$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: 3MSOyGT/BhASIAZcKAmK2r4te9EimeQfFlOFZzclpVM= Subject key identifier: AE:2E:6C:7C:85:54:43:13:A6:B9:4C:00:13:53:05:39:58:BE:09:C9 Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 1644 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 15E3 Signing time: Tue 12 May 2026 16:50:14 +0000 Manifest this update: Tue 12 May 2026 16:50:13 +0000 Manifest next update: Tue 19 May 2026 16:50:13 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: YfKTScCSFYY8sr1mtaxEsHcbFsqgqHXuyjmtVOyEXDg=) 2: C9203DF43D5E11F19F1D0B4EAB833773.roa (hash: fhBWCudWssjjCZ/zBynhZzcCH3noLL5P4oCjMcFv1HI=) 3: 0BFFC86E3FC211F18966A53AC7833773.roa (hash: W+YOe6hixH3mn1KveOHweplDujCY7TsXxGCoVqjHzBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5700 (0x1644) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: May 12 16:50:13 2026 GMT Not After : May 19 16:50:13 2026 GMT Subject: CN=6a035a46-a107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:04:86:ab:64:4f:46:f3:4b:ac:30:bc:7c:90: 3a:94:80:84:35:a9:02:57:42:44:cd:1a:6d:4a:64: c7:2c:59:92:6f:b7:77:aa:3b:3e:64:12:37:f7:df: a7:e6:00:ed:30:88:fd:d9:cd:f1:07:38:6e:ef:45: 71:e3:13:96:11:d8:1c:c2:70:7d:ad:54:55:74:33: 1f:f5:ba:d7:94:41:63:a4:10:b9:8f:a1:f3:ad:f8: 0f:77:ec:ca:9c:a8:02:5d:3a:82:7f:0b:8b:af:c6: 75:41:00:60:52:ab:07:8c:fa:4e:3c:55:6f:e8:d4: 34:b9:53:1c:2b:a5:70:1e:d0:4d:53:89:4f:7e:50: 38:ba:93:a3:1e:96:0a:f2:8f:fe:2b:82:81:50:ab: df:3a:cc:b5:2e:16:ad:8b:71:bb:c9:4f:69:c4:cd: 3a:93:26:cf:ab:42:27:70:40:ff:8b:6e:d9:35:bd: fe:1c:fc:44:38:7b:9d:a9:c3:b6:b2:a6:99:db:52: ad:40:8b:48:df:51:0c:4b:4f:82:c2:ba:03:cf:5d: 71:f6:aa:35:23:80:96:9a:61:4d:ae:83:d9:9d:29: c2:4a:e6:0c:99:bd:ce:c6:60:4c:e5:a8:21:6a:8c: be:5a:a0:a3:91:84:98:80:45:8f:df:ab:72:55:34: 0d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:2E:6C:7C:85:54:43:13:A6:B9:4C:00:13:53:05:39:58:BE:09:C9 X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:8d:ea:36:f6:c3:70:7f:56:fa:cf:50:cb:f6:98:7e:41:0d: 4c:1b:6c:d6:f1:26:bf:d4:05:08:86:0d:16:d8:21:4d:9a:74: 6c:15:34:2c:90:bc:a2:77:4b:be:d2:87:4c:aa:f5:83:35:66: 5d:07:97:c8:25:be:b9:7d:3b:e8:6e:f7:f8:36:5e:82:56:7d: 3f:14:b6:57:1b:6b:f7:c4:b4:a8:22:44:37:6d:c5:6b:29:d9: 87:dc:78:b5:70:9e:81:93:ff:b2:8e:b9:80:17:55:1f:28:37: b2:3f:00:c1:63:b8:0f:ce:35:75:65:2d:d3:74:f6:fb:20:46: 47:f7:6b:09:0b:4a:c3:20:1e:a5:52:95:75:0b:cd:39:38:42: d5:91:53:1d:65:5f:26:81:dc:d2:36:fd:fc:00:af:59:91:ee: d1:d3:6d:ec:2f:70:6d:30:ce:4b:64:69:b0:91:ab:23:fe:12: 7e:3f:7e:4a:59:fa:35:57:35:50:aa:de:29:23:d5:3e:48:92: b5:9f:93:71:7b:98:27:c8:1c:b5:06:07:d5:36:aa:99:27:0e: 43:36:47:e9:55:82:08:3a:5f:40:a2:5b:a9:a7:67:60:ec:af: 7c:70:fc:91:4f:6c:fc:71:dc:d4:4c:ac:b5:96:b3:be:88:dd: 0d:64:6d:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjYwNTEyMTY1MDEzWhcNMjYwNTE5MTY1MDEzWjAYMRYwFAYD VQQDEw02YTAzNWE0Ni1hMTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ASGq2RPRvNLrDC8fJA6lICENakCV0JEzRptSmTHLFmSb7d3qjs+ZBI399+n 5gDtMIj92c3xBzhu70Vx4xOWEdgcwnB9rVRVdDMf9brXlEFjpBC5j6HzrfgPd+zK nKgCXTqCfwuLr8Z1QQBgUqsHjPpOPFVv6NQ0uVMcK6VwHtBNU4lPflA4upOjHpYK 8o/+K4KBUKvfOsy1Lhati3G7yU9pxM06kybPq0IncED/i27ZNb3+HPxEOHudqcO2 sqaZ21KtQItI31EMS0+CwroDz11x9qo1I4CWmmFNroPZnSnCSuYMmb3OxmBM5agh aoy+WqCjkYSYgEWP36tyVTQNSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK4ubHyF VEMTprlMABNTBTlYvgnJMB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAco3qNvbDcH9W+s9Qy/aYfkENTBts1vEmv9QFCIYNFtghTZp0bBU0LJC8ondL vtKHTKr1gzVmXQeXyCW+uX076G73+DZeglZ9PxS2Vxtr98S0qCJEN23FaynZh9x4 tXCegZP/so65gBdVHyg3sj8AwWO4D841dWUt03T2+yBGR/drCQtKwyAepVKVdQvN OThC1ZFTHWVfJoHc0jb9/ACvWZHu0dNt7C9wbTDOS2RpsJGrI/4Sfj9+Sln6NVc1 UKreKSPVPkiStZ+TcXuYJ8gctQYH1TaqmScOQzZH6VWCCDpfQKJbqadnYOyvfHD8 kU9s/HHc1EystZazvojdDWRtQQ== -----END CERTIFICATE-----Generated at Wed May 13 14:42:10 2026 by rpki-client