$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft File: HLlfP3vebhmbdAuSgqxyKk7amZs.mft (raw, json) Hash identifier: YkPEit8PJUzRfv2bK5kUNJh3go67r2w4Yp31HbsZ7fQ= Subject key identifier: 0A:3A:DE:60:78:CC:E2:90:01:BE:1D:34:7A:C0:28:79:C1:8D:D5:64 Authority key identifier: 1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B Certificate issuer: /CN=A91E4EEF/serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft Manifest number: 65 Signing time: Mon 01 Jun 2026 09:00:20 +0000 Manifest this update: Mon 01 Jun 2026 09:00:19 +0000 Manifest next update: Mon 08 Jun 2026 09:00:19 +0000 Files and hashes: 1: HLlfP3vebhmbdAuSgqxyKk7amZs.crl (hash: 8z2hECkMa9YscS1bMBojtokE+PiTdrSvKrzdV9QjI+A=) 2: 0C1F9D8CF13A11F08789470C566F56BC.roa (hash: sgoDIUBe0jr7XN1MyW0ONqjTLm6kK+bIbhy55Li2/S8=) 3: 304D9EDEF13A11F0A5B04E41566F56BC.roa (hash: AC/jIeXBOHw70y2QOJSmCZ+NDE9I0e7M9WpwuYpLz9U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 09:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4EEF, serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Validity Not Before: Jun 1 09:00:19 2026 GMT Not After : Jun 8 09:00:19 2026 GMT Subject: CN=6a1d4a24-4ee7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d9:8e:cb:ce:08:a6:70:d1:75:d8:d5:fb:12: 03:3d:b9:e5:76:16:ba:e6:86:6b:11:65:a2:8b:e5: 3e:25:2c:4c:49:39:89:11:61:00:48:0c:10:a4:9c: 50:45:cf:81:05:93:22:78:dc:25:22:4f:fc:67:24: 98:8e:c7:80:7c:22:c4:9d:9d:2a:6c:5d:3a:2a:79: 9c:76:c1:df:74:d0:4e:7e:49:d0:ad:79:45:80:49: e6:72:13:d1:72:b4:36:d4:60:a7:17:55:f8:51:c0: 82:86:ac:c0:54:db:b5:0e:ae:a5:1d:1e:3a:45:f5: 11:15:4d:63:e6:e1:8c:7b:72:e8:a4:5d:c2:d9:1f: 05:93:34:39:e2:72:7b:54:98:a9:c0:d5:f0:0f:58: c0:44:4f:47:a2:81:36:5b:b5:37:09:d8:eb:94:0d: 2c:a2:2e:42:e9:13:69:1d:c3:68:c4:74:54:ef:47: e5:b7:9b:e8:64:36:35:59:e3:d7:fa:f8:92:92:01: 9d:da:15:89:0b:93:3f:75:fb:c6:70:ee:8f:fa:15: dc:90:db:08:b8:9a:45:93:bf:04:c0:03:80:ac:7e: 1e:08:d9:a6:5f:cd:98:5e:bc:b6:cc:10:3f:55:08: 8f:a9:e5:fa:8a:b2:fd:a5:e5:e5:2c:d8:26:3e:a2: 3e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:3A:DE:60:78:CC:E2:90:01:BE:1D:34:7A:C0:28:79:C1:8D:D5:64 X509v3 Authority Key Identifier: keyid:1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:80:c1:22:3b:d8:c8:16:84:ef:15:a4:d4:e0:eb:c1:50:b8: 76:07:00:05:20:ac:71:dd:d8:85:2c:60:ed:84:07:da:c5:8f: 51:82:79:06:03:7e:b3:56:d8:c3:ff:f7:36:fb:da:3e:46:8b: c1:2c:95:8b:fd:63:ac:94:4c:21:c0:5b:04:48:36:08:c2:97: 92:29:f8:64:53:28:ea:f2:72:34:e5:28:ba:78:cd:a5:32:59: 19:05:31:3c:82:2d:dc:05:2c:10:1d:d1:95:06:4e:ee:ca:6a: 13:e5:8b:df:4b:66:a2:18:7e:df:c7:b7:70:a0:e4:16:8c:3c: 9c:b2:34:75:ce:d8:03:ea:fe:40:be:ea:66:75:38:16:6c:a6: 8c:1e:75:d3:43:3c:f1:92:b0:31:95:8d:e1:99:02:00:5b:97: 37:ec:c1:3a:85:0c:d2:1b:7e:f0:2f:95:95:6a:73:ad:8e:3d: 4a:65:14:86:f3:09:47:14:de:c3:49:c8:65:c7:a9:41:bd:2c: 2f:1d:72:d2:01:28:43:0c:e4:61:5a:ab:53:d7:4d:de:b8:56: 32:02:80:47:91:fd:b8:a3:0d:63:9f:5a:a5:32:36:5a:72:f8: df:ea:9a:6e:9b:3c:26:d8:03:f6:b0:b7:32:e6:e9:16:48:58: 61:be:49:d7 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NEVFRjExMC8GA1UEBRMoMUNCOTVGM0Y3QkRFNkUxOTlCNzQwQjkyODJBQzcyMkE0 RURBOTk5QjAeFw0yNjA2MDEwOTAwMTlaFw0yNjA2MDgwOTAwMTlaMBgxFjAUBgNV BAMTDTZhMWQ0YTI0LTRlZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDp2Y7LzgimcNF12NX7EgM9ueV2FrrmhmsRZaKL5T4lLExJOYkRYQBIDBCknFBF z4EFkyJ43CUiT/xnJJiOx4B8IsSdnSpsXToqeZx2wd900E5+SdCteUWASeZyE9Fy tDbUYKcXVfhRwIKGrMBU27UOrqUdHjpF9REVTWPm4Yx7cuikXcLZHwWTNDnicntU mKnA1fAPWMBET0eigTZbtTcJ2OuUDSyiLkLpE2kdw2jEdFTvR+W3m+hkNjVZ49f6 +JKSAZ3aFYkLkz91+8Zw7o/6FdyQ2wi4mkWTvwTAA4Csfh4I2aZfzZhevLbMED9V CI+p5fqKsv2l5eUs2CY+oj4tAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUCjreYHjM 4pABvh00esAoecGN1WQwHwYDVR0jBBgwFoAUHLlfP3vebhmbdAuSgqxyKk7amZsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0RUVGL0NFQTgzNkJBREVG MzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmhtYmRBdVNncXh5S2s3YW1a cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSExsZlAzdmViaG1iZEF1U2dxeHlLazdhbVpzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 RUVGL0NFQTgzNkJBREVGMzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmht YmRBdVNncXh5S2s3YW1acy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA9gMEiO9jIFoTvFaTU4OvBULh2BwAFIKxx3diFLGDthAfaxY9RgnkGA36zVtjD //c2+9o+RovBLJWL/WOslEwhwFsESDYIwpeSKfhkUyjq8nI05Si6eM2lMlkZBTE8 gi3cBSwQHdGVBk7uymoT5YvfS2aiGH7fx7dwoOQWjDycsjR1ztgD6v5AvupmdTgW bKaMHnXTQzzxkrAxlY3hmQIAW5c37ME6hQzSG37wL5WVanOtjj1KZRSG8wlHFN7D Schlx6lBvSwvHXLSAShDDORhWqtT103euFYyAoBHkf24ow1jn1qlMjZacvjf6ppu mzwm2AP2sLcy5ukWSFhhvknX -----END CERTIFICATE-----Generated at Tue Jun 2 21:58:24 2026 by rpki-client