$ rpki-client -vvf rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft File: HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft (raw, json) Hash identifier: xOY8sdWGTi/fzFuP5mU1p1vTxoTxpCJWDMfxbVPCGzU= Subject key identifier: 71:5B:E9:29:21:19:3D:1D:36:B1:56:52:55:EE:C3:8E:3C:9F:D9:9E Authority key identifier: 1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C Certificate issuer: /CN=A9163609/serialNumber=1C422BB1FC96FE60D4B2FF5F6C12450ECC9EE96C Certificate serial: 0267 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft Manifest number: 0261 Signing time: Sun 05 Apr 2026 01:44:25 +0000 Manifest this update: Sun 05 Apr 2026 01:44:25 +0000 Manifest next update: Sun 12 Apr 2026 01:44:25 +0000 Files and hashes: 1: HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl (hash: /bAP0hAOkl9rJ7PRa1IlC4YDZLscwyv1JFkZr1eBndY=) 2: F2AB2F288FE011EDA9919C57C4F9AE02.roa (hash: KTnG5DXA4ykdIF+F6HQFhuSS9PnoKt4qehFaA66nt4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163609, serialNumber=1C422BB1FC96FE60D4B2FF5F6C12450ECC9EE96C Validity Not Before: Apr 5 01:44:25 2026 GMT Not After : Apr 12 01:44:25 2026 GMT Subject: CN=69d1be79-4cfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:77:31:06:e3:26:df:99:88:0a:a1:a1:22:87: 68:20:77:2c:62:09:70:dd:33:2c:d3:82:f1:e9:0d: c0:9d:c1:d2:24:7e:24:c6:bf:f0:44:93:51:52:3b: a5:cd:db:7a:19:8c:bf:ad:46:c1:66:d9:de:fe:5d: ad:bd:14:68:21:b3:79:24:e2:9b:22:97:28:c3:13: 6d:bd:35:43:cf:7b:ab:a2:af:27:01:1a:eb:8c:cf: 4b:4b:04:a8:67:16:87:61:3c:39:60:34:1e:e9:b2: 19:2c:5f:f8:bb:b5:3e:a6:3d:88:7d:68:7c:c0:a8: 51:d9:77:6a:75:16:be:f9:82:c2:c1:ee:c6:f6:16: 4d:fe:b1:a4:22:c2:ff:64:07:54:e2:05:e6:70:bb: 0c:7d:56:a1:fc:7a:b1:15:44:27:82:e1:17:71:2e: cb:06:7f:71:90:d9:c2:dd:9e:e7:a5:11:81:ea:65: 36:dd:bd:00:a8:7a:99:d1:a4:91:b4:0d:08:3a:56: 80:99:37:69:04:bc:4b:71:a9:54:db:24:58:d1:f6: 5c:37:1a:e4:89:8e:64:ee:dc:21:ea:58:b8:b3:59: bc:e2:f8:8e:f3:94:c2:ce:21:be:06:46:b8:e2:0c: d4:50:bb:40:1b:c2:46:dc:d8:88:ac:34:ad:3c:81: 37:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:5B:E9:29:21:19:3D:1D:36:B1:56:52:55:EE:C3:8E:3C:9F:D9:9E X509v3 Authority Key Identifier: keyid:1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:70:12:f5:b4:a4:16:61:e2:43:11:4d:a5:7e:48:2c:1d:e5: