$ rpki-client -vvf rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft File: 2kcELjdqlHP8Dt_IRFc53RMorg4.mft (raw, json) Hash identifier: RkeEnUhWm+9G93VITLYZlHjUsd8wiFQNj/I7fOpMdQs= Subject key identifier: EB:EE:26:5B:F9:A9:BE:E0:8A:2D:E6:16:3F:24:17:BC:1F:6E:D3:8A Authority key identifier: DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E Certificate issuer: /CN=A9191DF4/serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Certificate serial: 0EB3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft Manifest number: 0E98 Signing time: Thu 16 Apr 2026 17:40:03 +0000 Manifest this update: Thu 16 Apr 2026 17:40:03 +0000 Manifest next update: Thu 23 Apr 2026 17:40:03 +0000 Files and hashes: 1: 2kcELjdqlHP8Dt_IRFc53RMorg4.crl (hash: QiUWd4YCGzebNrD7tTygNBmjiMgIk/7M9FrfLsMmU0I=) 2: B922DB22E84211EA918B8F09C4F9AE02.roa (hash: LfIFl6rYWrXVoxcyn0clPS9g9F++NUROBoNirluuY6Y=) 3: B5D4A156598B11EC82C8685CC4F9AE02.roa (hash: DFvUjSl+6A6klX7hNwdfn4zHvZwMt+wqIU2vy92vesE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:40:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3763 (0xeb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191DF4, serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Validity Not Before: Apr 16 17:40:03 2026 GMT Not After : Apr 23 17:40:03 2026 GMT Subject: CN=69e11ef3-e19b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0b:9d:4e:68:2c:16:96:0b:4d:c1:e5:fa:54: 31:b4:46:1b:a1:37:10:f4:6e:f8:4f:2c:87:7a:e5: 8a:0b:d0:3d:32:71:a9:38:ab:8a:03:d0:36:b6:53: 92:1b:77:91:94:6c:ad:d8:b0:1a:a4:65:7c:58:f6: 76:2d:3d:f1:ce:9e:f8:49:3c:b3:af:43:8e:f3:bc: a3:ba:fa:d3:61:b2:c0:94:bf:26:1c:d4:0b:0b:f1: 1c:dc:1c:47:92:4a:b1:6b:42:0f:88:a3:7a:42:b5: 08:06:69:d5:7a:f8:b9:84:f7:39:b7:bd:36:89:05: 9b:2a:60:5c:f4:90:78:6d:0d:46:75:6b:7d:74:00: 6e:01:b6:be:20:3f:99:e4:64:82:7c:a2:e7:b2:c3: cd:2b:d5:fe:7c:ab:58:9f:68:98:87:d5:d3:22:26: cb:b9:87:43:05:37:9b:fc:2f:2c:d8:04:3f:ab:03: e3:15:62:e9:de:93:a1:f3:c3:21:90:5a:14:74:19: a0:56:5e:b9:c7:d7:9c:d7:c9:13:d3:b3:94:61:c4: 5b:a3:56:57:12:b4:cf:d5:57:a9:e1:11:eb:b1:ea: 8f:40:ec:4e:2c:c9:5f:5b:12:eb:99:12:11:b1:ba: d2:c6:5d:c9:f4:a4:da:93:a4:52:cc:89:b3:a7:79: 4f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:EE:26:5B:F9:A9:BE:E0:8A:2D:E6:16:3F:24:17:BC:1F:6E:D3:8A X509v3 Authority Key Identifier: keyid:DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:32:45:6f:0d:8c:49:39:b8:59:59:e4:6b:a2:46:04:c6:8e: