$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft File: Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft (raw, json) Hash identifier: RZAf4twWq0k1t7JMsSedYpzvIX4dxFmY83MMTqC4cPs= Subject key identifier: FB:39:11:20:9B:A5:7F:A1:5E:3B:0A:BF:D2:59:08:7F:C0:4B:1F:B3 Authority key identifier: 1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D Certificate issuer: /CN=A91CFA8D/serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Certificate serial: 0779 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft Manifest number: 0772 Signing time: Sat 04 Apr 2026 21:24:54 +0000 Manifest this update: Sat 04 Apr 2026 21:24:54 +0000 Manifest next update: Sat 11 Apr 2026 21:24:54 +0000 Files and hashes: 1: Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl (hash: OtfAtGykYGCQozOsKq6Xvj63SaIkLahJdz17KIBvxhs=) 2: 6AA36A7E564D11EB8B387024C4F9AE02.roa (hash: EjQAXg2usCcTUh9gyvVBrkzQeLYgfkd976KZ0ehXsBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:24:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1913 (0x779) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8D, serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Validity Not Before: Apr 4 21:24:54 2026 GMT Not After : Apr 11 21:24:54 2026 GMT Subject: CN=69d181a6-91ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d2:12:12:40:b8:01:e6:d1:22:a1:90:3a:cd: 78:92:65:84:5a:d2:03:b4:e6:e8:7e:c3:30:76:38: 79:e4:98:0a:1c:89:a9:f4:1a:95:61:87:35:cb:11: 77:f6:d5:f5:e5:0c:70:1f:9c:8b:9e:7a:24:7b:7a: 6c:2c:fd:74:36:f9:9c:f9:3a:29:aa:ba:bc:8f:a3: 92:f1:20:2d:ec:ab:6b:f1:ce:2e:86:b9:70:01:b3: fe:ad:93:1a:15:37:01:56:ad:ac:6d:f5:80:64:64: c9:19:3c:17:85:d3:73:32:13:b9:10:0f:c7:eb:f2: 37:c5:74:59:d6:26:26:a2:b4:15:8b:a4:ee:2d:b7: 99:75:65:58:3e:56:8d:19:8b:0c:26:18:44:e9:c9: 2d:84:fe:0d:0d:79:7e:54:03:5c:9c:48:02:0d:b5: ce:2e:a1:4b:49:3c:b4:22:f1:63:8d:2e:fd:57:de: 93:94:b8:10:ac:c7:d7:b4:27:ca:ab:f0:b6:5c:15: 02:cb:80:14:ee:59:f0:f3:0a:83:d8:84:6f:ca:19: b2:86:54:9b:52:25:e2:95:b2:0f:ca:ff:e2:94:e4: 96:12:04:e0:ab:bd:03:1d:0e:17:e8:11:45:ad:32: d9:6a:97:bd:27:23:75:4f:7b:91:0a:0f:db:91:0d: fd:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:39:11:20:9B:A5:7F:A1:5E:3B:0A:BF:D2:59:08:7F:C0:4B:1F:B3 X509v3 Authority Key Identifier: keyid:1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:f3:d3:2a:d2:f8:2d:0d:b0:e8:a6:e2:a4:e0:4a:8d:17:36: 21:5a:6e:77:90:93:41:6c:4f:f7:96:89:12:02:20:af:7c:62: fb:22:da:d8:6d:21:78:0b:cd:e6:2f:ca:6f:47:89:a0:c9:ed: b8:41:34:73:31:e0:98:48:06:b1:87:47:99:99:bf:1e:0e:05: 0a:97:b2:37:93:65:22:a1:b9:87:79:27:14:a0:b0:e6:19:63: d0:a8:05:17:aa:fc:e5:6d:5e:aa:c8:b3:46:d0:21:47:19:d8: 1b:66:27:d6:46:31:25:c0:bf:ba:41:67:78:6f:ff:7d:1f:e5: 13:d8:02:b0:c3:6c:94:e4:ba:d3:61:13:5d:25:dd:86:b3:eb: 5b:c0:40:a4:63:18:c0:75:fa:97:4a:02:98:35:b2:1d:41:ca: 56:8d:b5:e3:f6:37:9d:f4:3c:31:8d:3a:eb:21:d2:23:7d:78: c4:bb:3a:1a:6d:6a:38:8f:58:2e:eb:75:ca:54:8e:34:4c:e8: bc:ea:18:d3:0f:e3:b7:ec:8e:0c:56:7b:16:27:c2:69:ce:55: f3:2c:d5:13:c5:31:eb:46:86:26:2d:68:a9:ce:30:a1:8a:4c: 4c:85:61:8b:d7:c3:f3:4d:6d:bd:be:33:8f:7c:45:32:e2:3e: 7b:da:3e:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEQxMTAvBgNVBAUTKDFERUJCNzM3MUFCOTdCQjlGM0E5MDZFQjA3RDU5MUM5 Q0YzODhENUQwHhcNMjYwNDA0MjEyNDU0WhcNMjYwNDExMjEyNDU0WjAYMRYwFAYD VQQDEw02OWQxODFhNi05MWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstISEkC4AebRIqGQOs14kmWEWtIDtObofsMwdjh55JgKHImp9BqVYYc1yxF3 9tX15QxwH5yLnnoke3psLP10Nvmc+Topqrq8j6OS8SAt7Ktr8c4uhrlwAbP+rZMa FTcBVq2sbfWAZGTJGTwXhdNzMhO5EA/H6/I3xXRZ1iYmorQVi6TuLbeZdWVYPlaN GYsMJhhE6ckthP4NDXl+VANcnEgCDbXOLqFLSTy0IvFjjS79V96TlLgQrMfXtCfK q/C2XBUCy4AU7lnw8wqD2IRvyhmyhlSbUiXilbIPyv/ilOSWEgTgq70DHQ4X6BFF rTLZape9JyN1T3uRCg/bkQ397QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPs5ESCb pX+hXjsKv9JZCH/ASx+zMB8GA1UdIwQYMBaAFB3rtzcauXu586kG6wfVkcnPOI1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RC81NkZFRkY4MDU2 NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3bnpxUWJyQjlXUnljODRq VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hldTNOeHE1ZTduenFRYnJCOVdSeWM4NGpWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RC81NkZFRkY4MDU2NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3 bnpxUWJyQjlXUnljODRqVjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA1fPTKtL4LQ2w6KbipOBKjRc2IVpud5CTQWxP95aJEgIgr3xi+yLa2G0heAvN 5i/Kb0eJoMntuEE0czHgmEgGsYdHmZm/Hg4FCpeyN5NlIqG5h3knFKCw5hlj0KgF F6r85W1eqsizRtAhRxnYG2Yn1kYxJcC/ukFneG//fR/lE9gCsMNslOS602ETXSXd hrPrW8BApGMYwHX6l0oCmDWyHUHKVo214/Y3nfQ8MY066yHSI314xLs6Gm1qOI9Y Lut1ylSONEzovOoY0w/jt+yODFZ7FifCac5V8yzVE8Ux60aGJi1oqc4woYpMTIVh i9fD801tvb4zj3xFMuI+e9o+qQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:02:45 2026 by rpki-client