$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft File: he6QOP_DVBq9-33Z7TPyquNy54w.mft (raw, json) Hash identifier: QwS85tFodX9Bj9/mCcn64yX2uPEZLAjIdrxje5oyZRo= Subject key identifier: 47:D0:83:05:DB:FF:F6:1C:7C:BE:BE:C0:99:9C:92:61:49:38:87:EB Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 062F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft Manifest number: 0612 Signing time: Fri 20 Mar 2026 22:28:00 +0000 Manifest this update: Fri 20 Mar 2026 22:27:59 +0000 Manifest next update: Fri 27 Mar 2026 22:27:59 +0000 Files and hashes: 1: he6QOP_DVBq9-33Z7TPyquNy54w.crl (hash: eibH0cciQINfCTI0Io4x1+B3/BH/Cn5b+1KEVJ8cMqs=) 2: 09182D38084E11EF89D29620C4F9AE02.roa (hash: SuNBYkbcHt/E/yDdSZbsjsp7zc+8rseF2Of8cM/fHb4=) 3: A6EF097068F911F092D77151C4F9AE02.roa (hash: 7IDRB+gCfRdMDyJ7PzWwJWumz+UxY0a58MybMwDHWJQ=) 4: 7AFCC818E38611EB8BC17765C4F9AE02.roa (hash: 3Cr/pccyDDHFzNo5H8nu6zPrLpYVCpjD2Q93h8Zz6zQ=) 5: 07FBA006084E11EF89D29620C4F9AE02.roa (hash: WCC6UXi4R+1X1dVKcTmUaZE1whe9HYXD5VTHWuUKKDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 22:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1583 (0x62f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Mar 20 22:27:59 2026 GMT Not After : Mar 27 22:27:59 2026 GMT Subject: CN=69bdc9ef-69ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:9e:62:2b:97:7c:d5:f7:cd:8b:d3:df:3e:44: ca:72:86:56:39:6c:92:af:34:59:b3:83:a4:e1:77: e7:51:a5:40:d0:80:d6:e7:bf:86:f4:0d:f9:c0:4b: 51:ef:1f:fb:74:73:0c:ef:39:73:2b:b2:2f:dc:87: cc:98:84:a8:04:1f:14:02:ad:14:a0:1b:1f:c5:1c: 48:9f:39:a7:95:6a:a7:d5:96:5c:16:ed:94:6e:82: 1f:12:68:85:2d:65:e8:2d:27:45:5c:05:2b:4a:75: 04:6f:d3:6c:c9:42:9b:1b:bd:a0:3a:a6:db:f3:dc: a3:48:a1:97:ed:c2:5a:b9:db:4f:c5:72:d1:44:2f: e7:52:34:54:c1:7a:82:4b:2f:a2:d5:f6:0c:32:c9: 78:48:c8:7a:7e:d3:e9:de:8b:05:cc:38:75:74:b8: a8:c9:00:34:13:91:89:9b:09:b6:a2:5b:7f:57:90: d8:c8:3c:4c:2a:0d:98:01:99:66:a6:3e:12:2d:4c: fb:7b:05:5e:b2:70:01:72:1d:97:06:20:c5:0c:83: 5d:0d:d9:eb:fe:9f:eb:ad:f3:2d:e7:e6:9a:48:9d: b0:c7:18:57:eb:dd:ef:1b:aa:c2:75:90:06:ba:6f: 1c:10:56:9d:b5:9d:6d:7c:90:15:59:c2:55:4b:67: 75:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:D0:83:05:DB:FF:F6:1C:7C:BE:BE:C0:99:9C:92:61:49:38:87:EB X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:ae:74:7c:57:70:a0:5e:77:ed:94:08:a3:5f:c3:96:fb:fd: f2:17:d0:76:51:3c:c1:02:cf:cb:87:5b:69:ce:e5:81:c2:97: ff:6a:9a:3d:74:19:df:7c:ef:ab:06:62:1f:da:77:a2:c3:b4: 49:31:b6:24:c7:fe:b5:a4:4a:00:d2:4f:5b:e0:8a:84:4a:12: 47:9e:02:01:f7:32:43:e4:c0:59:81:94:51:db:ff:b9:1b:7d: aa:44:15:fd:87:f1:a0:99:cb:11:c1:78:90:79:b2:00:ed:5c: 64:af:55:72:d0:0f:b6:2c:09:80:f7:b7:9c:8f:8d:7c:7e:a9: 4c:a3:11:b4:bd:a6:3b:72:ba:ef:4a:65:a5:0b:b6:5f:bb:6c: db:a7:0f:09:4b:61:3b:42:2a:f2:e4:38:d7:73:1b:b2:56:b0: 39:df:83:2d:96:61:80:99:33:39:67:b1:21:26:6d:26:3a:c0: d7:d4:a0:24:10:cc:f0:d9:59:94:9b:02:58:20:75:ed:eb:e9: 08:a4:26:81:43:b5:61:19:7a:d2:aa:63:b6:4a:83:4d:b6:23: f4:2c:1e:fa:9a:e7:63:4a:1d:14:4e:40:e0:11:fe:dd:86:a1: c0:20:6c:66:3c:19:f3:94:5f:9b:7f:2d:d7:80:b4:e3:ed:ea: 33:54:06:a5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjYwMzIwMjIyNzU5WhcNMjYwMzI3MjIyNzU5WjAYMRYwFAYD VQQDEw02OWJkYzllZi02OWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmJ5iK5d81ffNi9PfPkTKcoZWOWySrzRZs4Ok4XfnUaVA0IDW57+G9A35wEtR 7x/7dHMM7zlzK7Iv3IfMmISoBB8UAq0UoBsfxRxInzmnlWqn1ZZcFu2UboIfEmiF LWXoLSdFXAUrSnUEb9NsyUKbG72gOqbb89yjSKGX7cJaudtPxXLRRC/nUjRUwXqC Sy+i1fYMMsl4SMh6ftPp3osFzDh1dLioyQA0E5GJmwm2olt/V5DYyDxMKg2YAZlm pj4SLUz7ewVesnABch2XBiDFDINdDdnr/p/rrfMt5+aaSJ2wxxhX693vG6rCdZAG um8cEFadtZ1tfJAVWcJVS2d1cQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEfQgwXb //YcfL6+wJmckmFJOIfrMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVFNC9FRDA3OURGRUUzODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZC cTktMzNaN1RQeXF1Tnk1NHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsq50fFdwoF537ZQIo1/Dlvv98hfQdlE8wQLPy4dbac7lgcKX/2qaPXQZ33zv qwZiH9p3osO0STG2JMf+taRKANJPW+CKhEoSR54CAfcyQ+TAWYGUUdv/uRt9qkQV /YfxoJnLEcF4kHmyAO1cZK9VctAPtiwJgPe3nI+NfH6pTKMRtL2mO3K670plpQu2 X7ts26cPCUthO0Iq8uQ413MbslawOd+DLZZhgJkzOWexISZtJjrA19SgJBDM8NlZ lJsCWCB17evpCKQmgUO1YRl60qpjtkqDTbYj9Cwe+prnY0odFE5A4BH+3YahwCBs ZjwZ85Rfm38t14C04+3qM1QGpQ== -----END CERTIFICATE-----Generated at Mon Mar 23 00:22:02 2026 by rpki-client