
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft
File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json)
Hash identifier: rQXeW3/5Cz4HhueDUwwrGnkyner2kQm7+eML7+0zH8s=
Subject key identifier: AB:5B:F6:33:21:94:2C:30:53:16:FD:16:F3:87:A2:67:0F:8A:04:02
Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13
Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13
Certificate serial: 09B6
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft
Manifest number: 09AD
Signing time: Mon 06 Jul 2026 20:24:46 +0000
Manifest this update: Mon 06 Jul 2026 20:24:46 +0000
Manifest next update: Mon 13 Jul 2026 20:24:46 +0000
Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: mZ5mYJiq/2Gg2YlQJ6/GBF3lrdgcUJL9xv+CG2WOARg=)
2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: IPSlPyfz0+bJclfH4V522k6JGFoLnfNN2pg5rNIteNo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl
rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Jul 2026 18:29:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2486 (0x9b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13
Validity
Not Before: Jul 6 20:24:46 2026 GMT
Not After : Jul 13 20:24:46 2026 GMT
Subject: CN=6a4c0f0e-2742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f7:99:21:2a:85:3a:32:a4:f5:63:5a:18:54:
d1:c3:ca:d6:34:81:c5:a6:e1:cb:ca:d0:b4:c4:ee:
b7:82:ae:22:0b:39:5d:62:fc:96:c1:0c:9c:ae:ac:
c9:73:9d:69:e6:b4:52:22:c0:8b:ae:d2:22:22:2d:
71:68:1a:5a:03:19:88:87:68:bf:b5:28:83:fc:d1:
7e:00:2c:3c:11:43:78:74:f1:87:0c:27:43:9a:27:
99:65:5d:25:a0:f2:e8:f2:2c:d1:37:1b:97:7f:06:
33:78:57:3c:0c:32:25:7e:61:35:22:ae:72:8e:91:
34:69:d1:4d:86:a4:0e:fc:d3:c0:60:c5:05:5c:fc:
2c:cb:6d:00:53:5b:96:e0:3a:23:07:a7:c8:82:a4:
9c:d0:f6:19:cf:6f:18:99:a9:37:c2:8a:1b:ba:d0:
1a:34:07:a3:f3:35:7a:a9:3d:0c:69:7b:6a:1f:81:
0d:b7:15:3e:a7:a6:d4:16:fa:0e:0c:aa:cd:3f:60:
a8:cd:ae:16:80:e1:be:ba:14:51:16:1f:69:b5:1a:
ab:bf:58:ea:1a:f2:2a:71:47:67:06:74:62:4d:da:
54:48:3c:66:c9:40:f6:95:27:a4:4b:2f:13:e1:36:
2c:34:a1:41:a6:c9:8b:0b:c2:5f:ac:e0:aa:61:76:
4f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:5B:F6:33:21:94:2C:30:53:16:FD:16:F3:87:A2:67:0F:8A:04:02
X509v3 Authority Key Identifier:
keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4f:25:86:22:77:67:50:94:0e:4b:ac:aa:1c:ec:59:51:ad:c0:
86:65:82:3e:b0:13:2c:eb:1d:1d:83:8f:31:cf:eb:7a:64:1d:
56:16:2a:3a:22:cc:a7:0f:ca:0a:8f:03:b4:d0:48:78:60:54:
3c:93:b0:e6:93:2a:82:16:e4:a5:13:1e:fa:93:0f:11:32:d5:
06:c8:d3:46:66:9f:10:60:c5:de:44:34:59:cd:ab:29:7e:0e:
62:81:14:01:93:63:82:5e:43:c7:be:c7:74:d1:d4:b6:ce:7e:
68:21:8f:db:c6:4a:91:75:d9:ba:19:74:8e:4d:9f:62:84:45:
ca:6a:90:76:16:bb:cb:a9:16:b8:95:86:d6:20:cd:22:23:a6:
d5:47:a8:c8:3f:f6:46:60:64:e3:ca:fa:a2:69:3c:0c:c3:fa:
50:a8:44:01:fb:6b:2f:68:87:5c:3a:c8:7b:5f:15:b8:fa:d0:
53:d0:73:6f:ae:e0:79:b2:e4:db:02:a5:ed:af:f0:5a:da:85:
c3:d5:49:2e:e7:a8:81:0a:a1:ea:30:be:86:a8:62:d3:21:3f:
34:fa:64:bc:93:fc:8c:42:ec:b7:44:fd:3e:71:10:2e:db:2a:
c3:e0:3c:78:25:09:fa:7d:0f:ea:a3:3d:c5:58:e7:f9:e7:b0:
ef:14:cb:dd
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICCbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4
MzRDQUJDMTMwHhcNMjYwNzA2MjAyNDQ2WhcNMjYwNzEzMjAyNDQ2WjAYMRYwFAYD
VQQDEw02YTRjMGYwZS0yNzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2/eZISqFOjKk9WNaGFTRw8rWNIHFpuHLytC0xO63gq4iCzldYvyWwQycrqzJ
c51p5rRSIsCLrtIiIi1xaBpaAxmIh2i/tSiD/NF+ACw8EUN4dPGHDCdDmieZZV0l
oPLo8izRNxuXfwYzeFc8DDIlfmE1Iq5yjpE0adFNhqQO/NPAYMUFXPwsy20AU1uW
4DojB6fIgqSc0PYZz28Ymak3woobutAaNAej8zV6qT0MaXtqH4ENtxU+p6bUFvoO
DKrNP2Coza4WgOG+uhRRFh9ptRqrv1jqGvIqcUdnBnRiTdpUSDxmyUD2lSekSy8T
4TYsNKFBpsmLC8JfrOCqYXZPjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKtb9jMh
lCwwUxb9FvOHomcPigQCMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG
QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2
Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y
eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEATyWGIndnUJQOS6yqHOxZUa3AhmWCPrATLOsdHYOPMc/remQdVhYqOiLMpw/K
Co8DtNBIeGBUPJOw5pMqghbkpRMe+pMPETLVBsjTRmafEGDF3kQ0Wc2rKX4OYoEU
AZNjgl5Dx77HdNHUts5+aCGP28ZKkXXZuhl0jk2fYoRFymqQdha7y6kWuJWG1iDN
IiOm1UeoyD/2RmBk48r6omk8DMP6UKhEAftrL2iHXDrIe18VuPrQU9Bzb67gebLk
2wKl7a/wWtqFw9VJLueogQqh6jC+hqhi0yE/NPpkvJP8jELst0T9PnEQLtsqw+A8
eCUJ+n0P6qM9xVjn+eew7xTL3Q==
-----END CERTIFICATE-----
Generated at Mon Jul 6 23:19:56 2026 by rpki-client