cb:2c:36:02:87:e8:23:ae:0a:f0:83:cf:44:4b:32:c4:28:7b: ad:79:4f:02:d4:95:ce:0a:a2:e9:43:69:53:58:91:c5:44:19: a4:0a:d8:e2:c6:00:9c:d1:76:08:40:32:ac:01:f8:6e:c6:f4: 61:a2:2e:67:80:42:e3:70:b2:59:f7:ad:ad:2e:b3:f9:53:7f: bf:dd:42:bf:8b:8c:63:67:69:d4:ca:63:41:a3:b4:23:a4:e9: d4:c6:20:1f:c4:12:78:61:ec:84:ea:c4:55:a5:6c:61:72:47: 39:27:05:78:fc:50:f8:11:80:34:97:02:7f:fd:c5:50:39:0f: d0:fd:01:cf:9c:fa:ac:ea:c0:e5:4a:e4:cd:87:e6:4e:79:20: ee:78:db:fa:fe:ec:41:07:0a:6d:67:76:c9:22:65:3e:f5:dc: 7a:79:bf:5b:c0:5d:82:8a:5b:2e:e6:e1:9d:4a:e6:90:fa:9e: 4c:f5:29:b9:ab:3c:3a:50:cb:d4:5e:b1:89:8c:24:bd:80:21: b4:b5:3d:00:be:4c:2b:2d:24:ba:4b:89:d5:d0:ea:11:d9:84: 4f:3b:6b:57:7c:24:ad:fd:5d:4f:65:45:bc:83:ba:75:6a:e3: d4:24:88:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFERjQxMTAvBgNVBAUTKERBNDcwNDJFMzc2QTk0NzNGQzBFREZDODQ0NTczOURE MTMyOEFFMEUwHhcNMjYwNDE2MTc0MDAzWhcNMjYwNDIzMTc0MDAzWjAYMRYwFAYD VQQDEw02OWUxMWVmMy1lMTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7QudTmgsFpYLTcHl+lQxtEYboTcQ9G74TyyHeuWKC9A9MnGpOKuKA9A2tlOS G3eRlGyt2LAapGV8WPZ2LT3xzp74STyzr0OO87yjuvrTYbLAlL8mHNQLC/Ec3BxH kkqxa0IPiKN6QrUIBmnVevi5hPc5t702iQWbKmBc9JB4bQ1GdWt9dABuAba+ID+Z 5GSCfKLnssPNK9X+fKtYn2iYh9XTIibLuYdDBTeb/C8s2AQ/qwPjFWLp3pOh88Mh kFoUdBmgVl65x9ec18kT07OUYcRbo1ZXErTP1Vep4RHrseqPQOxOLMlfWxLrmRIR sbrSxl3J9KTak6RSzImzp3lPCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOvuJlv5 qb7gii3mFj8kF7wfbtOKMB8GA1UdIwQYMBaAFNpHBC43apRz/A7fyERXOd0TKK4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MURGNC9GNDFEMUMxOEIz OEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxIUDhEdF9JUkZjNTNSTW9y ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY0VMamRxbEhQOER0X0lSRmM1M1JNb3JnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MURGNC9GNDFEMUMxOEIzOEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxI UDhEdF9JUkZjNTNSTW9yZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKzJFbw2MSTm4WVnka6JGBMaOyyw2AofoI64K8IPPREsyxCh7rXlPAtSVzgqi 6UNpU1iRxUQZpArY4sYAnNF2CEAyrAH4bsb0YaIuZ4BC43CyWfetrS6z+VN/v91C v4uMY2dp1MpjQaO0I6Tp1MYgH8QSeGHshOrEVaVsYXJHOScFePxQ+BGANJcCf/3F UDkP0P0Bz5z6rOrA5UrkzYfmTnkg7njb+v7sQQcKbWd2ySJlPvXcenm/W8Bdgopb LubhnUrmkPqeTPUpuas8OlDL1F6xiYwkvYAhtLU9AL5MKy0kukuJ1dDqEdmETztr V3wkrf1dT2VFvIO6dWrj1CSIWA== -----END CERTIFICATE-----Generated at Fri Apr 17 03:51:20 2026 by rpki-client