$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft File: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft (raw, json) Hash identifier: 6XFhLHdrL2MTKE1mUuRKTo5V+LcjamRX3TgEa6fKgLA= Subject key identifier: 7F:E0:68:AC:42:A2:CF:36:B9:8A:60:4A:11:1A:31:42:F7:E0:33:E0 Authority key identifier: 86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 Certificate issuer: /CN=A91A1EE0/serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Certificate serial: 35A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft Manifest number: 356F Signing time: Tue 12 May 2026 14:34:56 +0000 Manifest this update: Tue 12 May 2026 14:34:56 +0000 Manifest next update: Tue 19 May 2026 14:34:56 +0000 Files and hashes: 1: hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl (hash: nerzZgp2wxFaxxYwfEOb2WURRiTFT3DQBhh+vFg+mnI=) 2: 4EF85CFEEE4211E9B52B674DC4F9AE02.roa (hash: Ehg/3ByY4in17WS9HIHSCx7iYIaT6e+zSPAMzsvhayg=) 3: 44E2CCAEBA9811EFBA471E62C4F9AE02.roa (hash: mYW3nKsnG4GE83HF25tjaBek0p6fEGk2hgZHM+Eo7hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:34:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13729 (0x35a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1EE0, serialNumber=860C0904CED7BB0D1D97B292FDB662E8B9A8AFF0 Validity Not Before: May 12 14:34:56 2026 GMT Not After : May 19 14:34:56 2026 GMT Subject: CN=6a033a90-332f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3c:22:79:d6:a3:03:06:28:2c:cd:19:0c:8a: 93:04:84:64:b9:f8:b7:ff:6b:bb:fb:49:3a:e5:ff: 2d:d1:c1:8c:be:f7:c9:f1:0e:e6:d1:ac:2d:85:fa: a7:04:9a:a3:bb:db:c3:ec:eb:48:ac:b1:43:2a:f6: ba:42:b0:19:2f:d0:71:c2:4a:6c:e6:99:eb:7e:38: 3f:3a:0b:0c:0d:83:30:2a:f2:01:ba:b8:c4:31:60: 4d:d2:22:6f:ee:02:b0:86:26:74:4a:61:37:fe:21: 84:9f:8f:6c:ca:a0:98:1a:20:7d:e3:e4:0c:f0:33: 9a:33:4b:42:b2:4e:83:de:23:c9:c7:18:78:82:bf: ab:57:c0:9f:c4:8e:1b:98:20:87:5a:ac:38:66:ce: fa:9b:76:ff:d3:3c:24:69:8b:25:a8:b5:86:2b:bf: 57:82:bc:dd:01:67:10:75:b1:20:ee:81:5d:3a:39: e8:cb:71:f9:20:e8:04:f6:4a:ab:1b:6b:ad:5d:6d: 9b:a1:1c:34:19:f9:a3:3a:7d:bd:64:39:48:26:cf: cb:22:9f:7a:89:bd:6b:fd:2a:3c:c0:55:21:01:3f: cf:33:f4:a5:ef:69:24:e9:a5:12:75:35:0e:0e:7b: 2f:a4:57:ed:d5:72:66:4d:6f:e1:8f:89:32:e1:78: 3e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:E0:68:AC:42:A2:CF:36:B9:8A:60:4A:11:1A:31:42:F7:E0:33:E0 X509v3 Authority Key Identifier: