$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: A0XR39wKIZihLsIZcomI/TO/3cG2g1kao93t/QxfFgY= Subject key identifier: B0:23:85:24:05:6B:A2:43:4B:67:B5:E4:06:18:3B:2B:54:82:6A:83 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 0296 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 028D Signing time: Wed 13 May 2026 01:52:41 +0000 Manifest this update: Wed 13 May 2026 01:52:40 +0000 Manifest next update: Wed 20 May 2026 01:52:40 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: Sfl81GAawaY7EI4SNiiFE2urUhjSbUPSgYPOEx2Vu+Q=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: XkgCUe6o/GCC4RXMS466VJWBGD4478vydtNuBFIJtZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 01:52:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 662 (0x296) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: May 13 01:52:40 2026 GMT Not After : May 20 01:52:40 2026 GMT Subject: CN=6a03d969-d0d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f4:62:a6:db:9c:24:51:db:b8:02:ba:30:ce: 5c:e3:ab:17:86:5b:86:9d:c0:2b:f4:b8:c4:56:c0: 18:81:09:a1:42:69:e8:36:46:e0:34:79:8b:2b:25: 1e:fa:37:57:11:54:cb:3e:af:d9:f3:3d:c1:82:15: 97:dc:f7:7d:3b:30:32:eb:a3:fe:43:14:1f:d6:c2: 0a:b5:5b:df:92:88:13:a0:92:0c:aa:c2:15:c6:9b: 0f:09:d3:f4:33:83:05:72:d6:41:d4:62:fa:f9:43: 0c:5e:d0:64:f6:3b:d9:b6:57:5b:e0:e1:c1:64:12: d0:d1:83:e6:3a:f8:b5:c9:e6:8d:90:03:13:41:dc: fa:20:21:87:32:71:a3:5f:fb:79:45:e8:e7:10:bc: 52:6b:02:cc:24:55:c0:f2:36:f7:f3:ca:38:84:e1: df:81:2f:8c:14:2e:8a:37:58:d8:d8:b2:32:1f:79: 14:c8:91:15:13:d8:03:7e:5f:1f:f4:4d:00:74:97: 93:e4:34:64:b2:92:36:b9:4e:ec:75:6e:9e:bf:e6: 23:89:e3:bc:09:fe:be:e4:c3:fd:eb:7a:c1:7c:7f: 38:95:72:1b:c6:4d:95:a3:43:11:fa:5b:11:77:bb: 01:74:2f:9c:04:04:89:ff:e2:22:b3:4b:e9:c7:eb: cc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:23:85:24:05:6B:A2:43:4B:67:B5:E4:06:18:3B:2B:54:82:6A:83 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:41:6e:e1:f5:81:b1:7b:85:41:e6:68:54:52:36:fa:d6:c7: b7:f0:b3:cf:67:59:94:d4:89:e9:2e:c1:46:10:e9:61:4e:dc: 95:ef:74:7e:42:22:93:58:c2:14:af:9e:b5:20:dc:39:a2:2a: e3:fb:03:16:bc:60:25:e6:d0:77:77:32:78:5b:80:7e:72:93: 2f:eb:d9:a3:5f:0a:01:7f:91:c9:07:03:b8:2b:dc:37:dc:8e: 3b:00:8b:03:4d:85:23:fc:55:9d:0f:e5:ae:61:b2:fd:0e:c1: fa:f5:9a:78:73:a6:b1:4b:b4:14:3b:da:bc:9c:dd:8d:73:e9: f9:a5:7f:1b:16:77:aa:41:ca:64:7a:fa:64:b5:e5:63:f6:12: 6f:80:e9:80:5d:95:3f:8d:55:4d:48:ce:8f:87:e2:4b:26:c4: f5:13:3e:a0:96:d7:21:0c:84:aa:61:91:97:ee:af:8f:d7:e9: b1:23:e4:e1:17:cb:de:de:16:bb:5c:c0:0f:f7:0b:c5:f4:9a: 79:39:d0:95:b1:7f:af:c9:67:75:a2:10:9b:93:4c:83:79:28: ef:60:97:45:a9:b8:7d:4b:1d:ce:cc:95:98:a0:60:a3:8a:16: 1f:97:4a:21:4b:73:36:38:20:a2:30:f3:d8:65:5c:f6:26:0c: af:43:36:3d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjYwNTEzMDE1MjQwWhcNMjYwNTIwMDE1MjQwWjAYMRYwFAYD VQQDEw02YTAzZDk2OS1kMGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPRiptucJFHbuAK6MM5c46sXhluGncAr9LjEVsAYgQmhQmnoNkbgNHmLKyUe +jdXEVTLPq/Z8z3BghWX3Pd9OzAy66P+QxQf1sIKtVvfkogToJIMqsIVxpsPCdP0 M4MFctZB1GL6+UMMXtBk9jvZtldb4OHBZBLQ0YPmOvi1yeaNkAMTQdz6ICGHMnGj X/t5RejnELxSawLMJFXA8jb388o4hOHfgS+MFC6KN1jY2LIyH3kUyJEVE9gDfl8f 9E0AdJeT5DRkspI2uU7sdW6ev+YjieO8Cf6+5MP963rBfH84lXIbxk2Vo0MR+lsR d7sBdC+cBASJ/+Iis0vpx+vMaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLAjhSQF a6JDS2e15AYYOytUgmqDMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAakFu4fWBsXuFQeZoVFI2+tbHt/Czz2dZlNSJ6S7BRhDpYU7cle90fkIik1jC FK+etSDcOaIq4/sDFrxgJebQd3cyeFuAfnKTL+vZo18KAX+RyQcDuCvcN9yOOwCL A02FI/xVnQ/lrmGy/Q7B+vWaeHOmsUu0FDvavJzdjXPp+aV/GxZ3qkHKZHr6ZLXl Y/YSb4DpgF2VP41VTUjOj4fiSybE9RM+oJbXIQyEqmGRl+6vj9fpsSPk4RfL3t4W u1zAD/cLxfSaeTnQlbF/r8lndaIQm5NMg3ko72CXRam4fUsdzsyVmKBgo4oWH5dK IUtzNjggojDz2GVc9iYMr0M2PQ== -----END CERTIFICATE-----Generated at Wed May 13 07:03:43 2026 by rpki-client