$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.mft File: hhIZKNm0AeMdansgbrAWLThuBHI.mft (raw, json) Hash identifier: nZPY7q2fJA+cwFj855/A2qgOAnIMjrqCzSoAUt+1oOQ= Subject key identifier: F0:42:4E:29:B1:1D:A9:5E:E5:0C:6E:C3:A3:B0:1C:DB:BF:D7:18:78 Authority key identifier: 86:12:19:28:D9:B4:01:E3:1D:6A:7B:20:6E:B0:16:2D:38:6E:04:72 Certificate issuer: /CN=A91B8C6C/serialNumber=86121928D9B401E31D6A7B206EB0162D386E0472 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hhIZKNm0AeMdansgbrAWLThuBHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.mft Manifest number: 53 Signing time: Tue 12 May 2026 15:08:00 +0000 Manifest this update: Tue 12 May 2026 15:08:00 +0000 Manifest next update: Tue 19 May 2026 15:08:00 +0000 Files and hashes: 1: hhIZKNm0AeMdansgbrAWLThuBHI.crl (hash: Rt1/DMw08wRXGVxCYHoErLOC7gPBRJ2X2Gnnp/SjcCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.crl rsync://rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hhIZKNm0AeMdansgbrAWLThuBHI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C6C, serialNumber=86121928D9B401E31D6A7B206EB0162D386E0472 Validity Not Before: May 12 15:08:00 2026 GMT Not After : May 19 15:08:00 2026 GMT Subject: CN=6a034250-756b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:20:ff:74:fd:b4:ac:0a:11:93:d2:ab:32:11: b8:ea:34:de:cb:d2:d2:f1:65:18:d4:3c:e2:d2:00: b0:09:36:f3:f6:11:e2:43:ee:4d:d0:14:62:4c:90: 8a:83:43:f5:8d:a7:83:f2:ba:e6:a2:6d:d3:35:ec: e0:93:69:bb:c2:d4:2c:16:3a:87:ad:1b:2f:36:02: 85:1f:0e:08:d4:64:40:54:a3:6b:e6:60:dd:b8:0b: c3:38:51:82:fd:17:71:bb:60:d1:f0:06:18:01:8b: 45:6d:c2:55:ae:0d:38:8e:eb:71:1f:96:f6:a2:44: 34:e0:74:f7:89:6f:a4:d0:10:e1:4c:9c:0a:41:30: 58:57:07:fa:c3:fb:5d:d9:bb:0f:d4:6e:d5:65:4a: 9f:cb:c8:93:90:34:46:0d:fb:52:68:42:60:7c:61: e4:0a:87:04:e7:2e:7d:f7:9e:6c:ca:34:57:49:3f: 28:8e:86:98:63:85:d8:d7:5c:f7:df:2e:08:f9:ac: 00:dd:e4:98:ed:ca:a2:74:1c:e4:27:25:32:dc:73: a8:cd:d7:26:f3:18:9d:db:97:0b:2a:89:13:75:6f: 85:d3:50:b9:83:3a:df:f6:49:7e:d6:0c:01:18:b6: fb:e7:5a:16:32:3e:bb:be:ec:df:f8:db:98:66:b9: 50:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:42:4E:29:B1:1D:A9:5E:E5:0C:6E:C3:A3:B0:1C:DB:BF:D7:18:78 X509v3 Authority Key Identifier: keyid:86:12:19:28:D9:B4:01:E3:1D:6A:7B:20:6E:B0:16:2D:38:6E:04:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hhIZKNm0AeMdansgbrAWLThuBHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C6C/30A54F6CD65F11F0B06FD8A20AB43E13/hhIZKNm0AeMdansgbrAWLThuBHI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:c5:1d:97:01:7a:4d:b9:86:bc:2a:ea:9e:04:a2:0f:9c:86: 