$ rpki-client -vvf rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.mft File: Hr-HiCR2Rfmq8BbQIPTPwuITwpY.mft (raw, json) Hash identifier: vEMMkMJetDoZp4ckLv2yen5V4IJuxQkNI4Ql7UsOjek= Subject key identifier: 70:81:9C:AC:F2:DE:17:E9:C9:E4:9B:FC:F4:4E:00:C2:4F:CD:48:00 Authority key identifier: 1E:BF:87:88:24:76:45:F9:AA:F0:16:D0:20:F4:CF:C2:E2:13:C2:96 Certificate issuer: /CN=A912C770/serialNumber=1EBF8788247645F9AAF016D020F4CFC2E213C296 Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.mft Manifest number: 3C Signing time: Thu 11 Jun 2026 10:53:49 +0000 Manifest this update: Thu 11 Jun 2026 10:53:48 +0000 Manifest next update: Thu 18 Jun 2026 10:53:48 +0000 Files and hashes: 1: Hr-HiCR2Rfmq8BbQIPTPwuITwpY.crl (hash: fxtQ9wwEkPHm+9srv8b1Tb1qQR+nTX71Hj8XHHERezU=) 2: C7FCC7D210DE11F18FBC6D5B083D8C67.roa (hash: ZJ2mGof4d8TGjIUSjiSJIxX88gLNKzRhctZ8YiDrvqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.crl rsync://rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 10:53:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C770, serialNumber=1EBF8788247645F9AAF016D020F4CFC2E213C296 Validity Not Before: Jun 11 10:53:48 2026 GMT Not After : Jun 18 10:53:48 2026 GMT Subject: CN=6a2a93bd-2828 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:af:e0:33:b1:bf:91:4f:f1:fe:2b:73:28:c7: bd:37:40:b9:a4:57:f9:26:47:4f:f7:2f:b5:34:7a: 51:34:10:eb:94:a5:2c:38:7f:f1:d7:0d:07:b5:f5: bc:44:bc:8e:28:4c:b2:e3:bf:4e:50:d4:83:cb:1c: 62:af:d2:96:c5:22:ce:4c:6c:1c:22:2f:9f:b7:39: a4:2b:3e:8e:50:90:b9:fe:6c:16:da:8f:53:f6:77: 47:77:9c:a0:b6:0f:f7:e4:eb:b3:3b:0d:47:d9:73: 9f:81:11:b6:f6:7a:ac:65:2f:ee:f3:12:0f:48:cb: b7:d8:fb:77:11:e9:44:ee:cd:33:54:44:d1:45:20: 74:0b:2e:18:c9:13:33:b4:95:dd:22:7e:29:78:b6: 3c:ed:7e:b2:44:6c:4f:6d:db:2c:81:8d:09:28:f4: 2b:94:6f:61:91:af:45:30:2b:5f:c5:08:02:db:b0: 87:c7:5e:3b:94:be:06:9b:37:5b:b9:dc:6e:6e:19: e0:f5:fa:98:21:d2:f3:60:56:d6:8b:e5:ba:e0:34: d6:88:f5:f0:16:91:01:b9:c6:03:33:a1:c6:3e:bb: fc:b6:f2:b0:c9:bd:7f:4f:e9:0e:d2:8f:92:fa:0b: 16:90:0d:4a:19:48:71:81:99:9e:57:5f:aa:8f:e9: 29:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:81:9C:AC:F2:DE:17:E9:C9:E4:9B:FC:F4:4E:00:C2:4F:CD:48:00 X509v3 Authority Key Identifier: keyid:1E:BF:87:88:24:76:45:F9:AA:F0:16:D0:20:F4:CF:C2:E2:13:C2:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C770/4ACF96D610DE11F181719257083D8C67/Hr-HiCR2Rfmq8BbQIPTPwuITwpY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:bb:34:79:fc:d8:8e:22:69:ab:d8:4e:e8:aa:22:b8:d6:4d: 