$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft File: HLlfP3vebhmbdAuSgqxyKk7amZs.mft (raw, json) Hash identifier: eoGRgErVatpWyYCpdjozaFT+5OMKuCQaYsAxZj+P99I= Subject key identifier: 88:DF:0A:7B:92:E5:5D:83:3F:16:02:EC:F4:02:03:8C:C3:33:EB:04 Authority key identifier: 1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B Certificate issuer: /CN=A91E4EEF/serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft Manifest number: 4E Signing time: Fri 17 Apr 2026 08:11:04 +0000 Manifest this update: Fri 17 Apr 2026 08:11:03 +0000 Manifest next update: Fri 24 Apr 2026 08:11:03 +0000 Files and hashes: 1: HLlfP3vebhmbdAuSgqxyKk7amZs.crl (hash: lQ8jHvvSs8qNYuUDz/3st29Ch/kxFfQUnn9icSIdiVA=) 2: 304D9EDEF13A11F0A5B04E41566F56BC.roa (hash: AC/jIeXBOHw70y2QOJSmCZ+NDE9I0e7M9WpwuYpLz9U=) 3: 0C1F9D8CF13A11F08789470C566F56BC.roa (hash: sgoDIUBe0jr7XN1MyW0ONqjTLm6kK+bIbhy55Li2/S8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:11:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4EEF, serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Validity Not Before: Apr 17 08:11:03 2026 GMT Not After : Apr 24 08:11:03 2026 GMT Subject: CN=69e1eb18-0620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:99:50:ea:88:d7:00:5b:9a:96:40:8e:7f:d6: c9:39:0a:9c:1e:e3:e1:3d:7c:65:d0:a2:87:b4:97: 8b:7e:5e:b8:81:4e:e8:1d:eb:96:57:91:69:3c:3f: 64:c4:1a:51:52:11:4f:ea:2f:25:0d:6c:b9:4c:b9: a7:b1:38:20:f3:ed:8f:f3:5f:96:03:06:b2:02:dc: f7:2a:ca:ff:84:27:3e:e0:e5:c4:92:30:8d:56:9b: a9:11:86:c7:6f:81:97:3b:c3:a4:84:68:95:8b:15: 4e:3d:04:c6:c5:c5:d8:a8:dc:bd:7d:cb:74:93:16: a6:6f:8b:6d:42:b7:15:21:ac:15:8e:53:41:75:11: 95:33:53:44:65:7e:f0:aa:7a:ce:e7:63:92:0e:70: c9:6b:3f:e4:a8:b8:93:d0:0f:c9:d5:f3:32:11:72: 11:79:08:72:87:a1:aa:4c:7d:e8:ce:b8:b7:e3:7e: ea:54:16:43:a8:32:86:12:5c:fb:82:b9:6c:35:5f: 08:0f:b4:e3:ef:9f:ce:2a:6d:ac:a3:e1:52:89:51: 8b:fe:a0:5a:59:d9:6f:53:03:a9:ac:97:66:9c:36: 2a:96:2e:84:bf:2f:0f:0e:ca:da:8e:20:e9:09:66: 9e:f2:7e:0f:50:87:f7:39:1c:47:ce:95:f5:5e:00: 96:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:DF:0A:7B:92:E5:5D:83:3F:16:02:EC:F4:02:03:8C:C3:33:EB:04 X509v3 Authority Key Identifier: keyid:1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:54:f8:b3:ae:17:e1:4f:d3:1e:6f:58:47:7c:67:09:04:1f: ac:46:c5:7b:80:ad:f3:02:5d:24:d3:18:db:dc:89:9b:af:e5: 