$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: tlpM02vxMpWSWvt6W7Y9gN/9CkppHPYDLWIZ3cWD+nY= Subject key identifier: 1F:37:71:9D:C6:0F:89:20:40:CC:E1:D0:DA:01:F4:C8:1B:CE:91:F9 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 027D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 0274 Signing time: Wed 25 Mar 2026 01:27:09 +0000 Manifest this update: Wed 25 Mar 2026 01:27:09 +0000 Manifest next update: Wed 01 Apr 2026 01:27:09 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: Gw1HO+4M35bWIZ3+2xt5Aq+aMl74irnossXElLSNRTo=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: XkgCUe6o/GCC4RXMS466VJWBGD4478vydtNuBFIJtZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 637 (0x27d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: Mar 25 01:27:09 2026 GMT Not After : Apr 1 01:27:09 2026 GMT Subject: CN=69c339ed-4946 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fd:06:e8:9b:2e:d2:0d:bb:e9:12:37:b0:08: 67:26:4d:12:21:c8:95:15:35:b9:2c:bb:11:23:f0: 06:dc:85:14:6d:89:e3:d3:c0:65:1e:f4:81:a1:9f: 3d:15:2d:a4:86:51:1b:5d:27:8b:d5:7c:31:81:05: 3a:ba:49:c3:99:11:12:29:0a:5f:52:c5:b4:19:71: 79:65:d8:60:83:69:7b:41:e1:df:e6:90:64:73:3f: 78:50:22:c0:8d:06:c8:dd:5d:74:19:f1:a3:d7:c2: 37:96:fb:c2:d8:da:81:f9:1e:1d:a4:0b:1a:f7:8b: ac:45:35:00:51:c1:79:29:43:3a:b5:71:16:4b:37: 14:4c:db:bf:19:e6:f9:93:53:72:d8:9c:9f:26:2d: 9c:f4:00:6c:95:ce:1f:8f:2f:9c:59:75:cf:2d:cd: d2:88:1b:2c:5e:2b:cf:4d:b6:a9:05:94:ed:ff:15: c6:0b:39:40:0a:09:75:27:e0:ae:80:80:0f:a9:8b: d7:86:14:6c:67:10:97:b1:32:7b:d3:f9:c8:48:e6: 08:1c:4d:1f:3e:02:5f:34:99:d7:a4:2d:cb:a2:20: d7:ca:2b:7e:59:2c:5a:64:d4:ab:ca:03:d9:a6:07: 40:c1:f4:6d:68:fe:ad:44:c1:7c:2d:4e:0f:00:aa: b7:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:37:71:9D:C6:0F:89:20:40:CC:E1:D0:DA:01:F4:C8:1B:CE:91:F9 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:97:99:59:76:c2:56:83:1c:0b:f2:a9:80:ea:a5:89:04:a6: 1f:9c:f6:8a:99:d3:0d:2b:54:de:0f:54:3a:81:f4:e4:e7:4d: d4:b1:b5:1d:68:ef:54:19:ad:89:67:af:15:fe:d2:62:e8:72: 13:82:f4:8a:83:aa:f1:9a:3d:ef:ed:6a:f2:a3:d5:9f:bf:6f: 42:98:f6:bd:88:d5:25:1b:5f:d3:a5:f4:d6:a7:1d:5f:90:ff: dc:a8:9c:89:e8:95:68:7d:7a:95:fa:47:6c:5f:77:7c:75:69: 1e:dc:df:41:4a:74:53:14:87:35:72:9e:49:d6:9a:65:c7:1c: c2:7b:b5:ab:85:38:a4:b2:3a:9e:ae:e9:df:c2:bf:fd:28:5a: d4:92:24:2e:72:26:4c:be:b7:0a:b0:76:ba:fe:b2:5d:bb:fb: 1a:f1:cd:d9:30:01:2a:6a:fc:ba:ca:ac:af:2b:d4:d2:eb:2d: c8:76:47:01:fe:9a:1b:29:7b:65:d2:da:19:b2:19:f5:1d:60: ee:3a:e8:58:6a:3c:93:4e:c0:22:73:0e:ff:e7:83:24:a0:c7: 43:a1:4e:45:8b:e2:d2:ce:e1:d2:a9:52:24:65:52:ed:ee:c7: e3:62:7c:9c:48:85:bb:d9:d3:50:06:c8:a4:bb:ff:cd:5a:e8: 93:fd:b9:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjYwMzI1MDEyNzA5WhcNMjYwNDAxMDEyNzA5WjAYMRYwFAYD VQQDEw02OWMzMzllZC00OTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzv0G6Jsu0g276RI3sAhnJk0SIciVFTW5LLsRI/AG3IUUbYnj08BlHvSBoZ89 FS2khlEbXSeL1XwxgQU6uknDmRESKQpfUsW0GXF5Zdhgg2l7QeHf5pBkcz94UCLA jQbI3V10GfGj18I3lvvC2NqB+R4dpAsa94usRTUAUcF5KUM6tXEWSzcUTNu/Geb5 k1Ny2JyfJi2c9ABslc4fjy+cWXXPLc3SiBssXivPTbapBZTt/xXGCzlACgl1J+Cu gIAPqYvXhhRsZxCXsTJ70/nISOYIHE0fPgJfNJnXpC3LoiDXyit+WSxaZNSrygPZ pgdAwfRtaP6tRMF8LU4PAKq3jQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB83cZ3G D4kgQMzh0NoB9MgbzpH5MB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnpeZWXbCVoMcC/KpgOqliQSmH5z2ipnTDStU3g9UOoH05OdN1LG1HWjvVBmt iWevFf7SYuhyE4L0ioOq8Zo97+1q8qPVn79vQpj2vYjVJRtf06X01qcdX5D/3Kic ieiVaH16lfpHbF93fHVpHtzfQUp0UxSHNXKeSdaaZcccwnu1q4U4pLI6nq7p38K/ /Sha1JIkLnImTL63CrB2uv6yXbv7GvHN2TABKmr8usqsryvU0ustyHZHAf6aGyl7 ZdLaGbIZ9R1g7jroWGo8k07AInMO/+eDJKDHQ6FORYvi0s7h0qlSJGVS7e7H42J8 nEiFu9nTUAbIpLv/zVrok/25/A== -----END CERTIFICATE-----Generated at Thu Mar 26 04:25:09 2026 by rpki-client