$ rpki-client -vvf rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft File: hhe5_iqn_uIl8uDS3IdkCYE33m0.mft (raw, json) Hash identifier: IaAQDwNOKTe3ytAsXPa5VqPJNfFqZ4j03MyDnCGWnHM= Subject key identifier: 46:49:D8:D0:72:63:EF:5E:F7:75:8C:1A:37:EB:BA:D2:C7:C0:2F:3C Authority key identifier: 86:17:B9:FE:2A:A7:FE:E2:25:F2:E0:D2:DC:87:64:09:81:37:DE:6D Certificate issuer: /CN=A9117715/serialNumber=8617B9FE2AA7FEE225F2E0D2DC8764098137DE6D Certificate serial: 0A8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft Manifest number: 0A84 Signing time: Thu 16 Apr 2026 19:28:47 +0000 Manifest this update: Thu 16 Apr 2026 19:28:47 +0000 Manifest next update: Thu 23 Apr 2026 19:28:47 +0000 Files and hashes: 1: hhe5_iqn_uIl8uDS3IdkCYE33m0.crl (hash: QVq76S7iw2qHPogBAWYqGG6YifpozRzuBhLsOvZvP6E=) 2: E118A9DA7CB911EABD07CE5EC4F9AE02.roa (hash: IQxEBmP4et/Kr7uKG8HCuWwAUdMBf+1SeFtUWAGK3LQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.crl rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:28:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2702 (0xa8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117715, serialNumber=8617B9FE2AA7FEE225F2E0D2DC8764098137DE6D Validity Not Before: Apr 16 19:28:47 2026 GMT Not After : Apr 23 19:28:47 2026 GMT Subject: CN=69e1386f-1c61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9c:55:25:ee:13:00:76:80:13:98:4a:d7:fb: 4c:a5:a6:cc:14:cf:3a:e6:64:95:d4:70:56:80:7c: 26:14:3d:3f:e3:05:18:a6:20:f5:f4:e5:2e:92:0b: 71:41:0a:ee:3d:c6:ff:30:10:d1:fb:c0:d5:cc:43: 07:ea:45:3f:9d:50:c5:97:60:84:4b:e6:32:ba:e8: e9:22:2f:0d:7d:95:be:72:81:a7:c4:45:b3:35:0f: f8:41:ea:11:8d:ef:5b:b8:09:99:fd:4f:15:82:b1: ab:7c:b0:6b:86:9f:fc:ed:a2:4a:8a:67:b1:8c:3d: ce:25:dd:2b:c1:00:1f:e7:25:58:db:fb:be:2b:49: 96:56:db:e1:cd:bb:bf:a2:92:7b:4d:1e:c5:2f:4b: 2d:f7:b4:d5:d2:be:4c:4c:a1:b8:2c:fd:3e:40:c7: 96:ac:fe:fe:a3:73:5a:a5:5a:77:99:f5:84:aa:1b: 5b:7e:b4:fd:02:d5:41:78:80:a0:83:6e:24:8e:d5: a3:7e:60:00:b3:e5:fb:f6:e2:63:ec:fa:6f:f7:69: bd:f5:72:88:91:fb:c6:44:d9:4b:35:84:16:49:d2: 33:9c:33:a4:4e:a0:8a:49:06:ab:02:44:bf:a0:cd: 4d:49:d0:f5:c1:12:8b:23:e5:b1:ae:87:46:1c:00: 36:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:49:D8:D0:72:63:EF:5E:F7:75:8C:1A:37:EB:BA:D2:C7:C0:2F:3C X509v3 Authority Key Identifier: keyid:86:17:B9:FE:2A:A7:FE:E2:25:F2:E0:D2:DC:87:64:09:81:37:DE:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:5b:13:d4:46:ca:39:99:b3:2a:9e:2d:3d:ad:fa:5d:1f:af: