$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: UDEP5K5P5g962/Si0CC5U0ma7jcXErmUgw4t4/mFqs0= Subject key identifier: 7B:F0:4B:13:DC:3E:98:C1:66:4D:4D:A0:07:F1:C6:6A:04:CB:55:BD Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 1427 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 13F2 Signing time: Thu 16 Apr 2026 16:53:40 +0000 Manifest this update: Thu 16 Apr 2026 16:53:39 +0000 Manifest next update: Thu 23 Apr 2026 16:53:39 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: wAmLajZSWNLEVVxTV6q3ERohHkSSnIbCOB1IXwfRKVI=) 2: 40567CA8F25A11F09752333B5F6F56BC.roa (hash: XiAc49h/ITbvuy7hirc9LsEmIhpsGVSj9jKpQ0AZeG4=) 3: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WqMqFVIMW/WczjTWRvzLRKr2fBm6q4MFQ+IAb2s3IrY=) 4: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: lwkWaq6p0L37tuMHM356+eKrIkOsIPecy57fgsnLnhY=) 5: 999C6728F7FF11F08B2BFA086C6F56BC.roa (hash: 5jwoaJRF05ynypppsournA2NpxdgiK2g9i/wb3qUNp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:53:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5159 (0x1427) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Apr 16 16:53:39 2026 GMT Not After : Apr 23 16:53:39 2026 GMT Subject: CN=69e11414-907f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:55:62:6d:47:fd:d2:75:50:73:ef:45:11:73: f8:e8:04:57:a7:06:6b:63:9f:d9:98:a2:09:70:65: c3:e6:95:d2:6d:aa:3b:e4:2d:cc:02:a6:7e:91:cb: fe:5d:30:c3:bf:73:87:99:c6:c2:49:b0:1c:b3:de: 69:01:8f:4c:38:c8:c8:bd:99:2c:c2:ed:2c:77:4d: 2a:29:c9:64:39:16:a9:18:15:e0:a3:63:b5:ca:ee: 85:41:0f:9b:bd:7a:b2:c4:6f:1f:9c:1b:31:55:81: 23:f0:a0:6b:fc:68:9e:9e:43:c9:25:7f:74:cd:82: 5a:dc:22:e3:f1:11:04:62:88:c9:ea:0a:ab:22:f5: 4d:bb:0b:ab:56:9d:dc:49:9d:fe:8a:99:ca:14:88: a1:57:0a:9a:2c:bb:d8:a8:41:86:a4:37:b2:ab:b0: da:74:3c:84:31:d9:03:5b:0f:f3:16:70:a0:81:1b: b5:56:cd:41:39:0c:b7:d2:3b:df:81:07:24:dc:c6: 4e:93:7a:84:41:40:e1:10:8b:65:90:51:fb:8a:9c: aa:2b:e6:18:27:54:61:0c:be:c6:4a:08:6f:f7:23: ad:32:0f:2e:f3:aa:96:3a:59:9d:76:e6:1c:30:21: 72:a2:02:4b:e1:99:68:2b:91:b2:a8:e7:a6:91:68: 2d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:F0:4B:13:DC:3E:98:C1:66:4D:4D:A0:07:F1:C6:6A:04:CB:55:BD X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:bb:4b:81:27:4f:50:7e:c0:51:1a:be:66:16:db:cf:b7:e7: 85:96:41:75:67:73:bd:f5:cf:fc:da:dc:bb:ad:fc:8b:0d:f7: a7:52:1e:0c:83:d6:4b:6f:2c:cb:21:38:e5:78:18:c3:2c:df: f9:05:cc:0f:d5:b2:49:a1:92:f7:f0:81:ef:69:7a:71:53:b6: 88:c3:be:f4:b0:16:c6:34:bb:06:4b:6e:24:33:1b:19:d7:3b: 56:fa:23:7a:d8:0b:35:9d:96:23:73:93:0e:cb:36:d4:87:b8: e6:e4:88:7a:9c:b1:46:1b:b1:aa:2d:b6:33:d5:36:ed:46:ae: e0:97:64:af:38:5d:61:90:eb:3b:8b:36:ca:aa:f4:6c:93:4d: f3:20:b7:72:1d:a1:06:3e:08:11:e1:7c:6a:70:ed:3d:84:01: c1:31:19:56:c8:f5:b7:f4:2a:4c:a6:d8:11:1b:04:a9:87:6f: c5:bd:6b:f2:4f:21:de:13:ed:0e:44:8c:6b:2e:61:5c:62:8c: ff:f0:b1:24:d6:16:a8:00:13:10:bd:b0:fb:4c:f3:bd:57:6d: 2e:6b:4b:ef:14:49:61:90:c8:b0:7c:46:1f:91:49:3b:73:61: 03:8f:87:7a:17:38:c8:71:2c:86:06:89:e7:6c:68:e6:8c:ff: 14:26:47:59 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjYwNDE2MTY1MzM5WhcNMjYwNDIzMTY1MzM5WjAYMRYwFAYD VQQDEw02OWUxMTQxNC05MDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlVibUf90nVQc+9FEXP46ARXpwZrY5/ZmKIJcGXD5pXSbao75C3MAqZ+kcv+ XTDDv3OHmcbCSbAcs95pAY9MOMjIvZkswu0sd00qKclkORapGBXgo2O1yu6FQQ+b vXqyxG8fnBsxVYEj8KBr/GienkPJJX90zYJa3CLj8REEYojJ6gqrIvVNuwurVp3c SZ3+ipnKFIihVwqaLLvYqEGGpDeyq7DadDyEMdkDWw/zFnCggRu1Vs1BOQy30jvf gQck3MZOk3qEQUDhEItlkFH7ipyqK+YYJ1RhDL7GSghv9yOtMg8u86qWOlmdduYc MCFyogJL4ZloK5GyqOemkWgtIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHvwSxPc PpjBZk1NoAfxxmoEy1W9MB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAk7tLgSdPUH7AURq+Zhbbz7fnhZZBdWdzvfXP/Nrcu638iw33p1IeDIPWS28s yyE45XgYwyzf+QXMD9WySaGS9/CB72l6cVO2iMO+9LAWxjS7BktuJDMbGdc7Vvoj etgLNZ2WI3OTDss21Ie45uSIepyxRhuxqi22M9U27Uau4JdkrzhdYZDrO4s2yqr0 bJNN8yC3ch2hBj4IEeF8anDtPYQBwTEZVsj1t/QqTKbYERsEqYdvxb1r8k8h3hPt DkSMay5hXGKM//CxJNYWqAATEL2w+0zzvVdtLmtL7xRJYZDIsHxGH5FJO3NhA4+H ehc4yHEshgaJ52xo5oz/FCZHWQ== -----END CERTIFICATE-----Generated at Fri Apr 17 05:54:21 2026 by rpki-client