$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: Peaa9ZjSJumwUZ67YrO6j39f/Z9cXw6blwuAjJQPrB4= Subject key identifier: CA:36:6E:E6:63:39:02:F2:8D:08:2F:06:5E:CC:8B:3A:24:44:FA:E2 Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0E52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0E1C Signing time: Sat 18 Apr 2026 17:44:43 +0000 Manifest this update: Sat 18 Apr 2026 17:44:43 +0000 Manifest next update: Sat 25 Apr 2026 17:44:43 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: LC81CZKcoZ70KkvbvDDlQ1Kd3MbF0nE9/nXQ68QDjwU=) 2: D0551B50046411F09760073DC4F9AE02.roa (hash: rp8AtmMvaJKirkqtM8xsbLFfIx4jMN0u7R5/2vGn/yo=) 3: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: fHXngSTjkehnoyzfzZzWQmngco23iukL2koF5Ddr+ak=) 4: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: m40Au0D9D53HHKA3UY789RoJoXUIJ7gV5QbX6BIo4EU=) 5: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: bJa45JxM0BM6SHPylrF6iczdI3TR6YwWJGhmk5n+6Co=) 6: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: OYQ8Q3ql6qFWt6j+WB79+jUAS4lPKWiDOJJ6WWsPhFE=) 7: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: kuKfhwok7IV2xZV+q15Uru1Qvlc7Ty7LyqYda2rZjaY=) 8: F2826A504FCF11EB88444467C4F9AE02.roa (hash: Ucwe0TblfY65Z8jyUiAbiD9N4E5gQiucEqZR5BprIfA=) 9: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: hFX5YE8MCfCx/kmb790trFxkpl5n33coYoMd9aDEGes=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 17:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3666 (0xe52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Apr 18 17:44:43 2026 GMT Not After : Apr 25 17:44:43 2026 GMT Subject: CN=69e3c30b-5e6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c7:a9:a0:98:c3:18:0c:0d:d4:80:43:63:df: af:b9:ce:76:3d:4b:a2:f9:15:91:77:75:fb:7f:80: 4c:83:c9:10:75:68:42:43:bb:8d:b5:28:d5:4a:13: 95:de:ee:17:21:c9:5c:8a:75:22:53:4a:84:44:d7: 12:4f:e6:1c:b6:ea:74:6b:35:73:48:2c:b5:c0:8b: 98:e9:84:a2:93:b5:f0:f0:53:79:ac:d8:94:60:01: 7a:0c:ad:58:d8:0d:82:c7:8c:15:11:3e:e5:a9:54: 3c:ca:a2:8b:0c:48:99:da:31:d3:c6:07:47:3c:8a: d6:5a:61:09:37:ba:dd:92:c1:e6:27:a8:1b:5d:ea: 58:48:0f:d1:1c:97:cf:97:72:a9:f2:b0:15:42:31: b4:0b:14:e5:d1:77:5f:64:4a:16:a1:5a:4d:ca:0f: be:5e:d8:64:03:9b:c4:4b:60:9d:c8:ea:69:e9:68: b0:cb:91:86:12:b5:61:cb:25:8a:e6:82:5f:bd:51: ff:c1:0e:46:cd:94:b7:e7:0d:f2:aa:34:75:0f:50: 62:a0:d9:7e:fb:de:47:23:e7:f2:89:96:d5:94:04: 29:d2:47:ae:b0:78:01:37:5c:3b:5f:3a:ef:cd:36: d1:fd:de:ad:00:89:05:1b:a0:76:40:a6:19:2a:3c: 8f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:36:6E:E6:63:39:02:F2:8D:08:2F:06:5E:CC:8B:3A:24:44:FA:E2 X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:3c:fa:76:05:4a:13:ab:82:04:28:72:03:d5:b9:58:25:58: 54:3e:2e:b7:22:74:83:01:86:70:b3:a7:fd:a4:3a:1a:bb:e4: 59:5c:10:b1:1d:39:4e:22:67:aa:a0:36:1a:e7:78:18:e7:fd: 13:26:1a:68:3f:5e:99:40:12:a0:67:6d:00:ba:7d:68:4f:13: 41:60:d4:ea:3d:b6:ee:de:f6:93:a3:d1:02:85:d3:08:2d:0b: 12:f5:1f:2d:f7:06:4e:20:e0:68:3b:98:c0:99:7a:b6:54:23: 9b:64:99:8f:43:aa:19:71:05:37:39:c0:96:01:ca:fd:49:07: 0c:98:b7:d3:14:a9:0e:f0:36:2f:09:b0:29:e7:f6:74:1e:69: c7:f6:2d:29:11:2b:2e:8c:52:d0:dd:89:22:98:83:73:9d:07: 35:8b:fe:4c:e2:33:6a:32:61:e6:cc:bd:34:63:7d:c1:3c:58: 89:2d:10:e7:3f:ad:e2:4b:d7:bd:0d:45:d2:1b:3e:45:1b:0b: 84:72:3c:17:69:6a:49:16:f5:e5:36:58:ef:62:ef:bb:d8:e1: 8f:af:28:32:03:92:9f:b2:ae:62:96:ea:a3:f7:88:cf:06:d2: 8a:fe:0c:c0:f9:44:7d:28:71:1d:88:cf:9b:a1:06:28:6b:6d: cf:7b:5e:32 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjYwNDE4MTc0NDQzWhcNMjYwNDI1MTc0NDQzWjAYMRYwFAYD VQQDEw02OWUzYzMwYi01ZTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMepoJjDGAwN1IBDY9+vuc52PUui+RWRd3X7f4BMg8kQdWhCQ7uNtSjVShOV 3u4XIclcinUiU0qERNcST+Yctup0azVzSCy1wIuY6YSik7Xw8FN5rNiUYAF6DK1Y 2A2Cx4wVET7lqVQ8yqKLDEiZ2jHTxgdHPIrWWmEJN7rdksHmJ6gbXepYSA/RHJfP l3Kp8rAVQjG0CxTl0XdfZEoWoVpNyg++XthkA5vES2CdyOpp6Wiwy5GGErVhyyWK 5oJfvVH/wQ5GzZS35w3yqjR1D1BioNl++95HI+fyiZbVlAQp0keusHgBN1w7Xzrv zTbR/d6tAIkFG6B2QKYZKjyPHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMo2buZj OQLyjQgvBl7MizokRPriMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWzz6dgVKE6uCBChyA9W5WCVYVD4utyJ0gwGGcLOn/aQ6GrvkWVwQsR05TiJn qqA2Gud4GOf9EyYaaD9emUASoGdtALp9aE8TQWDU6j227t72k6PRAoXTCC0LEvUf LfcGTiDgaDuYwJl6tlQjm2SZj0OqGXEFNznAlgHK/UkHDJi30xSpDvA2LwmwKef2 dB5px/YtKRErLoxS0N2JIpiDc50HNYv+TOIzajJh5sy9NGN9wTxYiS0Q5z+t4kvX vQ1F0hs+RRsLhHI8F2lqSRb15TZY72Lvu9jhj68oMgOSn7KuYpbqo/eIzwbSiv4M wPlEfShxHYjPm6EGKGttz3teMg== -----END CERTIFICATE-----Generated at Sun Apr 19 08:57:35 2026 by rpki-client