$ rpki-client -vvf rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft File: n2T-UJklN_sLQOUvnPrDEMonGRg.mft (raw, json) Hash identifier: AYGRj5+VFX4cxsQOghJN+w7GNWf/2J7mZKPh3Yy2EyQ= Subject key identifier: CC:AC:D0:A2:22:E8:73:D9:F3:34:BE:DD:79:13:8A:AA:33:E2:64:E5 Authority key identifier: 9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 Certificate issuer: /CN=A91A57F8/serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Certificate serial: 0298 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft Manifest number: 0285 Signing time: Fri 17 Apr 2026 02:07:04 +0000 Manifest this update: Fri 17 Apr 2026 02:07:04 +0000 Manifest next update: Fri 24 Apr 2026 02:07:04 +0000 Files and hashes: 1: n2T-UJklN_sLQOUvnPrDEMonGRg.crl (hash: bdFmZ8tjR7JKA/kP+CLBi3c4E7vUlrFh8vHWtZTckMQ=) 2: A508D320BBC711ED8DF23C40C4F9AE02.roa (hash: XiGYQotdStfaaRLDXTyJEgN5O2tsmcN7Z7VvHBR9Ytg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 664 (0x298) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A57F8, serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Validity Not Before: Apr 17 02:07:04 2026 GMT Not After : Apr 24 02:07:04 2026 GMT Subject: CN=69e195c8-0a79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2c:15:7a:04:07:45:af:d2:1d:f0:c2:68:2b: d6:7d:cb:96:22:ea:79:e5:2d:70:c8:7b:c5:bf:e6: 4c:f9:2b:a9:06:e3:d9:79:98:82:05:c7:c3:af:e6: 8f:7f:b9:d0:5e:ed:03:d1:bc:5d:48:1c:1b:53:15: fa:50:2e:99:55:e9:b0:74:3b:76:47:7f:58:0e:3f: 78:06:2f:3e:3e:6c:5f:81:36:91:e2:b9:e0:39:30: ca:13:78:2b:b8:09:02:53:d4:77:ae:8c:10:be:71: 8d:81:b9:85:a5:13:90:bc:61:82:b7:c4:47:bc:90: 41:4b:99:92:78:41:f8:14:82:23:ff:05:68:52:5e: 34:83:cc:f6:ef:ec:89:6f:54:6c:7f:c9:21:e3:29: 98:48:c9:29:a0:c5:1c:3f:62:3a:46:e3:f9:41:59: f0:39:2f:25:d9:e7:51:69:28:4a:94:8f:76:f5:72: fc:69:1f:14:5a:4e:63:74:a8:8f:1e:f1:3f:fb:fd: 57:cd:fd:ab:dc:ac:23:73:3f:6b:00:bf:a1:3e:4d: 80:66:77:2a:7a:be:22:2d:61:cd:91:d0:cd:0b:e2: c6:02:b4:e3:3e:79:e1:8f:da:b6:99:c2:7a:d5:f7: 1f:c9:d5:9a:bb:ac:da:db:9b:af:ac:f7:70:34:1d: d3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:AC:D0:A2:22:E8:73:D9:F3:34:BE:DD:79:13:8A:AA:33:E2:64:E5 X509v3 Authority Key Identifier: keyid:9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:d9:7a:67:19:3f:f4:69:51:73:b3:6f:2f:5f:8b:4e:a8:81: 85:f5:7a:49:ea:25:d1:7c:93:ce:8e:26:18:33:69:fd:ba:a4: 5d:14:ce:4a:d6:66:ea:33:f8:4c:63:9d:eb:bb:f1:6d:a7:d0: b9:87:d4:c2:f3:e3:9f:d3:fc:4f:05:ef:46:aa:f4:38:67:3e: ba:67:d4:e2:a3:56:11:91:9e:77:3c:53:13:e0:33:22:04:32: bf:eb:58:1a:9d:e8:f6:8d:49:1a:16:ca:4c:21:23:01:46:74: 5a:bd:02:67:bc:8a:b4:65:b3:4b:90:47:3d:32:3f:63:ce:9d: 65:65:bb:df:d8:a5:d2:0a:d7:e8:5f:4e:fc:21:3f:a2:a0:98: 49:cd:7f:2a:64:35:45:85:5d:f4:0e:c1:ba:3b:c9:37:e4:40: bd:1e:fc:cc:d9:93:e4:4d:24:e3:c1:52:e4:c4:ad:9e:ba:25: 43:ec:36:46:7d:ba:c4:e5:e6:3c:56:ec:94:3f:45:27:56:fb: 20:a8:f9:cb:3b:5b:36:b3:86:7d:51:1d:66:c8:c7:ab:0b:71: ab:a9:e4:70:9e:a6:1c:8c:40:06:3f:5c:2a:a0:a3:34:22:f0: e8:85:6e:e9:70:43:e3:1d:5c:5a:5e:a9:43:c6:79:3c:21:6e: 94:e0:f6:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU3RjgxMTAvBgNVBAUTKDlGNjRGRTUwOTkyNTM3RkIwQjQwRTUyRjlDRkFDMzEw Q0EyNzE5MTgwHhcNMjYwNDE3MDIwNzA0WhcNMjYwNDI0MDIwNzA0WjAYMRYwFAYD VQQDEw02OWUxOTVjOC0wYTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiwVegQHRa/SHfDCaCvWfcuWIup55S1wyHvFv+ZM+SupBuPZeZiCBcfDr+aP f7nQXu0D0bxdSBwbUxX6UC6ZVemwdDt2R39YDj94Bi8+PmxfgTaR4rngOTDKE3gr uAkCU9R3rowQvnGNgbmFpROQvGGCt8RHvJBBS5mSeEH4FIIj/wVoUl40g8z27+yJ b1Rsf8kh4ymYSMkpoMUcP2I6RuP5QVnwOS8l2edRaShKlI929XL8aR8UWk5jdKiP HvE/+/1Xzf2r3Kwjcz9rAL+hPk2AZncqer4iLWHNkdDNC+LGArTjPnnhj9q2mcJ6 1fcfydWau6za25uvrPdwNB3TWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMys0KIi 6HPZ8zS+3XkTiqoz4mTlMB8GA1UdIwQYMBaAFJ9k/lCZJTf7C0DlL5z6wxDKJxkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTdGOC8zNDUwOTQwMEI5 NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5fc0xRT1V2blByREVNb25H UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24yVC1VSmtsTl9zTFFPVXZuUHJERU1vbkdSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTdGOC8zNDUwOTQwMEI5NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5f c0xRT1V2blByREVNb25HUmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAONl6Zxk/9GlRc7NvL1+LTqiBhfV6Seol0XyTzo4mGDNp/bqkXRTOStZm6jP4 TGOd67vxbafQuYfUwvPjn9P8TwXvRqr0OGc+umfU4qNWEZGedzxTE+AzIgQyv+tY Gp3o9o1JGhbKTCEjAUZ0Wr0CZ7yKtGWzS5BHPTI/Y86dZWW739il0grX6F9O/CE/ oqCYSc1/KmQ1RYVd9A7BujvJN+RAvR78zNmT5E0k48FS5MStnrolQ+w2Rn26xOXm PFbslD9FJ1b7IKj5yztbNrOGfVEdZsjHqwtxq6nkcJ6mHIxABj9cKqCjNCLw6IVu 6XBD4x1cWl6pQ8Z5PCFulOD2Hg== -----END CERTIFICATE-----Generated at Fri Apr 17 10:22:25 2026 by rpki-client