$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft File: HLlfP3vebhmbdAuSgqxyKk7amZs.mft (raw, json) Hash identifier: E/NBBi556Th1i/RxBSioFrtnHzO+cnHHVtn7rCp+HZI= Subject key identifier: DD:66:AF:AA:9A:85:D4:43:D7:9B:D1:1A:6B:B4:0E:9C:47:BE:92:BE Authority key identifier: 1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B Certificate issuer: /CN=A91E4EEF/serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft Manifest number: 6A Signing time: Sat 13 Jun 2026 08:12:41 +0000 Manifest this update: Sat 13 Jun 2026 08:12:40 +0000 Manifest next update: Sat 20 Jun 2026 08:12:40 +0000 Files and hashes: 1: HLlfP3vebhmbdAuSgqxyKk7amZs.crl (hash: CvEr//fjiKtbjXTsZobPlXCV7RAYnlz/FJCtGH+1QtY=) 2: 0C1F9D8CF13A11F08789470C566F56BC.roa (hash: sgoDIUBe0jr7XN1MyW0ONqjTLm6kK+bIbhy55Li2/S8=) 3: 304D9EDEF13A11F0A5B04E41566F56BC.roa (hash: AC/jIeXBOHw70y2QOJSmCZ+NDE9I0e7M9WpwuYpLz9U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 08:12:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4EEF, serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B Validity Not Before: Jun 13 08:12:40 2026 GMT Not After : Jun 20 08:12:40 2026 GMT Subject: CN=6a2d10f9-153e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:16:4c:fa:6a:34:1a:ea:45:41:c6:03:74:b1: bb:47:80:79:0a:73:d4:75:a6:08:02:14:13:35:c3: 5c:35:a2:0d:a3:d0:c7:82:48:3c:f2:7e:9c:51:8e: ea:8e:c5:c2:a2:d5:57:f1:e4:9c:98:69:68:ff:a1: 5f:e0:d4:22:7c:5b:32:fa:c4:d3:41:d0:82:17:b4: 58:6d:98:0c:28:81:1e:db:01:5f:5d:fa:3d:c5:3b: 03:2c:2f:32:97:ba:96:a4:99:2e:c0:d2:a6:b1:ad: c9:0e:ac:b9:73:2b:51:0f:a3:12:3d:d0:5c:cc:95: 22:cc:65:fd:f8:27:b4:a6:b8:01:71:6b:18:fa:4e: 9f:26:1f:b9:1f:51:b3:1d:6c:94:80:68:62:cb:a5: 57:4c:0b:fe:df:d3:ac:29:63:c7:54:68:77:54:aa: 6d:50:c8:64:0f:fc:ec:4f:a5:d0:d7:88:c9:65:0a: ef:0c:92:b6:ed:46:78:d9:6d:2f:0b:05:61:a8:b6: 94:7b:51:67:30:dc:8f:38:24:33:ed:65:f0:0e:1c: fb:a9:e1:44:4d:ea:53:76:93:88:9a:5a:4b:33:2f: 97:74:73:a5:55:a4:d7:ab:cc:65:bf:47:2a:49:2d: f4:4a:f7:ce:6a:49:e6:61:6b:b0:2f:4b:6b:2b:9d: 47:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:66:AF:AA:9A:85:D4:43:D7:9B:D1:1A:6B:B4:0E:9C:47:BE:92:BE X509v3 Authority Key Identifier: keyid:1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:0b:a7:dd:64:fd:c2:1a:e0:98:ee:9b:cc:c9:45:7a:04:c0: 