$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: Mu9LSOBKajAPbJ/gN8Z32knvWey5gYD9bmo0XoYpuc8= Subject key identifier: E3:AB:6B:B6:E4:01:1F:F7:41:BF:DE:3D:E0:69:83:42:DB:08:52:DE Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 098D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 0984 Signing time: Thu 16 Apr 2026 19:57:06 +0000 Manifest this update: Thu 16 Apr 2026 19:57:05 +0000 Manifest next update: Thu 23 Apr 2026 19:57:05 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: zFtr9e2HuwRdYXzi+jiLpCHwT6yZ8NKhW/SyZ076ktM=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: IPSlPyfz0+bJclfH4V522k6JGFoLnfNN2pg5rNIteNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2445 (0x98d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Apr 16 19:57:05 2026 GMT Not After : Apr 23 19:57:05 2026 GMT Subject: CN=69e13f12-c6a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f2:a9:20:2d:b9:c6:d2:f1:52:65:e1:58:1b: 7b:f7:c5:30:3a:a8:f0:35:aa:70:4d:b5:82:28:b9: 3a:59:64:ef:a8:87:47:27:10:11:64:f2:98:84:45: ce:09:a3:72:04:1f:fc:32:e6:6b:31:98:57:56:b6: 3e:3c:87:57:73:10:62:e9:d6:84:6b:e1:66:18:83: 64:21:d8:58:98:a1:47:0f:50:47:bd:6d:df:bd:6e: 29:2a:78:9a:ae:a8:6f:de:0d:c3:da:9b:6f:fe:96: f9:c2:de:68:78:c2:e3:46:5c:4a:59:81:bd:ce:1f: ec:5e:9a:74:e8:64:be:4e:5d:c5:82:a5:f8:d7:2b: 54:a6:b9:b1:85:35:72:51:a2:96:28:6d:73:2b:b5: 64:49:dc:9c:5b:c1:c8:e0:16:b0:bb:63:a4:05:0f: 8a:a8:4b:7a:e9:4d:f1:c9:2e:d4:c6:77:01:29:dc: fa:06:aa:20:10:dd:04:93:bd:e3:ab:89:a6:ac:b7: f3:0d:ce:ca:fd:1d:ad:9d:98:ed:16:32:b7:76:67: cd:15:45:91:b3:4b:6f:60:9a:b1:f9:fa:47:43:82: 60:fb:67:58:b5:61:ef:bf:9b:ad:04:6b:b8:93:42: d9:7e:23:c0:44:45:4f:58:d7:d6:7d:b5:3b:ab:11: 20:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:AB:6B:B6:E4:01:1F:F7:41:BF:DE:3D:E0:69:83:42:DB:08:52:DE X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:23:af:7a:a5:b3:be:f5:b0:1b:6f:5f:f3:85:5a:79:ab:e7: 78:57:c4:b5:38:ef:04:10:37:74:a0:e8:81:8a:47:e7:1a:fe: 0c:39:6a:6b:7c:01:94:d6:00:b3:f3:15:b4:82:aa:b1:39:d3: 95:51:13:e1:9b:3b:2d:ce:98:17:33:ad:a1:6e:95:42:7f:dc: f7:87:a6:bf:5b:37:e3:59:98:fa:18:ab:db:d3:af:1c:13:94: 19:e2:98:c2:a7:82:cb:77:e3:44:70:2a:35:29:f7:80:52:72: d0:bf:6d:27:d2:ac:cb:bb:c6:00:22:7c:40:00:2a:0a:ad:2b: 27:2f:14:35:b6:3a:24:3e:38:8a:e9:63:7e:ca:83:0d:bb:e9: 09:74:3f:f9:98:31:d6:c4:05:31:f8:7c:bf:24:48:28:90:df: c5:cd:36:46:5e:24:f8:fd:0f:de:9c:6a:c2:b3:17:26:0a:09: 66:e4:91:dd:3e:e3:4d:13:9c:f3:2f:a2:a4:d3:bf:20:ac:29: 29:57:8b:6a:de:11:4c:b1:99:c8:04:cf:c4:17:6b:68:e7:19: b2:c4:8d:29:27:93:bc:75:d7:7a:9b:8d:76:a3:a0:20:3a:c5: b7:f9:d6:f5:04:04:83:b1:af:e1:d4:2e:ff:a3:60:b7:de:bf: 7c:74:a6:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjYwNDE2MTk1NzA1WhcNMjYwNDIzMTk1NzA1WjAYMRYwFAYD VQQDEw02OWUxM2YxMi1jNmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/KpIC25xtLxUmXhWBt798UwOqjwNapwTbWCKLk6WWTvqIdHJxARZPKYhEXO CaNyBB/8MuZrMZhXVrY+PIdXcxBi6daEa+FmGINkIdhYmKFHD1BHvW3fvW4pKnia rqhv3g3D2ptv/pb5wt5oeMLjRlxKWYG9zh/sXpp06GS+Tl3FgqX41ytUprmxhTVy UaKWKG1zK7VkSdycW8HI4Bawu2OkBQ+KqEt66U3xyS7UxncBKdz6BqogEN0Ek73j q4mmrLfzDc7K/R2tnZjtFjK3dmfNFUWRs0tvYJqx+fpHQ4Jg+2dYtWHvv5utBGu4 k0LZfiPAREVPWNfWfbU7qxEg0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOOra7bk AR/3Qb/ePeBpg0LbCFLeMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeyOveqWzvvWwG29f84VaeavneFfEtTjvBBA3dKDogYpH5xr+DDlqa3wBlNYA s/MVtIKqsTnTlVET4Zs7Lc6YFzOtoW6VQn/c94emv1s341mY+hir29OvHBOUGeKY wqeCy3fjRHAqNSn3gFJy0L9tJ9Ksy7vGACJ8QAAqCq0rJy8UNbY6JD44iuljfsqD DbvpCXQ/+Zgx1sQFMfh8vyRIKJDfxc02Rl4k+P0P3pxqwrMXJgoJZuSR3T7jTROc 8y+ipNO/IKwpKVeLat4RTLGZyATPxBdraOcZssSNKSeTvHXXepuNdqOgIDrFt/nW 9QQEg7Gv4dQu/6Ngt96/fHSmZw== -----END CERTIFICATE-----Generated at Fri Apr 17 07:04:16 2026 by rpki-client