$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: jajrmeWMzrzRWFf6+xVczyzcNAxvAixsckQEsenwKzA= Subject key identifier: FE:DE:22:39:13:72:8C:84:C4:C7:97:B4:38:05:EE:59:5A:89:FB:55 Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 08A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 0885 Signing time: Tue 12 May 2026 20:51:12 +0000 Manifest this update: Tue 12 May 2026 20:51:11 +0000 Manifest next update: Tue 19 May 2026 20:51:11 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: jXkb8hfmv1cHeDu94Bwr06zc+IMCCP4yvrJyMAzDdos=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: 08lz7b6szSEMQO1jrd2yTTyJym47lMNxqFGZhqAfyUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:51:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2211 (0x8a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F, serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: May 12 20:51:11 2026 GMT Not After : May 19 20:51:11 2026 GMT Subject: CN=6a0392c0-78e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f7:6e:1f:2b:4e:47:b9:72:0a:47:f9:22:24: 11:35:0e:38:bf:ba:06:4e:ed:c2:df:9a:79:3d:f1: 79:e3:f0:cd:b9:d3:b9:87:3b:7f:85:e3:90:51:c8: 79:44:b9:4c:6f:e2:b1:6b:9c:08:3c:c2:c9:a1:62: 4b:d4:06:71:b1:04:58:00:c8:3b:aa:28:4d:95:95: 16:85:c2:ad:8d:28:f6:f8:6f:1b:39:ea:12:25:d5: 90:af:1f:21:40:43:36:62:46:73:e1:81:d5:94:d3: 6b:9a:bb:49:53:df:b3:ec:b1:39:81:7a:c2:9b:bd: ec:c5:a8:95:49:cf:c2:4c:90:9b:4f:fd:08:f4:f7: 5f:8d:8b:31:fb:c8:cc:80:72:08:fb:15:4a:9b:ad: b3:4f:22:00:28:b3:43:09:51:1a:9f:02:41:44:e8: 2d:bf:1b:3e:ee:ae:f4:ff:df:09:b9:be:e3:72:d8: d3:b3:86:20:9c:a4:70:22:28:80:cb:a4:0c:ca:74: 76:e1:20:a5:5d:e1:c4:5c:25:d7:9a:69:91:ce:8b: f0:df:fb:df:c7:14:77:b5:dc:19:ab:ce:1f:8c:c1: f7:7e:6c:2e:3c:6a:d7:53:a8:e1:bc:22:f1:6f:f0: 99:72:d0:e9:b6:67:e2:84:a7:21:54:37:57:ff:9a: 14:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:DE:22:39:13:72:8C:84:C4:C7:97:B4:38:05:EE:59:5A:89:FB:55 X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:fe:fa:90:fa:ab:c3:76:f5:59:e9:5e:a8:5e:e4:59:15:68: 9f:4e:80:94:be:5e:57:1b:d8:20:17:7f:e3:83:b4:de:f8:09: e8:c8:0b:0e:f6:f3:31:c2:ea:51:47:f6:0a:ce:38:ba:20:fd: cb:42:cd:a2:b8:f3:d0:74:d5:de:9c:0a:81:60:0e:0f:2b:2a: 16:f9:8c:74:e9:db:2f:99:f0:41:d9:5f:b9:3d:75:d6:ea:81: 16:7c:3e:32:ac:81:e5:48:38:25:fe:17:bf:34:e8:6d:e0:62: b8:6b:b7:64:dc:cd:38:c6:d4:6a:3e:0c:2a:00:29:7b:44:86: 9a:ba:8c:f7:51:c7:af:b5:2e:5f:bb:1d:49:e1:48:e9:b4:fe: 5a:70:a0:66:a9:da:28:1f:03:55:19:cc:0e:80:98:2c:45:be: c2:0e:84:23:32:39:f3:a7:a6:01:89:53:be:70:20:a4:d9:8a: ba:67:0f:9d:7f:91:1c:d1:f8:bc:37:ca:45:5b:00:40:f0:1f: e5:36:7e:33:3e:a7:36:59:70:00:a6:96:f0:6f:f5:e6:ef:27: 03:d0:d1:2e:1c:cb:08:a7:05:cd:d2:3b:9b:af:9b:bb:18:5f: 75:db:c7:6d:cb:50:72:e5:09:e4:e1:4d:28:fe:9d:54:59:25: 6d:68:10:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjYwNTEyMjA1MTExWhcNMjYwNTE5MjA1MTExWjAYMRYwFAYD VQQDEw02YTAzOTJjMC03OGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvduHytOR7lyCkf5IiQRNQ44v7oGTu3C35p5PfF54/DNudO5hzt/heOQUch5 RLlMb+Kxa5wIPMLJoWJL1AZxsQRYAMg7qihNlZUWhcKtjSj2+G8bOeoSJdWQrx8h QEM2YkZz4YHVlNNrmrtJU9+z7LE5gXrCm73sxaiVSc/CTJCbT/0I9PdfjYsx+8jM gHII+xVKm62zTyIAKLNDCVEanwJBROgtvxs+7q70/98Jub7jctjTs4YgnKRwIiiA y6QMynR24SClXeHEXCXXmmmRzovw3/vfxxR3tdwZq84fjMH3fmwuPGrXU6jhvCLx b/CZctDptmfihKchVDdX/5oU4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP7eIjkT coyExMeXtDgF7llaiftVMB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnf76kPqrw3b1WeleqF7kWRVon06AlL5eVxvYIBd/44O03vgJ6MgLDvbzMcLq UUf2Cs44uiD9y0LNorjz0HTV3pwKgWAODysqFvmMdOnbL5nwQdlfuT111uqBFnw+ MqyB5Ug4Jf4XvzTobeBiuGu3ZNzNOMbUaj4MKgApe0SGmrqM91HHr7UuX7sdSeFI 6bT+WnCgZqnaKB8DVRnMDoCYLEW+wg6EIzI586emAYlTvnAgpNmKumcPnX+RHNH4 vDfKRVsAQPAf5TZ+Mz6nNllwAKaW8G/15u8nA9DRLhzLCKcFzdI7m6+buxhfddvH bctQcuUJ5OFNKP6dVFklbWgQew== -----END CERTIFICATE-----Generated at Wed May 13 12:16:32 2026 by rpki-client