$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: 6HzFJO8bkmlTkaqj8lNfqfjLEMpFKliNZfQ+lKMAb/Y= Subject key identifier: 3B:0D:10:3C:FE:A9:CB:85:51:4A:8B:3B:2D:66:94:87:D3:91:2B:27 Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0C7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0C66 Signing time: Tue 12 May 2026 18:45:14 +0000 Manifest this update: Tue 12 May 2026 18:45:13 +0000 Manifest next update: Tue 19 May 2026 18:45:13 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: X2KkzfxVo3r8X8XniSBq0CzuRi2LZqHIbb8d5is1r8A=) 2: FD765464FCFC11F0AF0D3BB7376F56BC.roa (hash: eJofnUMCGktsGrjmk9qmZtR4EvsLnOuTHY31f/qnkIQ=) 3: B4E988F2FCFB11F092E222F9366F56BC.roa (hash: V71zoGKhD0nD0XhT5mIn0o19zRnPhSQ5QYxo5yVpxak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3197 (0xc7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: May 12 18:45:13 2026 GMT Not After : May 19 18:45:13 2026 GMT Subject: CN=6a03753a-db55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ac:f8:0c:1b:8a:59:4a:10:cf:df:18:db:cf: d3:d1:07:89:4a:ed:ef:9d:af:8b:9e:a0:57:47:e3: f7:9c:e3:e5:8f:9e:11:fd:7b:e2:e2:32:32:3c:7b: fd:38:eb:6b:2b:0c:46:cb:38:88:e0:ce:41:82:f0: b0:9f:01:7b:e0:3e:23:b9:60:c4:03:f5:de:2c:22: 88:f4:9f:91:05:d8:74:3a:38:a4:0e:e4:e9:b6:b0: 32:06:78:cb:46:e5:52:4c:45:f5:38:99:8d:c1:11: 84:0a:55:de:27:7d:a1:4d:8c:5a:e2:39:8d:24:07: 23:93:42:94:19:fa:12:55:ae:91:13:d7:50:60:bb: dc:f6:34:28:5b:cd:c9:19:60:14:60:28:99:0a:0e: 64:bf:62:74:e9:5a:c5:6c:31:c6:71:d8:17:64:c6: 02:a3:a6:39:97:47:27:1b:d5:c2:13:5e:8a:b2:c8: a4:9c:a5:b1:dd:4a:80:24:0d:cd:86:ad:9c:62:e5: 67:90:be:81:7e:7e:1a:02:24:df:c4:f7:9d:73:9a: cc:59:c0:c8:bc:98:b1:b3:22:93:4f:b9:92:26:c2: f4:a1:66:83:b7:4a:38:e8:09:4b:ed:03:02:1c:5d: 8e:9e:3d:23:3d:ed:c4:75:b4:da:27:d8:d9:4a:d6: 16:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:0D:10:3C:FE:A9:CB:85:51:4A:8B:3B:2D:66:94:87:D3:91:2B:27 X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:96:ad:2f:81:e8:68:a5:0c:e8:20:69:6d:9f:dc:33:f4:ad: 50:3b:e7:7c:39:fe:cf:41:fa:24:59:c1:f5:7c:fb:4d:f4:8d: 0c:3a:d2:5c:12:bd:22:e9:4a:e1:d3:d3:97:be:a2:41:b2:80: 24:e5:25:72:a6:56:c0:ff:b2:f0:37:10:bd:1f:18:f2:66:9e: 0e:f8:e3:7f:61:85:34:92:1b:c4:64:9f:7a:41:ac:47:99:3b: 00:5b:c3:d4:5c:43:4c:75:ad:d9:6b:58:dd:4b:f6:41:14:3b: 09:55:3f:48:a1:ab:f7:a8:31:4c:c8:b0:92:5a:33:10:52:d5: 43:a4:ba:3d:2c:4d:b9:36:a9:70:8d:c1:17:09:8c:97:46:52: cc:09:9b:09:6f:93:dd:0e:45:c2:d3:5e:11:fd:c5:3e:14:cb: 32:53:7c:f1:ee:75:b0:00:1f:d0:39:c4:ca:b8:2c:e0:c8:33: a6:17:47:90:6a:1e:f2:f0:b1:b7:5e:17:bd:4c:3a:aa:a0:64: e8:17:74:2a:2f:58:f6:6a:69:86:ff:af:fa:75:fa:a0:39:6b: 74:26:5a:4d:75:81:5b:d3:6f:f8:1d:5b:41:ec:8a:c0:d0:a9: ee:d9:56:26:fd:1b:35:fe:c3:83:ff:6b:a2:5f:50:f9:e5:07: 38:04:78:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjYwNTEyMTg0NTEzWhcNMjYwNTE5MTg0NTEzWjAYMRYwFAYD VQQDEw02YTAzNzUzYS1kYjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlaz4DBuKWUoQz98Y28/T0QeJSu3vna+LnqBXR+P3nOPlj54R/Xvi4jIyPHv9 OOtrKwxGyziI4M5BgvCwnwF74D4juWDEA/XeLCKI9J+RBdh0OjikDuTptrAyBnjL RuVSTEX1OJmNwRGEClXeJ32hTYxa4jmNJAcjk0KUGfoSVa6RE9dQYLvc9jQoW83J GWAUYCiZCg5kv2J06VrFbDHGcdgXZMYCo6Y5l0cnG9XCE16KssiknKWx3UqAJA3N hq2cYuVnkL6Bfn4aAiTfxPedc5rMWcDIvJixsyKTT7mSJsL0oWaDt0o46AlL7QMC HF2Onj0jPe3EdbTaJ9jZStYWDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDsNEDz+ qcuFUUqLOy1mlIfTkSsnMB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAW5atL4HoaKUM6CBpbZ/cM/StUDvnfDn+z0H6JFnB9Xz7TfSNDDrSXBK9IulK 4dPTl76iQbKAJOUlcqZWwP+y8DcQvR8Y8maeDvjjf2GFNJIbxGSfekGsR5k7AFvD 1FxDTHWt2WtY3Uv2QRQ7CVU/SKGr96gxTMiwklozEFLVQ6S6PSxNuTapcI3BFwmM l0ZSzAmbCW+T3Q5FwtNeEf3FPhTLMlN88e51sAAf0DnEyrgs4MgzphdHkGoe8vCx t14XvUw6qqBk6Bd0Ki9Y9mpphv+v+nX6oDlrdCZaTXWBW9Nv+B1bQeyKwNCp7tlW Jv0bNf7Dg/9rol9Q+eUHOAR4Og== -----END CERTIFICATE-----Generated at Wed May 13 15:12:07 2026 by rpki-client