$ rpki-client -vvf rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft File: hhe5_iqn_uIl8uDS3IdkCYE33m0.mft (raw, json) Hash identifier: 1EsyckMuwwddMS/dZ2dzF7GJQQR1xZaawENtuswwz48= Subject key identifier: C3:06:6D:C2:AD:57:FE:22:51:7A:2F:F4:15:D5:5C:90:4A:85:82:12 Authority key identifier: 86:17:B9:FE:2A:A7:FE:E2:25:F2:E0:D2:DC:87:64:09:81:37:DE:6D Certificate issuer: /CN=A9117715/serialNumber=8617B9FE2AA7FEE225F2E0D2DC8764098137DE6D Certificate serial: 0A76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft Manifest number: 0A6C Signing time: Mon 02 Mar 2026 03:03:03 +0000 Manifest this update: Mon 02 Mar 2026 03:03:02 +0000 Manifest next update: Mon 09 Mar 2026 03:03:02 +0000 Files and hashes: 1: hhe5_iqn_uIl8uDS3IdkCYE33m0.crl (hash: n6jE0t8y/qPSNzcj9TNPYYYnHv/LWOigraTIckU9CX8=) 2: E118A9DA7CB911EABD07CE5EC4F9AE02.roa (hash: IQxEBmP4et/Kr7uKG8HCuWwAUdMBf+1SeFtUWAGK3LQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.crl rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:02:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2678 (0xa76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117715, serialNumber=8617B9FE2AA7FEE225F2E0D2DC8764098137DE6D Validity Not Before: Mar 2 03:03:02 2026 GMT Not After : Mar 9 03:03:02 2026 GMT Subject: CN=69a4fde7-9629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3c:91:1f:d3:91:cb:dd:e8:13:a5:b4:1b:5a: b1:3f:8e:f1:4b:a3:b3:f7:12:db:63:23:68:84:9f: 46:fc:4d:84:30:5a:a9:dd:8c:69:bd:f8:95:be:43: 63:d8:5f:0c:b3:df:e4:b9:19:78:35:b8:b4:4b:f9: e6:2c:70:76:d7:52:56:91:c1:43:44:85:6f:3d:28: 68:3e:bc:a7:a0:1b:01:eb:42:0d:11:20:f5:d0:78: b3:98:fd:97:2a:05:ae:9f:82:e4:b4:53:1f:a5:c8: d0:d9:4c:dd:bb:57:74:90:34:45:6c:34:31:8d:f4: 8a:78:78:ec:16:fc:7e:95:11:04:96:75:ae:34:f9: ed:96:8a:97:05:8c:64:f8:ce:6d:53:69:42:7f:00: a5:e5:f9:9e:04:71:ad:f0:95:e0:21:94:c7:45:b8: 87:81:b7:b8:d7:26:42:f0:67:62:86:58:29:17:ee: 3b:b7:9a:ee:c4:ff:22:6b:14:d2:5d:94:49:33:b0: 8f:0c:ec:31:9a:e0:d2:7f:48:b9:49:f3:79:1f:46: 49:45:76:3c:0a:4f:d4:0a:cc:c3:6c:2d:ec:45:b1: 77:4b:7b:9b:0f:19:f9:fd:f1:52:6e:ab:67:d2:78: 96:42:f1:c2:7b:07:08:ef:49:f4:80:f9:b4:c8:d1: 51:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:06:6D:C2:AD:57:FE:22:51:7A:2F:F4:15:D5:5C:90:4A:85:82:12 X509v3 Authority Key Identifier: keyid:86:17:B9:FE:2A:A7:FE:E2:25:F2:E0:D2:DC:87:64:09:81:37:DE:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:83:44:7d:4f:bb:21:27:f9:78:41:de:91:b7:ae:bd:ab:2c: 