47:63:62:c5:4e:b1:51:45:49:c0:25:0f:a5:3f:44:20:3b:dd: 89:1e:40:c2:a7:e4:73:9a:df:cb:82:fb:f8:c7:ca:21:0e:9f: 3a:ca:4a:c7:9e:a9:1d:e4:9c:80:55:d1:28:45:ed:5d:61:d1: 6b:bc:c5:ae:be:27:af:fb:e6:0e:c0:46:66:11:b0:67:39:7f: fe:19:30:dd:69:6b:71:12:80:69:b8:db:a5:74:0b:ed:59:d8: 9c:0b:06:c7:81:e9:7e:69:c2:6b:4a:b5:f6:4b:17:b4:89:0d: 28:59:ba:2a:c9:db:10:ef:95:02:d4:51:16:e3:12:b3:39:ed: 16:c8:d5:77:5f:1e:64:07:d1:42:f3:30:7c:0c:1a:c3:ec:6e: 86:13:af:6b:aa:10:c2:1f:e3:3e:d9:42:c0:3b:a9:8b:9b:e7: 9c:f2:e6:67:67:78:02:92:a5:a5:9b:eb:6f:bb:5c:32:b2:2e: 57:42:35:46:56:fd:65:17:36:d2:67:8a:5d:38:2a:70:d7:37: 48:1a:04:1c:61:85:45:38:2a:8b:24:ce:d8:c5:da:ff:8b:de: 03:ed:99:1a:06:fa:cb:c2:2d:e1:c5:a6:1a:35:80:7b:68:d1: 5a:5d:12:2c -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEM2QzExMC8GA1UEBRMoODYxMjE5MjhEOUI0MDFFMzFENkE3QjIwNkVCMDE2MkQz ODZFMDQ3MjAeFw0yNjA1MTIxNTA4MDBaFw0yNjA1MTkxNTA4MDBaMBgxFjAUBgNV BAMTDTZhMDM0MjUwLTc1NmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOIP90/bSsChGT0qsyEbjqNN7L0tLxZRjUPOLSALAJNvP2EeJD7k3QFGJMkIqD Q/WNp4PyuuaibdM17OCTabvC1CwWOoetGy82AoUfDgjUZEBUo2vmYN24C8M4UYL9 F3G7YNHwBhgBi0VtwlWuDTiO63EflvaiRDTgdPeJb6TQEOFMnApBMFhXB/rD+13Z uw/UbtVlSp/LyJOQNEYN+1JoQmB8YeQKhwTnLn33nmzKNFdJPyiOhphjhdjXXPff Lgj5rADd5JjtyqJ0HOQnJTLcc6jN1ybzGJ3blwsqiRN1b4XTULmDOt/2SX7WDAEY tvvnWhYyPru+7N/425hmuVBpAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU8EJOKbEd qV7lDG7Do7Ac27/XGHgwHwYDVR0jBBgwFoAUhhIZKNm0AeMdansgbrAWLThuBHIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4QzZDLzMwQTU0RjZDRDY1 RjExRjBCMDZGRDhBMjBBQjQzRTEzL2hoSVpLTm0wQWVNZGFuc2dickFXTFRodUJI SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaGhJWktObTBBZU1kYW5zZ2JyQVdMVGh1QkhJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 QzZDLzMwQTU0RjZDRDY1RjExRjBCMDZGRDhBMjBBQjQzRTEzL2hoSVpLTm0wQWVN ZGFuc2dickFXTFRodUJISS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAoxR2XAXpNuYa8KuqeBKIPnIZHY2LFTrFRRUnAJQ+lP0QgO92JHkDCp+Rzmt/L gvv4x8ohDp86ykrHnqkd5JyAVdEoRe1dYdFrvMWuviev++YOwEZmEbBnOX/+GTDd aWtxEoBpuNuldAvtWdicCwbHgel+acJrSrX2Sxe0iQ0oWboqydsQ75UC1FEW4xKz Oe0WyNV3Xx5kB9FC8zB8DBrD7G6GE69rqhDCH+M+2ULAO6mLm+ec8uZnZ3gCkqWl m+tvu1wysi5XQjVGVv1lFzbSZ4pdOCpw1zdIGgQcYYVFOCqLJM7Yxdr/i94D7Zka BvrLwi3hxaYaNYB7aNFaXRIs -----END CERTIFICATE-----Generated at Wed May 13 03:10:24 2026 by rpki-client