$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft File: hsjX-0IuFSejmUSD0fne8sYKMHI.mft (raw, json) Hash identifier: eASjHf58q9/dMnjmAO8RkUyJ36ufEtKP8EoADaGH+5w= Subject key identifier: 89:B4:3B:94:68:D6:7A:64:53:46:67:3D:25:B5:19:35:1A:66:87:76 Authority key identifier: 86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 Certificate issuer: /CN=A91BEB11/serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Certificate serial: 3539 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft Manifest number: 3539 Signing time: Tue 12 May 2026 14:56:31 +0000 Manifest this update: Tue 12 May 2026 14:56:31 +0000 Manifest next update: Tue 19 May 2026 14:56:31 +0000 Files and hashes: 1: hsjX-0IuFSejmUSD0fne8sYKMHI.crl (hash: KSwz1RhoPxsxZM8ag7BKs5oHjKTzOo0gFsIMsAW4RWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:56:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13625 (0x3539) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEB11, serialNumber=86C8D7FB422E1527A3994483D1F9DEF2C60A3072 Validity Not Before: May 12 14:56:31 2026 GMT Not After : May 19 14:56:31 2026 GMT Subject: CN=6a033f9f-9c0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f5:03:ab:ea:fa:d8:8a:06:c0:e5:2e:4d:3b: 5b:c3:89:39:d4:72:87:ad:8b:3a:c4:e7:8f:5e:fb: 5f:e0:2d:ec:6a:00:53:a0:49:1f:fe:e8:0a:a6:ae: e0:4e:27:24:d8:44:68:70:5a:e4:c6:ff:e3:ed:df: 91:e4:ca:f9:eb:81:d9:1b:d6:ab:36:ee:84:5b:71: a2:d4:a0:17:a7:95:b0:38:e4:8e:60:d3:d9:fa:35: b2:5e:1b:78:ba:21:1a:a3:64:0f:22:68:82:86:fa: 50:5e:46:ab:55:41:3c:df:e8:b8:a4:1e:4f:45:58: 10:44:f6:75:a1:91:66:6c:f9:a9:a3:b6:74:b7:15: 12:46:fe:ef:8a:51:5d:a7:8e:ff:73:ce:e4:ed:4c: 29:00:65:50:98:32:07:59:d1:08:91:ee:90:e1:f2: 83:c3:b8:0f:b4:3d:26:bc:3e:fd:18:a3:88:ad:3b: de:9c:05:f8:8d:8d:ce:f2:fe:bb:c1:56:4b:c4:4f: 60:ec:cd:cb:e3:fa:14:5c:75:6f:69:cd:9f:ec:f7: 83:91:fc:01:31:94:04:2e:74:d3:87:99:25:48:c2: bc:95:b8:fd:51:39:82:46:6b:35:3c:8c:5d:95:ee: 13:c7:a6:49:49:f2:eb:21:9d:3a:a2:39:0e:62:f0: 9d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:B4:3B:94:68:D6:7A:64:53:46:67:3D:25:B5:19:35:1A:66:87:76 X509v3 Authority Key Identifier: keyid:86:C8:D7:FB:42:2E:15:27:A3:99:44:83:D1:F9:DE:F2:C6:0A:30:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsjX-0IuFSejmUSD0fne8sYKMHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEB11/9F43587E1D9A11E29AF6FC8708B02CD2/hsjX-0IuFSejmUSD0fne8sYKMHI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:55:04:50:fc:06:95:75:4c:d3:6f:0d:65:ab:4c:d3:c3:b6: 