$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft File: HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft (raw, json) Hash identifier: vae5L0/3in79EczVXDP3/SfGULCCRNbHj8x6HEg0kpU= Subject key identifier: 85:E0:26:60:DD:49:D5:3C:CC:88:A9:9F:26:6D:3D:83:EE:7A:E1:43 Authority key identifier: 1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB Certificate issuer: /CN=A91B0770/serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Certificate serial: 35E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft Manifest number: 3590 Signing time: Tue 12 May 2026 14:40:31 +0000 Manifest this update: Tue 12 May 2026 14:40:30 +0000 Manifest next update: Tue 19 May 2026 14:40:30 +0000 Files and hashes: 1: HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl (hash: gc0sEyTw/egjN0GbpxzdBj5L2vuNvwOH1LlitKZY6jQ=) 2: 2B622E1282F511EF9090F681C4F9AE02.roa (hash: JS+c9sL3L+WCOEhTvnP+XpOyBuJ/6R/u9Qm2AM/cHpk=) 3: 87EFB95AC01811EF90CE8B0EC4F9AE02.roa (hash: i7xoaF0lo4v/u3C3CSr1yIhYmxnuvtGvhXEfUH5uBHU=) 4: 725D1810BD0E11EA8CEF0681C4F9AE02.roa (hash: 4K+Xr5cEWGU3CtoxwVoZf3ocwZzyt3Pe/yTV1VWV7A0=) 5: C2DFDA20DE0611EF9DC6A135C4F9AE02.roa (hash: vKe+s1AjVTC2tWxyer0iCi6sE34mb63o5/xf7YiZBp8=) 6: 0FCDEA68113B11F09E3A4157C4F9AE02.roa (hash: t4/ezhxy8Yfpe9cG1UobV4ijgY6RGmsFly/MX9OY10A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13795 (0x35e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0770, serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Validity Not Before: May 12 14:40:30 2026 GMT Not After : May 19 14:40:30 2026 GMT Subject: CN=6a033bdf-03fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:34:fc:ff:e8:f4:61:66:02:fd:24:fd:6f:3b: 6c:2b:bc:32:f9:d5:69:2a:65:4e:78:99:2b:03:b8: 92:2b:46:bb:4e:6b:02:f7:d7:1f:8c:73:ca:24:a2: ea:36:8f:34:b3:89:b6:b9:b8:1c:05:23:63:8a:8f: 40:a6:49:40:10:65:f4:de:85:dd:cb:d3:5c:ad:81: 66:b5:3b:62:93:60:b2:c4:e1:fb:e2:7f:28:c0:8e: f3:69:28:21:5a:75:e0:a0:57:1e:3c:f4:b4:1b:f8: c0:83:18:9e:89:7b:69:ec:67:05:b4:63:3b:eb:e7: 5f:15:ed:a5:21:58:68:12:6e:ee:86:68:f4:7e:93: 0b:e6:31:e2:03:b5:12:7c:86:06:79:08:64:45:d4: 75:e2:cf:c4:c3:f8:02:7d:2d:82:d3:4b:7e:0e:0a: 3e:eb:80:1e:21:5b:b1:0e:aa:f8:39:b5:92:16:58: 7b:65:7b:76:14:2f:81:03:00:ce:a9:3f:9c:a8:eb: e1:c7:53:ad:0b:51:1f:97:e6:77:cb:6f:9a:3c:c5: 71:dc:0e:9f:68:58:c0:87:af:da:1b:6f:43:46:6b: 6b:92:aa:28:6c:30:c7:61:e8:b1:45:b3:a7:af:20: 3c:a5:5d:f2:cb:fd:4c:06:93:9c:e1:89:b2:d8:f1: eb:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E0:26:60:DD:49:D5:3C:CC:88:A9:9F:26:6D:3D:83:EE:7A:E1:43 