keyid:86:0C:09:04:CE:D7:BB:0D:1D:97:B2:92:FD:B6:62:E8:B9:A8:AF:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1EE0/D23634461D8A11E2820F04E508B02CD2/hgwJBM7Xuw0dl7KS_bZi6Lmor_A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:bb:11:c7:7b:dd:0e:8b:cb:f7:2c:fc:68:a6:67:a1:1d:af: 83:05:2b:5c:af:49:bc:ce:8e:e3:2c:ab:18:aa:ae:fc:77:21: d4:c3:d5:d4:13:5c:24:5c:03:07:77:37:9b:44:cb:fa:58:86: 40:85:5c:19:a7:8b:57:de:14:09:d5:15:b7:af:cf:09:3f:41: 2b:9c:40:0e:cf:eb:d8:d7:68:15:15:ed:75:46:bf:89:d8:15: 11:6e:b4:40:f1:df:1a:5d:a5:01:10:6e:b8:eb:76:f0:db:92: 2a:fe:f2:52:e7:c8:ba:37:5b:35:4a:fc:b0:40:13:1f:ac:bc: cf:f0:68:04:b2:e3:95:58:78:45:49:fc:52:fd:cc:f4:50:c8: f3:ef:51:8b:a1:94:3c:dc:03:f0:70:29:e0:6a:20:b2:d4:17: ae:41:c1:89:2b:d7:05:61:23:52:05:c2:ca:1c:8a:b1:b4:49: 8c:1b:5c:43:5b:48:52:89:ff:0b:fa:cc:d8:fe:81:ad:50:d3: df:18:ad:d2:fe:c0:b7:a8:33:93:10:62:00:fd:d7:fc:98:9d: d1:b7:6f:60:b4:ec:9b:78:46:25:c4:07:84:51:03:55:e6:eb: 57:6e:e4:9f:55:85:60:d7:4f:0e:9f:0c:e0:ea:02:53:2c:e2: 30:a6:e4:3e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFFRTAxMTAvBgNVBAUTKDg2MEMwOTA0Q0VEN0JCMEQxRDk3QjI5MkZEQjY2MkU4 QjlBOEFGRjAwHhcNMjYwNTEyMTQzNDU2WhcNMjYwNTE5MTQzNDU2WjAYMRYwFAYD VQQDEw02YTAzM2E5MC0zMzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjwiedajAwYoLM0ZDIqTBIRkufi3/2u7+0k65f8t0cGMvvfJ8Q7m0awthfqn BJqju9vD7OtIrLFDKva6QrAZL9Bxwkps5pnrfjg/OgsMDYMwKvIBurjEMWBN0iJv 7gKwhiZ0SmE3/iGEn49syqCYGiB94+QM8DOaM0tCsk6D3iPJxxh4gr+rV8CfxI4b mCCHWqw4Zs76m3b/0zwkaYslqLWGK79XgrzdAWcQdbEg7oFdOjnoy3H5IOgE9kqr G2utXW2boRw0GfmjOn29ZDlIJs/LIp96ib1r/So8wFUhAT/PM/Sl72kk6aUSdTUO DnsvpFft1XJmTW/hj4ky4Xg+lQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH/gaKxC os82uYpgShEaMUL34DPgMB8GA1UdIwQYMBaAFIYMCQTO17sNHZeykv22Yui5qK/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUVFMC9EMjM2MzQ0NjFE OEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3MGRsN0tTX2JaaTZMbW9y X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnd0pCTTdYdXcwZGw3S1NfYlppNkxtb3JfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUVFMC9EMjM2MzQ0NjFEOEExMUUyODIwRjA0RTUwOEIwMkNEMi9oZ3dKQk03WHV3 MGRsN0tTX2JaaTZMbW9yX0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIbsRx3vdDovL9yz8aKZnoR2vgwUrXK9JvM6O4yyrGKqu/Hch1MPV1BNcJFwD B3c3m0TL+liGQIVcGaeLV94UCdUVt6/PCT9BK5xADs/r2NdoFRXtdUa/idgVEW60 QPHfGl2lARBuuOt28NuSKv7yUufIujdbNUr8sEATH6y8z/BoBLLjlVh4RUn8Uv3M 9FDI8+9Ri6GUPNwD8HAp4GogstQXrkHBiSvXBWEjUgXCyhyKsbRJjBtcQ1tIUon/ C/rM2P6BrVDT3xit0v7At6gzkxBiAP3X/Jid0bdvYLTsm3hGJcQHhFEDVebrV27k n1WFYNdPDp8M4OoCUyziMKbkPg== -----END CERTIFICATE-----Generated at Wed May 13 11:43:06 2026 by rpki-client