$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft File: he6QOP_DVBq9-33Z7TPyquNy54w.mft (raw, json) Hash identifier: raetoBhG9VFEdxN8gmC9faXxv4Gpj/KLGzUIET9dJB0= Subject key identifier: B4:D0:DA:D7:C6:62:85:28:BD:6F:FB:D1:B4:21:7D:A1:4C:35:D8:AB Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 063D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft Manifest number: 0620 Signing time: Thu 16 Apr 2026 22:46:07 +0000 Manifest this update: Thu 16 Apr 2026 22:46:07 +0000 Manifest next update: Thu 23 Apr 2026 22:46:07 +0000 Files and hashes: 1: he6QOP_DVBq9-33Z7TPyquNy54w.crl (hash: qIjdn02rg6gyVDruOLJL87JsR4sQ/PksSXdTrLopWa0=) 2: A6EF097068F911F092D77151C4F9AE02.roa (hash: 7IDRB+gCfRdMDyJ7PzWwJWumz+UxY0a58MybMwDHWJQ=) 3: 07FBA006084E11EF89D29620C4F9AE02.roa (hash: WCC6UXi4R+1X1dVKcTmUaZE1whe9HYXD5VTHWuUKKDc=) 4: 09182D38084E11EF89D29620C4F9AE02.roa (hash: SuNBYkbcHt/E/yDdSZbsjsp7zc+8rseF2Of8cM/fHb4=) 5: 7AFCC818E38611EB8BC17765C4F9AE02.roa (hash: 3Cr/pccyDDHFzNo5H8nu6zPrLpYVCpjD2Q93h8Zz6zQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1597 (0x63d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Apr 16 22:46:07 2026 GMT Not After : Apr 23 22:46:07 2026 GMT Subject: CN=69e166af-a0e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6b:0f:eb:d6:a5:47:e2:82:75:77:a6:07:50: a0:3e:59:80:1c:fd:dc:b3:6e:55:58:60:84:e6:72: da:8e:7b:5b:d7:de:9a:e2:ef:cb:0b:af:19:dc:a1: b0:6c:ed:04:76:6c:0b:ce:c4:d2:a2:56:59:a0:73: 33:e2:b5:51:37:17:4c:4d:d0:57:88:3e:10:24:bb: d8:d3:80:5e:06:d7:c8:44:92:b4:06:30:68:25:79: 69:76:65:a4:31:aa:14:65:51:b8:74:98:73:59:69: b6:3c:64:6c:45:9a:a1:6b:0b:6f:60:62:84:07:3b: f4:b7:ff:b1:55:ef:a5:72:3f:52:8d:8d:89:4c:ff: ff:0b:ca:99:7b:e2:a2:e6:ef:82:c9:3a:32:75:6b: 2f:a8:cf:dd:1e:6d:e0:83:9c:5a:1a:2f:be:88:66: 98:2b:5a:9b:20:ef:d9:fe:ee:ab:d7:53:21:c6:62: 40:e9:f0:08:7a:a6:6b:c5:4a:69:6f:51:f3:6b:70: d0:01:14:33:0f:92:95:06:e9:48:91:1c:11:38:02: 17:38:77:04:ef:be:56:d2:38:50:b6:f4:33:b2:f6: 89:62:9c:ec:e4:0a:dd:51:7b:47:d8:1c:2a:4d:65: 2e:cf:dc:94:c0:0b:e5:b7:90:7a:e8:bb:97:d5:24: 4f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:D0:DA:D7:C6:62:85:28:BD:6F:FB:D1:B4:21:7D:A1:4C:35:D8:AB X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:90:93:e2:77:7a:0b:7f:7c:0a:5f:5b:6c:a4:2b:ab:3f:24: 15:5a:99:0f:1d:d4:ca:7a:e2:32:06:af:a8:9d:b8:01:75:81: cf:ea:f5:ac:a3:99:08:b7:40:24:14:0e:05:b2:20:de:5f:38: 24:39:0b:26:f0:7e:b0:00:dd:ee:cf:9e:58:57:fc:36:0c:2b: 95:e6:8a:1b:aa:b1:bf:03:f7:1a:03:4e:56:e2:66:40:95:8b: 34:db:17:8a:71:e8:76:b2:31:69:bb:cf:c2:4d:e4:8f:77:d7: 5d:60:f4:cd:f7:bd:46:4d:e2:a1:50:0f:52:eb:cf:32:ec:b6: 4d:c5:c5:33:d5:48:53:e9:3d:0f:52:4a:4f:58:ee:91:be:7b: 46:e4:75:a9:94:1b:98:26:82:2b:99:dc:00:3e:c0:41:b8:9c: 98:46:30:d9:20:85:86:c5:c4:04:c0:f8:91:7b:e7:e8:a9:b5: 76:3e:9f:c8:e8:ce:c6:df:6a:60:3f:a8:a4:26:d6:2b:81:96: df:17:33:a2:e9:c8:be:b9:99:6d:33:31:4c:2a:cf:f9:11:71: 36:15:34:5d:b2:42:c1:35:4b:31:c6:11:72:fb:a1:6a:64:13: 27:c9:03:26:30:04:bc:55:e0:dd:cf:8e:b0:3a:c3:e5:69:08: cd:ac:8a:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjYwNDE2MjI0NjA3WhcNMjYwNDIzMjI0NjA3WjAYMRYwFAYD VQQDEw02OWUxNjZhZi1hMGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmsP69alR+KCdXemB1CgPlmAHP3cs25VWGCE5nLajntb196a4u/LC68Z3KGw bO0EdmwLzsTSolZZoHMz4rVRNxdMTdBXiD4QJLvY04BeBtfIRJK0BjBoJXlpdmWk MaoUZVG4dJhzWWm2PGRsRZqhawtvYGKEBzv0t/+xVe+lcj9SjY2JTP//C8qZe+Ki 5u+CyToydWsvqM/dHm3gg5xaGi++iGaYK1qbIO/Z/u6r11MhxmJA6fAIeqZrxUpp b1Hza3DQARQzD5KVBulIkRwROAIXOHcE775W0jhQtvQzsvaJYpzs5ArdUXtH2Bwq TWUuz9yUwAvlt5B66LuX1SRPqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLTQ2tfG YoUovW/70bQhfaFMNdirMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVFNC9FRDA3OURGRUUzODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZC cTktMzNaN1RQeXF1Tnk1NHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAV5CT4nd6C398Cl9bbKQrqz8kFVqZDx3UynriMgavqJ24AXWBz+r1rKOZCLdA JBQOBbIg3l84JDkLJvB+sADd7s+eWFf8NgwrleaKG6qxvwP3GgNOVuJmQJWLNNsX inHodrIxabvPwk3kj3fXXWD0zfe9Rk3ioVAPUuvPMuy2TcXFM9VIU+k9D1JKT1ju kb57RuR1qZQbmCaCK5ncAD7AQbicmEYw2SCFhsXEBMD4kXvn6Km1dj6fyOjOxt9q YD+opCbWK4GW3xczounIvrmZbTMxTCrP+RFxNhU0XbJCwTVLMcYRcvuhamQTJ8kD JjAEvFXg3c+OsDrD5WkIzayKWA== -----END CERTIFICATE-----Generated at Fri Apr 17 07:59:45 2026 by rpki-client