$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft File: He4XpqM4DuSI7ztuISW4eOZAckg.mft (raw, json) Hash identifier: A3q+NTr6fYCJ2qqP65SWC/7rZLQiaoQOTbAcm3Tie6U= Subject key identifier: D2:47:80:E4:31:54:AA:6C:9F:D3:F7:B2:EC:76:1B:96:62:A4:E9:56 Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: 0237 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft Manifest number: 022E Signing time: Wed 13 May 2026 02:44:53 +0000 Manifest this update: Wed 13 May 2026 02:44:52 +0000 Manifest next update: Wed 20 May 2026 02:44:52 +0000 Files and hashes: 1: He4XpqM4DuSI7ztuISW4eOZAckg.crl (hash: cKkFnH9oFajm8AU6N//zwrZPq+aDl1H9ob1snzO8TdA=) 2: 805A2E74660311EF90397033C4F9AE02.roa (hash: 5vtGlk0S0hYad6mDuGYTky+IHAV1KVmi2xi5vEoQKNE=) 3: 8405155C69EB11EF933A993CC4F9AE02.roa (hash: 6/dXduBGzp0fOt3H0jel27vj2BC5gLfjT1zUeVEO9J0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22, serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: May 13 02:44:52 2026 GMT Not After : May 20 02:44:52 2026 GMT Subject: CN=6a03e5a5-6822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c7:1c:5c:81:6c:92:5e:50:57:02:f9:16:de: e6:7a:28:dc:13:e4:3a:9f:5d:3e:b3:5f:be:73:fb: 62:6f:81:63:8d:64:76:38:f3:54:33:2e:23:37:65: 6c:00:6f:3d:58:db:b1:cc:ce:b2:92:de:b2:72:6d: 30:fd:18:69:89:c8:74:6d:d7:d1:7d:6a:df:78:bf: 1a:e0:6d:d1:c6:ee:0c:78:93:90:ba:1f:90:72:6b: ab:93:29:cb:95:f1:e0:44:09:0d:98:4c:63:0b:ca: d6:86:66:78:d5:7c:89:b3:33:32:a6:ea:46:e0:73: 31:88:58:8f:40:e5:cf:1c:90:20:ec:ef:fc:c8:c3: 10:41:71:cb:4e:88:29:69:0b:3a:b3:b7:6b:f9:21: b9:72:73:08:e7:e9:60:ad:e5:0f:af:f5:9c:4d:fc: dd:cd:d9:a6:19:0d:51:26:c1:0e:67:e4:2b:15:8c: f0:50:60:d6:09:96:68:c7:2a:2c:a3:43:d2:e7:96: 5b:b1:4c:bb:6e:73:8f:51:26:55:e6:0b:7d:e9:a4: e1:4b:5c:82:86:0d:b3:93:fe:88:d1:57:d1:62:83: 76:0e:74:f8:ef:33:4b:e3:1a:71:cb:d4:20:ca:25: c5:27:df:08:0c:79:eb:dd:ca:26:7b:9b:70:c4:3a: 2b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:47:80:E4:31:54:AA:6C:9F:D3:F7:B2:EC:76:1B:96:62:A4:E9:56 X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:ac:c3:f2:0f:91:c6:30:c7:f0:60:97:8e:f2:b6:a9:a7:b5: ce:b4:c1:fd:d1:2d:fd:64:77:e9:11:b3:4d:e3:74:46:cc:62: 71:ac:b8:2e:ef:8c:3a:c5:d0:89:31:3f:4e:ce:dd:84:93:73: 79:f5:1c:a4:a7:68:3f:0d:cd:28:af:9a:8b:dd:27:28:47:04: c5:af:22:54:05:25:db:8e:0f:5f:ba:bd:8f:30:91:70:b4:60: 6d:a8:a1:77:52:d7:d1:27:fc:09:9a:05:54:55:4d:c8:ba:36: 92:4c:5e:b9:9f:c5:d0:b4:ce:ce:16:fa:ad:bc:84:b9:3d:02: e7:2c:c1:7d:a2:8c:20:b0:20:61:ce:f8:29:05:da:2d:78:f5: f2:f2:34:ec:de:e9:ba:7c:4f:f3:20:2f:37:13:7b:52:bc:12: 1e:66:1f:1f:89:9d:27:57:cc:35:2f:01:62:77:c1:c9:82:eb: 44:8b:68:8c:2f:de:3f:3c:2a:f1:a5:fd:ee:a5:a5:b4:e6:81: 17:9d:09:28:1e:a2:9b:9d:d6:30:20:46:ae:34:a4:d7:47:45: 80:b6:74:42:f1:e5:d9:3f:ff:1e:ad:30:2a:12:39:2b:c1:68: 26:4d:4f:8f:ea:e4:68:83:45:cc:61:b1:9d:7a:9d:5c:7c:d3: 9f:2a:f7:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjYwNTEzMDI0NDUyWhcNMjYwNTIwMDI0NDUyWjAYMRYwFAYD VQQDEw02YTAzZTVhNS02ODIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkcccXIFskl5QVwL5Ft7meijcE+Q6n10+s1++c/tib4FjjWR2OPNUMy4jN2Vs AG89WNuxzM6ykt6ycm0w/Rhpich0bdfRfWrfeL8a4G3Rxu4MeJOQuh+QcmurkynL lfHgRAkNmExjC8rWhmZ41XyJszMypupG4HMxiFiPQOXPHJAg7O/8yMMQQXHLTogp aQs6s7dr+SG5cnMI5+lgreUPr/WcTfzdzdmmGQ1RJsEOZ+QrFYzwUGDWCZZoxyos o0PS55ZbsUy7bnOPUSZV5gt96aThS1yChg2zk/6I0VfRYoN2DnT47zNL4xpxy9Qg yiXFJ98IDHnr3come5twxDorRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNJHgOQx VKpsn9P3sux2G5ZipOlWMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyMi8zRjdENjhBOEZERTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1 U0k3enR1SVNXNGVPWkFja2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeqzD8g+RxjDH8GCXjvK2qae1zrTB/dEt/WR36RGzTeN0Rsxicay4Lu+MOsXQ iTE/Ts7dhJNzefUcpKdoPw3NKK+ai90nKEcExa8iVAUl244PX7q9jzCRcLRgbaih d1LX0Sf8CZoFVFVNyLo2kkxeuZ/F0LTOzhb6rbyEuT0C5yzBfaKMILAgYc74KQXa LXj18vI07N7punxP8yAvNxN7UrwSHmYfH4mdJ1fMNS8BYnfByYLrRItojC/ePzwq 8aX97qWltOaBF50JKB6im53WMCBGrjSk10dFgLZ0QvHl2T//Hq0wKhI5K8FoJk1P j+rkaINFzGGxnXqdXHzTnyr3vw== -----END CERTIFICATE-----Generated at Wed May 13 06:54:36 2026 by rpki-client