$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: ejqpyjgKaPpZkVyvD89PFsuGSQ5GSarE2caPpw4yh+8= Subject key identifier: 57:40:59:A8:F6:0C:03:18:26:CF:8A:C1:72:79:35:FF:65:DE:36:6B Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 026D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 0266 Signing time: Sun 01 Mar 2026 02:45:22 +0000 Manifest this update: Sun 01 Mar 2026 02:45:21 +0000 Manifest next update: Sun 08 Mar 2026 02:45:21 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: 8E4HWo/XLuVmNr2euJhgWSIV2QKrYC8kFyWz6FVh+HQ=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: mjyhjdJ+f9qZUwTtbnPeF7P7FZuzG22vkFFh7yScmtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:45:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 621 (0x26d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: Mar 1 02:45:21 2026 GMT Not After : Mar 8 02:45:21 2026 GMT Subject: CN=69a3a842-4078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0a:d7:31:16:27:cb:9d:0d:cc:d9:8c:5e:6f: e6:ee:13:a2:0d:26:58:f8:0d:23:8b:49:23:b6:b4: 65:14:17:bb:11:b2:42:a8:18:eb:1b:b2:dd:bf:43: 80:27:97:45:1c:83:68:58:99:e0:f1:f5:28:e4:1a: 33:6b:8f:8d:2e:f7:48:b0:9b:41:c6:81:28:00:e5: bb:97:fb:43:3a:a3:59:fb:6c:fe:d9:de:49:90:76: 54:6b:dd:f3:40:50:b6:20:e8:a3:9e:af:b2:bc:e9: ef:e2:9c:6a:e7:f1:3e:48:71:14:94:9b:c2:82:65: fd:11:57:ae:ea:b4:dd:b9:35:f7:90:66:24:86:44: de:22:d0:fa:40:63:b4:c6:fc:02:73:ba:a8:9c:74: 9a:ec:0c:64:46:36:4f:15:f4:11:5b:c8:4d:98:c2: 3e:37:6a:5c:a4:14:d7:8a:da:52:03:00:b0:04:46: 76:1f:aa:42:7c:0f:bb:a4:91:dd:10:17:5a:76:12: c8:17:9e:6b:55:51:36:99:e7:a3:f9:cd:8e:4c:17: b0:99:93:cc:ef:72:29:57:d4:09:02:92:c9:9e:10: b1:20:60:c2:85:8e:df:28:8c:7f:f6:72:97:85:77: ed:26:de:f9:fe:76:b4:d1:29:7e:97:81:9d:9a:2a: 91:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:40:59:A8:F6:0C:03:18:26:CF:8A:C1:72:79:35:FF:65:DE:36:6B X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:f6:ba:c8:3b:98:db:d5:ba:56:ca:02:7b:f8:e3:39:1c:e7: 4e:d0:ea:8d:ee:0d:dd:fe:31:cf:41:e1:f7:3a:00:3c:24:70: 75:2d:22:f4:a3:a7:c1:4f:53:cc:24:d9:d0:1a:9a:1c:ee:a6: 36:a2:a9:fb:3b:24:59:bf:6d:42:90:73:2e:6e:d2:eb:12:3b: 51:3f:2b:d0:2c:d0:f0:1b:3d:db:87:c8:f1:7a:01:34:59:b3: 53:c9:6d:8c:96:e9:34:6c:67:78:8e:19:a7:fd:4d:ba:27:5a: 5b:9f:e3:e4:c6:19:b3:34:01:df:c0:2f:e3:07:86:84:08:91: 5b:4f:f1:ca:17:4a:01:99:f1:d7:df:3c:98:00:e8:0f:9c:b2: c9:13:f3:5b:52:5b:cb:fa:14:17:ee:34:da:28:80:9a:c9:fe: 7e:d6:b9:8f:11:80:37:48:b6:d7:f6:4d:ed:19:54:0b:38:02: 1b:7b:4f:91:28:20:a2:cd:be:5b:ed:77:a1:5b:29:e6:91:53: 44:0d:a5:61:64:e5:ff:ef:8a:c1:6d:fe:a3:a7:31:c7:a8:1a: ae:96:c6:d6:22:5d:b7:e8:2a:0b:c3:66:98:33:72:bf:23:8e: d1:d2:40:09:b9:cf:b2:7c:6e:8e:b2:07:28:cf:8f:27:79:aa: 03:28:d6:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjYwMzAxMDI0NTIxWhcNMjYwMzA4MDI0NTIxWjAYMRYwFAYD VQQDDA02OWEzYTg0Mi00MDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywrXMRYny50NzNmMXm/m7hOiDSZY+A0ji0kjtrRlFBe7EbJCqBjrG7Ldv0OA J5dFHINoWJng8fUo5Boza4+NLvdIsJtBxoEoAOW7l/tDOqNZ+2z+2d5JkHZUa93z QFC2IOijnq+yvOnv4pxq5/E+SHEUlJvCgmX9EVeu6rTduTX3kGYkhkTeItD6QGO0 xvwCc7qonHSa7AxkRjZPFfQRW8hNmMI+N2pcpBTXitpSAwCwBEZ2H6pCfA+7pJHd EBdadhLIF55rVVE2meej+c2OTBewmZPM73IpV9QJApLJnhCxIGDChY7fKIx/9nKX hXftJt75/na00Sl+l4GdmiqR1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFdAWaj2 DAMYJs+KwXJ5Nf9l3jZrMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAv/a6yDuY29W6VsoCe/jjORznTtDqje4N3f4xz0Hh9zoAPCRwdS0i9KOnwU9T zCTZ0BqaHO6mNqKp+zskWb9tQpBzLm7S6xI7UT8r0CzQ8Bs924fI8XoBNFmzU8lt jJbpNGxneI4Zp/1NuidaW5/j5MYZszQB38Av4weGhAiRW0/xyhdKAZnx1988mADo D5yyyRPzW1Jby/oUF+402iiAmsn+fta5jxGAN0i21/ZN7RlUCzgCG3tPkSggos2+ W+13oVsp5pFTRA2lYWTl/++KwW3+o6cxx6garpbG1iJdt+gqC8NmmDNyvyOO0dJA CbnPsnxujrIHKM+PJ3mqAyjWdQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:45:58 2026 by rpki-client