$ rpki-client -vvf rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft File: HA0tulqzbC-WcsFN2He57qBsysc.mft (raw, json) Hash identifier: ptSYP2+qTexGNkKf+i2WUfb07RUCmWbBwFY0+V9DuxQ= Subject key identifier: 49:E9:86:51:DB:D2:55:C8:CA:11:29:35:9E:22:D5:02:3C:C4:D9:90 Authority key identifier: 1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 Certificate issuer: /CN=A91E11B4/serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Certificate serial: 0979 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft Manifest number: 094F Signing time: Tue 12 May 2026 20:12:19 +0000 Manifest this update: Tue 12 May 2026 20:12:19 +0000 Manifest next update: Tue 19 May 2026 20:12:19 +0000 Files and hashes: 1: HA0tulqzbC-WcsFN2He57qBsysc.crl (hash: bUFjdqtaZ3SFIy452OXkJJhgbZ85RglG/Q2UDRzYwZs=) 2: BB250202BC2C11EA96657B4BC4F9AE02.roa (hash: UJmyzSzozDENX7jF+64gEj4E6QBieKxXCaJ+JGRYbs0=) 3: BA69B6FABC2C11EA96657B4BC4F9AE02.roa (hash: rixxFEhhporEowEcKJ0zMfY5DGdFHoWYuPowdcyFr5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:12:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2425 (0x979) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E11B4, serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Validity Not Before: May 12 20:12:19 2026 GMT Not After : May 19 20:12:19 2026 GMT Subject: CN=6a0389a3-9ca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:c4:b1:63:3e:00:1e:c0:a7:62:9c:d8:33:41: 01:90:59:65:60:60:45:54:27:af:11:22:eb:22:2c: dd:6a:72:fe:48:65:30:ed:c3:1b:d9:a5:3a:27:ee: 19:d6:f5:06:5a:10:fb:c6:af:3e:36:46:a5:12:ed: 5b:6c:8e:7a:87:cc:51:a9:21:71:53:9a:ec:c1:91: 06:c8:2d:a4:14:57:27:79:52:81:96:e1:a2:55:31: de:bb:cc:b3:96:a7:4b:20:94:61:46:0e:0c:58:9c: c7:43:3c:57:eb:f9:a5:33:c1:b5:a6:91:a3:4e:d5: 92:f2:3b:d2:d5:0b:17:80:a9:c6:b5:1a:6a:92:ff: f5:50:34:b9:11:d6:76:f6:c0:fd:5d:a6:2a:d3:6f: e5:66:72:34:60:eb:94:4e:01:f6:4e:1c:71:52:81: 05:62:f5:0c:04:cc:cb:da:5f:72:e7:00:a1:d3:58: 42:0d:79:a7:26:88:46:2a:b4:35:38:35:24:89:d2: 0a:53:91:0b:8b:51:d0:da:ce:e7:63:20:ec:13:d0: 13:59:bb:27:d0:f3:07:a4:eb:2d:8b:30:37:f3:7e: 81:c8:c1:86:8d:dd:23:a8:18:80:ca:2c:43:2b:f1: 74:57:59:28:44:3c:58:4e:f0:82:ab:c8:af:22:fc: db:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:E9:86:51:DB:D2:55:C8:CA:11:29:35:9E:22:D5:02:3C:C4:D9:90 X509v3 Authority Key Identifier: keyid:1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:d7:4a:78:62:60:81:a7:58:3b:85:f1:56:90:f2:fb:01:5a: fb:63:59:5c:70:d8:9d:df:4a:8f:6d:2e:eb:94:8f:18:8e:02: d9:7d:c4:31:6d:1d:90:0f:04:41:86:3e:0f:ef:a5:a8:90:7d: 0e:ec:cb:ee:dd:64:9d:04:5b:00:c6:17:22:fb:60:e5:6b:0d: 7f:7a:78:14:97:39:02:eb:68:ed:cb:87:2f:44:bc:cc:7e:78: 39:2a:06:b1:ce:50:46:f7:e0:21:8a:8a:da:9a:a6:cb:8c:30: c0:9c:91:75:2b:5f:fe:7f:11:93:6a:db:62:dc:cc:07:0f:48: cb:f0:24:6b:34:69:49:f1:2d:3d:52:a7:3b:7e:e1:4d:57:4e: e9:1e:b3:af:ae:7a:40:1b:2b:4e:a8:9a:cf:c0:f6:4e:39:19: df:13:4f:92:7a:71:db:63:08:5a:b9:9e:02:11:5e:b9:af:d2: 22:fd:b2:f7:6f:42:e3:e9:46:cf:d6:b7:81:b7:47:c5:a6:92: 69:ad:4c:8d:ff:b0:5e:62:e7:1a:3d:3f:27:35:36:0b:30:51: 12:6f:a4:b7:4b:92:d1:88:0d:a5:5f:85:be:47:a7:79:9d:3a: ab:4c:7e:25:07:f1:80:d0:6c:1e:c4:99:d1:e5:2d:38:de:c2: c4:be:78:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExQjQxMTAvBgNVBAUTKDFDMEQyREJBNUFCMzZDMkY5NjcyQzE0REQ4NzdCOUVF QTA2Q0NBQzcwHhcNMjYwNTEyMjAxMjE5WhcNMjYwNTE5MjAxMjE5WjAYMRYwFAYD VQQDEw02YTAzODlhMy05Y2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiMSxYz4AHsCnYpzYM0EBkFllYGBFVCevESLrIizdanL+SGUw7cMb2aU6J+4Z 1vUGWhD7xq8+NkalEu1bbI56h8xRqSFxU5rswZEGyC2kFFcneVKBluGiVTHeu8yz lqdLIJRhRg4MWJzHQzxX6/mlM8G1ppGjTtWS8jvS1QsXgKnGtRpqkv/1UDS5EdZ2 9sD9XaYq02/lZnI0YOuUTgH2ThxxUoEFYvUMBMzL2l9y5wCh01hCDXmnJohGKrQ1 ODUkidIKU5ELi1HQ2s7nYyDsE9ATWbsn0PMHpOstizA3836ByMGGjd0jqBiAyixD K/F0V1koRDxYTvCCq8ivIvzbrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEnphlHb 0lXIyhEpNZ4i1QI8xNmQMB8GA1UdIwQYMBaAFBwNLbpas2wvlnLBTdh3ue6gbMrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTFCNC9CMTk5M0M0MEJD MkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJDLVdjc0ZOMkhlNTdxQnN5 c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBMHR1bHF6YkMtV2NzRk4ySGU1N3FCc3lzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTFCNC9CMTk5M0M0MEJDMkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJD LVdjc0ZOMkhlNTdxQnN5c2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmddKeGJggadYO4XxVpDy+wFa+2NZXHDYnd9Kj20u65SPGI4C2X3EMW0dkA8E QYY+D++lqJB9DuzL7t1knQRbAMYXIvtg5WsNf3p4FJc5Auto7cuHL0S8zH54OSoG sc5QRvfgIYqK2pqmy4wwwJyRdStf/n8Rk2rbYtzMBw9Iy/AkazRpSfEtPVKnO37h TVdO6R6zr656QBsrTqiaz8D2TjkZ3xNPknpx22MIWrmeAhFeua/SIv2y929C4+lG z9a3gbdHxaaSaa1Mjf+wXmLnGj0/JzU2CzBREm+kt0uS0YgNpV+FvkeneZ06q0x+ JQfxgNBsHsSZ0eUtON7CxL54uA== -----END CERTIFICATE-----Generated at Wed May 13 12:32:07 2026 by rpki-client