$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: rrhz2PNT+w6rg8AfAnMSSlTwb8tYOCSARceAj6QdT6g= Subject key identifier: 67:B6:0A:17:73:E3:D5:D2:FE:AB:EE:9C:C9:05:81:A8:1B:93:21:AB Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 141B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 13E6 Signing time: Tue 24 Mar 2026 16:51:48 +0000 Manifest this update: Tue 24 Mar 2026 16:51:48 +0000 Manifest next update: Tue 31 Mar 2026 16:51:48 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: mifjQUOGsebCOgD9QZA4L8e66ygsEAyzoXAUZ6XLolY=) 2: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WqMqFVIMW/WczjTWRvzLRKr2fBm6q4MFQ+IAb2s3IrY=) 3: 999C6728F7FF11F08B2BFA086C6F56BC.roa (hash: 5jwoaJRF05ynypppsournA2NpxdgiK2g9i/wb3qUNp4=) 4: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: lwkWaq6p0L37tuMHM356+eKrIkOsIPecy57fgsnLnhY=) 5: 40567CA8F25A11F09752333B5F6F56BC.roa (hash: XiAc49h/ITbvuy7hirc9LsEmIhpsGVSj9jKpQ0AZeG4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5147 (0x141b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Mar 24 16:51:48 2026 GMT Not After : Mar 31 16:51:48 2026 GMT Subject: CN=69c2c124-82ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b3:e4:d9:76:74:6d:da:d4:ae:b2:00:45:78: a1:a5:47:60:d2:e0:1e:55:4b:1f:05:c3:29:bc:48: ce:d2:78:f3:2e:41:25:78:b6:02:88:29:a8:28:af: f4:9d:f6:7e:9b:83:5e:38:b5:13:95:14:8d:81:f1: 85:6e:2e:21:d0:60:e8:83:56:6c:ca:f8:8a:f2:e8: 16:1c:91:06:bd:75:65:f4:c6:cf:ed:e0:0e:64:40: 50:9a:28:c6:a4:80:ae:1c:1f:e4:1c:b1:58:c6:b9: c8:25:03:65:de:34:26:d1:7d:43:09:b3:4a:87:3c: ae:f5:a1:22:d1:55:17:9f:ba:35:64:35:39:3e:af: a6:bd:e3:48:97:e5:f9:c6:5c:08:79:5a:b9:e3:b6: 9d:f3:55:41:b8:99:cd:65:74:b9:71:33:dc:85:8b: b4:5a:f5:7d:e0:99:51:4a:74:01:02:62:5e:d2:f5: fe:2d:a7:ae:f8:1b:ee:54:56:a9:f3:de:a2:1f:65: 28:14:c2:c4:28:c5:00:32:de:03:4c:27:15:ad:cc: da:f3:04:f9:dc:6f:b9:32:3c:cd:70:24:27:4d:92: f6:7f:72:d8:d6:e9:02:0d:d1:53:19:fe:0e:0d:4d: fe:ce:ee:80:5e:e8:59:33:7f:48:d2:ef:51:a1:ef: 25:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B6:0A:17:73:E3:D5:D2:FE:AB:EE:9C:C9:05:81:A8:1B:93:21:AB X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:88:54:a0:8e:51:67:2e:c8:68:74:ef:ec:4f:b2:89:90:1c: 3a:97:db:f4:5e:20:73:f9:56:8e:d6:9e:f2:56:ec:be:12:ba: 99:26:4f:93:7c:12:e1:f8:ac:fb:76:26:d3:38:ab:9a:14:67: 4b:b7:00:d6:22:d0:78:e3:50:94:c7:4b:a3:60:bd:fb:84:cb: f3:71:19:e4:6f:b5:b8:70:ce:cd:41:95:04:a3:2b:e1:8d:9a: 92:e2:e0:c7:3b:78:40:df:f3:66:c7:1f:a7:92:d0:b1:ac:83: be:d3:d0:67:32:a2:73:a0:67:8f:8c:00:62:b1:36:4a:fb:a8: 71:13:0d:45:b8:49:d4:96:95:4b:d5:04:05:c7:87:ad:05:6d: ab:f1:7f:79:62:f2:f6:6c:58:9e:fb:d8:24:e8:21:37:88:10: f2:25:ef:24:cc:08:90:9c:30:6f:73:48:3a:81:be:b6:8a:59: ef:fe:86:c2:96:20:7b:6d:0c:b4:3f:80:05:56:0d:0d:90:ed: 78:0f:ee:25:15:06:4a:e3:46:91:d1:0a:66:f9:1c:7b:41:1d: 28:fa:76:7f:e3:9f:02:4a:29:de:15:1f:0d:8a:05:f6:a8:4b: 3b:10:9f:81:b4:c6:bf:2c:7e:1b:5c:8c:1f:c7:5a:3e:40:b6: 7d:71:de:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjYwMzI0MTY1MTQ4WhcNMjYwMzMxMTY1MTQ4WjAYMRYwFAYD VQQDEw02OWMyYzEyNC04MmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4bPk2XZ0bdrUrrIARXihpUdg0uAeVUsfBcMpvEjO0njzLkEleLYCiCmoKK/0 nfZ+m4NeOLUTlRSNgfGFbi4h0GDog1ZsyviK8ugWHJEGvXVl9MbP7eAOZEBQmijG pICuHB/kHLFYxrnIJQNl3jQm0X1DCbNKhzyu9aEi0VUXn7o1ZDU5Pq+mveNIl+X5 xlwIeVq547ad81VBuJnNZXS5cTPchYu0WvV94JlRSnQBAmJe0vX+Laeu+BvuVFap 896iH2UoFMLEKMUAMt4DTCcVrcza8wT53G+5MjzNcCQnTZL2f3LY1ukCDdFTGf4O DU3+zu6AXuhZM39I0u9Roe8liwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGe2Chdz 49XS/qvunMkFgagbkyGrMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcYhUoI5RZy7IaHTv7E+yiZAcOpfb9F4gc/lWjtae8lbsvhK6mSZPk3wS4fis +3Ym0zirmhRnS7cA1iLQeONQlMdLo2C9+4TL83EZ5G+1uHDOzUGVBKMr4Y2akuLg xzt4QN/zZscfp5LQsayDvtPQZzKic6Bnj4wAYrE2SvuocRMNRbhJ1JaVS9UEBceH rQVtq/F/eWLy9mxYnvvYJOghN4gQ8iXvJMwIkJwwb3NIOoG+topZ7/6GwpYge20M tD+ABVYNDZDteA/uJRUGSuNGkdEKZvkce0EdKPp2f+OfAkop3hUfDYoF9qhLOxCf gbTGvyx+G1yMH8daPkC2fXHePA== -----END CERTIFICATE-----Generated at Thu Mar 26 06:38:26 2026 by rpki-client