$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: +rtpziZbhwyREsJA9boKANNzPOLr4CHo1cdt/loSmdo= Subject key identifier: 50:68:93:94:86:6B:01:1D:7F:68:70:8D:B4:B8:05:5B:25:8F:0A:C5 Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 1429 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 13F4 Signing time: Mon 20 Apr 2026 16:54:09 +0000 Manifest this update: Mon 20 Apr 2026 16:54:09 +0000 Manifest next update: Mon 27 Apr 2026 16:54:09 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: i1btopurlDfwdsUf9HoiAztG9no7Uw9H5SSKlOgULwQ=) 2: 40567CA8F25A11F09752333B5F6F56BC.roa (hash: XiAc49h/ITbvuy7hirc9LsEmIhpsGVSj9jKpQ0AZeG4=) 3: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: WqMqFVIMW/WczjTWRvzLRKr2fBm6q4MFQ+IAb2s3IrY=) 4: 999C6728F7FF11F08B2BFA086C6F56BC.roa (hash: 5jwoaJRF05ynypppsournA2NpxdgiK2g9i/wb3qUNp4=) 5: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: lwkWaq6p0L37tuMHM356+eKrIkOsIPecy57fgsnLnhY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 16:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5161 (0x1429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8, serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Apr 20 16:54:09 2026 GMT Not After : Apr 27 16:54:09 2026 GMT Subject: CN=69e65a31-99bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:82:a1:ac:35:78:a3:04:c7:59:74:e7:52:6b: fd:03:4b:d3:ff:97:e5:43:7d:98:4d:ab:5a:c0:f3: 92:91:d4:08:98:00:bd:82:c0:5e:66:b6:11:3e:aa: 4c:d9:48:6c:2a:7f:53:e3:76:e3:09:23:f9:54:07: 0d:9e:04:4d:02:df:8b:b8:c9:12:41:87:94:66:33: 40:85:71:ae:ab:fa:94:c7:fc:99:c3:b9:43:8b:37: 6c:17:65:e6:fa:a4:5a:95:c4:0b:bf:b6:4f:b9:54: f7:c7:93:2c:ef:86:c6:11:d9:de:47:a9:40:3f:ce: 1b:90:2f:b5:eb:fa:50:a5:90:05:b8:6e:f7:ac:87: 6f:51:a8:3a:18:7c:bd:51:e2:31:43:05:d2:e2:6b: 64:50:8e:36:8e:96:17:e4:c7:61:fa:d9:da:70:a9: dc:e5:4e:47:ce:66:06:c0:ce:82:6b:6a:a3:7b:d0: 38:d5:95:22:dd:f3:3f:77:04:99:f7:83:3b:34:d9: 63:02:ec:ff:ed:8f:10:fb:3c:b6:c5:52:f1:b4:04: cb:29:1d:e2:3d:53:6d:a8:24:b7:d0:f2:14:72:c0: dd:03:03:a8:d6:07:e0:c7:ac:56:1e:c3:4d:2d:7c: 83:44:f4:54:5a:40:38:b8:29:ee:c7:78:19:b9:de: 26:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:68:93:94:86:6B:01:1D:7F:68:70:8D:B4:B8:05:5B:25:8F:0A:C5 X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:a0:ea:d9:e7:63:d0:7a:8a:b9:40:ea:7c:e0:5c:bb:3a:12: c1:ca:4e:50:00:20:af:87:64:1e:47:4e:da:26:39:4f:20:d2: ca:9f:ae:39:34:f0:e2:9e:e9:55:05:87:3a:19:74:62:f1:f0: 66:cb:e3:8e:fd:c7:4a:ff:2f:70:5c:18:49:11:44:6c:69:4c: e6:f8:dc:e4:0d:e4:86:ab:d6:a1:ad:43:f6:f9:a5:f5:15:33: b4:3c:7f:98:e4:d6:8a:e7:1c:21:db:98:fc:97:15:ee:04:0d: c1:a6:c2:e9:62:8c:f0:47:0f:b4:6d:a4:6a:af:cf:a0:ef:e3: a2:21:8c:db:fb:2b:3d:29:c4:92:9f:38:ad:d3:e8:e1:d6:8f: c7:e2:d9:b4:32:76:79:e9:69:fc:39:a6:59:5e:1a:52:9a:22: b0:07:f6:9e:db:a1:3e:a0:bb:70:d0:dc:ee:0e:53:8b:3b:2a: cc:1b:a0:8b:72:c0:ad:fe:9a:bd:d5:43:af:2a:08:f2:b4:c2: 4a:18:5b:dd:2d:06:54:32:fb:17:a3:17:19:91:ed:58:6b:41: 34:ba:6a:fe:9b:bd:3d:ea:83:54:c5:d5:3a:db:03:31:0c:eb: 52:2c:90:eb:8f:5a:e6:01:1e:da:5c:61:d5:b9:64:4a:11:1a: e6:2c:f1:37 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjYwNDIwMTY1NDA5WhcNMjYwNDI3MTY1NDA5WjAYMRYwFAYD VQQDEw02OWU2NWEzMS05OWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2oKhrDV4owTHWXTnUmv9A0vT/5flQ32YTatawPOSkdQImAC9gsBeZrYRPqpM 2UhsKn9T43bjCSP5VAcNngRNAt+LuMkSQYeUZjNAhXGuq/qUx/yZw7lDizdsF2Xm +qRalcQLv7ZPuVT3x5Ms74bGEdneR6lAP84bkC+16/pQpZAFuG73rIdvUag6GHy9 UeIxQwXS4mtkUI42jpYX5Mdh+tnacKnc5U5HzmYGwM6Ca2qje9A41ZUi3fM/dwSZ 94M7NNljAuz/7Y8Q+zy2xVLxtATLKR3iPVNtqCS30PIUcsDdAwOo1gfgx6xWHsNN LXyDRPRUWkA4uCnux3gZud4mWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFBok5SG awEdf2hwjbS4BVsljwrFMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHqDq2edj0HqKuUDqfOBcuzoSwcpOUAAgr4dkHkdO2iY5TyDSyp+uOTTw4p7p VQWHOhl0YvHwZsvjjv3HSv8vcFwYSRFEbGlM5vjc5A3khqvWoa1D9vml9RUztDx/ mOTWiuccIduY/JcV7gQNwabC6WKM8EcPtG2kaq/PoO/joiGM2/srPSnEkp84rdPo 4daPx+LZtDJ2eelp/DmmWV4aUpoisAf2ntuhPqC7cNDc7g5TizsqzBugi3LArf6a vdVDryoI8rTCShhb3S0GVDL7F6MXGZHtWGtBNLpq/pu9PeqDVMXVOtsDMQzrUiyQ 649a5gEe2lxh1blkShEa5izxNw== -----END CERTIFICATE-----Generated at Wed Apr 22 07:23:43 2026 by rpki-client