8d:3a:a0:89:e2:71:1a:3a:ba:e1:ba:d1:fc:9c:ee:ca:a9:1f: 43:3f:45:72:59:fe:69:84:e5:8d:83:ba:e9:10:00:7e:66:5a: 88:58:ae:bd:a9:02:cf:a1:e6:73:da:3c:3b:3b:de:ab:01:be: 3e:a6:c3:5c:21:ca:ab:83:78:ec:0c:a1:a4:3a:b1:92:48:4d: a3:d7:ba:0e:41:03:7b:ff:8d:69:b9:60:ba:03:e3:52:e6:3e: c8:60:ac:f3:dd:a6:c7:29:e2:9c:95:14:87:5d:d6:28:7c:16: 5b:dc:f1:75:09:fe:a1:19:b0:48:04:20:cd:9d:5f:70:af:07: 8b:c5:5f:90:63:60:f0:69:96:0a:19:4c:92:bc:2e:79:4d:0e: 91:ff:44:5b:76:5b:85:57:f5:1c:b1:cf:93:3e:86:ca:0f:74: 7b:9c:29:c6:22:ad:6c:28:b5:a1:1c:1a:d7:05:9a:a2:c8:b9: d6:cd:61:ba:81:00:d5:51:9c:22:c3:10:08:d1:c8:48:aa:d4: f1:8e:dc:5d:3d:85:04:ce:d7:39:68:73:6a:7f:6b:37:3a:c0: 80:16:b0:59:cb:06:f8:77:87:ea:eb:56:86:57:2e:61:26:4a: 24:a0:77:5a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3MTUxMTAvBgNVBAUTKDg2MTdCOUZFMkFBN0ZFRTIyNUYyRTBEMkRDODc2NDA5 ODEzN0RFNkQwHhcNMjYwMzAyMDMwMzAyWhcNMjYwMzA5MDMwMzAyWjAYMRYwFAYD VQQDEw02OWE0ZmRlNy05NjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5DyRH9ORy93oE6W0G1qxP47xS6Oz9xLbYyNohJ9G/E2EMFqp3YxpvfiVvkNj 2F8Ms9/kuRl4Nbi0S/nmLHB211JWkcFDRIVvPShoPrynoBsB60INESD10HizmP2X KgWun4LktFMfpcjQ2Uzdu1d0kDRFbDQxjfSKeHjsFvx+lREElnWuNPntloqXBYxk +M5tU2lCfwCl5fmeBHGt8JXgIZTHRbiHgbe41yZC8GdihlgpF+47t5ruxP8iaxTS XZRJM7CPDOwxmuDSf0i5SfN5H0ZJRXY8Ck/UCszDbC3sRbF3S3ubDxn5/fFSbqtn 0niWQvHCewcI70n0gPm0yNFRZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMMGbcKt V/4iUXov9BXVXJBKhYISMB8GA1UdIwQYMBaAFIYXuf4qp/7iJfLg0tyHZAmBN95t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzcxNS9CQzFDNUYxMDdD QjgxMUVBQjBGNjQ3NURDNEY5QUUwMi9oaGU1X2lxbl91SWw4dURTM0lka0NZRTMz bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hoZTVfaXFuX3VJbDh1RFMzSWRrQ1lFMzNtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzcxNS9CQzFDNUYxMDdDQjgxMUVBQjBGNjQ3NURDNEY5QUUwMi9oaGU1X2lxbl91 SWw4dURTM0lka0NZRTMzbTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdYNEfU+7ISf5eEHekbeuvassjTqgieJxGjq64brR/JzuyqkfQz9Fcln+aYTl jYO66RAAfmZaiFiuvakCz6Hmc9o8OzveqwG+PqbDXCHKq4N47AyhpDqxkkhNo9e6 DkEDe/+NablgugPjUuY+yGCs892mxyninJUUh13WKHwWW9zxdQn+oRmwSAQgzZ1f cK8Hi8VfkGNg8GmWChlMkrwueU0Okf9EW3ZbhVf1HLHPkz6Gyg90e5wpxiKtbCi1 oRwa1wWaosi51s1huoEA1VGcIsMQCNHISKrU8Y7cXT2FBM7XOWhzan9rNzrAgBaw WcsG+HeH6utWhlcuYSZKJKB3Wg== -----END CERTIFICATE-----Generated at Mon Mar 2 10:15:02 2026 by rpki-client