$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: Oqk/A3nYXs0YJIFHD5VaqMqcZBf0AcGiBb4IjS9n7o8= Subject key identifier: 1C:DC:A2:F7:E0:F4:21:F5:92:D5:D7:2F:51:B6:96:ED:B3:2C:D5:5A Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 08AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 0892 Signing time: Fri 12 Jun 2026 20:40:31 +0000 Manifest this update: Fri 12 Jun 2026 20:40:30 +0000 Manifest next update: Fri 19 Jun 2026 20:40:30 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: OiP1FNRq7vYApDN8+mWYBwvN6Okq7x2HDCH9N/Dqa3Q=) 2: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: DHN4e0JrosxaWqhhvniYwJn8xIsHqQd0pj3UDSpuBlo=) 3: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: n2hlAVM9PTTT2Scjp8/RzlDa+bb55gqeGOADAsXpei0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 20:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2219 (0x8ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Jun 12 20:40:30 2026 GMT Not After : Jun 19 20:40:30 2026 GMT Subject: CN=6a2c6ebe-0bc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d4:e9:3b:47:33:b5:32:27:1b:5c:86:1c:d6: ac:1c:28:a9:e7:bf:44:7b:1a:6a:f9:62:73:4b:84: f8:81:41:38:4d:c7:3f:c6:75:fa:d8:f9:29:88:79: bf:04:5c:03:93:76:d5:aa:d0:a8:10:e9:6e:1f:21: 67:ac:ee:a2:1c:e8:b6:cf:39:92:22:0e:dc:d4:7d: 3b:2e:19:12:03:95:a4:f3:32:94:7d:8a:ef:ce:13: 33:3e:e2:00:61:24:5e:9f:e5:30:2f:af:9c:4c:99: 58:9b:c3:24:25:da:a2:ac:be:45:7f:05:12:63:29: f4:6b:0d:33:bb:d4:2c:77:fd:96:ca:36:89:ba:ad: 63:8b:72:66:eb:5e:53:9b:b5:34:81:54:d3:4b:f7: 6d:74:b7:73:ff:c6:3f:32:6d:db:3d:6b:e0:84:1f: b3:7a:e8:3c:36:b0:45:9b:23:05:06:c4:d1:7c:0e: c4:51:93:06:29:42:71:ee:0d:93:38:eb:c1:e0:1c: 5b:d7:f5:91:3d:0c:5b:40:95:a5:b0:a8:fd:48:6d: ff:36:74:12:53:6b:b9:af:45:c0:94:71:bd:f9:0c: 1d:8b:0a:48:56:37:3b:6a:c6:f3:0c:1e:e6:e5:1d: 63:88:26:2e:e6:de:2e:82:e4:8a:3e:f9:de:0c:1f: 5d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:DC:A2:F7:E0:F4:21:F5:92:D5:D7:2F:51:B6:96:ED:B3:2C:D5:5A X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:ff:a1:83:66:f6:6e:ca:43:f2:58:ad:91:16:c5:c4:a5:d4: 36:6f:50:46:99:25:32:59:e8:1a:38:09:ca:90:73:72:75:d4: e6:db:ae:b6:2d:60:c5:cc:56:99:21:d4:08:5b:1c:9a:a3:6c: 95:e4:03:7d:65:81:f6:5e:18:b1:94:67:bd:75:0b:c9:62:b9: 0d:08:36:77:7e:3a:c0:89:f7:a6:79:e9:0b:87:a4:77:93:97: dd:e4:16:b7:6f:05:79:72:02:e2:dc:78:0a:d6:19:04:60:2f: 83:a5:fb:25:c1:7f:eb:56:f8:e1:59:4e:57:07:ae:a5:6b:7a: 78:70:f8:ce:4c:6e:b4:8e:87:27:01:fb:d0:97:e7:60:9c:06: 4f:d6:cd:4d:b9:e5:ad:82:5e:ac:c5:6d:77:ff:b9:21:0a:70: a8:b8:81:05:aa:3e:b6:8a:f2:fd:1d:2e:85:21:ef:16:56:c4: 01:ae:30:04:18:4c:3d:c4:e9:d9:bb:d1:95:48:27:95:6a:ad: 40:98:28:13:e4:c2:12:b5:f1:68:79:aa:1c:dd:bf:e0:53:e8: b0:a5:f1:85:8a:f8:89:80:27:b9:f1:37:33:37:a6:f9:d0:35: a5:a2:91:d5:0a:e8:24:d7:92:62:8a:00:6a:4b:67:72:9d:36: 3e:c1:6b:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjYwNjEyMjA0MDMwWhcNMjYwNjE5MjA0MDMwWjAYMRYwFAYD VQQDEw02YTJjNmViZS0wYmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4dTpO0cztTInG1yGHNasHCip579Eexpq+WJzS4T4gUE4Tcc/xnX62PkpiHm/ BFwDk3bVqtCoEOluHyFnrO6iHOi2zzmSIg7c1H07LhkSA5Wk8zKUfYrvzhMzPuIA YSRen+UwL6+cTJlYm8MkJdqirL5FfwUSYyn0aw0zu9Qsd/2WyjaJuq1ji3Jm615T m7U0gVTTS/dtdLdz/8Y/Mm3bPWvghB+zeug8NrBFmyMFBsTRfA7EUZMGKUJx7g2T OOvB4Bxb1/WRPQxbQJWlsKj9SG3/NnQSU2u5r0XAlHG9+QwdiwpIVjc7asbzDB7m 5R1jiCYu5t4uguSKPvneDB9djQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBzcovfg 9CH1ktXXL1G2lu2zLNVaMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAef+hg2b2bspD8litkRbFxKXUNm9QRpklMlnoGjgJypBzcnXU5tuuti1gxcxW mSHUCFscmqNsleQDfWWB9l4YsZRnvXULyWK5DQg2d346wIn3pnnpC4ekd5OX3eQW t28FeXIC4tx4CtYZBGAvg6X7JcF/61b44VlOVweupWt6eHD4zkxutI6HJwH70Jfn YJwGT9bNTbnlrYJerMVtd/+5IQpwqLiBBao+tory/R0uhSHvFlbEAa4wBBhMPcTp 2bvRlUgnlWqtQJgoE+TCErXxaHmqHN2/4FPosKXxhYr4iYAnufE3Mzem+dA1paKR 1QroJNeSYooAaktncp02PsFrmw== -----END CERTIFICATE-----Generated at Sat Jun 13 10:04:58 2026 by rpki-client