$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: QTJ4c0rBg8Mmd3CHFHzMrktRKGXbdZu2KtF+nLy7GD8= Subject key identifier: D2:8E:58:52:13:1E:7D:A7:A4:E6:95:16:07:E7:CD:DB:2D:71:CE:DD Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 1434 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 13FF Signing time: Tue 12 May 2026 16:57:53 +0000 Manifest this update: Tue 12 May 2026 16:57:53 +0000 Manifest next update: Tue 19 May 2026 16:57:53 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: rRjDYQlGrDirKiiHsQfyugziXl64kBubI6u1A/6hPYQ=) 2: 999C6728F7FF11F08B2BFA086C6F56BC.roa (hash: 5jwoaJRF05ynypppsournA2NpxdgiK2g9i/wb3qUNp4=) 3: 40567CA8F25A11F09752333B5F6F56BC.roa (hash: XiAc49h/ITbvuy7hirc9LsEmIhpsGVSj9jKpQ0AZeG4=) 4: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: lwkWaq6p0L37tuMHM356+eKrIkOsIPecy57fgsnLnhY=) 5: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WqMqFVIMW/WczjTWRvzLRKr2fBm6q4MFQ+IAb2s3IrY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5172 (0x1434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: May 12 16:57:53 2026 GMT Not After : May 19 16:57:53 2026 GMT Subject: CN=6a035c11-43b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:de:4a:0c:23:eb:42:2c:b7:cb:00:83:d9:35: 28:f5:4c:48:ad:34:09:e2:d1:7e:bf:32:99:05:2a: a6:98:24:20:8e:53:04:48:6c:f2:10:9e:59:e3:e6: 3d:26:f8:d8:23:25:5f:a5:1d:33:50:e3:23:ac:12: 55:f5:48:d0:d3:44:7f:47:97:2e:c7:ea:f8:9e:06: 9e:b1:cd:31:8c:54:9d:94:8e:52:5d:09:7d:56:b2: 96:e1:5d:e8:1f:e3:66:8d:16:f8:59:a0:3c:b4:d0: 5b:1b:54:2a:34:11:85:77:2f:aa:2f:eb:5d:3b:ee: 23:67:60:e5:ae:b7:a0:61:f5:26:f2:82:4d:6a:71: c3:ec:a1:59:3a:98:e8:19:5e:5f:ef:19:6d:87:c8: 98:50:00:e7:56:a3:e3:7c:f0:ca:64:6f:55:41:15: a0:62:81:07:19:7f:85:cd:11:0b:e9:db:a1:99:7b: 4a:2f:80:36:de:23:5d:a5:4d:f7:9c:bc:4f:bd:21: 69:97:0f:ab:06:d1:43:82:02:ca:19:8c:03:fb:39: 62:1a:32:82:f3:88:30:0b:13:d2:1a:82:06:2f:2a: 3d:8e:d0:63:02:0e:e0:42:87:4d:4a:7c:5a:43:19: 7d:28:fa:6f:87:6b:86:13:22:a2:04:c3:63:cd:78: bd:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:8E:58:52:13:1E:7D:A7:A4:E6:95:16:07:E7:CD:DB:2D:71:CE:DD X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:53:bd:34:0b:3b:4e:27:b5:d4:de:8d:8d:18:d6:6e:04:83: 5a:6b:0e:7c:86:94:32:78:7c:af:4b:5f:a8:b8:ef:99:ca:94: 41:20:88:44:9b:07:09:5d:d7:60:1c:7f:dc:04:c3:9a:d6:fb: 53:1d:34:46:af:e1:82:dc:1f:8e:d0:86:18:b7:9b:54:23:71: 8e:f2:65:8d:4a:91:15:dd:e3:ac:9b:1e:ee:e8:ca:89:4e:ab: 70:d7:db:df:c7:02:99:ed:73:41:3f:0f:d2:70:a9:0a:ab:cd: 87:60:23:9f:9b:9a:84:d5:0c:c7:d9:65:c1:5e:b1:2d:41:f7: fb:8b:51:f3:67:e7:1e:82:17:80:a0:d9:cf:35:f2:db:78:21: 86:11:1e:7c:be:80:ec:82:29:6b:bc:a3:d3:56:31:77:14:d2: c1:c0:a0:26:a7:31:e3:05:b9:9a:cb:c6:8d:e7:41:fc:ba:de: 6f:2a:13:e5:9d:9e:e5:c5:76:7c:f2:3a:ec:a8:35:f6:6f:da: bd:7c:e2:09:a4:6e:f7:bc:ad:a5:86:8e:5c:04:dc:d6:10:fb: 7d:02:cb:d4:72:fb:ef:dd:42:c4:3f:c1:c2:26:2b:6e:ed:da: dd:3c:7a:17:56:05:65:2e:64:f9:76:a5:9d:cf:58:75:26:e7: 97:b6:3e:bc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjYwNTEyMTY1NzUzWhcNMjYwNTE5MTY1NzUzWjAYMRYwFAYD VQQDEw02YTAzNWMxMS00M2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApd5KDCPrQiy3ywCD2TUo9UxIrTQJ4tF+vzKZBSqmmCQgjlMESGzyEJ5Z4+Y9 JvjYIyVfpR0zUOMjrBJV9UjQ00R/R5cux+r4ngaesc0xjFSdlI5SXQl9VrKW4V3o H+NmjRb4WaA8tNBbG1QqNBGFdy+qL+tdO+4jZ2DlrregYfUm8oJNanHD7KFZOpjo GV5f7xlth8iYUADnVqPjfPDKZG9VQRWgYoEHGX+FzREL6duhmXtKL4A23iNdpU33 nLxPvSFplw+rBtFDggLKGYwD+zliGjKC84gwCxPSGoIGLyo9jtBjAg7gQodNSnxa Qxl9KPpvh2uGEyKiBMNjzXi9twIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNKOWFIT Hn2npOaVFgfnzdstcc7dMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI1O9NAs7Tie11N6NjRjWbgSDWmsOfIaUMnh8r0tfqLjvmcqUQSCIRJsHCV3X YBx/3ATDmtb7Ux00Rq/hgtwfjtCGGLebVCNxjvJljUqRFd3jrJse7ujKiU6rcNfb 38cCme1zQT8P0nCpCqvNh2Ajn5uahNUMx9llwV6xLUH3+4tR82fnHoIXgKDZzzXy 23ghhhEefL6A7IIpa7yj01YxdxTSwcCgJqcx4wW5msvGjedB/LrebyoT5Z2e5cV2 fPI67Kg19m/avXziCaRu97ytpYaOXATc1hD7fQLL1HL7791CxD/BwiYrbu3a3Tx6 F1YFZS5k+Xalnc9YdSbnl7Y+vA== -----END CERTIFICATE-----Generated at Tue May 12 23:10:03 2026 by rpki-client