X509v3 Authority Key Identifier: keyid:1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:df:5c:98:96:04:f2:46:0d:1b:b5:df:18:7b:7c:48:4e:e4: 14:7f:4b:83:47:9e:f2:bd:f5:99:65:52:9f:2c:a0:cb:e5:1e: 14:a3:6a:ac:04:06:e6:d2:4e:fb:c5:17:7b:9d:a8:c7:2e:d8: e0:8d:ed:75:d5:34:ac:30:bf:51:fb:f3:07:43:17:5f:16:4b: 6d:46:35:b8:37:40:a0:d9:6b:a5:2f:42:95:7c:f8:db:d2:e9: 37:9d:b2:1b:62:31:c4:10:7c:ed:1c:6b:48:09:70:fb:26:20: 9e:6a:66:42:36:ed:75:46:7f:7e:f7:f1:bd:80:ae:1e:ee:7e: 9d:18:0c:e1:92:9b:88:ce:9e:5d:a3:0d:d4:4a:4e:2a:1a:5e: aa:67:e1:23:aa:a1:60:87:08:54:36:03:8d:01:12:b6:55:51: f7:83:d2:d9:01:7c:90:8b:ed:5f:4a:89:8f:3d:ca:e1:02:a0: 7e:57:aa:18:e2:a0:0f:d3:1c:6f:03:f5:0e:64:4c:5e:df:e1: f2:28:8b:00:cb:77:3a:b6:b9:3d:e0:33:8c:d9:66:6e:55:de: 40:b3:37:90:36:5c:d0:65:5e:95:c5:8a:76:ca:16:e4:e4:17: c1:46:44:f8:63:95:b2:44:79:50:91:66:0b:0b:0f:6e:c7:4c: 2b:a1:8a:a5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NzAxMTAvBgNVBAUTKDFENjIyNUFEOTQzRUNBMzg5RkE0QjY2QzE5NzQzNTFF MzRDNDI4RkIwHhcNMjYwNTEyMTQ0MDMwWhcNMjYwNTE5MTQ0MDMwWjAYMRYwFAYD VQQDEw02YTAzM2JkZi0wM2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zT8/+j0YWYC/ST9bztsK7wy+dVpKmVOeJkrA7iSK0a7TmsC99cfjHPKJKLq No80s4m2ubgcBSNjio9ApklAEGX03oXdy9NcrYFmtTtik2CyxOH74n8owI7zaSgh WnXgoFcePPS0G/jAgxieiXtp7GcFtGM76+dfFe2lIVhoEm7uhmj0fpML5jHiA7US fIYGeQhkRdR14s/Ew/gCfS2C00t+Dgo+64AeIVuxDqr4ObWSFlh7ZXt2FC+BAwDO qT+cqOvhx1OtC1Efl+Z3y2+aPMVx3A6faFjAh6/aG29DRmtrkqoobDDHYeixRbOn ryA8pV3yy/1MBpOc4Ymy2PHrHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIXgJmDd SdU8zIipnyZtPYPueuFDMB8GA1UdIwQYMBaAFB1iJa2UPso4n6S2bBl0NR40xCj7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc3MC9DMzM2ODNCNjFE OEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlqaWZwTFpzR1hRMUhqVEVL UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXSWxyWlEteWppZnBMWnNHWFExSGpURUtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDc3MC9DMzM2ODNCNjFEOEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlq aWZwTFpzR1hRMUhqVEVLUHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmd9cmJYE8kYNG7XfGHt8SE7kFH9Lg0ee8r31mWVSnyygy+UeFKNqrAQG5tJO +8UXe52oxy7Y4I3tddU0rDC/UfvzB0MXXxZLbUY1uDdAoNlrpS9ClXz429LpN52y G2IxxBB87RxrSAlw+yYgnmpmQjbtdUZ/fvfxvYCuHu5+nRgM4ZKbiM6eXaMN1EpO KhpeqmfhI6qhYIcIVDYDjQEStlVR94PS2QF8kIvtX0qJjz3K4QKgfleqGOKgD9Mc bwP1DmRMXt/h8iiLAMt3Ora5PeAzjNlmblXeQLM3kDZc0GVelcWKdsoW5OQXwUZE +GOVskR5UJFmCwsPbsdMK6GKpQ== -----END CERTIFICATE-----Generated at Wed May 13 10:03:23 2026 by rpki-client