$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: peict+OWUvi3+sSmfDyX9ncNVJLCvZPW0aGesySPMU4= Subject key identifier: B1:B0:C7:3E:97:12:C7:B7:B1:A1:53:0E:5A:3F:0D:50:83:C7:D8:BD Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 08AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 0891 Signing time: Thu 04 Jun 2026 20:48:37 +0000 Manifest this update: Thu 04 Jun 2026 20:48:37 +0000 Manifest next update: Thu 11 Jun 2026 20:48:37 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: +fUY52E18j96G5SOdikUd/IvbwXttcJPO4lk5mB4F90=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: 08lz7b6szSEMQO1jrd2yTTyJym47lMNxqFGZhqAfyUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 20:48:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2223 (0x8af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F, serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Jun 4 20:48:37 2026 GMT Not After : Jun 11 20:48:37 2026 GMT Subject: CN=6a21e4a5-3157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:92:ef:9a:dc:cd:80:24:d5:7e:f1:4e:7d:60: ca:dc:6d:d1:08:3e:a8:8f:04:00:73:40:33:9d:1f: 15:52:98:d6:31:a9:a2:d4:00:7f:2f:00:6f:d9:cd: 46:8f:92:60:e2:04:09:49:ce:cd:bb:3c:b3:16:3d: 3f:5a:c9:b1:a5:94:00:2b:08:50:9d:e4:27:34:36: 76:f7:29:f4:ed:f6:39:d1:77:14:c4:59:47:8e:e1: 51:64:e9:88:d3:2a:19:4e:55:69:1e:32:7e:18:b6: 4f:49:d3:c3:97:3d:b7:a4:6f:80:01:5b:65:63:5e: cc:c3:7f:fc:e7:b5:28:72:1e:b4:68:61:d5:79:d4: 7b:ae:d1:23:97:4d:33:69:f0:a2:c3:98:ef:70:c2: 98:13:24:87:66:f4:e8:89:cf:6d:cb:c6:73:58:5e: d0:b8:d8:58:20:1f:ab:f3:69:26:ee:35:3c:fb:51: 88:eb:92:8b:f7:6c:cc:43:78:e6:10:43:a1:25:56: df:03:db:28:79:83:31:08:cb:fd:cb:e0:15:28:4b: e9:df:e0:29:d5:3c:76:e5:f8:f2:70:ae:fc:36:9e: 1a:35:27:43:78:09:ac:68:ed:67:e8:98:83:8b:6c: 56:5d:81:ee:65:94:03:65:1e:ce:85:00:03:a1:50: aa:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:B0:C7:3E:97:12:C7:B7:B1:A1:53:0E:5A:3F:0D:50:83:C7:D8:BD X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:db:9f:d8:74:12:a4:d9:92:77:dd:6a:6b:d0:23:5f:66:15: b4:70:63:1c:dd:68:b9:c1:dc:69:3f:ca:9b:f9:53:6b:7e:78: 8a:0f:8f:bc:44:0a:a3:fa:69:db:23:59:2a:7f:c5:03:07:15: f6:78:68:4d:45:0d:34:39:31:8f:01:67:64:f0:d1:f0:71:da: 2c:78:5a:fb:9c:20:a3:53:4e:7f:fa:d1:2a:84:f6:94:30:3b: c3:21:d2:ee:d5:9b:b8:04:ac:3d:82:ba:72:49:24:39:8e:28: 69:bc:9d:ba:99:8f:18:90:34:65:12:65:1e:c2:7a:28:a6:6e: 43:1d:b0:62:d9:c1:89:8f:8d:bd:cd:e2:97:6a:b0:1f:50:2f: 7c:22:53:2c:76:e3:32:ea:45:e3:a3:47:80:14:c7:d1:bb:37: f6:7f:0d:d5:39:56:b4:9e:49:43:09:af:1d:19:9a:88:e9:a7: 55:1d:62:cf:8e:24:b5:0f:5a:fc:53:8b:cf:1b:4d:7c:dd:c8: 4a:19:8a:29:51:15:6c:0b:d6:01:8b:90:c4:fb:48:b7:32:a4: 61:41:4f:91:eb:5d:9d:85:0f:ec:67:eb:40:84:f7:bb:8c:08: 32:8b:cb:4d:2f:58:04:43:23:ca:c8:6c:41:fc:d1:51:8f:43: 7e:5c:e4:29 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjYwNjA0MjA0ODM3WhcNMjYwNjExMjA0ODM3WjAYMRYwFAYD VQQDEw02YTIxZTRhNS0zMTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJLvmtzNgCTVfvFOfWDK3G3RCD6ojwQAc0AznR8VUpjWMami1AB/LwBv2c1G j5Jg4gQJSc7NuzyzFj0/WsmxpZQAKwhQneQnNDZ29yn07fY50XcUxFlHjuFRZOmI 0yoZTlVpHjJ+GLZPSdPDlz23pG+AAVtlY17Mw3/857Uoch60aGHVedR7rtEjl00z afCiw5jvcMKYEySHZvToic9ty8ZzWF7QuNhYIB+r82km7jU8+1GI65KL92zMQ3jm EEOhJVbfA9soeYMxCMv9y+AVKEvp3+Ap1Tx25fjycK78Np4aNSdDeAmsaO1n6JiD i2xWXYHuZZQDZR7OhQADoVCquQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLGwxz6X Ese3saFTDlo/DVCDx9i9MB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAANuf2HQSpNmSd91qa9AjX2YVtHBjHN1oucHcaT/Km/lTa354ig+PvEQKo/pp 2yNZKn/FAwcV9nhoTUUNNDkxjwFnZPDR8HHaLHha+5wgo1NOf/rRKoT2lDA7wyHS 7tWbuASsPYK6ckkkOY4oabydupmPGJA0ZRJlHsJ6KKZuQx2wYtnBiY+Nvc3il2qw H1AvfCJTLHbjMupF46NHgBTH0bs39n8N1TlWtJ5JQwmvHRmaiOmnVR1iz44ktQ9a /FOLzxtNfN3IShmKKVEVbAvWAYuQxPtItzKkYUFPketdnYUP7GfrQIT3u4wIMovL TS9YBEMjyshsQfzRUY9DflzkKQ== -----END CERTIFICATE-----Generated at Sat Jun 6 15:56:27 2026 by rpki-client