$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: alhb1faWoLJVRHylcBWHYTVlXWOzzCmVaJZy0EewWk4= Subject key identifier: C5:4A:D9:97:5F:1B:2F:2C:AB:46:56:24:37:1A:08:B3:DE:3E:DC:51 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 0289 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 0280 Signing time: Fri 17 Apr 2026 01:41:55 +0000 Manifest this update: Fri 17 Apr 2026 01:41:55 +0000 Manifest next update: Fri 24 Apr 2026 01:41:55 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: W5JGrv8mmd0rSqmSHG+ufEPenI/V61n1ZKKbPHviR18=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: XkgCUe6o/GCC4RXMS466VJWBGD4478vydtNuBFIJtZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:41:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 649 (0x289) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: Apr 17 01:41:55 2026 GMT Not After : Apr 24 01:41:55 2026 GMT Subject: CN=69e18fe3-2bb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:14:96:b1:4d:5c:08:00:b5:88:ba:c5:a5:d1: a9:e3:dd:00:0b:79:4c:29:0a:89:e7:56:6a:bd:65: f7:63:c2:82:62:e2:ef:a3:9f:4f:1e:78:96:d9:ec: 18:e4:e2:b0:50:07:7f:e6:38:30:ec:01:cc:04:92: 3e:dc:da:27:e6:83:98:56:68:a9:f2:f9:dd:bf:8f: 70:5d:e4:40:0b:3d:31:23:84:d6:25:a5:ff:30:d1: 08:61:16:52:2e:a9:07:5a:38:a4:ea:93:42:03:6c: 12:d2:7d:75:d8:0d:1a:b4:12:68:d7:d4:cb:92:9c: 36:f4:d7:4f:e0:4a:b8:7e:31:e5:b2:ea:43:73:48: 51:79:85:97:87:07:20:05:44:db:26:76:6f:93:0b: bb:d4:9a:37:5d:2d:1c:b7:df:fb:f5:cb:7e:a7:eb: e7:aa:2b:65:c2:04:1a:a7:ad:da:0f:7f:e7:93:d5: 45:f6:0c:59:94:94:85:f6:e3:58:5b:37:69:ff:e0: 7f:62:c3:1c:06:5c:24:88:99:d0:00:9b:94:86:32: fb:7c:9e:51:9e:da:f1:5d:c0:cb:2f:15:68:38:45: d0:90:4c:c8:aa:70:78:c7:6d:8a:6c:1c:a5:a9:3e: 24:9e:88:e3:1d:9a:f7:1d:45:0f:78:e1:80:67:9e: 58:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:4A:D9:97:5F:1B:2F:2C:AB:46:56:24:37:1A:08:B3:DE:3E:DC:51 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:95:b2:79:01:b1:da:47:08:ee:8f:29:f3:0b:bf:00:fa:02: 5a:f8:f2:6f:1e:00:51:71:6e:c5:4b:de:e3:a2:0a:c5:63:59: b1:75:5c:4d:ed:fe:5b:f5:db:b1:7e:85:88:50:f2:e5:70:f0: 7c:e5:38:d0:76:d1:7f:73:48:7d:25:b9:d2:67:a3:6c:34:67: 89:3e:a8:07:85:bc:04:f5:b1:42:53:90:da:27:73:01:5b:46: b4:8c:ee:c1:0a:6f:60:15:cd:d9:ea:25:a5:99:f0:a5:06:73: 81:a4:3a:bc:bc:04:4a:34:73:7c:98:e2:86:57:59:33:74:9e: 9f:a9:ec:b4:6d:dc:7f:a7:2e:8b:58:18:4e:60:f1:34:ba:91: 46:5d:14:f4:b0:27:71:1b:54:c4:10:0d:f3:48:2a:2b:7e:3f: 5a:e2:74:45:8c:5d:fb:ca:85:09:b9:1c:21:d9:bb:89:89:70: e8:40:71:2f:fd:00:ee:1d:2a:ab:86:cb:a9:25:8c:78:0a:b1: e8:f3:bc:bc:a4:72:db:ce:cb:16:85:38:9e:d7:11:ee:ee:be: d0:df:cb:bd:ad:2d:28:c4:3a:85:9c:5d:93:20:73:77:06:b0: f0:9b:3b:c7:52:c3:fe:2a:99:91:ef:ff:2e:ae:23:50:7e:6e: da:a7:5a:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjYwNDE3MDE0MTU1WhcNMjYwNDI0MDE0MTU1WjAYMRYwFAYD VQQDEw02OWUxOGZlMy0yYmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1hSWsU1cCAC1iLrFpdGp490AC3lMKQqJ51ZqvWX3Y8KCYuLvo59PHniW2ewY 5OKwUAd/5jgw7AHMBJI+3Non5oOYVmip8vndv49wXeRACz0xI4TWJaX/MNEIYRZS LqkHWjik6pNCA2wS0n112A0atBJo19TLkpw29NdP4Eq4fjHlsupDc0hReYWXhwcg BUTbJnZvkwu71Jo3XS0ct9/79ct+p+vnqitlwgQap63aD3/nk9VF9gxZlJSF9uNY Wzdp/+B/YsMcBlwkiJnQAJuUhjL7fJ5RntrxXcDLLxVoOEXQkEzIqnB4x22KbByl qT4knojjHZr3HUUPeOGAZ55YWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMVK2Zdf Gy8sq0ZWJDcaCLPePtxRMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGZWyeQGx2kcI7o8p8wu/APoCWvjybx4AUXFuxUve46IKxWNZsXVcTe3+W/Xb sX6FiFDy5XDwfOU40HbRf3NIfSW50mejbDRniT6oB4W8BPWxQlOQ2idzAVtGtIzu wQpvYBXN2eolpZnwpQZzgaQ6vLwESjRzfJjihldZM3Sen6nstG3cf6cui1gYTmDx NLqRRl0U9LAncRtUxBAN80gqK34/WuJ0RYxd+8qFCbkcIdm7iYlw6EBxL/0A7h0q q4bLqSWMeAqx6PO8vKRy287LFoU4ntcR7u6+0N/Lva0tKMQ6hZxdkyBzdwaw8Js7 x1LD/iqZke//Lq4jUH5u2qda6A== -----END CERTIFICATE-----Generated at Fri Apr 17 15:19:09 2026 by rpki-client