$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: HhRBJHdnaSsasZ+mc5IQRWbH4WGs02OmpIbZJfnTfbQ= Subject key identifier: 39:5D:5B:92:0F:54:95:2C:D8:DC:DB:4B:1A:E2:6C:20:EE:01:19:63 Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 09AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 09A1 Signing time: Fri 12 Jun 2026 20:00:37 +0000 Manifest this update: Fri 12 Jun 2026 20:00:37 +0000 Manifest next update: Fri 19 Jun 2026 20:00:37 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: mUw8XJOnjOLWhduPFH8V6VPNoVNM/N1p+GTA74dU7xo=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: IPSlPyfz0+bJclfH4V522k6JGFoLnfNN2pg5rNIteNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 20:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2474 (0x9aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Jun 12 20:00:37 2026 GMT Not After : Jun 19 20:00:37 2026 GMT Subject: CN=6a2c6565-4525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fe:83:d1:aa:8c:96:32:81:8d:ea:1e:ac:c6: 80:b3:eb:73:da:18:72:e3:4f:62:bf:50:92:b4:b2: 63:5e:98:f9:7c:55:76:d8:d6:a7:62:4e:b8:4f:91: 2a:71:50:1e:4e:b4:77:52:57:42:e4:12:7a:38:3e: 74:47:70:0e:31:a1:29:3e:a3:70:cd:68:86:61:1e: 5e:43:28:e6:25:ff:b3:bc:e4:1b:6c:2e:a2:52:3b: 13:47:3a:81:57:ce:2e:ed:b6:c8:47:da:27:b3:e9: ff:bb:a3:1f:f1:b4:73:b8:7d:af:4e:a9:7d:c1:6c: ff:a1:b7:fe:da:d8:f0:63:9a:9d:c2:75:5c:49:da: 35:35:0c:19:7d:3c:65:de:04:4e:f6:4c:cc:5f:3c: 09:c4:c2:7d:a9:72:66:a6:9c:fb:c8:69:85:84:27: 82:a7:12:d7:c8:37:60:ba:47:53:16:e3:8b:e5:ff: 6f:28:74:3e:89:5a:83:c5:48:e5:57:e5:27:e0:f8: ac:06:e7:f7:a0:e9:d3:d4:84:fb:f6:6a:f7:74:e6: 01:70:c1:94:c3:16:8f:cf:db:54:ce:b1:6b:2b:1d: 14:ae:74:ab:d0:bf:8a:60:78:ed:51:7f:bd:f7:4e: 6b:2d:17:bf:24:15:e1:d6:cb:0b:a8:f6:c1:44:78: 78:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:5D:5B:92:0F:54:95:2C:D8:DC:DB:4B:1A:E2:6C:20:EE:01:19:63 X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:f8:89:9f:ed:5c:2f:28:a6:c3:0a:7c:f6:c4:ca:6f:df:68: 71:92:59:b8:84:b2:85:ce:25:41:19:5d:71:c1:5f:19:3d:82: a1:48:1e:aa:af:8f:b8:19:d0:00:4a:0e:a7:70:52:cb:fe:e0: 70:3e:c5:87:92:d4:b6:73:83:b2:a1:1b:4d:f2:b1:0c:c5:ac: 5e:04:c2:be:de:fe:7b:a0:25:42:a2:71:e8:f8:75:2f:6b:e4: 22:a5:72:5b:ec:16:ac:45:93:47:db:a5:17:7b:17:99:fd:9e: 9d:15:9e:d6:61:5c:33:a9:8e:bd:9d:97:42:82:78:db:b8:27: 11:94:d5:5b:a0:47:49:2d:77:29:4f:b2:1f:aa:c2:60:7f:3a: 6f:42:e1:dd:fa:0f:5d:b7:b3:0b:5d:56:24:02:71:62:e2:39: ed:fc:08:97:2e:33:2b:6e:70:f7:63:31:42:45:c7:21:8d:a9: 9f:a6:e4:6d:a1:90:6b:b0:d4:a2:96:a6:cb:fb:fb:2a:52:83: 2a:f9:67:cd:ca:d7:f9:80:fb:50:67:b1:e8:21:1e:17:07:f9: af:57:3f:99:fd:16:bf:b1:5a:53:80:a3:eb:79:6b:ad:04:ae: ec:ca:c1:58:6a:ed:75:f7:65:13:d6:4a:a8:f1:e7:3b:d7:41: 24:95:50:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjYwNjEyMjAwMDM3WhcNMjYwNjE5MjAwMDM3WjAYMRYwFAYD VQQDEw02YTJjNjU2NS00NTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/6D0aqMljKBjeoerMaAs+tz2hhy409iv1CStLJjXpj5fFV22NanYk64T5Eq cVAeTrR3UldC5BJ6OD50R3AOMaEpPqNwzWiGYR5eQyjmJf+zvOQbbC6iUjsTRzqB V84u7bbIR9ons+n/u6Mf8bRzuH2vTql9wWz/obf+2tjwY5qdwnVcSdo1NQwZfTxl 3gRO9kzMXzwJxMJ9qXJmppz7yGmFhCeCpxLXyDdgukdTFuOL5f9vKHQ+iVqDxUjl V+Un4PisBuf3oOnT1IT79mr3dOYBcMGUwxaPz9tUzrFrKx0UrnSr0L+KYHjtUX+9 905rLRe/JBXh1ssLqPbBRHh4BQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDldW5IP VJUs2NzbSxribCDuARljMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlviJn+1cLyimwwp89sTKb99ocZJZuISyhc4lQRldccFfGT2CoUgeqq+PuBnQ AEoOp3BSy/7gcD7Fh5LUtnODsqEbTfKxDMWsXgTCvt7+e6AlQqJx6Ph1L2vkIqVy W+wWrEWTR9ulF3sXmf2enRWe1mFcM6mOvZ2XQoJ427gnEZTVW6BHSS13KU+yH6rC YH86b0Lh3foPXbezC11WJAJxYuI57fwIly4zK25w92MxQkXHIY2pn6bkbaGQa7DU opamy/v7KlKDKvlnzcrX+YD7UGex6CEeFwf5r1c/mf0Wv7FaU4Cj63lrrQSu7MrB WGrtdfdlE9ZKqPHnO9dBJJVQCQ== -----END CERTIFICATE-----Generated at Sun Jun 14 00:04:51 2026 by rpki-client