$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft File: He4XpqM4DuSI7ztuISW4eOZAckg.mft (raw, json) Hash identifier: zrAEAMbdJA6lls6VywS9W8/XTs9LPLQv6hR9K9d8EH8= Subject key identifier: 33:31:BA:01:00:93:92:BD:81:95:C8:20:1A:E5:C9:00:DA:CD:51:86 Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: 0246 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft Manifest number: 023D Signing time: Sat 13 Jun 2026 02:32:37 +0000 Manifest this update: Sat 13 Jun 2026 02:32:37 +0000 Manifest next update: Sat 20 Jun 2026 02:32:37 +0000 Files and hashes: 1: He4XpqM4DuSI7ztuISW4eOZAckg.crl (hash: m6Ibwo98IAT3ceDgIwLgiAwMRSlPyLNjBwsOzOF+gcs=) 2: 805A2E74660311EF90397033C4F9AE02.roa (hash: 5vtGlk0S0hYad6mDuGYTky+IHAV1KVmi2xi5vEoQKNE=) 3: 8405155C69EB11EF933A993CC4F9AE02.roa (hash: 6/dXduBGzp0fOt3H0jel27vj2BC5gLfjT1zUeVEO9J0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:32:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 582 (0x246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22, serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: Jun 13 02:32:37 2026 GMT Not After : Jun 20 02:32:37 2026 GMT Subject: CN=6a2cc145-0912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fd:30:23:f8:ca:b1:fa:5f:98:4c:a5:6d:94: 3d:e2:a4:ab:b9:fb:a2:74:da:89:2b:17:01:dc:7d: 49:d0:4b:cc:a1:e4:64:81:79:5f:63:f0:a8:01:7b: 5b:37:19:fc:0d:25:33:93:26:b7:5b:c6:a9:90:98: 1f:c7:08:82:3a:d2:4d:39:52:27:d5:7f:07:52:72: 2a:12:f1:0b:59:f1:b5:a5:b5:cb:ec:18:45:29:bb: 54:07:ee:f5:89:8e:38:25:66:15:3c:e2:ec:38:e4: aa:b7:9e:39:1b:e8:8a:81:d8:99:ab:88:b8:c2:a8: ed:e5:40:3a:95:f6:3c:6a:12:fd:2e:76:38:be:0d: 55:7c:e4:43:9a:78:c5:14:8f:7e:02:2d:e2:27:68: 0b:1b:19:47:6f:09:87:32:10:8b:1c:10:b0:f8:de: b9:d5:e7:24:89:4f:1c:f8:7a:88:00:e8:ef:ef:cf: 5f:02:70:7f:b2:b3:cf:5e:e7:6d:f2:51:b5:99:b8: c2:3d:75:18:37:b6:8f:af:19:3f:94:14:49:9c:58: c5:a6:ca:99:33:ff:a8:58:88:ef:ca:62:a4:34:d4: 84:50:86:e9:58:83:58:31:9c:e0:07:bc:8e:06:a5: 56:e3:c6:14:7f:a1:bd:23:72:8d:d8:3a:e8:e9:35: c5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:31:BA:01:00:93:92:BD:81:95:C8:20:1A:E5:C9:00:DA:CD:51:86 X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:39:48:e8:37:c1:98:3a:a5:2d:a8:41:7b:3e:67:4c:72:af: d9:7d:28:36:64:de:07:bd:1a:7e:7d:ca:c2:e7:6d:4c:d6:13: 8f:1a:bc:c4:91:33:fa:05:26:24:30:24:9f:44:55:16:63:a9: 3f:7b:61:99:e7:cd:03:ec:00:83:a7:63:6f:fa:e3:f7:c8:72: 25:e5:b3:e3:a8:0d:fb:4c:a3:8f:5b:1b:d4:2b:dd:16:a2:60: 22:b7:44:23:e6:1a:06:9e:dc:4a:03:9f:2b:39:83:db:28:b2: 39:cf:fa:a0:e4:af:fc:cd:8b:bf:28:09:27:af:77:3d:1a:17: f7:f1:ae:9d:86:25:eb:dc:7c:f5:eb:cc:97:b7:10:0f:9a:1d: dc:ca:61:1a:3a:93:b1:52:d6:45:32:02:0c:9a:3f:73:2d:5c: 3f:80:a5:e8:0d:5e:52:07:8b:f6:08:95:fe:0c:6b:0a:65:2f: 3b:ad:81:46:45:1d:c3:dd:3f:f5:73:3f:85:da:8c:77:79:7f: c7:b9:06:f3:5e:a5:ff:53:4b:b6:31:ce:ed:20:89:8f:72:0f: a8:64:1f:fb:82:41:98:49:31:80:a1:3d:f7:b7:14:d3:68:43: 09:b4:f6:04:75:6d:5f:df:18:99:47:df:d3:04:e0:cb:61:4f: 96:07:28:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjYwNjEzMDIzMjM3WhcNMjYwNjIwMDIzMjM3WjAYMRYwFAYD VQQDEw02YTJjYzE0NS0wOTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsv0wI/jKsfpfmEylbZQ94qSrufuidNqJKxcB3H1J0EvMoeRkgXlfY/CoAXtb Nxn8DSUzkya3W8apkJgfxwiCOtJNOVIn1X8HUnIqEvELWfG1pbXL7BhFKbtUB+71 iY44JWYVPOLsOOSqt545G+iKgdiZq4i4wqjt5UA6lfY8ahL9LnY4vg1VfORDmnjF FI9+Ai3iJ2gLGxlHbwmHMhCLHBCw+N651eckiU8c+HqIAOjv789fAnB/srPPXudt 8lG1mbjCPXUYN7aPrxk/lBRJnFjFpsqZM/+oWIjvymKkNNSEUIbpWINYMZzgB7yO BqVW48YUf6G9I3KN2Dro6TXFXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDMxugEA k5K9gZXIIBrlyQDazVGGMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyMi8zRjdENjhBOEZERTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1 U0k3enR1SVNXNGVPWkFja2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApDlI6DfBmDqlLahBez5nTHKv2X0oNmTeB70afn3KwudtTNYTjxq8xJEz+gUm JDAkn0RVFmOpP3thmefNA+wAg6djb/rj98hyJeWz46gN+0yjj1sb1CvdFqJgIrdE I+YaBp7cSgOfKzmD2yiyOc/6oOSv/M2LvygJJ693PRoX9/GunYYl69x89evMl7cQ D5od3MphGjqTsVLWRTICDJo/cy1cP4Cl6A1eUgeL9giV/gxrCmUvO62BRkUdw90/ 9XM/hdqMd3l/x7kG816l/1NLtjHO7SCJj3IPqGQf+4JBmEkxgKE997cU02hDCbT2 BHVtX98YmUff0wTgy2FPlgcomg== -----END CERTIFICATE-----Generated at Sat Jun 13 15:12:42 2026 by rpki-client