$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: YctRlcU3pQdtvNXD7naiaJSIoKkMQyxbdADHw0BAhHI= Subject key identifier: E1:BB:89:42:85:31:E8:34:A4:7D:5B:F7:1D:0C:65:09:C8:08:DB:79 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 0283 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 027A Signing time: Sun 05 Apr 2026 01:32:47 +0000 Manifest this update: Sun 05 Apr 2026 01:32:47 +0000 Manifest next update: Sun 12 Apr 2026 01:32:47 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: ygy+zdvdLjgo8EUdz3bN6ESsbsfNXjOIerS4HlHHWlE=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: XkgCUe6o/GCC4RXMS466VJWBGD4478vydtNuBFIJtZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 643 (0x283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3, serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: Apr 5 01:32:47 2026 GMT Not After : Apr 12 01:32:47 2026 GMT Subject: CN=69d1bbbf-fc6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:05:3d:f3:37:b3:f6:70:9e:bd:7a:a2:bb:3a: 53:1a:a8:8d:2a:70:6c:73:45:df:1a:e6:7f:48:4c: ce:02:8f:bd:44:03:6c:78:de:7f:53:8d:b0:c3:86: a4:9a:d7:48:7a:ad:d9:ba:56:de:d3:19:f4:66:54: 20:62:5a:44:a0:ca:a9:f5:f7:41:6a:bf:f4:9b:21: 08:9c:2a:8b:25:10:8a:99:bd:dd:19:d3:59:de:45: 41:96:34:e4:6f:f9:2d:83:7e:71:35:a7:04:37:09: 28:4a:95:bd:8e:fa:33:6f:49:bd:6c:98:ab:60:3c: 85:0b:3e:16:73:72:b7:33:4d:77:94:48:4d:88:2e: 33:4a:dd:c5:3b:79:75:37:4a:7e:47:6e:cb:89:f7: 7e:29:d6:fc:aa:66:8d:5d:f4:21:9d:b7:a6:12:98: 2f:ae:88:28:8b:c6:84:d2:5b:af:d9:c1:ee:c5:d9: 14:d8:1a:ba:d6:9d:49:55:ab:5a:6d:41:71:c1:d5: 07:ae:9b:08:c9:54:53:b3:46:7f:e4:9f:22:a8:e1: 9b:d6:f1:d9:57:d7:d3:98:9d:de:0f:90:df:cb:92: c0:95:47:b1:9b:04:ce:78:59:88:88:72:c8:cd:97: 54:a6:b2:c8:e9:96:0f:97:ac:be:b0:21:a2:2a:c1: a3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:BB:89:42:85:31:E8:34:A4:7D:5B:F7:1D:0C:65:09:C8:08:DB:79 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:97:ec:61:6a:65:15:28:d8:16:ee:c9:9f:c9:a3:01:d6:fa: c5:71:dd:66:c4:63:d5:06:e4:2c:bc:aa:ae:13:08:34:30:c0: a3:fb:ec:b1:d7:63:06:5e:83:0f:b1:f9:2e:c4:96:62:71:04: fc:d8:79:ef:85:56:2e:48:ad:c2:6e:78:08:47:ea:4c:95:23: e9:d4:cb:d3:7f:e1:d9:d5:e3:c2:7f:2a:22:bf:b5:27:ac:cd: f7:bb:a9:f5:72:5d:89:fd:30:ce:3d:c3:17:09:7b:80:2e:68: 5f:d7:c7:65:d2:8a:2c:00:79:85:b3:b5:96:77:db:2f:bf:7c: 9d:06:01:e5:16:2f:ab:19:c4:cc:79:2c:e7:bc:42:36:f0:6f: 88:4a:fc:b1:41:33:58:b9:a4:12:80:6d:80:1f:90:4b:54:8c: 59:d5:e1:ed:96:50:d1:3f:90:cb:44:d9:6b:32:b9:7b:44:aa: b4:e7:9c:70:eb:57:78:71:5d:bb:06:3c:ae:fa:9b:d2:3f:3a: 41:a9:a4:ad:d6:b0:dd:67:99:11:82:2a:b9:b9:d9:9e:5f:c2: d0:a8:79:7c:21:39:7f:ef:bd:69:41:7c:8c:05:22:19:f6:80: 7d:e6:68:52:8a:e3:5d:cc:38:34:e4:9d:ea:ff:79:8c:e3:69: 46:fb:1c:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjYwNDA1MDEzMjQ3WhcNMjYwNDEyMDEzMjQ3WjAYMRYwFAYD VQQDEw02OWQxYmJiZi1mYzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAU98zez9nCevXqiuzpTGqiNKnBsc0XfGuZ/SEzOAo+9RANseN5/U42ww4ak mtdIeq3Zulbe0xn0ZlQgYlpEoMqp9fdBar/0myEInCqLJRCKmb3dGdNZ3kVBljTk b/ktg35xNacENwkoSpW9jvozb0m9bJirYDyFCz4Wc3K3M013lEhNiC4zSt3FO3l1 N0p+R27Lifd+Kdb8qmaNXfQhnbemEpgvrogoi8aE0luv2cHuxdkU2Bq61p1JVata bUFxwdUHrpsIyVRTs0Z/5J8iqOGb1vHZV9fTmJ3eD5Dfy5LAlUexmwTOeFmIiHLI zZdUprLI6ZYPl6y+sCGiKsGjpwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOG7iUKF Meg0pH1b9x0MZQnICNt5MB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApJfsYWplFSjYFu7Jn8mjAdb6xXHdZsRj1QbkLLyqrhMINDDAo/vssddjBl6D D7H5LsSWYnEE/Nh574VWLkitwm54CEfqTJUj6dTL03/h2dXjwn8qIr+1J6zN97up 9XJdif0wzj3DFwl7gC5oX9fHZdKKLAB5hbO1lnfbL798nQYB5RYvqxnEzHks57xC NvBviEr8sUEzWLmkEoBtgB+QS1SMWdXh7ZZQ0T+Qy0TZazK5e0SqtOeccOtXeHFd uwY8rvqb0j86Qamkrdaw3WeZEYIqubnZnl/C0Kh5fCE5f++9aUF8jAUiGfaAfeZo UorjXcw4NOSd6v95jONpRvsccg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:51:36 2026 by rpki-client