$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: 3DPsAHKr+kd3wpP5O49HK4IXCqkwQaP25KcG6M7YZJQ= Subject key identifier: 0D:07:21:99:89:0B:0D:E5:00:BF:6B:09:DC:39:CD:6B:62:4B:FA:5D Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: 0122 Signing time: Wed 13 May 2026 05:50:52 +0000 Manifest this update: Wed 13 May 2026 05:50:51 +0000 Manifest next update: Wed 20 May 2026 05:50:51 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: ruBbPS1OFjWuhQN2ahZqwgme9rwPWmewKLBKkwEubVQ=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: kw9fZbNGZZ3kdKJfF8SYCLZeUjioT1ZZ2tfUfZYgkvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:50:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: May 13 05:50:51 2026 GMT Not After : May 20 05:50:51 2026 GMT Subject: CN=6a04113c-f09f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f6:ca:df:9f:85:44:01:8f:19:0f:bc:81:c5: 08:55:c0:01:d8:9e:a1:a8:cb:d8:2e:52:25:43:12: e2:5c:ed:65:97:aa:1f:1b:e4:3d:9e:d9:21:ac:dd: 57:b7:67:86:f2:44:68:0e:3a:ba:af:ae:ee:b2:5e: 28:78:07:e8:96:50:75:4d:c1:4e:dd:b6:08:c6:e9: eb:4e:c9:48:c8:88:cf:48:23:92:cd:7f:50:65:06: 1e:0f:c5:d2:48:ed:d7:bc:07:05:74:92:3c:62:2b: 71:08:13:cc:94:20:c3:5f:db:b5:ff:d5:5c:46:1a: 30:58:72:ae:27:57:22:89:24:d2:7c:21:18:1d:de: 2c:d9:f5:f4:ef:02:fd:26:99:69:90:7d:4e:cb:e7: 15:49:67:8b:81:13:8c:d4:cd:5b:a8:64:9c:56:44: 94:0a:be:ca:aa:0c:e6:ef:e4:8f:54:89:90:bd:3d: 63:0c:59:2e:89:e1:0d:ee:57:12:df:38:e8:6d:a6: 3b:79:58:d1:6f:5a:40:39:c7:01:90:5c:ed:7b:1f: 37:1e:c9:ba:3c:87:c0:9d:cd:24:0c:a9:9a:53:a8: bd:60:03:86:69:a9:a9:be:74:4e:3c:f2:6a:b8:e5: 62:a6:8b:c4:2a:47:fe:88:77:46:02:5a:15:2a:a6: 31:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:07:21:99:89:0B:0D:E5:00:BF:6B:09:DC:39:CD:6B:62:4B:FA:5D X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:0e:4a:02:aa:be:6c:27:80:53:6d:17:c2:a8:5d:d6:f5:75: db:d4:d2:d8:8a:f7:dd:3d:4d:aa:43:5c:15:5f:39:b5:44:35: d9:5b:3b:dd:e9:b4:de:be:84:3b:77:34:11:18:c5:21:20:67: 7f:f3:bd:77:2d:60:c1:10:67:01:9f:cd:1b:12:e4:74:25:db: 0d:60:f1:40:32:51:3c:90:c5:41:07:92:47:bc:63:28:cd:01: b6:9d:62:19:d8:af:49:e1:f6:24:23:09:9d:4c:10:1c:2e:b3: ba:67:49:c9:32:f7:55:b9:52:3c:e7:ba:8d:ee:42:47:5b:9a: 4b:38:84:47:5c:2f:8b:97:f3:57:13:3f:b9:b2:63:b0:ab:99: c6:1d:8a:9e:eb:85:7b:e4:32:0f:60:f5:11:45:05:ba:f7:32: 80:3d:26:e2:37:f5:13:cc:1a:4e:ec:ec:34:1a:b0:cc:53:0e: bf:96:7e:a1:d7:d6:46:b2:06:71:ab:13:41:c0:ce:a0:c0:1e: 74:55:75:5f:1e:98:d2:34:96:dc:cc:a5:74:dc:9f:de:73:7a: 13:26:95:a0:b0:5c:be:1c:8a:65:2e:f2:6f:0e:aa:9f:a9:b6: 49:f2:88:98:07:97:c8:14:17:69:4d:51:e6:4b:93:e0:e7:46: a3:ac:7b:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFNzAxMTAvBgNVBAUTKDFFNjU2RERFQzdFOThEMjRBMTg2RkZEQjZGNTk3NzEw QUFGRjJBOEQwHhcNMjYwNTEzMDU1MDUxWhcNMjYwNTIwMDU1MDUxWjAYMRYwFAYD VQQDEw02YTA0MTEzYy1mMDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPbK35+FRAGPGQ+8gcUIVcAB2J6hqMvYLlIlQxLiXO1ll6ofG+Q9ntkhrN1X t2eG8kRoDjq6r67usl4oeAfollB1TcFO3bYIxunrTslIyIjPSCOSzX9QZQYeD8XS SO3XvAcFdJI8YitxCBPMlCDDX9u1/9VcRhowWHKuJ1ciiSTSfCEYHd4s2fX07wL9 JplpkH1Oy+cVSWeLgROM1M1bqGScVkSUCr7Kqgzm7+SPVImQvT1jDFkuieEN7lcS 3zjobaY7eVjRb1pAOccBkFztex83Hsm6PIfAnc0kDKmaU6i9YAOGaampvnROPPJq uOVipovEKkf+iHdGAloVKqYxQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA0HIZmJ Cw3lAL9rCdw5zWtiS/pdMB8GA1UdIwQYMBaAFB5lbd7H6Y0koYb/229ZdxCq/yqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEU3MC8zNUM3NkM3RTk1 NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpTU2hodl9iYjFsM0VLcl9L bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEU3MC8zNUM3NkM3RTk1NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9IbVZ0M3NmcGpT U2hodl9iYjFsM0VLcl9LbzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANQ5KAqq+bCeAU20Xwqhd1vV129TS2Ir33T1NqkNcFV85tUQ12Vs73em03r6E O3c0ERjFISBnf/O9dy1gwRBnAZ/NGxLkdCXbDWDxQDJRPJDFQQeSR7xjKM0Btp1i GdivSeH2JCMJnUwQHC6zumdJyTL3VblSPOe6je5CR1uaSziER1wvi5fzVxM/ubJj sKuZxh2KnuuFe+QyD2D1EUUFuvcygD0m4jf1E8waTuzsNBqwzFMOv5Z+odfWRrIG casTQcDOoMAedFV1Xx6Y0jSW3MyldNyf3nN6EyaVoLBcvhyKZS7ybw6qn6m2SfKI mAeXyBQXaU1R5kuT4OdGo6x7uA== -----END CERTIFICATE-----Generated at Wed May 13 10:46:47 2026 by rpki-client