$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: 7YwHy7w+W+152vNYAIrvhuXSNrHIKzUkcimrU0mT9/g= Subject key identifier: 6B:39:9C:F9:49:8D:8E:50:75:72:B1:AF:2D:83:92:6D:23:CE:DA:50 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 029A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 0291 Signing time: Thu 21 May 2026 01:49:14 +0000 Manifest this update: Thu 21 May 2026 01:49:14 +0000 Manifest next update: Thu 28 May 2026 01:49:14 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: MLl9fN6p6JvPvzc3eBlWPD/DgcGeo1DtN/7SDzrBBhk=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: XkgCUe6o/GCC4RXMS466VJWBGD4478vydtNuBFIJtZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 666 (0x29a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: May 21 01:49:14 2026 GMT Not After : May 28 01:49:14 2026 GMT Subject: CN=6a0e649a-ac50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:f6:6e:e5:72:78:08:f2:08:10:15:01:86:34: cb:f6:93:90:bf:0d:77:46:f4:cb:73:b0:e3:ac:10: 06:61:6b:64:e9:98:33:cb:73:4a:7a:48:00:40:49: c3:33:fb:7d:a7:c6:71:40:6b:65:f5:6b:32:7a:b3: ed:7f:97:24:ef:8f:f1:d4:99:40:14:3f:44:0b:7f: 18:74:fa:ef:19:6a:d8:9b:46:ce:d3:ac:f2:65:a1: 85:d2:46:33:d4:9a:38:d1:cb:c0:95:f2:0a:b6:26: 99:7d:c6:bc:c9:f9:35:be:b7:16:1b:a1:b2:79:0e: 91:38:67:fe:72:c7:d1:e1:d9:43:82:12:9c:1c:5e: fc:99:15:fa:a4:a7:6e:7e:0c:10:ca:7e:db:91:bf: bc:6d:f8:3a:1b:b7:fc:34:b6:e1:22:f9:10:f9:eb: 72:5c:16:93:6a:22:48:01:13:a6:1a:f1:0c:cb:42: 23:8c:b8:9c:90:51:c9:e7:17:90:cd:ed:ff:44:ea: e6:68:34:de:65:65:71:a5:a7:0a:07:6d:9a:ac:4c: ed:4e:9c:80:85:62:47:e7:bd:b8:4f:f8:d0:80:b4: 29:30:15:32:69:ba:85:03:86:51:4c:f6:76:db:82: cf:e4:67:b5:ca:48:4c:56:e2:a3:2f:df:8f:f5:54: ca:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:39:9C:F9:49:8D:8E:50:75:72:B1:AF:2D:83:92:6D:23:CE:DA:50 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:59:29:48:ca:1b:ad:74:7c:a3:e0:16:61:6f:06:e7:f0:60: 82:50:f0:e2:cd:df:6c:84:ff:aa:47:83:2c:8d:4f:cb:81:47: a3:33:12:ee:53:57:e4:3b:e6:02:3a:7d:9b:94:53:56:4e:14: 47:e4:ed:4b:54:99:3f:42:a6:43:a7:7c:43:64:36:78:1c:66: 9c:be:21:0f:9a:8b:13:f9:a6:89:02:46:f8:03:f9:2c:7f:6d: c4:93:cb:ca:b8:59:30:90:62:eb:3f:6b:52:8b:e7:c4:66:17: dd:ec:9b:55:94:79:24:65:1e:32:30:c7:2e:03:83:ef:c5:3c: 6b:bc:a6:1e:ff:20:74:3e:ff:20:f2:ce:ad:77:c3:fd:12:90: b6:6c:59:2f:f0:55:26:6e:dd:96:2f:95:b1:22:15:a4:25:99: 9b:28:ab:85:79:53:63:9c:00:e0:64:9f:fb:2c:7f:8c:41:5e: ce:37:76:4a:fd:e4:07:73:3b:85:17:be:fd:a2:30:86:a7:ed: 6e:87:ee:6c:26:aa:11:77:36:61:bf:f7:b7:4e:55:2c:e1:fa: 5d:ce:0a:29:7b:dd:77:30:ed:7d:29:35:4d:aa:7f:67:e3:52: 46:84:93:d6:9c:dc:19:01:dc:3b:dd:0c:3a:1a:3a:0d:b2:07: 47:e2:29:99 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjYwNTIxMDE0OTE0WhcNMjYwNTI4MDE0OTE0WjAYMRYwFAYD VQQDEw02YTBlNjQ5YS1hYzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7vZu5XJ4CPIIEBUBhjTL9pOQvw13RvTLc7DjrBAGYWtk6Zgzy3NKekgAQEnD M/t9p8ZxQGtl9WsyerPtf5ck74/x1JlAFD9EC38YdPrvGWrYm0bO06zyZaGF0kYz 1Jo40cvAlfIKtiaZfca8yfk1vrcWG6GyeQ6ROGf+csfR4dlDghKcHF78mRX6pKdu fgwQyn7bkb+8bfg6G7f8NLbhIvkQ+etyXBaTaiJIAROmGvEMy0IjjLickFHJ5xeQ ze3/ROrmaDTeZWVxpacKB22arEztTpyAhWJH5724T/jQgLQpMBUyabqFA4ZRTPZ2 24LP5Ge1ykhMVuKjL9+P9VTKfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGs5nPlJ jY5QdXKxry2Dkm0jztpQMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJVkpSMobrXR8o+AWYW8G5/BgglDw4s3fbIT/qkeDLI1Py4FHozMS7lNX5Dvm Ajp9m5RTVk4UR+TtS1SZP0KmQ6d8Q2Q2eBxmnL4hD5qLE/mmiQJG+AP5LH9txJPL yrhZMJBi6z9rUovnxGYX3eybVZR5JGUeMjDHLgOD78U8a7ymHv8gdD7/IPLOrXfD /RKQtmxZL/BVJm7dli+VsSIVpCWZmyirhXlTY5wA4GSf+yx/jEFezjd2Sv3kB3M7 hRe+/aIwhqftbofubCaqEXc2Yb/3t05VLOH6Xc4KKXvddzDtfSk1Tap/Z+NSRoST 1pzcGQHcO90MOho6DbIHR+IpmQ== -----END CERTIFICATE-----Generated at Thu May 21 11:15:28 2026 by rpki-client