:13:95:ff:83:b9:9b:1b:c1:62:f0:d7:fa: 08:54:d4:db:68:68:4c:ee:a5:8f:44:8f:c6:1d:20:6b:5b:01: a0:5f:a5:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCQjQxMTAvBgNVBAUTKDFEMTIxN0VGOEZFODRCNTgyNTUxNjcxQkNBMzVFNjg0 NDg2OTI0OTcwHhcNMjYwNjIyMTkyMDU4WhcNMjYwNjI5MTkyMDU4WjAYMRYwFAYD VQQDEw02YTM5OGIxYi02NmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyG/MhVzluKMx7gAVe95zlux+fv538mSyIMdpdcE6WGHZmz4nVArlpmuWiPK +wHMPtT3dS0IqIhH1LcTO0NY9UqjxMl9ZR9/tPD8TOFtM0Hs/p+AOade9q0DGH5I utqlk+frAMBe2j7XrBxdmNs7NVCWQx7uytBbCgDa/Dqrx0ReIqbcL6pGwJWAhas9 64yJ/3CfoKwFdqWTyAFBOzNWQQ2ph+afknwBvOgCF0Vako0BonWDzV74hwAVUP4V KvLF/l421+kvG+k4nk6iw2ebenX9zoBA1O8ublKD6AYGFdJa+jNtJEjhmt9avLae xVTUioqmsPWWIo5C7PGpgk95/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIhteLun mSPEWgvHnWQZ0I97f8LnMB8GA1UdIwQYMBaAFB0SF++P6EtYJVFnG8o15oRIaSSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEJCNC9EOTU0QkFCRTY5 QjcxMUVBODhFNzJFNTlDNEY5QUUwMi9IUklYNzRfb1MxZ2xVV2NieWpYbWhFaHBK SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hSSVg3NF9vUzFnbFVXY2J5alhtaEVocEpKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEJCNC9EOTU0QkFCRTY5QjcxMUVBODhFNzJFNTlDNEY5QUUwMi9IUklYNzRfb1Mx Z2xVV2NieWpYbWhFaHBKSmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU/5OlDpTy6qI0x85I0DdCR7/HkabduNn2nVr91ChAjLB4ADtpHDdBSFeiX97 ZrkvYN1omyUNFGx25YjRNkC+KoFo/0cmLgo1qXgSwSxL/8EnmmBRS0k79w43psp9 qK+Qqe9Z27aReLRtCZpCNBc1TMoWzvm+2VF3wFlwepLITF7VfMosp0Fn2Xh2+EVW lcM8OkyRwPRPMI9ZH4pyXrDLTUqK5w1Zt3tr8etdQLMaKfUcDK7hS3ZMx7rKKqpe lnTH7zdgFkj/Y/d1ELj3ONnL4UgKKbVhYl5lMZwBxHuHE5X/g7mbG8Fi8Nf6CFTU 22hoTO6lj0SPxh0ga1sBoF+lOA== -----END CERTIFICATE-----Generated at Wed Jun 24 11:28:21 2026 by rpki-client