$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: jqjHqnGR4+x/c/NirOK8sKpJh/06AyFHIp6LhBVHb2w= Subject key identifier: 43:F6:76:F4:3F:D4:DB:05:C8:86:29:A4:05:A7:C4:27:D8:30:0B:C8 Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 097E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 0976 Signing time: Tue 24 Mar 2026 19:50:42 +0000 Manifest this update: Tue 24 Mar 2026 19:50:41 +0000 Manifest next update: Tue 31 Mar 2026 19:50:41 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: cfR61YKZSEbjw/RFu8YWxxmaF/cQsvkvpC7QFl+BXjc=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: LUKRzU7QW2YNj5+vXJhIy/96ptb2p3qZK001FM4IvQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2430 (0x97e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Mar 24 19:50:41 2026 GMT Not After : Mar 31 19:50:41 2026 GMT Subject: CN=69c2eb12-4cd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:37:5a:a7:18:c2:61:42:b7:23:ef:a8:8b:f5: 3f:18:b5:36:b7:f0:99:6f:fd:6a:bf:b9:47:85:51: f6:32:79:36:9f:5a:8e:d9:3c:2e:dc:9d:29:75:11: 5b:bb:6e:15:b6:4e:d1:92:d8:09:f2:8b:db:26:25: c4:03:12:f1:eb:fb:81:db:3b:0f:b3:27:c0:52:8b: ed:ea:b5:59:b7:8e:a9:65:f2:61:49:cf:25:dd:51: ed:1a:48:f8:cf:e1:9b:40:fe:e9:17:1a:1f:f2:e0: 34:d5:1e:55:a6:19:7c:db:3f:51:8f:77:66:3a:90: e6:2b:dc:82:c4:b4:25:c4:e4:88:67:ff:86:ae:6f: c5:d3:74:45:ff:d5:88:95:58:02:d0:83:ab:97:9f: 01:87:bd:49:a3:21:8e:2e:98:55:33:be:66:38:01: 9d:49:26:22:f3:79:a9:d4:dd:46:a1:fc:33:a3:d2: f9:64:21:85:89:5a:ae:a5:d4:ae:c2:87:d0:4f:71: c5:8d:d5:69:fa:78:94:f7:6b:95:9c:2b:b6:7a:16: 9b:ea:3c:c9:0a:39:03:4c:29:1a:bd:19:17:94:f7: e3:7d:00:56:6d:66:ae:ed:1d:a2:41:83:e8:e7:87: 0c:52:80:1f:59:99:6d:2c:08:67:12:53:9d:77:d7: 00:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F6:76:F4:3F:D4:DB:05:C8:86:29:A4:05:A7:C4:27:D8:30:0B:C8 X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:c0:f4:5e:ff:21:71:e8:49:1d:88:b4:ce:85:bc:1f:c9:45: b7:58:94:5d:5d:fa:64:94:77:1f:87:0d:a7:bc:80:b1:85:f4: 3d:41:14:ac:c2:12:80:40:9d:2e:ec:9d:65:ca:36:bd:a8:21: 9e:9f:d1:9b:f3:3f:c7:d2:8a:b6:b3:73:e6:b2:76:63:b2:f7: 3d:7c:b2:c0:b4:06:03:fc:4b:52:53:e0:34:2d:3c:0f:d2:59: 27:00:6e:56:31:74:48:37:8f:f9:64:27:57:5f:a0:c5:6a:84: 5d:8e:f8:55:d2:d2:07:52:2a:76:aa:30:d6:c7:78:ee:ee:60: 1d:aa:05:69:3c:60:9d:3b:b6:1a:69:f1:d3:0b:09:9b:aa:25: c4:50:59:d0:28:28:87:9f:f9:55:8c:c9:93:15:f1:72:30:a8: dd:f3:3a:52:84:c8:c8:32:38:68:fe:91:5f:16:67:4d:cf:15: 2f:00:98:21:49:d3:30:0e:15:fa:1e:65:c9:52:40:db:0e:d8: 55:47:ea:fd:f2:0b:2e:7f:f4:ea:b5:e2:9d:36:5b:ea:49:6f: 0a:66:93:51:90:fc:b6:b9:84:a1:11:06:9c:93:38:01:11:e6: 42:01:cb:0e:3b:d1:ff:46:74:d5:66:99:c7:dd:30:40:9f:57: 69:69:fd:c5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjYwMzI0MTk1MDQxWhcNMjYwMzMxMTk1MDQxWjAYMRYwFAYD VQQDEw02OWMyZWIxMi00Y2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jdapxjCYUK3I++oi/U/GLU2t/CZb/1qv7lHhVH2Mnk2n1qO2Twu3J0pdRFb u24Vtk7RktgJ8ovbJiXEAxLx6/uB2zsPsyfAUovt6rVZt46pZfJhSc8l3VHtGkj4 z+GbQP7pFxof8uA01R5Vphl82z9Rj3dmOpDmK9yCxLQlxOSIZ/+Grm/F03RF/9WI lVgC0IOrl58Bh71JoyGOLphVM75mOAGdSSYi83mp1N1Gofwzo9L5ZCGFiVqupdSu wofQT3HFjdVp+niU92uVnCu2ehab6jzJCjkDTCkavRkXlPfjfQBWbWau7R2iQYPo 54cMUoAfWZltLAhnElOdd9cA9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEP2dvQ/ 1NsFyIYppAWnxCfYMAvIMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAO8D0Xv8hcehJHYi0zoW8H8lFt1iUXV36ZJR3H4cNp7yAsYX0PUEUrMISgECd LuydZco2vaghnp/Rm/M/x9KKtrNz5rJ2Y7L3PXyywLQGA/xLUlPgNC08D9JZJwBu VjF0SDeP+WQnV1+gxWqEXY74VdLSB1Iqdqow1sd47u5gHaoFaTxgnTu2Gmnx0wsJ m6olxFBZ0Cgoh5/5VYzJkxXxcjCo3fM6UoTIyDI4aP6RXxZnTc8VLwCYIUnTMA4V +h5lyVJA2w7YVUfq/fILLn/06rXinTZb6klvCmaTUZD8trmEoREGnJM4ARHmQgHL DjvR/0Z01WaZx90wQJ9XaWn9xQ== -----END CERTIFICATE-----Generated at Thu Mar 26 10:16:12 2026 by rpki-client