$ rpki-client -vvf rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft File: HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft (raw, json) Hash identifier: XZfBrspH7SIf92aPw8D8gpIzHXDTpYI1lGB8SyC+ABE= Subject key identifier: DA:26:88:62:66:D4:CA:1A:7C:D9:7A:51:10:4B:F9:46:18:49:7F:41 Authority key identifier: 1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C Certificate issuer: /CN=A9163609/serialNumber=1C422BB1FC96FE60D4B2FF5F6C12450ECC9EE96C Certificate serial: 026D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft Manifest number: 0267 Signing time: Fri 17 Apr 2026 01:53:48 +0000 Manifest this update: Fri 17 Apr 2026 01:53:48 +0000 Manifest next update: Fri 24 Apr 2026 01:53:48 +0000 Files and hashes: 1: HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl (hash: 3gh226yd9cKdx6dVAT2Uo1a8tNat0ElxlnJs9Stjqxo=) 2: F2AB2F288FE011EDA9919C57C4F9AE02.roa (hash: KTnG5DXA4ykdIF+F6HQFhuSS9PnoKt4qehFaA66nt4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:53:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 621 (0x26d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163609, serialNumber=1C422BB1FC96FE60D4B2FF5F6C12450ECC9EE96C Validity Not Before: Apr 17 01:53:48 2026 GMT Not After : Apr 24 01:53:48 2026 GMT Subject: CN=69e192ac-ba89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e9:c8:6e:14:d2:76:06:29:02:61:8e:76:6f: 2e:13:e9:6b:c3:ff:0d:85:54:e2:35:5f:21:e3:07: 2c:bc:bc:7e:5a:c5:5b:c9:9c:fa:56:49:ae:61:ef: 46:73:66:53:10:32:85:bf:49:5e:b2:83:4f:0b:61: 2a:6b:46:c0:9c:e7:25:5c:eb:22:85:64:7f:50:c6: cd:73:61:37:96:fc:2e:0c:12:bc:91:2f:81:9b:8e: 33:91:17:bd:64:b6:11:7e:79:34:26:67:0d:94:4d: 27:ac:24:22:f0:8e:e8:58:b8:df:2e:70:63:e2:eb: 4c:86:d8:32:11:53:e3:38:f4:89:98:5c:4f:39:24: 96:bd:91:ab:d2:ec:44:bd:4d:45:d8:91:10:1e:7d: 86:d6:8e:ba:58:6a:69:fc:36:37:38:89:92:64:f6: 27:dc:01:ee:db:ab:8e:42:33:78:cc:96:c1:a7:d1: ab:b7:f5:71:69:7d:cf:60:39:4e:fc:fe:b9:5f:b7: 30:23:a6:7f:7f:6d:e8:80:81:34:36:ad:11:b6:b4: e5:58:9a:0f:fc:3b:6e:8a:86:fd:f9:52:a8:0c:a4: ec:b4:e3:e6:da:06:d8:5d:8f:4a:1e:8f:cd:92:3b: f8:03:84:fa:17:89:b5:13:b0:12:07:cf:6b:1c:4c: 57:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:26:88:62:66:D4:CA:1A:7C:D9:7A:51:10:4B:F9:46:18:49:7F:41 X509v3 Authority Key Identifier: keyid:1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:1d:06:01:86:6d:b1:0f:4b:a1:70:00:19:ca:b5:df:25:4a: 