$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft File: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft (raw, json) Hash identifier: jofu4W/u623xgmYPTcatg8JnEMx5JAEpNm6Sxhshc9o= Subject key identifier: 09:69:7E:C8:DC:F1:55:6C:36:C7:EB:C6:4B:58:17:C5:BA:40:7F:EB Authority key identifier: D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F Certificate issuer: /CN=A91758EC/serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft Manifest number: 96 Signing time: Fri 17 Apr 2026 07:17:06 +0000 Manifest this update: Fri 17 Apr 2026 07:17:05 +0000 Manifest next update: Fri 24 Apr 2026 07:17:05 +0000 Files and hashes: 1: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl (hash: 2t9866ShS4nAD/xbUfLPXxtfLFPjG1dPGQC+Qr1P9K8=) 2: 1B34EF06FC1C11F0AA0D3BE4396F56BC.roa (hash: Dds/tHpcyRYMFvjsIod+yPijDRVhgC1FwQ1db6dOAxA=) 3: 1AC14F60FC1C11F0AA0D3BE4396F56BC.roa (hash: d4/1Al7pieoNWzJ7p3qgYf6c/kIqYCPcAyGt54Cj2Fs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Validity Not Before: Apr 17 07:17:05 2026 GMT Not After : Apr 24 07:17:05 2026 GMT Subject: CN=69e1de72-3d64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:44:ea:db:17:d1:9e:18:05:92:aa:3c:3a:5c: 7c:55:c1:ff:7a:31:84:bb:1c:ca:67:6c:66:fc:ff: 0b:99:07:76:6a:5f:99:9c:b2:7e:9e:0a:ed:e6:1e: 75:69:7b:1c:c7:65:a3:2b:4d:a2:fa:d4:27:4e:f1: b4:f6:73:aa:fd:32:c5:cd:b6:ae:84:b6:7d:a7:4a: 95:11:34:aa:1c:40:63:2b:02:84:5b:b4:a7:fa:12: 00:0d:d8:85:e9:28:2f:0b:df:68:9e:b1:a1:0b:f6: 45:f6:48:89:58:0e:2c:01:78:08:43:7c:1f:37:47: 0f:25:91:de:6e:60:f9:2f:df:85:f4:23:cd:8d:98: f6:00:3d:20:bc:58:a4:06:bb:5c:63:45:59:bf:18: 1d:03:18:2e:91:89:0c:4b:5a:b1:1a:fe:24:90:2c: 13:e8:07:27:01:a7:e0:91:77:eb:29:3f:33:f5:e4: e4:e3:47:c8:a3:63:6d:8b:26:82:4f:b1:bb:fa:8c: 65:e9:72:d7:d7:d6:cc:0e:e6:5e:cc:fe:ef:b5:47: 37:d1:7b:0b:65:17:1d:1c:28:70:d9:fa:0b:4a:f5: eb:f3:cd:4a:8d:2c:d5:ba:94:10:8a:77:e6:9d:75: 44:26:58:c3:b0:b4:18:9a:76:2a:dc:77:55:47:71: 4e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:69:7E:C8:DC:F1:55:6C:36:C7:EB:C6:4B:58:17:C5:BA:40:7F:EB X509v3 Authority Key Identifier: keyid:D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:4f:ca:22:02:f7:dd:0c:12:d9:66:aa:fc:25:e8:06:3d:6f: c9:7c:f0:20:d9:ff:82:68:45:7f:b1:2f:70:8a:45:2f:b2:f1: 80:4d:60:02:97:23:08:03:31:64:54:11:8a:3a:97:f6:48:3a: 10:f2:95:b0:35:d8:db:dd:fd:b2:74:6b:2e:cd:e4:24:a1:9b: f5:7d:7c:17:74:17:e3:e7:b0:d0:72:ee:19:a7:cf:53:7e:1a: 60:85:9a:13:04:a4:3d:73:4a:27:a9:17:12:c6:3c:69:dd:76: 40:ee:3a:a2:af:54:a8:b0:40:64:e7:dd:78:c0:bf:00:76:6b: cd:d3:27:31:4b:38:03:50:af:cb:58:e2:47:8f:87:13:13:9f: 2f:c7:35:ba:c6:d5:70:9f:61:cb:25:8c:13:87:a4:0e:1b:f8: 2e:d1:8d:29:b8:45:6d:8b:14:53:9a:25:c0:65:a0:8d:06:17: 25:18:c4:11:5a:8d:2e:f6:24:fc:ec:e5:78:21:67:4a:a6:14: 38:60:4a:4c:35:fb:68:37:aa:32:87:03:27:1e:2f:ca:cc:65: ae:7d:dd:46:fb:8e:08:4b:77:bd:b1:c4:1e:90:e0:18:d3:01: a8:80:9d:c7:37:f4:8f:c3:29:42:07:33:2b:b7:e8:0c:86:4f: 25:f3:5d:c1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4RUMxMTAvBgNVBAUTKEQ4MjdCNjg0M0VCN0Y2QjlGMEVENUYyRkY3MjM0NEE1 MkMwNEI0OUYwHhcNMjYwNDE3MDcxNzA1WhcNMjYwNDI0MDcxNzA1WjAYMRYwFAYD VQQDEw02OWUxZGU3Mi0zZDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtETq2xfRnhgFkqo8Olx8VcH/ejGEuxzKZ2xm/P8LmQd2al+ZnLJ+ngrt5h51 aXscx2WjK02i+tQnTvG09nOq/TLFzbauhLZ9p0qVETSqHEBjKwKEW7Sn+hIADdiF 6SgvC99onrGhC/ZF9kiJWA4sAXgIQ3wfN0cPJZHebmD5L9+F9CPNjZj2AD0gvFik BrtcY0VZvxgdAxgukYkMS1qxGv4kkCwT6AcnAafgkXfrKT8z9eTk40fIo2NtiyaC T7G7+oxl6XLX19bMDuZezP7vtUc30XsLZRcdHChw2foLSvXr881KjSzVupQQinfm nXVEJljDsLQYmnYq3HdVR3FO6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAlpfsjc 8VVsNsfrxktYF8W6QH/rMB8GA1UdIwQYMBaAFNgntoQ+t/a58O1fL/cjRKUsBLSf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThFQy82QkY4NkI4NDY2 MzAxMUYwQjlEQzRFNjRDNEY5QUUwMi8yQ2UyaEQ2Mzlybnc3Vjh2OXlORXBTd0V0 SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDZTJoRDYzOXJudzdWOHY5eU5FcFN3RXRKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NThFQy82QkY4NkI4NDY2MzAxMUYwQjlEQzRFNjRDNEY5QUUwMi8yQ2UyaEQ2Mzly bnc3Vjh2OXlORXBTd0V0SjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMU/KIgL33QwS2Waq/CXoBj1vyXzwINn/gmhFf7EvcIpFL7LxgE1gApcjCAMx ZFQRijqX9kg6EPKVsDXY2939snRrLs3kJKGb9X18F3QX4+ew0HLuGafPU34aYIWa EwSkPXNKJ6kXEsY8ad12QO46oq9UqLBAZOfdeMC/AHZrzdMnMUs4A1Cvy1jiR4+H ExOfL8c1usbVcJ9hyyWME4ekDhv4LtGNKbhFbYsUU5olwGWgjQYXJRjEEVqNLvYk /OzleCFnSqYUOGBKTDX7aDeqMocDJx4vysxlrn3dRvuOCEt3vbHEHpDgGNMBqICd xzf0j8MpQgczK7foDIZPJfNdwQ== -----END CERTIFICATE-----Generated at Fri Apr 17 18:25:54 2026 by rpki-client