81:26:0a:44:73:1a:ec:cc:19:62:2d:39:5b:b8:a1:fc:2d:b3: b6:89:cd:c5:b3:ec:fd:06:64:b9:4a:5f:25:d3:9b:bc:13:d2: 9a:33:6f:a5:75:f0:b0:73:6c:02:39:79:64:06:ef:ec:8f:82: 56:ed:0a:6f:a2:84:24:af:f5:02:91:24:45:25:88:27:69:8d: ad:21:2c:a7:aa:8a:8a:d9:6d:c8:2f:54:d2:fd:a9:c8:91:5c: 9d:22:e8:d4:a8:21:ea:db:8b:d4:99:a9:32:58:c4:c2:2d:ad: c8:04:b6:e3:6c:a5:1c:37:18:65:0d:a9:fc:c5:1f:0b:ca:bb: ce:8c:4e:1b:0f:43:f5:ff:76:b4:14:9b:b8:84:d4:0e:6e:2d: f4:3d:a8:16:a4:dc:1a:f7:3e:83:aa:ef:6f:18:d3:59:e1:6d: 59:50:02:c5:41:d4:7f:e4:f5:0a:8f:c4:40:c5:1c:eb:84:43: 32:04:66:2f:d3:78:e9:bc:3c:85:07:04:b8:26:e7:75:98:f0: 1b:96:65:ea:80:b0:ee:8e:78:aa:04:20:48:fc:8b:74:07:9a: 8c:23:99:2d:74:44:a4:f5:76:9e:92:11:e1:94:86:dd:24:48: 3d:0f:01:a5 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy Qzc3MDExMC8GA1UEBRMoMUVCRjg3ODgyNDc2NDVGOUFBRjAxNkQwMjBGNENGQzJF MjEzQzI5NjAeFw0yNjA2MTExMDUzNDhaFw0yNjA2MTgxMDUzNDhaMBgxFjAUBgNV BAMTDTZhMmE5M2JkLTI4MjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDer+Azsb+RT/H+K3Mox703QLmkV/kmR0/3L7U0elE0EOuUpSw4f/HXDQe19bxE vI4oTLLjv05Q1IPLHGKv0pbFIs5MbBwiL5+3OaQrPo5QkLn+bBbaj1P2d0d3nKC2 D/fk67M7DUfZc5+BEbb2eqxlL+7zEg9Iy7fY+3cR6UTuzTNURNFFIHQLLhjJEzO0 ld0ifil4tjztfrJEbE9t2yyBjQko9CuUb2GRr0UwK1/FCALbsIfHXjuUvgabN1u5 3G5uGeD1+pgh0vNgVtaL5brgNNaI9fAWkQG5xgMzocY+u/y28rDJvX9P6Q7Sj5L6 CxaQDUoZSHGBmZ5XX6qP6Sn1AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUcIGcrPLe F+nJ5Jv89E4Awk/NSAAwHwYDVR0jBBgwFoAUHr+HiCR2Rfmq8BbQIPTPwuITwpYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDNzcwLzRBQ0Y5NkQ2MTBE RTExRjE4MTcxOTI1NzA4M0Q4QzY3L0hyLUhpQ1IyUmZtcThCYlFJUFRQd3VJVHdw WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSHItSGlDUjJSZm1xOEJiUUlQVFB3dUlUd3BZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJD NzcwLzRBQ0Y5NkQ2MTBERTExRjE4MTcxOTI1NzA4M0Q4QzY3L0hyLUhpQ1IyUmZt cThCYlFJUFRQd3VJVHdwWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCeuzR5/NiOImmr2E7oqiK41k2BJgpEcxrszBliLTlbuKH8LbO2ic3Fs+z9BmS5 Sl8l05u8E9KaM2+ldfCwc2wCOXlkBu/sj4JW7QpvooQkr/UCkSRFJYgnaY2tISyn qoqK2W3IL1TS/anIkVydIujUqCHq24vUmakyWMTCLa3IBLbjbKUcNxhlDan8xR8L yrvOjE4bD0P1/3a0FJu4hNQObi30PagWpNwa9z6Dqu9vGNNZ4W1ZUALFQdR/5PUK j8RAxRzrhEMyBGYv03jpvDyFBwS4Jud1mPAblmXqgLDujniqBCBI/It0B5qMI5kt dESk9XaekhHhlIbdJEg9DwGl -----END CERTIFICATE-----Generated at Sat Jun 13 11:02:51 2026 by rpki-client