$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft File: He4XpqM4DuSI7ztuISW4eOZAckg.mft (raw, json) Hash identifier: mXwFF3AwjaYlp1NK2aIqyFMdZcJxqznyQakkdMjJYfk= Subject key identifier: 2A:BC:B4:11:FF:6C:D3:99:48:26:F7:19:16:49:77:62:DB:4D:9C:24 Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: 024B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft Manifest number: 0242 Signing time: Tue 23 Jun 2026 02:37:24 +0000 Manifest this update: Tue 23 Jun 2026 02:37:23 +0000 Manifest next update: Tue 30 Jun 2026 02:37:23 +0000 Files and hashes: 1: He4XpqM4DuSI7ztuISW4eOZAckg.crl (hash: H401DyEBPR/R+7rmYSpMwKkBv8yOfmhmjzazVEVzzso=) 2: 805A2E74660311EF90397033C4F9AE02.roa (hash: 5vtGlk0S0hYad6mDuGYTky+IHAV1KVmi2xi5vEoQKNE=) 3: 8405155C69EB11EF933A993CC4F9AE02.roa (hash: 6/dXduBGzp0fOt3H0jel27vj2BC5gLfjT1zUeVEO9J0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 02:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 587 (0x24b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22, serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: Jun 23 02:37:23 2026 GMT Not After : Jun 30 02:37:23 2026 GMT Subject: CN=6a39f163-845c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:2a:80:fc:7d:68:cc:d8:c9:6b:80:2a:4e:d7: 68:b8:11:ab:e8:6b:de:ff:ef:2e:56:c0:75:54:b3: 7e:20:99:8f:af:00:ed:17:53:c9:00:37:cf:b6:51: 16:10:68:51:a7:1b:fa:c7:f7:81:35:a1:58:e8:a4: a6:42:f8:05:86:ab:0c:77:58:e4:0b:27:f8:a0:6f: 15:c9:cf:2f:b5:92:48:61:78:c4:b2:4e:79:c7:a3: c8:b8:f0:b2:5e:ec:ea:59:8c:d0:35:04:ee:11:6a: 45:6f:ce:0f:47:28:7e:b3:7d:10:08:04:3a:6e:45: 27:d2:e9:37:2b:7f:c4:36:bb:b3:b8:ce:d1:54:2a: 8d:de:8c:3d:cb:23:b8:18:64:f1:d5:a0:30:ed:24: ce:d0:23:5b:bc:4b:03:0c:94:b6:b9:d8:8e:a0:cb: 67:9d:9e:e7:86:7e:0b:95:48:33:77:2c:41:59:79: 98:4e:3c:db:5e:8f:cc:34:cf:6d:fb:46:0c:d0:36: 0a:40:08:5c:0b:ab:cb:11:6d:8f:37:a5:d4:7b:8e: 27:59:25:ae:92:0d:ec:37:47:db:8c:3b:bf:c8:f5: 22:d8:eb:7c:13:a6:ce:d4:07:f2:91:53:f1:35:45: 08:c5:e0:c0:b7:45:ea:82:0a:54:5e:bd:5c:8a:31: 54:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:BC:B4:11:FF:6C:D3:99:48:26:F7:19:16:49:77:62:DB:4D:9C:24 X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:68:8d:83:af:80:84:ed:53:c0:a2:30:17:5d:93:5c:4f:9d: 26:fa:ef:87:bc:25:ef:39:71:89:d2:7a:be:f9:dd:24:60:10: 9b:5d:ca:47:35:7d:bc:21:c6:fc:75:52:57:30:50:1e:90:97: 37:af:0a:82:f9:18:e1:93:1e:f5:10:9e:5c:54:87:4f:f5:e2: e7:1f:29:a5:45:fa:ce:2b:bf:cd:1a:42:ab:30:53:8e:72:86: b0:b4:9c:b2:10:e9:3a:15:a2:cf:14:b3:1c:87:21:34:97:96: ee:b8:59:3b:56:3e:99:95:83:03:17:c2:86:27:60:9d:5a:23: d4:4c:2e:a9:dd:03:67:3d:84:34:86:3c:6f:4d:cf:a4:a0:dc: e6:94:e5:b1:96:0b:7c:1f:02:3e:9e:cb:84:f9:a8:57:5e:f0: 27:3c:61:ef:50:8c:52:88:33:8e:1f:88:7d:55:42:dc:d1:d2: 82:18:fc:5f:c2:46:bc:1f:9d:2c:67:45:d9:ed:d6:a9:af:4f: 77:41:ba:b9:b1:19:9a:ef:d8:21:f7:cc:20:9e:72:2c:63:dc: b8:d3:c5:b8:d2:a3:22:33:00:e8:fc:84:bc:78:e4:a4:89:1a: e0:f9:d6:c0:d4:ec:7e:81:5f:de:74:ff:60:e7:64:12:f2:77: c5:3b:14:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjYwNjIzMDIzNzIzWhcNMjYwNjMwMDIzNzIzWjAYMRYwFAYD VQQDEw02YTM5ZjE2My04NDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnCqA/H1ozNjJa4AqTtdouBGr6Gve/+8uVsB1VLN+IJmPrwDtF1PJADfPtlEW EGhRpxv6x/eBNaFY6KSmQvgFhqsMd1jkCyf4oG8Vyc8vtZJIYXjEsk55x6PIuPCy XuzqWYzQNQTuEWpFb84PRyh+s30QCAQ6bkUn0uk3K3/ENruzuM7RVCqN3ow9yyO4 GGTx1aAw7STO0CNbvEsDDJS2udiOoMtnnZ7nhn4LlUgzdyxBWXmYTjzbXo/MNM9t +0YM0DYKQAhcC6vLEW2PN6XUe44nWSWukg3sN0fbjDu/yPUi2Ot8E6bO1AfykVPx NUUIxeDAt0XqggpUXr1cijFUyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCq8tBH/ bNOZSCb3GRZJd2LbTZwkMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyMi8zRjdENjhBOEZERTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1 U0k3enR1SVNXNGVPWkFja2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd2iNg6+AhO1TwKIwF12TXE+dJvrvh7wl7zlxidJ6vvndJGAQm13KRzV9vCHG /HVSVzBQHpCXN68KgvkY4ZMe9RCeXFSHT/Xi5x8ppUX6ziu/zRpCqzBTjnKGsLSc shDpOhWizxSzHIchNJeW7rhZO1Y+mZWDAxfChidgnVoj1Ewuqd0DZz2ENIY8b03P pKDc5pTlsZYLfB8CPp7LhPmoV17wJzxh71CMUogzjh+IfVVC3NHSghj8X8JGvB+d LGdF2e3Wqa9Pd0G6ubEZmu/YIffMIJ5yLGPcuNPFuNKjIjMA6PyEvHjkpIka4PnW wNTsfoFf3nT/YOdkEvJ3xTsUHg== -----END CERTIFICATE-----Generated at Wed Jun 24 11:26:27 2026 by rpki-client