$ rpki-client -vvf rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft File: HlwQfv0DzxPSFKOaaizo3a0wRw4.mft (raw, json) Hash identifier: eWzSuUySSAxWXyNRPcFY5HYnYZjFtgoAxv3lDI8pX/8= Subject key identifier: 56:CE:1D:3D:FA:85:15:85:1B:00:3E:32:55:61:DA:A5:91:FD:FB:28 Authority key identifier: 1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E Certificate issuer: /CN=A914D9C3/serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft Manifest number: 0133 Signing time: Wed 13 May 2026 05:37:00 +0000 Manifest this update: Wed 13 May 2026 05:36:59 +0000 Manifest next update: Wed 20 May 2026 05:36:59 +0000 Files and hashes: 1: HlwQfv0DzxPSFKOaaizo3a0wRw4.crl (hash: FWZDMPEeGZ7zzEqM9hi2Zr4jA+liXNS9DTya+On1uDw=) 2: F7B3707C806911EF8C30A03DC4F9AE02.roa (hash: aiqE7GBN+l3YOlzTvalxpxvHOLBHG0Z/5JCvpwlar2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:22:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D9C3, serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Validity Not Before: May 13 05:36:59 2026 GMT Not After : May 20 05:36:59 2026 GMT Subject: CN=6a040dfc-e50c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ab:bc:b8:15:e0:95:56:85:3f:9e:4e:3f:b6: 2b:ab:dd:71:18:b0:59:09:9a:fe:9c:01:72:40:2d: 28:3d:e6:3c:55:34:b8:64:f6:88:ed:2e:e4:aa:09: 6d:99:ed:1c:67:87:e0:d1:42:59:53:10:16:9f:59: db:77:29:f2:91:f3:c7:42:b0:fc:7c:0f:02:cd:18: 53:02:c5:f3:aa:e2:af:ab:a4:1c:1b:20:21:09:5f: b9:f1:77:7b:9c:f0:67:de:31:4c:e2:6e:de:06:36: 4f:07:59:35:72:31:21:f0:4f:9a:fb:57:4d:61:98: 3f:43:b1:bf:f6:3a:66:4b:96:26:26:df:0a:d3:5c: ab:25:4b:3d:12:6d:3e:19:9a:de:56:cc:f5:bc:06: 1b:b6:5f:74:ab:03:ef:cc:5a:59:a1:07:4a:e9:e3: 5b:e9:59:bb:5c:18:76:e3:52:bc:aa:b1:a7:a2:82: 12:fb:a6:cf:f8:50:4c:2b:ca:d8:25:c4:5e:4b:35: 4d:3c:eb:98:39:f7:b3:26:3d:37:08:c4:f5:bc:28: e9:41:fe:85:80:e7:c0:62:33:b4:5c:f9:6e:a0:cb: 85:f0:e6:46:22:4a:5f:2c:68:0f:88:7c:09:58:d7: e1:69:d6:e9:55:93:38:f1:d6:15:54:e6:8f:20:2b: 6d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:CE:1D:3D:FA:85:15:85:1B:00:3E:32:55:61:DA:A5:91:FD:FB:28 X509v3 Authority Key Identifier: keyid:1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:bf:c5:dc:89:0e:12:9b:b0:8d:1f:54:39:ec:d9:c3:7e:ed: bc:4a:cb:e5:db:60:86:47:90:0e:99:67:a6:29:f4:8a:ac:34: f8:cb:8e:de:9e:b3:4e:98:5a:06:8e:e7:62:a2:49:dd:94:47: 57:70:36:05:95:67:8e:38:86:79:de:71:7d:16:e2:76:3d:1a: de:55:68:0b:a2:60:8c:7f:10:89:80:5e:4e:97:01:b0:f9:ee: 63:fe:0b:30:0b:5a:d3:32:7e:0c:96:ae:42:ea:98:db:db:00: 06:1a:ed:b0:21:7b:63:79:77:e1:08:34:af:e9:a5:09:18:6a: 5c:63:21:c6:02:91:9e:68:9c:e4:90:27:a7:e2:6e:5f:cb:58: 20:35:f8:5e:fa:36:35:c4:91:66:b7:0d:9f:e0:23:cd:c4:c9: cc:a2:41:0b:48:6e:b6:e5:46:fa:5b:ed:7e:05:54:32:29:a0: 96:5a:b3:b7:75:05:ee:f7:e8:3f:59:55:b3:9a:89:0a:46:c1: 28:bd:ed:f5:3d:71:4e:3a:34:dc:22:eb:e2:9f:96:bf:90:f5: 8c:f2:11:84:85:ff:4b:ed:27:99:7c:49:ca:f6:da:de:83:b4: fa:6b:86:5a:64:47:a5:4a:46:e5:2f:92:7e:1f:10:f2:28:a7: 9f:2f:c6:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ5QzMxMTAvBgNVBAUTKDFFNUMxMDdFRkQwM0NGMTNEMjE0QTM5QTZBMkNFOERE QUQzMDQ3MEUwHhcNMjYwNTEzMDUzNjU5WhcNMjYwNTIwMDUzNjU5WjAYMRYwFAYD VQQDEw02YTA0MGRmYy1lNTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqu8uBXglVaFP55OP7Yrq91xGLBZCZr+nAFyQC0oPeY8VTS4ZPaI7S7kqglt me0cZ4fg0UJZUxAWn1nbdynykfPHQrD8fA8CzRhTAsXzquKvq6QcGyAhCV+58Xd7 nPBn3jFM4m7eBjZPB1k1cjEh8E+a+1dNYZg/Q7G/9jpmS5YmJt8K01yrJUs9Em0+ GZreVsz1vAYbtl90qwPvzFpZoQdK6eNb6Vm7XBh241K8qrGnooIS+6bP+FBMK8rY JcReSzVNPOuYOfezJj03CMT1vCjpQf6FgOfAYjO0XPluoMuF8OZGIkpfLGgPiHwJ WNfhadbpVZM48dYVVOaPICttTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFbOHT36 hRWFGwA+MlVh2qWR/fsoMB8GA1UdIwQYMBaAFB5cEH79A88T0hSjmmos6N2tMEcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDlDMy80NUNDODJDQzgw NjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4UFNGS09hYWl6bzNhMHdS dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hsd1FmdjBEenhQU0ZLT2FhaXpvM2Ewd1J3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDlDMy80NUNDODJDQzgwNjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4 UFNGS09hYWl6bzNhMHdSdzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhL/F3IkOEpuwjR9UOezZw37tvErL5dtghkeQDplnpin0iqw0+MuO3p6zTpha Bo7nYqJJ3ZRHV3A2BZVnjjiGed5xfRbidj0a3lVoC6JgjH8QiYBeTpcBsPnuY/4L MAta0zJ+DJauQuqY29sABhrtsCF7Y3l34Qg0r+mlCRhqXGMhxgKRnmic5JAnp+Ju X8tYIDX4Xvo2NcSRZrcNn+AjzcTJzKJBC0hutuVG+lvtfgVUMimgllqzt3UF7vfo P1lVs5qJCkbBKL3t9T1xTjo03CLr4p+Wv5D1jPIRhIX/S+0nmXxJyvba3oO0+muG WmRHpUpG5S+Sfh8Q8iinny/GPA== -----END CERTIFICATE-----Generated at Wed May 13 07:42:23 2026 by rpki-client