58:54:f3:42:9b:9f:65:6e:18:af:ac:90:64:52:4c:21:26:a1: cb:71:d1:86:89:7a:00:a8:83:74:ba:55:5f:da:ee:69:ac:28: b1:73:eb:a6:5f:8e:90:18:db:64:ee:6a:72:6b:60:16:7f:99: 88:50:b9:3f:72:79:fa:ee:62:94:bf:9f:35:98:58:07:fe:5d: 5f:67:34:eb:6e:53:3b:52:64:33:a3:49:dc:f4:3a:84:e2:03: 6a:ae:24:ba:9a:c3:36:70:cf:2b:f9:9e:29:b2:83:df:4a:6d: 7e:49:8a:6f:32:40:ff:b6:b6:cd:ac:f2:90:c9:5b:c5:8d:b1: 56:32:96:5b:28:b6:06:1f:8f:5d:82:90:11:1f:21:22:37:87: 72:fe:52:22:e5:09:06:e0:46:39:af:48:3f:6a:5c:5c:b5:2a: c1:98:79:2c:b5:7b:0a:92:65:5f:79:19:c5:61:c5:66:08:40: 07:6b:c6:0f:a6:58:31:d2:5e:b9:35:c5:dc:f2:5f:9f:77:86: 70:ed:f9:50:02:83:45:a0:aa:8e:4d:41:c6:f7:d5:17:b1:6f: df:b1:73:0a:eb:39:fa:c1:10:cf:4b:a1:62:5d:02:69:0e:89: 99:c1:b5:bb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCMTExMTAvBgNVBAUTKDg2QzhEN0ZCNDIyRTE1MjdBMzk5NDQ4M0QxRjlERUYy QzYwQTMwNzIwHhcNMjYwNTEyMTQ1NjMxWhcNMjYwNTE5MTQ1NjMxWjAYMRYwFAYD VQQDEw02YTAzM2Y5Zi05YzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/UDq+r62IoGwOUuTTtbw4k51HKHrYs6xOePXvtf4C3sagBToEkf/ugKpq7g Tick2ERocFrkxv/j7d+R5Mr564HZG9arNu6EW3Gi1KAXp5WwOOSOYNPZ+jWyXht4 uiEao2QPImiChvpQXkarVUE83+i4pB5PRVgQRPZ1oZFmbPmpo7Z0txUSRv7vilFd p47/c87k7UwpAGVQmDIHWdEIke6Q4fKDw7gPtD0mvD79GKOIrTvenAX4jY3O8v67 wVZLxE9g7M3L4/oUXHVvac2f7PeDkfwBMZQELnTTh5klSMK8lbj9UTmCRms1PIxd le4Tx6ZJSfLrIZ06ojkOYvCdEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIm0O5Ro 1npkU0ZnPSW1GTUaZod2MB8GA1UdIwQYMBaAFIbI1/tCLhUno5lEg9H53vLGCjBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUIxMS85RjQzNTg3RTFE OUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZTZWptVVNEMGZuZThzWUtN SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzalgtMEl1RlNlam1VU0QwZm5lOHNZS01ISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUIxMS85RjQzNTg3RTFEOUExMUUyOUFGNkZDODcwOEIwMkNEMi9oc2pYLTBJdUZT ZWptVVNEMGZuZThzWUtNSEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAg1UEUPwGlXVM028NZatM08O2WFTzQpufZW4Yr6yQZFJMISahy3HRhol6AKiD dLpVX9ruaawosXPrpl+OkBjbZO5qcmtgFn+ZiFC5P3J5+u5ilL+fNZhYB/5dX2c0 625TO1JkM6NJ3PQ6hOIDaq4kuprDNnDPK/meKbKD30ptfkmKbzJA/7a2zazykMlb xY2xVjKWWyi2Bh+PXYKQER8hIjeHcv5SIuUJBuBGOa9IP2pcXLUqwZh5LLV7CpJl X3kZxWHFZghAB2vGD6ZYMdJeuTXF3PJfn3eGcO35UAKDRaCqjk1BxvfVF7Fv37Fz Cus5+sEQz0uhYl0CaQ6JmcG1uw== -----END CERTIFICATE-----Generated at Wed May 13 08:53:21 2026 by rpki-client