$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: eTVJsgNhsVAO94Ty1pyW6K65kbhA1w6TZKXP12jrXTY= Subject key identifier: 23:64:3D:6C:D2:21:FA:CE:33:4B:C5:25:23:18:4B:A3:B6:0D:6C:E4 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 02A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 029C Signing time: Sat 13 Jun 2026 01:41:59 +0000 Manifest this update: Sat 13 Jun 2026 01:41:58 +0000 Manifest next update: Sat 20 Jun 2026 01:41:58 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: KMIYAbrxCah1eU2n/3wJvayGBP/CwWti2BmNxzlac0M=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: XkgCUe6o/GCC4RXMS466VJWBGD4478vydtNuBFIJtZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 01:41:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 677 (0x2a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: Jun 13 01:41:58 2026 GMT Not After : Jun 20 01:41:58 2026 GMT Subject: CN=6a2cb567-4eff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:49:cb:16:69:08:ff:d6:93:b9:87:f8:57:1f: 33:fb:65:32:b8:9b:71:91:35:0c:e7:fe:85:ae:9b: da:f2:b6:3e:d7:68:cb:b6:4a:3b:88:ab:39:1f:46: 0d:6d:68:11:5c:d4:b2:eb:47:34:42:57:32:16:f5: 9f:2e:75:df:8a:6c:7f:53:de:c7:8e:91:82:d5:49: e6:54:29:46:36:52:26:55:e1:c8:2d:f3:0a:d0:69: 84:77:00:f5:0b:13:91:af:22:06:2c:a5:b0:17:20: a1:33:48:1c:7d:49:da:98:f0:5d:c9:0d:60:c3:92: 23:45:c1:f2:eb:f7:3c:a8:80:6a:3e:e8:06:ca:96: 04:f6:09:4d:e0:70:76:71:2b:09:a2:05:c3:49:e2: 3b:a8:1e:e2:6c:54:af:a2:f6:72:e6:cc:3e:9c:e9: d9:01:7d:57:65:0f:7d:10:b4:31:61:60:33:f0:a8: 10:fd:39:81:a1:67:96:04:ad:84:c5:a4:9e:d4:ab: 7b:6c:23:ef:89:c7:6b:8c:78:ae:e0:4e:09:4c:35: 57:79:4b:a6:83:25:0f:f0:c3:33:82:bd:d9:41:42: 79:18:c9:4e:28:c5:aa:3e:9c:fa:d4:9d:55:5d:cf: 6c:e5:16:3a:d2:c1:ec:be:72:17:d6:8e:6e:6b:e2: fa:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:64:3D:6C:D2:21:FA:CE:33:4B:C5:25:23:18:4B:A3:B6:0D:6C:E4 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:3a:e6:3d:9e:a1:ed:aa:68:1e:3e:79:66:98:e6:dd:b7:98: 14:ab:65:14:8c:7d:8a:76:a9:54:65:2f:d6:7a:df:e4:e9:d3: 73:81:07:b7:d4:94:55:1e:20:19:dc:82:f0:24:25:ce:18:7f: 87:c7:e7:2b:c0:86:2e:85:cf:53:94:9d:9e:42:ca:f3:40:a0: 0d:dd:f6:fc:95:68:b0:d3:d1:98:f2:75:d7:55:c2:85:b4:c4: f1:4c:33:7b:93:0e:44:31:15:c8:3b:36:17:1f:33:92:a6:ed: 17:ae:00:b0:9f:cf:57:29:ee:81:99:f2:37:a8:16:90:4c:79: e5:df:da:49:51:b2:1a:4a:18:70:f9:d7:14:03:29:ca:06:db: 99:f1:47:96:66:f3:54:b1:6e:df:23:dd:7d:bf:fb:0a:79:7b: 34:fa:ea:ca:dc:ff:37:e0:af:f9:23:c6:e5:9f:7c:be:fe:bd: 26:f5:f3:5c:3b:44:53:ba:34:7f:cf:ce:bc:eb:13:bb:51:77: 13:5a:7e:ca:d1:e2:2a:4f:50:ee:ff:97:15:87:09:39:3a:2e: 41:ba:36:3a:70:2c:0b:e4:32:a3:e0:ec:2f:d5:f0:d4:4b:f2: 11:74:49:29:17:d0:61:42:1a:ff:d8:ad:e4:af:aa:fa:3b:2e: fc:40:2d:7e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjYwNjEzMDE0MTU4WhcNMjYwNjIwMDE0MTU4WjAYMRYwFAYD VQQDEw02YTJjYjU2Ny00ZWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA30nLFmkI/9aTuYf4Vx8z+2UyuJtxkTUM5/6Frpva8rY+12jLtko7iKs5H0YN bWgRXNSy60c0QlcyFvWfLnXfimx/U97HjpGC1UnmVClGNlImVeHILfMK0GmEdwD1 CxORryIGLKWwFyChM0gcfUnamPBdyQ1gw5IjRcHy6/c8qIBqPugGypYE9glN4HB2 cSsJogXDSeI7qB7ibFSvovZy5sw+nOnZAX1XZQ99ELQxYWAz8KgQ/TmBoWeWBK2E xaSe1Kt7bCPvicdrjHiu4E4JTDVXeUumgyUP8MMzgr3ZQUJ5GMlOKMWqPpz61J1V Xc9s5RY60sHsvnIX1o5ua+L6KwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCNkPWzS IfrOM0vFJSMYS6O2DWzkMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsjrmPZ6h7apoHj55Zpjm3beYFKtlFIx9inapVGUv1nrf5OnTc4EHt9SUVR4g GdyC8CQlzhh/h8fnK8CGLoXPU5SdnkLK80CgDd32/JVosNPRmPJ111XChbTE8Uwz e5MORDEVyDs2Fx8zkqbtF64AsJ/PVynugZnyN6gWkEx55d/aSVGyGkoYcPnXFAMp ygbbmfFHlmbzVLFu3yPdfb/7Cnl7NPrqytz/N+Cv+SPG5Z98vv69JvXzXDtEU7o0 f8/OvOsTu1F3E1p+ytHiKk9Q7v+XFYcJOTouQbo2OnAsC+Qyo+DsL9Xw1EvyEXRJ KRfQYUIa/9it5K+q+jsu/EAtfg== -----END CERTIFICATE-----Generated at Sat Jun 13 09:42:24 2026 by rpki-client