1a:c9:fe:bc:8e:c5:09:9e:17:47:0b:4d:9c:c1:d2:3a:2c:d9: 79:1b:f8:1d:55:76:37:b1:ea:db:46:1a:0c:1f:1c:04:fd:f9: d6:dd:82:38:96:d3:e1:c4:2c:e2:cd:d8:78:25:23:6a:a5:b3: 08:d2:2c:32:08:df:ef:a4:0e:50:8e:47:8e:ba:0b:d1:15:35: 9f:98:1f:71:55:69:21:30:b6:15:62:bf:6c:ad:04:7d:4c:8f: 5b:4c:49:b9:ce:c3:a1:55:31:1a:59:13:f4:f6:ee:79:69:17: aa:c4:0c:52:96:36:e0:df:df:cc:7f:a7:c7:dd:e6:18:d3:27: e4:af:8c:43:90:ad:b5:67:21:04:66:12:74:49:23:ce:c8:60: fb:b8:18:8e:17:fa:ec:30:07:e1:24:ac:95:63:19:0e:33:5b: a0:86:08:7f:a6:9f:a7:95:49:54:42:bc:16:88:3a:fe:93:1b: 4b:d8:cc:13:9c:d0:78:be:ae:a5:09:aa:5b:2b:dd:ef:14:82: 74:73:c4:a5:d6:c6:b5:84:63:a7:f7:ba:d7:c5:39:95:cc:4f: 58:d1:49:35:20:6e:f3:38:eb:21:fc:ee:93:05:12:cc:a9:da: 99:d4:ae:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM2MDkxMTAvBgNVBAUTKDFDNDIyQkIxRkM5NkZFNjBENEIyRkY1RjZDMTI0NTBF Q0M5RUU5NkMwHhcNMjYwNDE3MDE1MzQ4WhcNMjYwNDI0MDE1MzQ4WjAYMRYwFAYD VQQDEw02OWUxOTJhYy1iYTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmenIbhTSdgYpAmGOdm8uE+lrw/8NhVTiNV8h4wcsvLx+WsVbyZz6VkmuYe9G c2ZTEDKFv0lesoNPC2Eqa0bAnOclXOsihWR/UMbNc2E3lvwuDBK8kS+Bm44zkRe9 ZLYRfnk0JmcNlE0nrCQi8I7oWLjfLnBj4utMhtgyEVPjOPSJmFxPOSSWvZGr0uxE vU1F2JEQHn2G1o66WGpp/DY3OImSZPYn3AHu26uOQjN4zJbBp9Grt/VxaX3PYDlO /P65X7cwI6Z/f23ogIE0Nq0RtrTlWJoP/Dtuiob9+VKoDKTstOPm2gbYXY9KHo/N kjv4A4T6F4m1E7ASB89rHExXQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNomiGJm 1MoafNl6URBL+UYYSX9BMB8GA1UdIwQYMBaAFBxCK7H8lv5g1LL/X2wSRQ7Mnuls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzYwOS8yM0Y5RThCQThG REUxMUVEQUUzNjlBNTNDNEY5QUUwMi9IRUlyc2Z5V19tRFVzdjlmYkJKRkRzeWU2 V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFSXJzZnlXX21EVXN2OWZiQkpGRHN5ZTZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzYwOS8yM0Y5RThCQThGREUxMUVEQUUzNjlBNTNDNEY5QUUwMi9IRUlyc2Z5V19t RFVzdjlmYkJKRkRzeWU2V3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXB0GAYZtsQ9LoXAAGcq13yVKGsn+vI7FCZ4XRwtNnMHSOizZeRv4HVV2N7Hq 20YaDB8cBP351t2COJbT4cQs4s3YeCUjaqWzCNIsMgjf76QOUI5HjroL0RU1n5gf cVVpITC2FWK/bK0EfUyPW0xJuc7DoVUxGlkT9PbueWkXqsQMUpY24N/fzH+nx93m GNMn5K+MQ5CttWchBGYSdEkjzshg+7gYjhf67DAH4SSslWMZDjNboIYIf6afp5VJ VEK8Fog6/pMbS9jME5zQeL6upQmqWyvd7xSCdHPEpdbGtYRjp/e618U5lcxPWNFJ NSBu8zjrIfzukwUSzKnamdSuFQ== -----END CERTIFICATE-----Generated at Fri Apr 17 15:51:32 2026 by rpki-client