$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft File: hs2LQhipuaG84vrF7m3HhbAKkx0.mft (raw, json) Hash identifier: KsRRmj6TpFEG4Nf9oNepIiwpQGr7SrV3UuTsVToG1is= Subject key identifier: 6A:D6:77:AF:24:33:77:3E:DB:A2:9D:E8:5C:40:31:21:C4:A4:FF:81 Authority key identifier: 86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D Certificate issuer: /CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Certificate serial: 02E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft Manifest number: 02C4 Signing time: Wed 13 May 2026 01:41:56 +0000 Manifest this update: Wed 13 May 2026 01:41:56 +0000 Manifest next update: Wed 20 May 2026 01:41:56 +0000 Files and hashes: 1: hs2LQhipuaG84vrF7m3HhbAKkx0.crl (hash: 0KaV0MwWI8R2WERXVjFXKz35FqonXv5Lg7NbSY9zioY=) 2: FB9DB0B8778011EFA197A558C4F9AE02.roa (hash: NdFnlMSr/V5noQXIsNx/D5f9zVB2iTgM5spp/nQu96Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 01:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 745 (0x2e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF28F, serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Validity Not Before: May 13 01:41:56 2026 GMT Not After : May 20 01:41:56 2026 GMT Subject: CN=6a03d6e4-7be4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:12:9c:71:f9:36:78:47:99:f9:4a:6a:16:ed: 8a:eb:e9:4f:0c:0b:ea:93:9f:0d:3d:72:b8:45:e1: ae:3c:0a:ec:43:a9:4b:10:fb:99:78:73:a9:d4:c1: 69:fd:6d:de:38:e2:d0:51:85:46:a2:3d:dc:f3:f6: 9e:11:75:bc:51:5d:ac:45:df:de:58:e3:41:da:8e: a1:d5:22:c0:b2:f7:53:92:04:50:2a:5f:9f:de:79: 1b:44:64:48:ec:49:d8:b4:21:84:3f:81:cd:35:13: f4:30:0b:c8:46:02:06:b8:c3:44:ef:be:1e:8e:72: 0e:a4:ff:b5:cf:47:da:81:ce:8e:28:d6:e7:47:fa: 59:d8:d0:bc:bc:13:95:6a:62:e7:28:66:66:a0:2d: 37:c5:93:c8:df:f8:47:9b:ac:e5:28:fb:91:37:50: 16:06:e9:33:ea:80:7d:30:96:81:11:4d:60:47:5a: e2:16:50:37:a6:d6:01:45:f4:d6:ce:87:6f:b8:77: ce:88:4a:32:07:57:a4:5f:1b:86:e9:41:e0:8a:c5: 8d:dd:20:f6:57:73:cc:8b:9e:69:34:7d:cb:82:ab: 42:a0:cc:5a:6d:1c:82:ea:97:cc:3a:10:96:0c:3d: 4f:44:7a:10:31:0e:db:2f:46:2e:38:c4:63:2e:3b: ef:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:D6:77:AF:24:33:77:3E:DB:A2:9D:E8:5C:40:31:21:C4:A4:FF:81 X509v3 Authority Key Identifier: keyid:86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:74:cb:3f:f7:95:0a:e4:7b:b2:75:f2:82:72:d8:1b:a4:fc: 1c:41:b7:d2:6b:0c:49:90:3e:8b:c3:50:24:da:0d:ff:52:3b: 25:cb:e2:60:cc:8d:7f:5c:d1:5d:3f:66:59:76:11:47:34:e8: 4b:0c:f6:02:6f:33:c2:cb:ed:8b:af:4b:b7:4f:4d:ce:10:fa: ae:90:93:ca:bd:4b:a9:2e:58:c0:de:04:fc:82:5e:f3:c6:00: 8b:5e:79:a2:92:e2:af:2f:eb:5a:70:a8:df:1d:ef:90:ea:e7: 8d:53:7c:01:22:c6:21:f3:4b:56:82:32:31:3d:66:03:a5:0a: 0a:34:6e:e9:1d:fa:4e:d3:c1:27:27:ed:54:2c:79:7c:de:7d: 5d:09:46:ad:8f:7b:e6:56:ab:93:a9:e5:f5:90:44:d4:28:d3: 66:8e:f9:e1:1c:ba:da:aa:b8:b3:be:dd:a1:11:f4:55:cf:d9: 3f:eb:5a:2c:0e:35:6a:d5:0e:11:8a:b3:a1:a4:b6:0a:3d:05: 30:bb:ae:e5:33:df:50:92:e7:82:7b:96:f1:44:64:b6:4a:01: 2c:ce:71:97:ec:97:4a:e0:9a:cd:a7:4e:c7:c5:3c:7c:e1:60: 6d:0c:0e:2f:33:4f:f0:e8:8f:de:ce:83:a8:7a:ad:dc:b6:51: 6e:de:51:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyOEYxMTAvBgNVBAUTKDg2Q0Q4QjQyMThBOUI5QTFCQ0UyRkFDNUVFNkRDNzg1 QjAwQTkzMUQwHhcNMjYwNTEzMDE0MTU2WhcNMjYwNTIwMDE0MTU2WjAYMRYwFAYD VQQDEw02YTAzZDZlNC03YmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlRKccfk2eEeZ+UpqFu2K6+lPDAvqk58NPXK4ReGuPArsQ6lLEPuZeHOp1MFp /W3eOOLQUYVGoj3c8/aeEXW8UV2sRd/eWONB2o6h1SLAsvdTkgRQKl+f3nkbRGRI 7EnYtCGEP4HNNRP0MAvIRgIGuMNE774ejnIOpP+1z0fagc6OKNbnR/pZ2NC8vBOV amLnKGZmoC03xZPI3/hHm6zlKPuRN1AWBukz6oB9MJaBEU1gR1riFlA3ptYBRfTW zodvuHfOiEoyB1ekXxuG6UHgisWN3SD2V3PMi55pNH3LgqtCoMxabRyC6pfMOhCW DD1PRHoQMQ7bL0YuOMRjLjvvTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGrWd68k M3c+26Kd6FxAMSHEpP+BMB8GA1UdIwQYMBaAFIbNi0IYqbmhvOL6xe5tx4WwCpMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI4Ri83RERDNUEyRTU1 NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVhRzg0dnJGN20zSGhiQUtr eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzMkxRaGlwdWFHODR2ckY3bTNIaGJBS2t4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI4Ri83RERDNUEyRTU1NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVh Rzg0dnJGN20zSGhiQUtreDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcHTLP/eVCuR7snXygnLYG6T8HEG30msMSZA+i8NQJNoN/1I7JcviYMyNf1zR XT9mWXYRRzToSwz2Am8zwsvti69Lt09NzhD6rpCTyr1LqS5YwN4E/IJe88YAi155 opLiry/rWnCo3x3vkOrnjVN8ASLGIfNLVoIyMT1mA6UKCjRu6R36TtPBJyftVCx5 fN59XQlGrY975lark6nl9ZBE1CjTZo754Ry62qq4s77doRH0Vc/ZP+taLA41atUO EYqzoaS2Cj0FMLuu5TPfUJLngnuW8URktkoBLM5xl+yXSuCazadOx8U8fOFgbQwO LzNP8OiP3s6DqHqt3LZRbt5Rmg== -----END CERTIFICATE-----Generated at Wed May 13 05:42:15 2026 by rpki-client