$ rpki-client -vvf rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft File: HAQwdyQVc864WNlR8CsiBXujluc.mft (raw, json) Hash identifier: ZGUBp2SBhPE2ztZvoYmu5IJ3YNHX/1oxte4QH1zGZjo= Subject key identifier: 2D:54:96:15:AB:B3:75:C1:BE:67:A0:C5:7C:72:37:39:D6:12:41:7C Authority key identifier: 1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 Certificate issuer: /CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Certificate serial: 04A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft Manifest number: 049E Signing time: Thu 21 May 2026 00:02:56 +0000 Manifest this update: Thu 21 May 2026 00:02:56 +0000 Manifest next update: Thu 28 May 2026 00:02:56 +0000 Files and hashes: 1: HAQwdyQVc864WNlR8CsiBXujluc.crl (hash: xtka/dHk+EG9a6G9cQ52LGWaKLJ/cXj2wbkMppwQ9yk=) 2: 4AB730E0800B11EC84B3FA3BC4F9AE02.roa (hash: xOj/wZXPscupT3ElrTmBaHlsw670Pw+Hr4mehf5CVBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:02:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1191 (0x4a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D45A2, serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Validity Not Before: May 21 00:02:56 2026 GMT Not After : May 28 00:02:56 2026 GMT Subject: CN=6a0e4bb0-6bec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:73:5d:dc:08:88:a9:47:94:97:a4:bc:7a:2a: 02:31:05:19:78:e5:74:b1:bf:2b:89:3b:bc:a9:58: dc:2e:fb:4b:f2:19:b5:b8:a2:c9:26:20:0f:ac:4c: 45:1c:71:98:7d:96:50:46:75:6d:18:1c:f3:9d:26: 9b:96:e6:55:be:ad:3a:2a:ef:55:e4:eb:25:73:fc: da:60:ce:0b:1e:b6:5e:c1:03:ff:5c:5b:b5:92:5b: cd:62:00:28:fc:9e:ce:4c:5e:f1:67:1c:b4:98:29: 40:7f:36:04:f4:a0:48:78:d3:18:6d:14:5d:9c:fc: 91:4b:b8:5c:97:ae:ad:2e:32:1b:cf:3f:b9:0e:00: 0c:0d:73:9d:0f:ea:9d:80:22:1f:8b:93:34:ba:af: b1:27:d4:0d:80:dd:71:49:eb:4b:25:33:72:15:f6: ee:50:97:64:dc:68:39:e4:e4:9f:a9:c1:59:5b:4c: 85:0f:ee:4d:e7:61:03:7f:91:58:4a:b5:92:45:22: 08:b4:2f:32:fa:1a:4c:bc:13:8a:96:df:87:8a:cd: 7d:d8:a1:9f:31:cd:28:20:f0:cb:cb:c3:e4:ab:3d: 45:45:d7:81:e0:de:75:93:c9:e8:d0:98:17:f8:ed: 6b:ec:44:a4:b0:7b:3d:b7:f5:3e:1c:7f:d6:2a:8b: 7e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:54:96:15:AB:B3:75:C1:BE:67:A0:C5:7C:72:37:39:D6:12:41:7C X509v3 Authority Key Identifier: keyid:1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:fe:58:2c:fe:76:cb:c4:30:1c:63:bb:7f:3e:9e:1c:db:77: ee:77:44:c7:8b:ec:28:34:2f:9e:d5:63:b8:74:33:9c:90:93: d8:b4:db:90:cd:1e:39:e4:c6:a3:29:0b:1f:f2:49:82:b2:ae: b2:a6:72:45:2d:db:57:9e:60:0d:57:7b:0b:df:06:ab:08:bf: 89:23:a7:70:3c:40:54:ec:0e:99:fc:1a:04:9c:3b:89:36:9a: bf:ab:a8:e0:fb:b3:26:62:ab:83:cb:04:b5:e0:3c:5d:1a:0c: 21:88:c0:23:52:26:d6:0f:a0:a5:e9:80:cb:8e:3e:e3:8d:a4: 6e:bc:1c:13:d9:7c:50:6f:c9:f0:cf:57:da:3b:c7:01:50:dc: 1f:2b:14:9d:25:18:d5:7a:f2:01:05:71:dc:c5:f4:c0:4b:dd: 18:7b:bc:83:29:69:57:89:b9:d4:b6:79:91:b0:a5:70:21:43: 3a:ec:79:d8:5e:e8:02:e4:bf:d4:6e:38:37:b1:02:bb:12:0d: f8:fc:09:f1:6b:b6:42:14:02:bf:1c:41:07:29:c9:94:3e:c0: d9:dc:d5:6f:63:f9:3b:95:36:e5:9a:40:b1:ce:92:1b:42:83: b1:4a:8c:44:5e:9a:75:44:42:47:b2:04:36:fe:d9:eb:da:6e: 46:bb:03:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ1QTIxMTAvBgNVBAUTKDFDMDQzMDc3MjQxNTczQ0VCODU4RDk1MUYwMkIyMjA1 N0JBMzk2RTcwHhcNMjYwNTIxMDAwMjU2WhcNMjYwNTI4MDAwMjU2WjAYMRYwFAYD VQQDEw02YTBlNGJiMC02YmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3Nd3AiIqUeUl6S8eioCMQUZeOV0sb8riTu8qVjcLvtL8hm1uKLJJiAPrExF HHGYfZZQRnVtGBzznSabluZVvq06Ku9V5Oslc/zaYM4LHrZewQP/XFu1klvNYgAo /J7OTF7xZxy0mClAfzYE9KBIeNMYbRRdnPyRS7hcl66tLjIbzz+5DgAMDXOdD+qd gCIfi5M0uq+xJ9QNgN1xSetLJTNyFfbuUJdk3Gg55OSfqcFZW0yFD+5N52EDf5FY SrWSRSIItC8y+hpMvBOKlt+His192KGfMc0oIPDLy8Pkqz1FRdeB4N51k8no0JgX +O1r7ESksHs9t/U+HH/WKot+zQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC1UlhWr s3XBvmegxXxyNznWEkF8MB8GA1UdIwQYMBaAFBwEMHckFXPOuFjZUfArIgV7o5bn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDVBMi9BM0QyRENBQTgw MDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4NjRXTmxSOENzaUJYdWps dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBUXdkeVFWYzg2NFdObFI4Q3NpQlh1amx1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDVBMi9BM0QyRENBQTgwMDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4 NjRXTmxSOENzaUJYdWpsdWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtf5YLP52y8QwHGO7fz6eHNt37ndEx4vsKDQvntVjuHQznJCT2LTbkM0eOeTG oykLH/JJgrKusqZyRS3bV55gDVd7C98Gqwi/iSOncDxAVOwOmfwaBJw7iTaav6uo 4PuzJmKrg8sEteA8XRoMIYjAI1Im1g+gpemAy44+442kbrwcE9l8UG/J8M9X2jvH AVDcHysUnSUY1XryAQVx3MX0wEvdGHu8gylpV4m51LZ5kbClcCFDOux52F7oAuS/ 1G44N7ECuxIN+PwJ8Wu2QhQCvxxBBynJlD7A2dzVb2P5O5U25ZpAsc6SG0KDsUqM RF6adURCR7IENv7Z69puRrsDsA== -----END CERTIFICATE-----Generated at Thu May 21 10:15:01 2026 by rpki-client