$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: RcREFM5cMF5Q4OLdnJpiYQcx2s53mOtPqGPiz45YC24= Subject key identifier: E3:15:7A:82:3C:31:75:74:8A:CE:F9:C5:5C:31:5D:C5:8C:7F:B4:90 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 089B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 0882 Signing time: Tue 12 May 2026 20:44:37 +0000 Manifest this update: Tue 12 May 2026 20:44:36 +0000 Manifest next update: Tue 19 May 2026 20:44:36 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: Pr5A/7K/8E6+48Ugnn6zgD/azx3rOGOcfOD2wHtgIDg=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: n2hlAVM9PTTT2Scjp8/RzlDa+bb55gqeGOADAsXpei0=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: DHN4e0JrosxaWqhhvniYwJn8xIsHqQd0pj3UDSpuBlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:44:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2203 (0x89b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: May 12 20:44:36 2026 GMT Not After : May 19 20:44:36 2026 GMT Subject: CN=6a039135-f51f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:eb:fc:22:00:04:ef:bd:81:e9:02:91:b4:86: 21:c0:d1:bc:8d:20:0d:0b:c3:29:a5:c9:76:05:73: fa:67:eb:ed:68:4e:3e:cd:56:d5:b3:cd:8a:4d:ef: d5:ad:8b:67:3a:c2:ec:09:b5:68:a0:3e:30:d2:b0: 42:4c:11:e9:92:b5:62:48:c6:8b:58:89:04:b5:ca: 88:aa:4e:a2:76:05:58:25:e1:f3:2a:54:6e:19:ae: 19:cc:2a:87:9c:06:ea:12:0c:dd:a1:1d:fe:85:09: 75:df:ec:12:22:4c:5a:f4:ba:34:13:93:60:93:a4: bd:29:d3:b5:87:8e:3f:40:f3:a9:7f:8d:f1:b4:75: 57:3d:82:39:78:8f:fc:ce:54:b1:60:16:1b:92:ac: b8:60:b9:f6:1d:06:42:1b:a7:e1:b1:b6:43:c3:e5: 7d:d5:2f:85:62:b1:fa:c2:60:54:54:04:48:d8:5c: ed:a9:03:e5:cf:02:e5:40:75:5d:31:62:08:96:84: e5:0e:1b:b7:4e:14:fb:3f:cc:f0:64:71:f2:88:ac: 60:7a:2a:3d:31:9b:de:53:fb:4f:95:6f:36:8f:04: 3a:d9:81:96:d4:0d:60:23:43:39:74:b7:71:a6:65: 61:56:4e:d9:9b:b5:9c:fe:ac:15:a3:10:41:e9:1b: 8b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:15:7A:82:3C:31:75:74:8A:CE:F9:C5:5C:31:5D:C5:8C:7F:B4:90 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:a0:32:04:cf:04:65:63:5e:df:4b:56:07:ce:32:e1:e8:a3: d6:7a:b0:da:4f:f3:1e:71:0c:1b:75:36:d6:66:1c:b2:d5:58: b5:04:fc:77:bf:3f:51:8f:bd:1c:73:05:05:32:68:48:af:8c: 33:06:79:6c:a5:a6:1d:76:50:c0:20:30:b4:cb:08:15:8f:85: 08:07:1f:da:05:e3:0d:d8:38:d1:8a:d0:70:49:70:dd:77:fe: 5e:6d:53:c5:34:2f:74:49:56:fb:9a:45:a0:0d:03:c4:f3:78: a4:fd:1b:4e:54:4a:23:16:1b:45:d5:42:0b:e1:cb:19:58:64: 5c:1a:8d:b5:11:ef:14:30:f0:b7:d2:01:f6:3c:45:ef:e7:1f: 3c:42:a9:b1:4b:be:30:d6:6a:1d:eb:0b:76:10:6f:97:0c:00: e2:8a:52:95:7c:8d:c6:69:66:7a:35:65:4a:a5:a2:2e:83:8b: c5:6a:35:87:bf:c3:b0:93:e2:de:d2:5f:06:e8:45:62:5a:43: ed:28:23:fc:9b:ed:36:c8:a2:50:97:64:d6:36:9d:67:e8:1d: b0:45:cf:53:2b:6e:95:8f:f0:4d:28:ea:51:eb:55:1f:6b:42: 33:75:20:b0:69:bc:84:80:c4:f3:08:2c:63:7f:f2:ce:22:9c: c4:ff:bd:cf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjYwNTEyMjA0NDM2WhcNMjYwNTE5MjA0NDM2WjAYMRYwFAYD VQQDEw02YTAzOTEzNS1mNTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuv8IgAE772B6QKRtIYhwNG8jSANC8Mppcl2BXP6Z+vtaE4+zVbVs82KTe/V rYtnOsLsCbVooD4w0rBCTBHpkrViSMaLWIkEtcqIqk6idgVYJeHzKlRuGa4ZzCqH nAbqEgzdoR3+hQl13+wSIkxa9Lo0E5Ngk6S9KdO1h44/QPOpf43xtHVXPYI5eI/8 zlSxYBYbkqy4YLn2HQZCG6fhsbZDw+V91S+FYrH6wmBUVARI2FztqQPlzwLlQHVd MWIIloTlDhu3ThT7P8zwZHHyiKxgeio9MZveU/tPlW82jwQ62YGW1A1gI0M5dLdx pmVhVk7Zm7Wc/qwVoxBB6RuLDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOMVeoI8 MXV0is75xVwxXcWMf7SQMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcaAyBM8EZWNe30tWB84y4eij1nqw2k/zHnEMG3U21mYcstVYtQT8d78/UY+9 HHMFBTJoSK+MMwZ5bKWmHXZQwCAwtMsIFY+FCAcf2gXjDdg40YrQcElw3Xf+Xm1T xTQvdElW+5pFoA0DxPN4pP0bTlRKIxYbRdVCC+HLGVhkXBqNtRHvFDDwt9IB9jxF 7+cfPEKpsUu+MNZqHesLdhBvlwwA4opSlXyNxmlmejVlSqWiLoOLxWo1h7/DsJPi 3tJfBuhFYlpD7Sgj/JvtNsiiUJdk1jadZ+gdsEXPUytulY/wTSjqUetVH2tCM3Ug sGm8hIDE8wgsY3/yziKcxP+9zw== -----END CERTIFICATE-----Generated at Wed May 13 04:14:08 2026 by rpki-client