$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft File: he6QOP_DVBq9-33Z7TPyquNy54w.mft (raw, json) Hash identifier: dhfOBWiBb6Tnx+7MwDdwdLn07XBZCilcJklq3+2SZi4= Subject key identifier: B3:2B:AE:F5:B1:D5:CE:AE:C3:8D:46:C7:0F:FC:48:B4:0D:82:E2:FD Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 065E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft Manifest number: 0641 Signing time: Sat 20 Jun 2026 22:45:17 +0000 Manifest this update: Sat 20 Jun 2026 22:45:16 +0000 Manifest next update: Sat 27 Jun 2026 22:45:16 +0000 Files and hashes: 1: he6QOP_DVBq9-33Z7TPyquNy54w.crl (hash: oUFRBIZ0PzVV+/d1ATO/kwuJ9ScnSIaIJ33dcOgOb/8=) 2: 07FBA006084E11EF89D29620C4F9AE02.roa (hash: WCC6UXi4R+1X1dVKcTmUaZE1whe9HYXD5VTHWuUKKDc=) 3: 7AFCC818E38611EB8BC17765C4F9AE02.roa (hash: 3Cr/pccyDDHFzNo5H8nu6zPrLpYVCpjD2Q93h8Zz6zQ=) 4: A6EF097068F911F092D77151C4F9AE02.roa (hash: 7IDRB+gCfRdMDyJ7PzWwJWumz+UxY0a58MybMwDHWJQ=) 5: 09182D38084E11EF89D29620C4F9AE02.roa (hash: SuNBYkbcHt/E/yDdSZbsjsp7zc+8rseF2Of8cM/fHb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Jun 2026 22:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1630 (0x65e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Jun 20 22:45:16 2026 GMT Not After : Jun 27 22:45:16 2026 GMT Subject: CN=6a3717fc-bf77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8b:f5:69:cc:46:b3:ed:67:60:ef:c9:1b:70: fe:7b:e9:fc:f4:a0:60:a1:21:0c:8e:09:21:d2:26: b9:ff:d2:30:cc:d7:81:61:2b:28:8c:c4:89:9e:5d: a3:d3:f9:55:5b:19:79:97:79:f0:10:3e:fd:f0:8b: 90:65:9a:8f:a0:6d:2e:0c:8d:0b:6d:d7:b1:97:1e: 87:60:a1:45:6b:4d:4a:01:31:26:91:4d:bc:63:1f: 27:cd:4a:0d:0a:42:df:61:48:b1:d1:27:8d:62:bb: dd:6a:f8:58:c4:9e:90:28:c4:69:fd:ce:7b:1b:6c: 0f:62:db:0c:b7:b5:90:f3:a4:8e:ed:9e:04:90:92: 3e:be:ab:45:10:ab:1d:0a:c0:44:25:78:28:7e:fd: 38:9b:c7:0d:61:2b:22:bd:dc:44:26:8d:22:a5:8e: 5b:22:19:a3:c6:ef:16:6c:1f:23:2a:3d:5b:3a:93: fa:df:b2:be:73:2c:75:2a:e1:fc:44:36:95:6e:13: 8e:f0:e1:3a:5d:61:a2:c5:ef:4c:0f:5c:ea:5f:9b: b5:c1:f9:9f:49:12:0c:7d:b9:18:86:bd:b8:83:a4: a2:7e:bd:bc:79:85:45:43:b9:7b:ac:8e:44:a7:10: f9:32:af:dd:72:2e:6e:c9:ee:fa:a2:df:d2:05:70: a9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:2B:AE:F5:B1:D5:CE:AE:C3:8D:46:C7:0F:FC:48:B4:0D:82:E2:FD X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:78:f1:4d:da:e5:26:56:ff:37:32:fc:03:aa:35:f0:d3:d2: 86:39:d2:28:8b:cb:0e:e7:11:82:f0:3b:88:c0:8f:b6:93:f5: 2e:b8:94:f6:4c:91:55:21:12:57:17:59:e8:a6:2b:11:26:66: bb:b6:2a:72:ef:41:8d:6e:e7:f9:e8:74:3f:22:6d:04:6c:b1: cb:bb:86:6c:8c:6b:87:85:01:c1:97:d0:af:53:de:e1:8d:3d: 56:8c:c1:37:62:79:4a:f3:a9:1c:a6:47:f1:46:8f:7b:77:c1: a6:21:ca:1e:81:38:ee:22:9b:11:87:55:f8:07:b6:e4:30:f9: bc:3b:64:a7:dd:87:0d:d5:96:c7:c4:d0:42:c4:84:d1:a4:4a: f8:c3:99:58:7e:93:6b:8d:93:ed:f8:71:cb:db:59:dd:07:49: 5c:15:7a:24:69:a9:7f:25:25:5a:d5:b7:50:c3:eb:bb:9c:5f: ae:14:7b:f0:32:e1:90:4f:fc:e4:ba:df:cd:f8:80:9e:fc:dc: da:5b:ca:58:de:f0:da:78:5a:c5:66:06:03:94:80:35:a3:d0: 2a:b8:27:81:c0:21:7a:f3:fe:8c:e4:d2:41:39:8d:4f:0e:fc: 83:49:3a:77:d7:3e:70:b8:35:47:2e:3f:e6:12:23:1f:8d:d1: 8d:0e:db:4b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjYwNjIwMjI0NTE2WhcNMjYwNjI3MjI0NTE2WjAYMRYwFAYD VQQDEw02YTM3MTdmYy1iZjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4v1acxGs+1nYO/JG3D+e+n89KBgoSEMjgkh0ia5/9IwzNeBYSsojMSJnl2j 0/lVWxl5l3nwED798IuQZZqPoG0uDI0Lbdexlx6HYKFFa01KATEmkU28Yx8nzUoN CkLfYUix0SeNYrvdavhYxJ6QKMRp/c57G2wPYtsMt7WQ86SO7Z4EkJI+vqtFEKsd CsBEJXgofv04m8cNYSsivdxEJo0ipY5bIhmjxu8WbB8jKj1bOpP637K+cyx1KuH8 RDaVbhOO8OE6XWGixe9MD1zqX5u1wfmfSRIMfbkYhr24g6Sifr28eYVFQ7l7rI5E pxD5Mq/dci5uye76ot/SBXCp6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLMrrvWx 1c6uw41Gxw/8SLQNguL9MB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVFNC9FRDA3OURGRUUzODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZC cTktMzNaN1RQeXF1Tnk1NHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC3jxTdrlJlb/NzL8A6o18NPShjnSKIvLDucRgvA7iMCPtpP1LriU9kyRVSES VxdZ6KYrESZmu7Yqcu9BjW7n+eh0PyJtBGyxy7uGbIxrh4UBwZfQr1Pe4Y09VozB N2J5SvOpHKZH8UaPe3fBpiHKHoE47iKbEYdV+Ae25DD5vDtkp92HDdWWx8TQQsSE 0aRK+MOZWH6Ta42T7fhxy9tZ3QdJXBV6JGmpfyUlWtW3UMPru5xfrhR78DLhkE/8 5LrfzfiAnvzc2lvKWN7w2nhaxWYGA5SANaPQKrgngcAhevP+jOTSQTmNTw78g0k6 d9c+cLg1Ry4/5hIjH43RjQ7bSw== -----END CERTIFICATE-----Generated at Mon Jun 22 17:04:57 2026 by rpki-client