54:1a:f8:9e:62:17:58:7d:39:0c:4d:7f:d1:2d:b8:bf:e8:c2: f6:c8:ba:b6:40:f8:65:13:ba:7b:44:7c:69:f5:fb:ce:26:1f: 22:1d:44:88:09:97:f5:64:2a:f6:45:49:be:80:f5:77:81:4b: a1:b2:0a:17:0d:21:a4:ca:ff:38:1b:e4:81:2b:d8:ec:8b:b0: 12:31:f1:e7:4b:93:b3:ef:03:15:c8:bc:c3:c8:57:22:4f:45: 5a:fb:86:50:07:a7:83:50:94:48:bc:d0:4a:df:ac:13:01:e2: 77:8b:b9:8c:39:49:0a:64:9c:9c:1e:c2:a7:67:c1:97:af:ef: b2:3b:5e:bb:23:c4:01:91:13:ec:95:79:87:bf:ac:63:79:39: 8e:58:1b:21:ff:f1:52:d0:6b:81:89:e5:fe:b4:35:95:62:f6: 5e:ce:d6:93:45:90:95:3c:d0:e3:d0:9c:42:95:38:7a:42:f0: 92:92:05:2b:49:63:20:86:b4:4e:5e:0d:d6:ec:83:75:86:7b: 18:a5:75:83:6b:c7:ec:be:40:14:a4:7d:49:24:4e:59:98:e6: 21:99:c3:9b:44:d1:8c:b2:a1:87:3b:ce:41:a6:91:64:6c:69: 82:6f:93:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRUYxMTAvBgNVBAUTKDFDQjk1RjNGN0JERTZFMTk5Qjc0MEI5MjgyQUM3MjJB NEVEQTk5OUIwHhcNMjYwNjEzMDgxMjQwWhcNMjYwNjIwMDgxMjQwWjAYMRYwFAYD VQQDEw02YTJkMTBmOS0xNTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RZM+mo0GupFQcYDdLG7R4B5CnPUdaYIAhQTNcNcNaINo9DHgkg88n6cUY7q jsXCotVX8eScmGlo/6Ff4NQifFsy+sTTQdCCF7RYbZgMKIEe2wFfXfo9xTsDLC8y l7qWpJkuwNKmsa3JDqy5cytRD6MSPdBczJUizGX9+Ce0prgBcWsY+k6fJh+5H1Gz HWyUgGhiy6VXTAv+39OsKWPHVGh3VKptUMhkD/zsT6XQ14jJZQrvDJK27UZ42W0v CwVhqLaUe1FnMNyPOCQz7WXwDhz7qeFETepTdpOImlpLMy+XdHOlVaTXq8xlv0cq SS30SvfOaknmYWuwL0trK51HrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN1mr6qa hdRD15vRGmu0DpxHvpK+MB8GA1UdIwQYMBaAFBy5Xz973m4Zm3QLkoKscipO2pmb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVFRi9DRUE4MzZCQURF RjMxMUYwOUVENDEyOTY1NzZGNTZCQy9ITGxmUDN2ZWJobWJkQXVTZ3F4eUtrN2Ft WnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMbGZQM3ZlYmhtYmRBdVNncXh5S2s3YW1acy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEVFRi9DRUE4MzZCQURFRjMxMUYwOUVENDEyOTY1NzZGNTZCQy9ITGxmUDN2ZWJo bWJkQXVTZ3F4eUtrN2FtWnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfQun3WT9whrgmO6bzMlFegTAVBr4nmIXWH05DE1/0S24v+jC9si6tkD4ZRO6 e0R8afX7ziYfIh1EiAmX9WQq9kVJvoD1d4FLobIKFw0hpMr/OBvkgSvY7IuwEjHx 50uTs+8DFci8w8hXIk9FWvuGUAeng1CUSLzQSt+sEwHid4u5jDlJCmScnB7Cp2fB l6/vsjteuyPEAZET7JV5h7+sY3k5jlgbIf/xUtBrgYnl/rQ1lWL2Xs7Wk0WQlTzQ 49CcQpU4ekLwkpIFK0ljIIa0Tl4N1uyDdYZ7GKV1g2vH7L5AFKR9SSROWZjmIZnD m0TRjLKhhzvOQaaRZGxpgm+TOg== -----END CERTIFICATE-----Generated at Sat Jun 13 15:11:15 2026 by rpki-client