$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft File: He4XpqM4DuSI7ztuISW4eOZAckg.mft (raw, json) Hash identifier: gr5t0P0TmQq9Lir+4F0SPWwXV+WlG6a9pOP66xVQVW8= Subject key identifier: 83:39:69:94:9B:2F:AC:AD:AB:C4:17:EF:8A:FE:2B:FF:BA:5A:8D:2C Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: 021B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft Manifest number: 0214 Signing time: Fri 27 Mar 2026 02:24:51 +0000 Manifest this update: Fri 27 Mar 2026 02:24:50 +0000 Manifest next update: Fri 03 Apr 2026 02:24:50 +0000 Files and hashes: 1: He4XpqM4DuSI7ztuISW4eOZAckg.crl (hash: fOIzWGDrhtDT/S5gxlMTNVmrwELLZ2SXAKeoMbolKEc=) 2: 8405155C69EB11EF933A993CC4F9AE02.roa (hash: YKEugdm9rsY01M6dP0ApaIk6is8Gv0r2VHVKzoTHctg=) 3: 805A2E74660311EF90397033C4F9AE02.roa (hash: Ykeor4N3ZYktqSK8h8Jvl4N7MDTvjXzy1VXLxOwBc0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 02:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 539 (0x21b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22, serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: Mar 27 02:24:50 2026 GMT Not After : Apr 3 02:24:50 2026 GMT Subject: CN=69c5ea73-4937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:ac:91:ce:4c:2b:42:35:0a:7e:bd:99:c9:74: 51:96:5f:06:a3:ef:f0:ce:12:81:00:ce:d0:03:42: 06:08:05:e9:51:a2:c2:2d:24:59:d5:be:32:ff:d4: d3:ed:26:ef:5d:12:9d:5b:14:7e:51:72:17:30:24: 3b:57:1b:5f:ca:53:52:15:32:bd:1d:f9:42:65:2c: 62:97:3d:db:32:ed:56:11:38:c1:11:22:2a:ae:fd: da:7d:ef:98:05:a2:2e:51:29:a5:37:3a:f7:1e:98: 92:89:6b:15:5b:df:0d:77:4c:cc:ef:eb:e4:fc:2e: e0:98:21:62:21:82:dd:bc:26:2a:23:c1:48:88:80: f5:32:45:99:8d:be:ad:0f:45:be:31:73:cc:12:08: a5:8e:27:25:54:13:5f:57:77:13:d9:f9:1e:81:d1: 6b:02:b1:20:f0:51:af:ce:c0:fa:f8:79:e5:32:b3: 75:9f:35:ca:8c:50:6d:2e:c6:84:ef:71:b3:09:b8: 76:ca:1a:74:a1:dd:a0:55:28:95:1f:0b:af:06:4f: 79:ca:97:5e:05:29:03:97:ae:82:63:d7:3c:fe:09: 2e:5b:dd:a3:39:37:54:a2:12:e3:23:a9:43:08:be: b3:61:e1:77:f9:c8:41:bf:c5:eb:35:26:0b:c4:29: 95:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:39:69:94:9B:2F:AC:AD:AB:C4:17:EF:8A:FE:2B:FF:BA:5A:8D:2C X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:23:01:b6:94:c5:0b:59:89:68:74:ee:0d:5f:18:f9:54:7d: 73:c8:a2:25:0a:77:61:23:80:03:03:19:50:53:45:40:81:d5: d2:51:50:37:0d:96:63:02:74:5f:ed:6e:92:a3:db:78:b0:38: ea:bb:20:fd:c8:ba:c6:01:47:6d:f3:ce:b1:d3:85:57:1c:a7: 48:47:b4:e6:8f:a9:62:df:2b:08:04:5f:57:0c:56:59:3e:2c: 5b:82:77:ff:62:57:3b:1c:74:f9:47:e2:e9:df:14:9d:f9:08: 40:a4:5c:42:d8:85:0a:ef:bb:bf:53:ba:b6:e6:ad:63:32:ad: 4e:12:f3:5c:ae:01:11:c9:05:93:62:fc:48:f8:81:9f:93:4b: 08:1e:e6:3e:f3:80:57:25:ef:c5:1d:d6:c8:7b:97:30:8d:f8: 67:3e:b7:8b:84:7c:24:a7:1c:30:9f:b7:d8:8f:7e:e6:9b:5f: d5:89:c3:41:96:50:76:67:08:ef:ee:67:8d:64:56:d6:2a:7e: 0c:05:ff:e4:74:9e:59:d0:ba:c9:d2:34:58:18:8f:8d:c6:d9: 90:7c:4d:d1:b0:93:f5:f5:d3:a1:02:2e:6d:73:26:b9:0d:32: 27:d0:47:85:97:b0:31:13:ed:14:1f:8b:a2:c3:63:f4:06:29: b5:30:b1:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjYwMzI3MDIyNDUwWhcNMjYwNDAzMDIyNDUwWjAYMRYwFAYD VQQDEw02OWM1ZWE3My00OTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+6yRzkwrQjUKfr2ZyXRRll8Go+/wzhKBAM7QA0IGCAXpUaLCLSRZ1b4y/9TT 7SbvXRKdWxR+UXIXMCQ7VxtfylNSFTK9HflCZSxilz3bMu1WETjBESIqrv3afe+Y BaIuUSmlNzr3HpiSiWsVW98Nd0zM7+vk/C7gmCFiIYLdvCYqI8FIiID1MkWZjb6t D0W+MXPMEgiljiclVBNfV3cT2fkegdFrArEg8FGvzsD6+HnlMrN1nzXKjFBtLsaE 73GzCbh2yhp0od2gVSiVHwuvBk95ypdeBSkDl66CY9c8/gkuW92jOTdUohLjI6lD CL6zYeF3+chBv8XrNSYLxCmVLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIM5aZSb L6ytq8QX74r+K/+6Wo0sMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyMi8zRjdENjhBOEZERTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1 U0k3enR1SVNXNGVPWkFja2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVyMBtpTFC1mJaHTuDV8Y+VR9c8iiJQp3YSOAAwMZUFNFQIHV0lFQNw2WYwJ0 X+1ukqPbeLA46rsg/ci6xgFHbfPOsdOFVxynSEe05o+pYt8rCARfVwxWWT4sW4J3 /2JXOxx0+Ufi6d8UnfkIQKRcQtiFCu+7v1O6tuatYzKtThLzXK4BEckFk2L8SPiB n5NLCB7mPvOAVyXvxR3WyHuXMI34Zz63i4R8JKccMJ+32I9+5ptf1YnDQZZQdmcI 7+5njWRW1ip+DAX/5HSeWdC6ydI0WBiPjcbZkHxN0bCT9fXToQIubXMmuQ0yJ9BH hZewMRPtFB+LosNj9AYptTCx+g== -----END CERTIFICATE-----Generated at Sat Mar 28 12:18:20 2026 by rpki-client