$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: simPltB6ubJg4ULfJStxeeja90bOX2RdeVZxR8bMtPI= Subject key identifier: 65:80:3C:38:9B:FD:5D:48:12:66:97:C2:53:0D:37:C1:63:48:1F:A5 Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 0972 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 096A Signing time: Sun 01 Mar 2026 23:40:40 +0000 Manifest this update: Sun 01 Mar 2026 23:40:39 +0000 Manifest next update: Sun 08 Mar 2026 23:40:39 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: kKA2cc+8pbe494MqjP24Q5I0wZ3ZxI5VNPD6qkUx8Ik=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: LUKRzU7QW2YNj5+vXJhIy/96ptb2p3qZK001FM4IvQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2418 (0x972) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Mar 1 23:40:39 2026 GMT Not After : Mar 8 23:40:39 2026 GMT Subject: CN=69a4ce78-b428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:64:df:33:cc:95:ba:74:e1:b3:fb:d9:a6:cc: 74:6f:0f:33:10:76:bf:5c:0f:32:60:d7:2f:78:ae: da:ae:d7:f2:60:d4:e7:1f:de:1f:8e:34:85:8a:7a: ea:8a:44:73:3a:e3:c2:91:9b:2a:aa:33:ed:99:7f: cd:a9:2c:a7:27:c9:9c:2a:c0:0d:2b:07:91:98:2f: 83:be:d6:96:18:5e:12:10:51:50:80:49:17:87:9a: 70:79:0d:80:83:ec:a7:76:ce:fa:32:06:d1:2d:2f: cd:06:7f:88:6b:30:30:da:ee:04:37:e1:21:39:09: ef:58:24:bd:94:5e:c4:3e:7a:20:5c:a2:34:71:d1: e0:05:e3:dc:b8:ec:b2:a9:d8:92:ef:b9:54:70:9f: dd:f6:d9:9b:c0:b5:cf:5b:e3:d9:5b:17:c0:d7:10: 57:9f:2d:de:1f:d2:ff:1c:09:c8:69:9a:3d:15:0c: a2:f5:26:49:5d:5f:0e:3e:e1:6e:5a:01:85:ab:e0: 31:39:f4:32:35:6d:ce:92:d8:5f:f0:35:d9:43:78: c7:bd:3a:5e:0d:c3:26:54:ca:52:66:a1:f6:a0:62: 8f:dd:c9:b2:35:4e:09:14:47:56:61:7f:f2:a1:e9: b6:56:f6:cd:b1:b0:fe:b8:bd:c7:a6:1f:5b:40:50: 68:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:80:3C:38:9B:FD:5D:48:12:66:97:C2:53:0D:37:C1:63:48:1F:A5 X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:82:73:29:6d:d7:30:f2:f6:bf:92:91:79:ae:09:1c:f4:57: 7c:0e:20:74:1f:ab:f0:e3:b6:4b:3f:44:97:17:7e:ee:81:82: ad:28:fb:b5:60:0b:27:0b:4b:f4:6f:d2:db:0f:73:41:98:d6: 45:4f:92:38:16:e2:c3:2e:52:61:44:7d:e8:70:a6:bb:36:39: 42:3e:16:dd:c5:b9:0b:18:fd:4a:8c:0b:b6:a8:8a:31:17:dc: 6d:3f:72:05:5f:a6:d5:8a:cb:02:a5:30:d0:14:fa:b0:35:2a: f6:0f:61:a6:72:cc:27:0a:37:d8:68:4e:a1:95:31:d9:c3:be: 00:b2:df:c3:07:5c:12:43:ea:18:c7:85:4a:b0:5d:4f:04:93: 9b:dd:e6:33:d4:36:4c:d5:4b:8f:5c:12:ae:b1:54:ad:40:6c: a0:76:54:bc:cf:30:27:03:75:70:45:5d:7d:34:d5:d8:1a:56: 0f:64:c1:b7:f3:03:df:48:9c:8d:88:ec:4e:f3:3a:55:ed:a5: c9:12:fa:16:85:07:5c:63:54:71:0a:8c:f3:9d:8a:6e:ff:9f: 73:39:eb:06:ec:c0:67:be:6b:3c:e9:05:2b:68:c0:b6:0d:4b: 97:ee:4c:4b:25:50:03:fc:0c:87:f7:df:25:21:6a:5f:09:63: 47:2c:67:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjYwMzAxMjM0MDM5WhcNMjYwMzA4MjM0MDM5WjAYMRYwFAYD VQQDEw02OWE0Y2U3OC1iNDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlmTfM8yVunThs/vZpsx0bw8zEHa/XA8yYNcveK7artfyYNTnH94fjjSFinrq ikRzOuPCkZsqqjPtmX/NqSynJ8mcKsANKweRmC+DvtaWGF4SEFFQgEkXh5pweQ2A g+ynds76MgbRLS/NBn+IazAw2u4EN+EhOQnvWCS9lF7EPnogXKI0cdHgBePcuOyy qdiS77lUcJ/d9tmbwLXPW+PZWxfA1xBXny3eH9L/HAnIaZo9FQyi9SZJXV8OPuFu WgGFq+AxOfQyNW3Okthf8DXZQ3jHvTpeDcMmVMpSZqH2oGKP3cmyNU4JFEdWYX/y oem2VvbNsbD+uL3Hph9bQFBowQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGWAPDib /V1IEmaXwlMNN8FjSB+lMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEYJzKW3XMPL2v5KRea4JHPRXfA4gdB+r8OO2Sz9Elxd+7oGCrSj7tWALJwtL 9G/S2w9zQZjWRU+SOBbiwy5SYUR96HCmuzY5Qj4W3cW5Cxj9SowLtqiKMRfcbT9y BV+m1YrLAqUw0BT6sDUq9g9hpnLMJwo32GhOoZUx2cO+ALLfwwdcEkPqGMeFSrBd TwSTm93mM9Q2TNVLj1wSrrFUrUBsoHZUvM8wJwN1cEVdfTTV2BpWD2TBt/MD30ic jYjsTvM6Ve2lyRL6FoUHXGNUcQqM852Kbv+fcznrBuzAZ75rPOkFK2jAtg1Ll+5M SyVQA/wMh/ffJSFqXwljRyxneQ== -----END CERTIFICATE-----Generated at Mon Mar 2 04:05:16 2026 by rpki-client