5a:61:eb:a9:ad:cf:8f:4c:ad:8b:e1:78:1f:b4:ba:9d:cd:d3: 25:e2:4e:08:ff:d7:25:f6:b2:3d:cd:15:28:99:f4:40:9d:81: 87:70:d9:20:25:32:6a:58:1b:3c:c6:d2:ad:99:b9:b4:61:ff: 22:be:6d:0d:9d:6b:9d:d2:96:b0:4b:f5:6b:dc:ca:28:a5:9f: af:34:c3:2b:97:ef:53:43:85:a1:18:6b:1b:ec:3e:21:57:d5: 3e:3b:f5:e1:07:53:60:4b:cf:0f:73:f1:e3:ac:7e:3a:6b:cc: 9c:98:d4:f0:e8:86:30:ef:1e:f8:4f:6a:9c:4e:62:93:0c:9c: 03:27:d7:bb:a6:d0:2c:a5:1f:c6:5e:37:3f:7f:23:5e:27:db: 37:4c:51:16:93:0f:4e:33:36:e3:54:35:14:c8:75:5a:6f:86: 28:83:08:b8:2f:e4:a7:c3:d2:eb:eb:29:d4:d8:25:85:81:2b: ed:0e:d8:89:0d:48:c9:37:1f:9f:8d:29:c6:56:d8:db:e2:41: fc:2c:79:00:4a:b9:74:35:65:cb:b2:1d:90:4c:d9:ce:29:06: 2a:24:5c:88 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NEVFRjExMC8GA1UEBRMoMUNCOTVGM0Y3QkRFNkUxOTlCNzQwQjkyODJBQzcyMkE0 RURBOTk5QjAeFw0yNjA0MTcwODExMDNaFw0yNjA0MjQwODExMDNaMBgxFjAUBgNV BAMTDTY5ZTFlYjE4LTA2MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnmVDqiNcAW5qWQI5/1sk5Cpwe4+E9fGXQooe0l4t+XriBTugd65ZXkWk8P2TE GlFSEU/qLyUNbLlMuaexOCDz7Y/zX5YDBrIC3Pcqyv+EJz7g5cSSMI1Wm6kRhsdv gZc7w6SEaJWLFU49BMbFxdio3L19y3STFqZvi21CtxUhrBWOU0F1EZUzU0RlfvCq es7nY5IOcMlrP+SouJPQD8nV8zIRchF5CHKHoapMfejOuLfjfupUFkOoMoYSXPuC uWw1XwgPtOPvn84qbayj4VKJUYv+oFpZ2W9TA6msl2acNiqWLoS/Lw8OytqOIOkJ Zp7yfg9Qh/c5HEfOlfVeAJY/AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUiN8Ke5Ll XYM/FgLs9AIDjMMz6wQwHwYDVR0jBBgwFoAUHLlfP3vebhmbdAuSgqxyKk7amZsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0RUVGL0NFQTgzNkJBREVG MzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmhtYmRBdVNncXh5S2s3YW1a cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSExsZlAzdmViaG1iZEF1U2dxeHlLazdhbVpzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 RUVGL0NFQTgzNkJBREVGMzExRjA5RUQ0MTI5NjU3NkY1NkJDL0hMbGZQM3ZlYmht YmRBdVNncXh5S2s3YW1acy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBZVPizrhfhT9Meb1hHfGcJBB+sRsV7gK3zAl0k0xjb3Imbr+VaYeuprc+PTK2L 4XgftLqdzdMl4k4I/9cl9rI9zRUomfRAnYGHcNkgJTJqWBs8xtKtmbm0Yf8ivm0N nWud0pawS/Vr3MoopZ+vNMMrl+9TQ4WhGGsb7D4hV9U+O/XhB1NgS88Pc/HjrH46 a8ycmNTw6IYw7x74T2qcTmKTDJwDJ9e7ptAspR/GXjc/fyNeJ9s3TFEWkw9OMzbj VDUUyHVab4Yogwi4L+Snw9Lr6ynU2CWFgSvtDtiJDUjJNx+fjSnGVtjb4kH8LHkA Srl0NWXLsh2QTNnOKQYqJFyI -----END CERTIFICATE-----Generated at Fri Apr 17 18:02:01 2026 by rpki-client