$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: wxoxpQEUbgK8dtAh76sAILkICaE8jXqrDfSS9C64BK4= Subject key identifier: E7:89:ED:01:28:0C:F2:60:26:57:BD:83:D5:93:09:DC:FE:9E:40:83 Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0E5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0E28 Signing time: Tue 12 May 2026 17:51:27 +0000 Manifest this update: Tue 12 May 2026 17:51:26 +0000 Manifest next update: Tue 19 May 2026 17:51:26 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: Ijex34jqB3ZEyjaNKLGJp8B2WOdVRmFq/CCN5RaYhYw=) 2: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: bJa45JxM0BM6SHPylrF6iczdI3TR6YwWJGhmk5n+6Co=) 3: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: kuKfhwok7IV2xZV+q15Uru1Qvlc7Ty7LyqYda2rZjaY=) 4: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: m40Au0D9D53HHKA3UY789RoJoXUIJ7gV5QbX6BIo4EU=) 5: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: hFX5YE8MCfCx/kmb790trFxkpl5n33coYoMd9aDEGes=) 6: D0551B50046411F09760073DC4F9AE02.roa (hash: rp8AtmMvaJKirkqtM8xsbLFfIx4jMN0u7R5/2vGn/yo=) 7: F2826A504FCF11EB88444467C4F9AE02.roa (hash: Ucwe0TblfY65Z8jyUiAbiD9N4E5gQiucEqZR5BprIfA=) 8: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: OYQ8Q3ql6qFWt6j+WB79+jUAS4lPKWiDOJJ6WWsPhFE=) 9: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: fHXngSTjkehnoyzfzZzWQmngco23iukL2koF5Ddr+ak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3678 (0xe5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: May 12 17:51:26 2026 GMT Not After : May 19 17:51:26 2026 GMT Subject: CN=6a03689f-c3e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e7:17:3a:5f:c1:4b:57:2e:b9:97:d2:86:33: 0a:9a:2c:d5:9f:b0:f9:de:98:00:7a:b7:61:e4:df: 30:a8:51:06:cc:95:72:19:ab:44:e2:46:14:05:b8: 5a:9b:c4:e7:a9:9c:6e:eb:3a:c0:cf:aa:ba:1e:eb: f3:9e:aa:2f:d2:d4:b0:dc:f8:d9:7a:52:65:f6:84: b8:dd:48:22:2c:16:90:8f:d2:4a:4c:87:39:c1:07: bb:11:74:a0:fc:f9:9a:65:5d:49:91:36:3c:d3:cb: ac:67:b6:11:c3:f4:fa:0a:c4:61:36:8a:a1:db:80: 95:be:9f:35:6d:f6:6e:2b:78:9a:02:1a:4b:ab:9c: fe:70:c6:63:83:b8:db:50:6e:c3:3b:f2:f7:e8:37: 4b:eb:40:23:d3:f6:45:49:72:a9:7e:58:31:ea:20: 62:97:c4:0e:aa:53:1a:ce:af:ff:c1:15:95:78:ed: ca:92:c6:76:e5:b5:5b:7e:72:24:22:6b:09:75:c9: 55:d4:26:7e:54:5f:c5:97:49:26:66:6a:74:21:69: 47:e2:c3:31:ac:ba:28:78:97:da:f5:5d:69:c1:a9: 23:aa:6b:c7:60:b3:30:81:1f:bc:a0:27:de:a3:af: 25:cc:32:55:75:fa:36:fb:3f:84:06:e0:46:79:ac: f0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:89:ED:01:28:0C:F2:60:26:57:BD:83:D5:93:09:DC:FE:9E:40:83 X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:da:c8:4c:8d:34:16:68:d7:ef:3b:25:6e:5e:96:f5:c4:d4: b4:2a:0b:16:76:f4:82:b7:15:09:66:1a:7f:cd:03:e7:b0:98: 97:fd:b7:27:aa:cc:de:2c:1e:0a:4f:dc:03:42:b8:2c:56:38: e3:5f:b9:a9:e4:b7:88:7c:0f:e0:ea:93:39:8b:c1:7b:02:43: 2e:c3:f8:6c:a2:0c:6a:4f:bd:54:fd:5d:78:d6:bd:c4:e5:b3: 8f:28:7c:86:fd:5a:aa:46:6a:1d:09:39:e0:be:b6:4a:2d:7b: e8:66:a8:e3:77:47:71:4d:34:00:9d:c4:e8:36:af:67:5f:ab: 39:64:96:14:64:e1:88:53:3e:9c:60:36:4c:40:31:28:1b:13: 3f:1c:d6:dd:26:b7:b6:71:29:38:07:64:6b:8f:8c:cb:b1:8e: e9:a0:8d:e6:59:b8:33:0c:f1:4d:18:f8:0c:ce:22:8f:02:0b: 57:db:3f:73:18:83:a6:63:0a:53:ed:fb:62:9f:76:e5:2a:c8: 5a:d8:e3:76:0f:54:83:c6:24:d1:75:b0:c4:db:03:58:94:70: 39:e1:49:b2:52:64:b2:5c:96:23:83:b1:a3:5f:64:d1:fe:21: 7e:da:1d:40:9e:4c:73:fc:17:58:b1:41:99:9a:51:71:28:f8: 51:4e:7a:fb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjYwNTEyMTc1MTI2WhcNMjYwNTE5MTc1MTI2WjAYMRYwFAYD VQQDEw02YTAzNjg5Zi1jM2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+cXOl/BS1cuuZfShjMKmizVn7D53pgAerdh5N8wqFEGzJVyGatE4kYUBbha m8TnqZxu6zrAz6q6Huvznqov0tSw3PjZelJl9oS43UgiLBaQj9JKTIc5wQe7EXSg /PmaZV1JkTY808usZ7YRw/T6CsRhNoqh24CVvp81bfZuK3iaAhpLq5z+cMZjg7jb UG7DO/L36DdL60Aj0/ZFSXKpflgx6iBil8QOqlMazq//wRWVeO3KksZ25bVbfnIk ImsJdclV1CZ+VF/Fl0kmZmp0IWlH4sMxrLooeJfa9V1pwakjqmvHYLMwgR+8oCfe o68lzDJVdfo2+z+EBuBGeazweQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOeJ7QEo DPJgJle9g9WTCdz+nkCDMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjNrITI00FmjX7zslbl6W9cTUtCoLFnb0grcVCWYaf80D57CYl/23J6rM3iwe Ck/cA0K4LFY441+5qeS3iHwP4OqTOYvBewJDLsP4bKIMak+9VP1deNa9xOWzjyh8 hv1aqkZqHQk54L62Si176Gao43dHcU00AJ3E6DavZ1+rOWSWFGThiFM+nGA2TEAx KBsTPxzW3Sa3tnEpOAdka4+My7GO6aCN5lm4MwzxTRj4DM4ijwILV9s/cxiDpmMK U+37Yp925SrIWtjjdg9Ug8Yk0XWwxNsDWJRwOeFJslJkslyWI4Oxo19k0f4hftod QJ5Mc/wXWLFBmZpRcSj4UU56+w== -----END CERTIFICATE-----Generated at Wed May 13 03:01:34 2026 by rpki-client