df:53:63:b2:72:10:a3:55:6a:c8:3a:19:fc:1a:4c:74:3c:f8: 11:0a:6b:08:2b:8b:5b:30:e7:6d:ab:4b:e8:18:d2:9c:fa:ae: 18:e4:1d:a5:0e:a7:92:31:2c:9a:e9:8e:6f:0b:06:a8:32:5e: 07:7d:7a:74:a9:f1:b1:3b:76:b5:dc:8d:7c:7b:a6:2b:54:ae: 8a:bb:df:78:3e:13:2d:dd:d8:b6:4a:f9:1d:52:29:ce:a2:18: 16:6c:61:7a:99:d2:7e:92:33:ef:9a:60:e1:b6:8d:b0:e1:9d: d4:12:30:db:b4:85:be:a4:88:08:a0:a5:2c:1b:68:7e:fb:b7: 65:68:8a:af:03:3d:2c:da:d3:97:a9:87:b7:14:25:22:c4:0b: b3:d5:94:cf:c1:39:bf:fa:92:94:fd:70:46:66:8d:64:34:e1: a4:cc:e1:88:88:7a:92:b4:3e:d1:79:ec:a9:a0:88:82:76:fc: 74:e3:d3:83:8d:fd:32:1c:72:86:42:f3:f8:60:d8:4d:1a:03: e3:0a:3a:31:e3:08:13:83:39:c3:c7:ed:d7:27:cf:97:52:e8: 73:71:4c:22:ec:ca:2b:99:9e:0b:8d:2d:ce:41:7b:a0:7c:15: f9:4b:bc:32 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM2MDkxMTAvBgNVBAUTKDFDNDIyQkIxRkM5NkZFNjBENEIyRkY1RjZDMTI0NTBF Q0M5RUU5NkMwHhcNMjYwNDA1MDE0NDI1WhcNMjYwNDEyMDE0NDI1WjAYMRYwFAYD VQQDEw02OWQxYmU3OS00Y2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArncxBuMm35mICqGhIodoIHcsYglw3TMs04Lx6Q3AncHSJH4kxr/wRJNRUjul zdt6GYy/rUbBZtne/l2tvRRoIbN5JOKbIpcowxNtvTVDz3uroq8nARrrjM9LSwSo ZxaHYTw5YDQe6bIZLF/4u7U+pj2IfWh8wKhR2XdqdRa++YLCwe7G9hZN/rGkIsL/ ZAdU4gXmcLsMfVah/HqxFUQnguEXcS7LBn9xkNnC3Z7npRGB6mU23b0AqHqZ0aSR tA0IOlaAmTdpBLxLcalU2yRY0fZcNxrkiY5k7twh6li4s1m84viO85TCziG+Bka4 4gzUULtAG8JG3NiIrDStPIE3OQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHFb6Skh GT0dNrFWUlXuw448n9meMB8GA1UdIwQYMBaAFBxCK7H8lv5g1LL/X2wSRQ7Mnuls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzYwOS8yM0Y5RThCQThG REUxMUVEQUUzNjlBNTNDNEY5QUUwMi9IRUlyc2Z5V19tRFVzdjlmYkJKRkRzeWU2 V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFSXJzZnlXX21EVXN2OWZiQkpGRHN5ZTZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzYwOS8yM0Y5RThCQThGREUxMUVEQUUzNjlBNTNDNEY5QUUwMi9IRUlyc2Z5V19t RFVzdjlmYkJKRkRzeWU2V3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEHAS9bSkFmHiQxFNpX5ILB3l31NjsnIQo1VqyDoZ/BpMdDz4EQprCCuLWzDn batL6BjSnPquGOQdpQ6nkjEsmumObwsGqDJeB316dKnxsTt2tdyNfHumK1Suirvf eD4TLd3Ytkr5HVIpzqIYFmxhepnSfpIz75pg4baNsOGd1BIw27SFvqSICKClLBto fvu3ZWiKrwM9LNrTl6mHtxQlIsQLs9WUz8E5v/qSlP1wRmaNZDThpMzhiIh6krQ+ 0XnsqaCIgnb8dOPTg439MhxyhkLz+GDYTRoD4wo6MeMIE4M5w8ft1yfPl1Loc3FM IuzKK5meC40tzkF7oHwV+Uu8Mg== -----END CERTIFICATE-----Generated at Sun Apr 5 22:25:23 2026 by rpki-client