$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: fqTnc19C6jluhY8k+4QMHehL2waD87grX1GwIQOi8gY= Subject key identifier: ED:00:DD:93:41:A1:C4:58:F8:D5:D7:8E:F6:97:D7:CB:80:A5:67:AE Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 0980 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 0978 Signing time: Sat 28 Mar 2026 19:57:10 +0000 Manifest this update: Sat 28 Mar 2026 19:57:10 +0000 Manifest next update: Sat 04 Apr 2026 19:57:10 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: uG9490l+e1f1My7jBJ+8nEc7f2j3XgOFb53cf8dnTyo=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: LUKRzU7QW2YNj5+vXJhIy/96ptb2p3qZK001FM4IvQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 19:57:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2432 (0x980) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Mar 28 19:57:10 2026 GMT Not After : Apr 4 19:57:10 2026 GMT Subject: CN=69c83296-1d8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fc:f7:22:98:48:2d:e8:99:5e:df:f3:99:88: e3:7a:e5:24:42:b7:76:7e:2a:e7:48:e0:3f:e8:f1: b0:35:0e:5e:1a:f9:ee:c6:ca:0a:e7:63:df:54:a6: c0:05:c6:f0:21:31:b7:e1:7c:9b:05:9d:8d:d3:b5: 84:9a:c0:5c:29:5f:d6:2a:ca:ca:95:29:b7:a5:c9: 36:85:b2:d1:27:7d:a2:12:c1:a0:16:0f:dd:5f:40: 61:d9:07:6c:51:c8:50:e1:c1:90:62:55:6d:8f:4d: c1:66:fd:df:eb:3c:9b:2c:ae:7b:77:39:d2:e4:e7: 78:aa:22:28:dd:3e:84:2f:ab:85:1f:35:95:e2:59: 81:18:f1:2d:4b:87:3f:65:0b:ca:d4:d2:5a:10:e7: e4:83:40:80:76:ec:f4:d1:c6:bc:67:bc:09:02:65: 10:6a:7c:fd:9e:9f:63:6f:9f:9d:a2:8c:1a:00:e2: 90:7a:bf:f6:69:94:78:8e:6f:b9:4e:de:7b:bd:af: 77:39:c8:72:4d:d3:46:5e:b8:f7:35:98:00:8d:9a: 7e:13:40:fe:21:b3:b8:a3:c4:4d:f0:3d:2a:c6:9d: 92:78:9f:74:ae:e5:72:5e:0f:75:44:3b:50:9b:46: 83:31:a6:8d:e0:04:c5:ed:3e:63:b8:76:12:1b:7e: 33:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:00:DD:93:41:A1:C4:58:F8:D5:D7:8E:F6:97:D7:CB:80:A5:67:AE X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:ee:9f:95:cd:2a:41:56:3b:88:0e:31:d0:22:06:a5:84:f7: 5a:cb:23:a8:09:75:8a:e7:9a:37:49:18:ef:4d:c7:83:8e:31: 36:0e:57:55:90:55:40:b5:f8:5b:c6:ea:43:fb:70:76:01:7e: ee:c9:7e:0e:e0:ed:62:b4:9b:ca:55:a5:bf:17:d7:c7:cc:b0: 5e:7e:86:37:61:36:85:ab:17:89:32:38:32:f2:3d:25:1d:4d: b6:26:90:41:33:b8:49:38:52:a4:9a:d0:a7:2b:4b:7f:f0:23: f9:d3:e7:c4:01:17:49:24:76:03:32:07:d8:37:f4:c6:77:3e: 54:9c:6c:6f:d3:84:71:4d:45:7f:74:2c:8f:b4:d6:81:a1:29: 89:79:5a:5f:6e:25:91:bf:ed:8f:6d:ff:6d:eb:71:d2:28:32: 35:dc:be:74:1c:23:6e:13:e4:f8:5f:15:f3:36:86:5a:6a:09: b5:49:a2:d6:ee:6f:3b:7b:72:b3:3f:53:11:b6:27:51:50:7f: 7e:e1:4a:6f:23:f9:83:54:45:a0:20:6c:e2:b3:fc:c6:24:17: 2d:f5:bf:78:00:b4:58:33:f7:29:4e:f4:31:17:ac:84:cd:57: 97:fc:0d:89:22:b3:b5:59:b1:3c:78:c5:79:9d:2e:1c:c0:8c: 50:3b:98:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjYwMzI4MTk1NzEwWhcNMjYwNDA0MTk1NzEwWjAYMRYwFAYD VQQDEw02OWM4MzI5Ni0xZDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/z3IphILeiZXt/zmYjjeuUkQrd2firnSOA/6PGwNQ5eGvnuxsoK52PfVKbA BcbwITG34XybBZ2N07WEmsBcKV/WKsrKlSm3pck2hbLRJ32iEsGgFg/dX0Bh2Qds UchQ4cGQYlVtj03BZv3f6zybLK57dznS5Od4qiIo3T6EL6uFHzWV4lmBGPEtS4c/ ZQvK1NJaEOfkg0CAduz00ca8Z7wJAmUQanz9np9jb5+doowaAOKQer/2aZR4jm+5 Tt57va93OchyTdNGXrj3NZgAjZp+E0D+IbO4o8RN8D0qxp2SeJ90ruVyXg91RDtQ m0aDMaaN4ATF7T5juHYSG34zOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO0A3ZNB ocRY+NXXjvaX18uApWeuMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOe6flc0qQVY7iA4x0CIGpYT3WssjqAl1iueaN0kY703Hg44xNg5XVZBVQLX4 W8bqQ/twdgF+7sl+DuDtYrSbylWlvxfXx8ywXn6GN2E2hasXiTI4MvI9JR1NtiaQ QTO4SThSpJrQpytLf/Aj+dPnxAEXSSR2AzIH2Df0xnc+VJxsb9OEcU1Ff3Qsj7TW gaEpiXlaX24lkb/tj23/betx0igyNdy+dBwjbhPk+F8V8zaGWmoJtUmi1u5vO3ty sz9TEbYnUVB/fuFKbyP5g1RFoCBs4rP8xiQXLfW/eAC0WDP3KU70MReshM1Xl/wN iSKztVmxPHjFeZ0uHMCMUDuY7w== -----END CERTIFICATE-----Generated at Mon Mar 30 01:04:49 2026 by rpki-client