$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: qMt+4l9hrHFUJTl6iC1B9g4MYVH2rJ/KfaDja1+bWDc= Subject key identifier: 3A:E2:66:B1:87:FC:2E:23:E5:97:2B:A1:13:05:65:AF:82:CD:AE:27 Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 1403 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 13D6 Signing time: Sat 28 Feb 2026 17:02:29 +0000 Manifest this update: Sat 28 Feb 2026 17:02:29 +0000 Manifest next update: Sat 07 Mar 2026 17:02:29 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: P7adtYCn87t6I0elcqY86AsfIffj/9dwNLKTLRuwmE8=) 2: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WXuqlnvJ/kQYgmajvkp6WqRXIhVjEPtrsEAuBi7s1vA=) 3: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: YO0KSyMg3rhBagYoGztB5o5uMcRrrSiw068DI4yqRmI=) 4: 999C6728F7FF11F08B2BFA086C6F56BC.roa (hash: JMYoiPgZ4D6d5svYKaLJAtarxSAlkwCtseQ1yoQUexc=) 5: 40567CA8F25A11F09752333B5F6F56BC.roa (hash: Ffnj+zOGgq1oedlwlSd7SpvjdDFAQjYqDXo5P3GfYVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5123 (0x1403) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Feb 28 17:02:29 2026 GMT Not After : Mar 7 17:02:29 2026 GMT Subject: CN=69a31fa5-d9d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:03:ad:ce:f5:bd:72:bc:03:8f:19:99:ad:5e: e0:a6:3c:30:42:bc:6c:2b:33:61:a4:c9:be:69:e9: 22:1b:1c:96:f7:5f:37:9e:e2:f1:bf:51:a5:fe:1b: fc:d5:c1:44:0b:4b:78:64:56:61:f0:d8:57:60:3b: 59:c5:63:f2:e9:a4:25:0e:30:70:9c:6a:4f:b2:74: 25:fe:d1:f5:84:71:20:e1:e7:e2:7d:e7:43:f3:2c: bf:4b:d2:82:d5:1d:32:50:b5:25:af:6d:bf:94:ea: 1b:ee:26:91:10:95:03:62:50:3b:20:6f:db:02:62: bc:96:aa:e2:ef:3f:42:7a:38:93:81:dc:ae:c4:30: 48:ae:0b:2b:22:4e:fa:18:b9:fb:49:03:48:1d:93: cb:15:e9:67:e1:a5:4d:21:e7:03:88:5e:31:1c:c0: 2e:d5:58:cd:22:00:35:04:c3:25:b4:21:45:e6:1e: a4:99:ba:c0:4b:8d:56:15:1b:44:7b:b1:1b:f8:14: a7:0c:8d:04:b7:92:18:e5:14:f8:36:22:a1:b8:7f: 10:8a:d6:0f:6f:dc:66:52:c3:5d:82:34:c5:a1:02: 68:13:6f:0a:ff:63:e1:d0:f1:ac:bf:8b:87:be:76: 89:c9:98:fd:64:f9:d7:0e:ad:a2:59:a0:9a:7d:e7: 83:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E2:66:B1:87:FC:2E:23:E5:97:2B:A1:13:05:65:AF:82:CD:AE:27 X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:f4:53:31:ad:f7:33:95:f5:9e:0d:10:4c:c2:c0:ec:f0:ae: 84:1f:73:d7:bc:c0:ad:3d:46:fe:4e:e3:09:8e:2b:4d:bc:82: f0:d8:e6:ec:c1:1b:df:02:d0:46:5e:22:9e:54:15:f2:ca:64: b3:35:f6:b3:37:8a:98:2c:84:50:ef:08:77:cb:9a:76:ce:cd: 42:cb:9a:38:cd:5d:b4:d2:c0:6e:85:fb:2c:6a:dc:af:06:c5: 5f:a4:2e:b0:15:bc:79:70:12:8f:57:1b:ca:44:11:c2:7b:5d: 49:fa:f3:52:f2:ce:b5:94:b0:cc:97:d2:56:a1:1f:11:1f:15: 56:a4:74:c1:e5:de:ab:f3:48:af:33:d0:76:c2:23:16:b5:e1: 3a:97:ab:40:19:f6:5c:20:d0:75:2b:3d:41:89:80:6e:af:72: 00:9d:65:57:1c:28:d4:d0:b2:29:92:f4:e4:96:ce:df:ba:b6: c6:ee:70:ca:03:c9:7e:62:5d:96:c7:fb:6f:f5:9d:fd:62:de: 91:e6:e7:fb:39:61:63:c3:b0:47:6c:38:e3:97:ca:de:83:e5: e4:88:d1:30:f4:eb:96:65:ce:3d:a5:a5:62:8c:da:56:be:37: bf:c8:57:e3:83:c8:8d:94:0c:af:79:f2:28:f6:84:db:1a:e4: 0c:e0:a0:2f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjYwMjI4MTcwMjI5WhcNMjYwMzA3MTcwMjI5WjAYMRYwFAYD VQQDDA02OWEzMWZhNS1kOWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1AOtzvW9crwDjxmZrV7gpjwwQrxsKzNhpMm+aekiGxyW9183nuLxv1Gl/hv8 1cFEC0t4ZFZh8NhXYDtZxWPy6aQlDjBwnGpPsnQl/tH1hHEg4efifedD8yy/S9KC 1R0yULUlr22/lOob7iaREJUDYlA7IG/bAmK8lqri7z9CejiTgdyuxDBIrgsrIk76 GLn7SQNIHZPLFeln4aVNIecDiF4xHMAu1VjNIgA1BMMltCFF5h6kmbrAS41WFRtE e7Eb+BSnDI0Et5IY5RT4NiKhuH8QitYPb9xmUsNdgjTFoQJoE28K/2Ph0PGsv4uH vnaJyZj9ZPnXDq2iWaCafeeDBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDriZrGH /C4j5ZcroRMFZa+Cza4nMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANPRTMa33M5X1ng0QTMLA7PCuhB9z17zArT1G/k7jCY4rTbyC8Njm7MEb3wLQ Rl4inlQV8spkszX2szeKmCyEUO8Id8uads7NQsuaOM1dtNLAboX7LGrcrwbFX6Qu sBW8eXASj1cbykQRwntdSfrzUvLOtZSwzJfSVqEfER8VVqR0weXeq/NIrzPQdsIj FrXhOperQBn2XCDQdSs9QYmAbq9yAJ1lVxwo1NCyKZL05JbO37q2xu5wygPJfmJd lsf7b/Wd/WLekebn+zlhY8OwR2w445fK3oPl5IjRMPTrlmXOPaWlYozaVr43v8hX 44PIjZQMr3nyKPaE2xrkDOCgLw== -----END CERTIFICATE-----Generated at Sun Mar 1 23:38:28 2026 by rpki-client