$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft File: HLlfP3vebhmbdAuSgqxyKk7amZs.mft (raw, json) Hash identifier: cSg+ajGCVroe4REIUxtOjGGYPaXlGf4iMd9BlIfnUHc= Subject key identifier: CA:DD:CC:E3:E5:C5:9C:C3:E1:EA:AC:12:C6:CB:35:C5:A1:4D:DB:AE Authority key identifier: 1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B Certificate issuer: /CN=A91E4EEF/serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft Manifest number: 5A Signing time: Mon 11 May 2026 08:29:50 +0000 Manifest this update: Mon 11 May 2026 08:29:49 +0000 Manifest next update: Mon 18 May 2026 08:29:49 +0000 Files and hashes: 1: HLlfP3vebhmbdAuSgqxyKk7amZs.crl (hash: dLD73zpIpKMBKOvDSBhcX+Lb3lvJlMGc6CcYlqnQhNA=) 2: 304D9EDEF13A11F0A5B04E41566F56BC.roa (hash: AC/jIeXBOHw70y2QOJSmCZ+NDE9I0e7M9WpwuYpLz9U=) 3: 0C1F9D8CF13A11F08789470C566F56BC.roa (hash: sgoDIUBe0jr7XN1MyW0ONqjTLm6kK+bIbhy55Li2/S8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 08:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4EEF, serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Validity Not Before: May 11 08:29:49 2026 GMT Not After : May 18 08:29:49 2026 GMT Subject: CN=6a01937d-4e2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c7:34:01:4e:47:2a:24:4e:0a:d9:2e:d0:a5: ef:11:c1:5b:cd:7f:86:71:d6:3f:ab:c1:d2:d3:20: 82:7d:1b:57:c9:1f:b7:b5:04:af:f2:37:9d:4a:b8: 30:0a:6c:15:60:2a:cf:4e:be:c8:f0:ca:01:f4:79: 14:d2:87:32:71:ab:df:08:1b:53:b1:be:8f:f2:2b: 9c:93:3d:c6:b6:74:1b:3e:ef:d4:e0:ad:e4:10:72: 18:43:18:81:9d:73:5d:c4:60:2b:68:dc:27:22:5f: 4e:39:52:44:e5:75:e6:5d:40:1b:60:6c:75:c8:3a: 22:9e:bc:4d:84:d3:7f:1c:61:8b:58:49:6f:a0:11: b3:31:0e:f8:71:26:81:de:8f:11:07:78:b6:6c:46: 31:45:71:5d:ab:df:6c:9c:c8:00:53:c9:00:73:ab: af:e3:29:28:52:0f:84:08:46:f1:f8:39:ac:12:30: 25:40:16:3d:06:75:37:94:26:22:41:f8:59:fa:05: ac:3c:c1:30:b5:92:7d:73:a6:9d:29:c5:76:ac:93: 83:6a:3f:ec:79:e0:31:4b:95:33:b0:e6:39:51:6b: cd:e3:c6:d4:5d:86:f5:68:69:e0:aa:8c:7a:36:c7: 19:ee:39:87:a3:f4:f8:96:c0:3c:14:78:69:42:8e: 9d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:DD:CC:E3:E5:C5:9C:C3:E1:EA:AC:12:C6:CB:35:C5:A1:4D:DB:AE X509v3 Authority Key Identifier: keyid:1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:1e:75:2d:75:91:a8:43:02:cc:16:0c:9a:f0:ac:8e:a9:e8: dd:55:1f:77:66:48:0f:84:f8:1c:53:7b:6e:31:17:c6:ad:09: 5e:92:93:5f:1c:40:56:03:87:91:e3:8d:1d:bd:4f:7c:27:e4: d7:16:17:da:17:9c:7a:5e:62:e0:40:0e:3c:59:f8:ee:69:1b: ac:d6:aa:c4:8d:27:47:87:78:58:85:63:1b:59:8f:d3:df:37: ca:64:73:50:db:f5:9a:03:04:5d:44:8a:49:31:08:d0:16:59: 58:8b:f0:b7:1b:7d:92:11:03:38:42:2b:e5:65:ee:65:fc:c2: 6c:53:cf:dd:09:12:da:7f:c0:f8:df:c2:ca:75:b0:b7:f5:e4: 68:1c:c3:20:e0:bc:8b:98:3f:88:e0:4e:22:72:eb:1e:ee:de: 97:cc:41:a9:48:2f:42:ac:f8:62:d6:52:95:28:e4:3b:7a:2d: 6a:ea:b1:a0:bc:62:6b:8c:c6:75:6f:c4:9e:50:e2:a7:53:b4: 71:09:fe:4d:a7:ca:0c:3b:f5:43:06:a9:ed:d6:de:05:09:e0: 3c:b3:bd:10:aa:97:7f:a3:2d:09:1f:9b:28:42:ea:a8:e7:68: 50:bf:95:23:9c:ac:52:1d:bc:60:ec:a9:d6:b3:aa:2d:7d:ea: f3:1c:00:4d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NEVFRjExMC8GA1UEBRMoMUNCOTVGM0Y3QkRFNkUxOTlCNzQwQjkyODJBQzcyMkE0 RURBOTk5QjAeFw0yNjA1MTEwODI5NDlaFw0yNjA1MTgwODI5NDlaMBgxFjAUBgNV BAMTDTZhMDE5MzdkLTRlMmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKxzQBTkcqJE4K2S7Qpe8RwVvNf4Zx1j+rwdLTIIJ9G1fJH7e1BK/yN51KuDAK bBVgKs9OvsjwygH0eRTShzJxq98IG1Oxvo/yK5yTPca2dBs+79TgreQQchhDGIGd c13EYCto3CciX045UkTldeZdQBtgbHXIOiKevE2E038cYYtYSW+gEbMxDvhxJoHe jxEHeLZsRjFFcV2r32ycyABTyQBzq6/jKShSD4QIRvH4OawSMCVAFj0GdTeUJiJB +Fn6Baw8wTC1kn1zpp0pxXask4NqP+x54DFLlTOw5jlRa83jxtRdhvVoaeCqjHo2 xxnuOYej9PiWwDwUeGlCjp07AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUyt3M4+XF nMPh6qwSxss1xaFN264wHwYDVR0jBBgwFoAUHLlfP3vebhmbdAuSgqxyKk7amZsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0RUVGL0NFQTgzNkJBREVG MzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmhtYmRBdVNncXh5S2s3YW1a cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSExsZlAzdmViaG1iZEF1U2dxeHlLazdhbVpzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 RUVGL0NFQTgzNkJBREVGMzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmht YmRBdVNncXh5S2s3YW1acy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQC1HnUtdZGoQwLMFgya8KyOqejdVR93ZkgPhPgcU3tuMRfGrQlekpNfHEBWA4eR 440dvU98J+TXFhfaF5x6XmLgQA48WfjuaRus1qrEjSdHh3hYhWMbWY/T3zfKZHNQ 2/WaAwRdRIpJMQjQFllYi/C3G32SEQM4QivlZe5l/MJsU8/dCRLaf8D438LKdbC3 9eRoHMMg4LyLmD+I4E4icuse7t6XzEGpSC9CrPhi1lKVKOQ7ei1q6rGgvGJrjMZ1 b8SeUOKnU7RxCf5Np8oMO/VDBqnt1t4FCeA8s70Qqpd/oy0JH5soQuqo52hQv5Uj nKxSHbxg7KnWs6otferzHABN -----END CERTIFICATE-----Generated at Wed May 13 06:18:04 2026 by rpki-client