a1:73:22:be:ac:05:de:fe:e2:34:67:55:fc:10:09:35:3c:6a: ab:85:ff:6e:0a:1d:45:a4:f6:8c:f4:0c:a1:44:8a:33:e9:31: 4e:b8:21:81:a2:30:4a:ab:36:a7:a1:c1:b5:ae:e3:7b:7e:ed: 16:aa:ba:aa:89:2e:17:64:34:9a:b2:49:52:33:d9:d9:18:fb: 45:fc:3a:77:2e:c4:99:b5:dc:ad:75:a6:f2:16:7d:26:90:6c: d0:53:dd:25:2c:61:c1:10:87:c2:f0:0c:d4:8b:2c:20:f1:1d: c5:a7:14:ac:0b:5d:01:34:a0:79:f1:1e:2d:12:df:3d:21:e5: f4:30:3f:5d:c0:a7:7d:39:20:34:2a:89:90:1f:6a:60:ed:d8: f1:0b:78:c9:9c:07:52:ab:df:f2:2d:d4:57:bd:06:6d:d4:83: bc:d8:d5:f3:b8:fb:40:53:6e:b6:e3:19:12:72:5d:91:48:62: b3:5a:49:99:c6:8b:96:d5:18:31:1c:22:94:84:32:1e:ab:a0: 35:3a:a4:36:b6:2f:02:77:23:a7:32:1e:a8:97:44:7c:70:4d: 7e:e5:95:01:2b:be:73:28:02:c8:1a:39:db:7a:9d:d7:fd:a2: b9:94:d0:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3MTUxMTAvBgNVBAUTKDg2MTdCOUZFMkFBN0ZFRTIyNUYyRTBEMkRDODc2NDA5 ODEzN0RFNkQwHhcNMjYwNDE2MTkyODQ3WhcNMjYwNDIzMTkyODQ3WjAYMRYwFAYD VQQDEw02OWUxMzg2Zi0xYzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15xVJe4TAHaAE5hK1/tMpabMFM865mSV1HBWgHwmFD0/4wUYpiD19OUukgtx QQruPcb/MBDR+8DVzEMH6kU/nVDFl2CES+YyuujpIi8NfZW+coGnxEWzNQ/4QeoR je9buAmZ/U8VgrGrfLBrhp/87aJKimexjD3OJd0rwQAf5yVY2/u+K0mWVtvhzbu/ opJ7TR7FL0st97TV0r5MTKG4LP0+QMeWrP7+o3NapVp3mfWEqhtbfrT9AtVBeICg g24kjtWjfmAAs+X79uJj7Ppv92m99XKIkfvGRNlLNYQWSdIznDOkTqCKSQarAkS/ oM1NSdD1wRKLI+WxrodGHAA2vwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEZJ2NBy Y+9e93WMGjfrutLHwC88MB8GA1UdIwQYMBaAFIYXuf4qp/7iJfLg0tyHZAmBN95t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzcxNS9CQzFDNUYxMDdD QjgxMUVBQjBGNjQ3NURDNEY5QUUwMi9oaGU1X2lxbl91SWw4dURTM0lka0NZRTMz bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hoZTVfaXFuX3VJbDh1RFMzSWRrQ1lFMzNtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzcxNS9CQzFDNUYxMDdDQjgxMUVBQjBGNjQ3NURDNEY5QUUwMi9oaGU1X2lxbl91 SWw4dURTM0lka0NZRTMzbTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoVsT1EbKOZmzKp4tPa36XR+voXMivqwF3v7iNGdV/BAJNTxqq4X/bgodRaT2 jPQMoUSKM+kxTrghgaIwSqs2p6HBta7je37tFqq6qokuF2Q0mrJJUjPZ2Rj7Rfw6 dy7EmbXcrXWm8hZ9JpBs0FPdJSxhwRCHwvAM1IssIPEdxacUrAtdATSgefEeLRLf PSHl9DA/XcCnfTkgNCqJkB9qYO3Y8Qt4yZwHUqvf8i3UV70GbdSDvNjV87j7QFNu tuMZEnJdkUhis1pJmcaLltUYMRwilIQyHqugNTqkNrYvAncjpzIeqJdEfHBNfuWV ASu+cygCyBo523qd1/2iuZTQgg== -----END CERTIFICATE-----Generated at Fri Apr 17 18:21:14 2026 by rpki-client