$ rpki-client -vvf rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft File: HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft (raw, json) Hash identifier: MEHdYGaX+WoypPtpdaCmQPP2jcqRRyO9ONW1Oz9llVk= Subject key identifier: 5B:34:1E:AE:36:49:3D:CD:78:14:9A:D5:22:96:9E:91:F9:4E:25:C3 Authority key identifier: 1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 Certificate issuer: /CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Certificate serial: 0BF0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft Manifest number: 0BBB Signing time: Fri 12 Jun 2026 19:11:37 +0000 Manifest this update: Fri 12 Jun 2026 19:11:37 +0000 Manifest next update: Fri 19 Jun 2026 19:11:37 +0000 Files and hashes: 1: HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl (hash: QVNUMVrlmzdxXwANWehV4sHnlhyLcOlSQn953sgirMk=) 2: 1AB6B24A502211F0AFF2E30FC4F9AE02.roa (hash: ohdawFztGAM0Gs09vQc5Ov4qrrZjKmoqnhXK3FzIz7U=) 3: 6663341A5B6711F19383C9AE9E833773.roa (hash: GGXbJncHpVSh7kjLt3m5av1NshHATlj181GsdnLCABU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 19:11:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3056 (0xbf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F721, serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Validity Not Before: Jun 12 19:11:37 2026 GMT Not After : Jun 19 19:11:37 2026 GMT Subject: CN=6a2c59e9-2ba4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9d:bc:00:4b:91:09:e7:42:d9:79:b8:4b:56: 01:88:44:0a:d9:56:38:b4:8c:e8:85:85:52:1d:c2: b2:df:43:97:9b:9e:a5:67:90:6c:a4:e2:8d:67:09: f3:5e:46:5c:4f:65:6c:7a:ef:af:de:27:8f:86:46: c7:80:f6:63:01:07:20:b7:e7:dc:04:4a:84:83:79: 7f:88:24:4f:a9:a0:e4:56:17:6f:f1:63:74:d0:20: 5e:31:74:22:1a:8e:01:fe:d5:64:f4:50:7e:83:cb: d8:5f:ad:c2:a4:f2:2a:46:46:68:7e:52:e8:38:5c: 76:fb:b9:f6:58:16:46:78:27:1a:8e:ea:2f:c0:97: 2a:05:d0:f1:21:1a:d1:c3:54:6b:83:2b:e7:9a:59: 3d:f1:c8:a3:d0:d8:0f:c0:25:8f:dc:27:51:b7:65: c0:99:50:e4:64:32:2a:a2:ce:35:70:96:83:65:85: 8f:69:1c:e9:60:cd:7d:74:2b:c6:b2:d6:e9:f0:06: 3a:be:4c:99:9c:c6:7f:66:5d:f2:8e:d8:c7:ca:f5: 30:5f:4a:75:57:85:40:b9:22:8c:fa:34:02:be:5c: fd:b8:68:44:ee:93:91:86:67:34:bb:76:60:00:16: a6:44:0b:fe:dc:91:49:4f:c9:d2:f5:11:16:ba:19: 75:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:34:1E:AE:36:49:3D:CD:78:14:9A:D5:22:96:9E:91:F9:4E:25:C3 X509v3 Authority Key Identifier: keyid:1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:d7:76:43:bf:91:fa:a0:44:23:77:84:76:39:9a:d0:f8:0f: d6:b4:0c:6a:5a:14:e3:5c:3f:6f:8b:b6:93:09:2b:86:9d:6e: e4:15:6e:2a:05:d2:9c:a1:7f:66:3f:c3:60:4d:34:d8:75:65: a4:50:7b:03:d5:e7:9a:bd:15:30:ee:c8:62:fc:33:21:a0:3b: 53:c2:09:bb:89:b3:b5:f9:08:cb:4e:e0:e2:f2:5a:de:cc:09: ee:3d:61:8e:be:a7:e7:94:87:9a:3b:0b:60:59:0b:00:5b:f3: c7:b2:5a:58:44:87:18:19:5d:1b:f8:7f:75:a1:2d:7d:dd:3d: e1:a5:de:dd:d9:b0:93:56:4d:24:22:40:ae:19:3f:d1:da:e9: 24:cf:f5:de:8e:7d:15:aa:d8:b2:94:c2:64:5d:ee:1c:f3:41: fd:2c:9a:58:69:01:83:e7:92:44:f6:e0:b6:91:a8:7f:5b:07: 1b:c9:59:4c:ad:4a:10:52:c6:92:71:a3:7c:17:f0:ba:80:a8: b4:fb:59:d5:9d:b9:92:93:53:64:19:e2:88:78:1d:33:ec:fe: ec:64:de:f7:63:49:30:fa:d4:aa:93:80:14:b8:bc:38:fe:1b: d4:d1:a7:56:8b:9f:15:1a:72:4f:40:d7:56:94:3d:58:2a:ee: db:b4:3e:dc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y3MjExMTAvBgNVBAUTKDFERDcxN0IyMjk5MzYxOTBDRUI2NjdDN0NFMUNBOUY5 QkZCNUZBQzQwHhcNMjYwNjEyMTkxMTM3WhcNMjYwNjE5MTkxMTM3WjAYMRYwFAYD VQQDEw02YTJjNTllOS0yYmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu528AEuRCedC2Xm4S1YBiEQK2VY4tIzohYVSHcKy30OXm56lZ5BspOKNZwnz XkZcT2Vseu+v3iePhkbHgPZjAQcgt+fcBEqEg3l/iCRPqaDkVhdv8WN00CBeMXQi Go4B/tVk9FB+g8vYX63CpPIqRkZoflLoOFx2+7n2WBZGeCcajuovwJcqBdDxIRrR w1Rrgyvnmlk98cij0NgPwCWP3CdRt2XAmVDkZDIqos41cJaDZYWPaRzpYM19dCvG stbp8AY6vkyZnMZ/Zl3yjtjHyvUwX0p1V4VAuSKM+jQCvlz9uGhE7pORhmc0u3Zg ABamRAv+3JFJT8nS9REWuhl1JQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFs0Hq42 ST3NeBSa1SKWnpH5TiXDMB8GA1UdIwQYMBaAFB3XF7Ipk2GQzrZnx84cqfm/tfrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjcyMS82NDQyNDM3QTUz QUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFlaRE90bWZIemh5cC1iLTEt c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkY1hzaW1UWVpET3RtZkh6aHlwLWItMS1zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjcyMS82NDQyNDM3QTUzQUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFla RE90bWZIemh5cC1iLTEtc1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiNd2Q7+R+qBEI3eEdjma0PgP1rQMaloU41w/b4u2kwkrhp1u5BVuKgXSnKF/ Zj/DYE002HVlpFB7A9Xnmr0VMO7IYvwzIaA7U8IJu4mztfkIy07g4vJa3swJ7j1h jr6n55SHmjsLYFkLAFvzx7JaWESHGBldG/h/daEtfd094aXe3dmwk1ZNJCJArhk/ 0drpJM/13o59FarYspTCZF3uHPNB/SyaWGkBg+eSRPbgtpGof1sHG8lZTK1KEFLG knGjfBfwuoCotPtZ1Z25kpNTZBniiHgdM+z+7GTe92NJMPrUqpOAFLi8OP4b1NGn VoufFRpyT0DXVpQ9WCru27Q+3A== -----END CERTIFICATE-----Generated at Sat Jun 13 15:20:16 2026 by rpki-client