$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: IN5PIGYcfI2s4W25Mu57kgA/R1et9SkdzD68cjPQsIU= Subject key identifier: 0E:38:66:BE:F8:62:BB:2D:0A:02:0F:65:B4:8B:45:A1:96:E3:28:74 Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 099E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 0995 Signing time: Wed 20 May 2026 20:01:55 +0000 Manifest this update: Wed 20 May 2026 20:01:55 +0000 Manifest next update: Wed 27 May 2026 20:01:55 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: h6pR7RC0Rf3aquwHpQTWePJ8uV/fNmAiqgJz/IeNGKs=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: IPSlPyfz0+bJclfH4V522k6JGFoLnfNN2pg5rNIteNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2462 (0x99e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: May 20 20:01:55 2026 GMT Not After : May 27 20:01:55 2026 GMT Subject: CN=6a0e1333-c3a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:45:d7:3a:de:66:0d:d0:8a:6e:ad:98:4b:49: 83:3d:86:85:2f:18:33:20:72:46:26:3b:c6:e0:dc: 84:f7:e9:c4:38:19:a0:06:de:52:04:26:12:8b:1b: 7a:d1:32:65:b4:34:31:86:91:83:3f:bb:2d:7f:27: 41:14:b0:3f:cf:2c:75:71:a0:67:9d:78:16:bf:91: 05:d9:f6:a5:8f:ee:54:57:47:c8:98:a9:5b:38:ae: a3:83:37:e6:5e:e1:10:a2:98:6b:d7:de:d6:a3:b5: 9c:64:0b:34:c9:84:d6:a4:fa:22:ae:17:47:8e:a4: 84:01:b9:39:a2:22:50:7e:f6:36:03:13:99:80:22: ac:db:f5:72:62:13:d1:67:d2:9b:99:50:f8:41:53: 2b:d3:74:72:bb:2e:a3:9f:bd:7b:38:3c:ee:ea:45: 44:e0:93:34:34:e9:94:21:4b:f9:64:c4:0e:c7:d0: f7:23:62:96:24:98:e7:2a:b0:39:b7:ca:d6:48:3b: ca:4c:46:57:0d:ed:4a:7a:e4:7c:8a:df:b4:05:93: a6:c6:21:00:cd:f0:67:7b:fa:d5:bf:f4:cc:e4:29: b4:89:a3:f6:35:9d:c8:cf:a8:3b:ce:21:25:0a:0e: dc:59:4c:81:42:6b:5f:94:1f:4f:7f:19:d5:b0:5f: ab:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:38:66:BE:F8:62:BB:2D:0A:02:0F:65:B4:8B:45:A1:96:E3:28:74 X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:e3:49:91:19:66:7e:aa:21:08:11:f9:b0:fd:5c:49:12:32: 0b:36:2c:b2:01:c5:d0:ce:ac:60:39:7c:ed:17:03:e0:72:57: f8:f3:b1:e2:d7:89:0a:71:f2:fd:92:d6:c4:8e:9a:9c:ac:64: 23:cd:d5:bc:71:4b:55:79:f6:ae:4c:e2:c1:4b:e6:f4:1c:93: 1a:80:e5:30:f0:9c:a8:c3:b8:98:fc:ea:6c:5c:0d:36:1d:2b: cf:c2:58:a6:2c:a7:53:5f:ee:f9:86:0e:79:db:eb:c3:5d:0d: 75:58:6c:4c:d8:d4:be:bf:dc:b4:23:d5:22:9e:af:8c:7a:55: 35:f7:5e:79:c5:f7:1f:cf:d9:09:2a:93:d1:01:79:b1:88:a2: 3a:4f:a7:44:c5:f4:6b:f8:05:bf:c1:2c:29:dd:1a:05:55:3c: ca:b8:c7:10:fd:43:8d:c7:5e:bd:27:1c:0f:3d:ba:36:a0:a4: d3:79:ce:0b:7f:93:a9:2f:d1:6c:c6:78:1c:1a:c0:13:99:5b: ad:1b:3d:92:1e:7e:38:3b:91:6d:ff:a9:c9:4e:30:8a:86:72: 13:ae:bf:a5:78:35:a2:e7:e7:a4:1b:25:35:8c:4c:30:a3:94: dd:31:c3:3c:d8:5d:a6:e8:44:99:94:c5:4d:20:a7:7e:27:10: b4:a0:72:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjYwNTIwMjAwMTU1WhcNMjYwNTI3MjAwMTU1WjAYMRYwFAYD VQQDEw02YTBlMTMzMy1jM2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA00XXOt5mDdCKbq2YS0mDPYaFLxgzIHJGJjvG4NyE9+nEOBmgBt5SBCYSixt6 0TJltDQxhpGDP7stfydBFLA/zyx1caBnnXgWv5EF2falj+5UV0fImKlbOK6jgzfm XuEQophr197Wo7WcZAs0yYTWpPoirhdHjqSEAbk5oiJQfvY2AxOZgCKs2/VyYhPR Z9KbmVD4QVMr03Ryuy6jn717ODzu6kVE4JM0NOmUIUv5ZMQOx9D3I2KWJJjnKrA5 t8rWSDvKTEZXDe1KeuR8it+0BZOmxiEAzfBne/rVv/TM5Cm0iaP2NZ3Iz6g7ziEl Cg7cWUyBQmtflB9PfxnVsF+r+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA44Zr74 YrstCgIPZbSLRaGW4yh0MB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKONJkRlmfqohCBH5sP1cSRIyCzYssgHF0M6sYDl87RcD4HJX+POx4teJCnHy /ZLWxI6anKxkI83VvHFLVXn2rkziwUvm9ByTGoDlMPCcqMO4mPzqbFwNNh0rz8JY piynU1/u+YYOedvrw10NdVhsTNjUvr/ctCPVIp6vjHpVNfdeecX3H8/ZCSqT0QF5 sYiiOk+nRMX0a/gFv8EsKd0aBVU8yrjHEP1DjcdevSccDz26NqCk03nOC3+TqS/R bMZ4HBrAE5lbrRs9kh5+ODuRbf+pyU4wioZyE66/pXg1oufnpBslNYxMMKOU3THD PNhdpuhEmZTFTSCnficQtKBy5w== -----END CERTIFICATE-----Generated at Thu May 21 12:36:42 2026 by rpki-client