$ rpki-client -vvf rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft File: hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft (raw, json) Hash identifier: 0dKs+usASElhQa0Ud/GsT3tRVj/dfeLWabj8YoaAtIo= Subject key identifier: 89:08:BC:B4:66:70:5E:54:C5:B3:3D:BB:BC:9F:B2:26:AE:DE:A6:97 Authority key identifier: 86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 Certificate issuer: /CN=A91973D2/serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Certificate serial: 068A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft Manifest number: 067D Signing time: Tue 12 May 2026 22:38:48 +0000 Manifest this update: Tue 12 May 2026 22:38:48 +0000 Manifest next update: Tue 19 May 2026 22:38:48 +0000 Files and hashes: 1: hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl (hash: q2TvnQfzB/gN7e7tyBHT+2iS5oX7Q/W+Z4UnQKN/VzU=) 2: 6959BDA8C05B11EB9540776AC4F9AE02.roa (hash: o9LJvDAWoOpgjlM3ZhhTsc5yhOvJHm6q+nsIvmgifUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:38:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1674 (0x68a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91973D2, serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Validity Not Before: May 12 22:38:48 2026 GMT Not After : May 19 22:38:48 2026 GMT Subject: CN=6a03abf8-b466 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e7:e4:80:cb:b2:29:cd:e1:62:84:9c:77:82: 04:7f:a2:15:88:7d:ae:a5:d1:72:6b:22:b8:f7:af: 46:ea:79:6a:99:70:11:34:f0:a5:09:64:ed:1d:ab: 71:34:08:d4:d3:00:af:57:3a:61:0a:48:02:a3:db: a5:98:41:f6:b6:df:7e:1b:8a:4b:b2:9e:93:66:41: 69:69:b1:c6:9d:0e:44:24:92:be:4a:55:79:c0:94: 8e:81:72:a7:8a:1a:d4:33:6d:9a:31:8a:a1:0a:a0: 11:fe:e6:4b:f9:74:b9:f1:e9:7a:ee:6e:c9:f0:a3: 84:ca:9f:af:45:9b:7e:7c:02:ef:0c:4c:69:d7:be: c4:99:2f:b7:31:e7:fc:ec:e1:a8:92:1a:56:1a:0c: 36:07:14:da:7d:c4:70:68:06:68:ca:d5:79:7e:4f: bb:a1:35:51:e4:eb:b3:ce:fd:42:a2:c0:c0:98:4e: 60:55:83:72:04:38:32:53:11:7e:51:81:71:98:ea: 02:7f:81:bd:8e:56:cb:34:2f:14:cb:eb:e9:6e:f4: eb:18:fe:f5:ab:62:11:99:97:6b:38:5b:22:f5:9c: 28:94:42:e6:1f:e2:dc:24:e6:18:a5:ac:24:e9:84: 99:c4:ca:6e:e4:79:77:ff:fb:b5:ea:70:91:e1:15: 5a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:08:BC:B4:66:70:5E:54:C5:B3:3D:BB:BC:9F:B2:26:AE:DE:A6:97 X509v3 Authority Key Identifier: keyid:86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:e1:3f:a4:f6:b8:e9:27:a8:33:c3:be:81:af:90:03:b4:87: 99:51:88:71:75:cb:99:8c:a9:2a:e1:21:db:e1:58:ef:59:05: 76:f6:73:7a:bc:51:70:26:a0:7c:9b:dc:65:ad:7e:00:f1:f8: 72:dc:cb:3e:1e:ed:76:eb:04:a8:3d:52:13:76:a0:33:04:2f: 46:5b:14:89:4f:78:03:c4:df:c4:87:76:a2:ef:e2:34:f4:82: d6:a7:56:1d:8a:82:74:5d:45:81:56:9e:c3:93:28:34:bd:be: 92:4f:c4:16:75:aa:de:a9:b2:db:86:78:61:99:59:4f:28:85: 7d:15:cf:ea:64:da:be:03:e2:36:35:83:98:4f:eb:1e:9f:30: b6:8c:f8:00:90:5c:41:b0:c5:3a:ca:2f:01:c7:77:da:1c:de: 91:01:e6:f5:7b:9f:ab:30:6f:bc:39:59:21:b6:be:08:6a:ed: b3:f6:4d:48:38:e8:d8:28:a5:14:4e:5c:e6:01:66:ab:f0:2c: 3e:fa:6e:ce:25:d1:d6:06:a2:90:1d:ac:45:b6:d4:ae:d5:a2: 7d:67:20:7b:35:b8:d8:2a:b6:e8:04:0d:5b:79:48:aa:87:9b: 23:8f:2b:4b:d9:a7:6c:47:95:a4:87:3b:e7:4c:72:6e:1d:cc: ec:72:e2:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczRDIxMTAvBgNVBAUTKDg2QUIzRUJEN0M0MUU2NTZDQ0VFQ0RCNUE4NTBDN0E0 QjFFMjY3RTMwHhcNMjYwNTEyMjIzODQ4WhcNMjYwNTE5MjIzODQ4WjAYMRYwFAYD VQQDEw02YTAzYWJmOC1iNDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl+fkgMuyKc3hYoScd4IEf6IViH2updFyayK4969G6nlqmXARNPClCWTtHatx NAjU0wCvVzphCkgCo9ulmEH2tt9+G4pLsp6TZkFpabHGnQ5EJJK+SlV5wJSOgXKn ihrUM22aMYqhCqAR/uZL+XS58el67m7J8KOEyp+vRZt+fALvDExp177EmS+3Mef8 7OGokhpWGgw2BxTafcRwaAZoytV5fk+7oTVR5Ouzzv1CosDAmE5gVYNyBDgyUxF+ UYFxmOoCf4G9jlbLNC8Uy+vpbvTrGP71q2IRmZdrOFsi9ZwolELmH+LcJOYYpawk 6YSZxMpu5Hl3//u16nCR4RVaHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIkIvLRm cF5UxbM9u7yfsiau3qaXMB8GA1UdIwQYMBaAFIarPr18QeZWzO7NtahQx6Sx4mfj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzNEMi9EQTgzOUM5NEJG QzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVsYk03czIxcUZESHBMSGla LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hxcy12WHhCNWxiTTdzMjFxRkRIcExIaVotTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzNEMi9EQTgzOUM5NEJGQzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVs Yk03czIxcUZESHBMSGlaLU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC+E/pPa46SeoM8O+ga+QA7SHmVGIcXXLmYypKuEh2+FY71kFdvZzerxRcCag fJvcZa1+APH4ctzLPh7tdusEqD1SE3agMwQvRlsUiU94A8TfxId2ou/iNPSC1qdW HYqCdF1FgVaew5MoNL2+kk/EFnWq3qmy24Z4YZlZTyiFfRXP6mTavgPiNjWDmE/r Hp8wtoz4AJBcQbDFOsovAcd32hzekQHm9XufqzBvvDlZIba+CGrts/ZNSDjo2Cil FE5c5gFmq/AsPvpuziXR1gaikB2sRbbUrtWifWcgezW42Cq26AQNW3lIqoebI48r S9mnbEeVpIc750xybh3M7HLiKw== -----END CERTIFICATE-----Generated at Wed May 13 09:42:41 2026 by rpki-client