$ rpki-client -vvf rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft File: 2K83cS1WsbaT720D40bADPPwST4.mft (raw, json) Hash identifier: kpN7ReIjwRtNI3qo5fgI6PH3oZJzn3JVThtzB5nyFR8= Subject key identifier: 46:87:09:4E:86:A5:8C:7E:EC:4D:EB:CB:59:24:6C:D0:14:77:16:D4 Authority key identifier: D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E Certificate issuer: /CN=A91A86D0/serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E Certificate serial: 101B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft Manifest number: 0FFD Signing time: Sat 18 Apr 2026 17:23:21 +0000 Manifest this update: Sat 18 Apr 2026 17:23:20 +0000 Manifest next update: Sat 25 Apr 2026 17:23:20 +0000 Files and hashes: 1: 2K83cS1WsbaT720D40bADPPwST4.crl (hash: k5noK7Rvnt17Y4/wyFg+XK7HYjbidcKBwqRC7Rkzc9k=) 2: AFCF76ECC43411F0982E427DC4F9AE02.roa (hash: jArh+Kx+M9ITkZfnTl8gN4nLiWXlDhetGK8juVgx8K0=) 3: F0F0DEC2C43411F0836DBC7DC4F9AE02.roa (hash: LMzi/nUop3Zg3Ri+ttMW1AIJQZt36oNcqeMlHwO8Bco=) 4: CC99502E382F11EEAB87A63EC4F9AE02.roa (hash: 1K8MV4sIj8T9zYYuz63dsbeo/qY6X7HrLn7VydAG5JM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 17:23:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4123 (0x101b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A86D0, serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E Validity Not Before: Apr 18 17:23:20 2026 GMT Not After : Apr 25 17:23:20 2026 GMT Subject: CN=69e3be08-1894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:eb:c4:c4:b2:3b:f1:96:d5:30:14:fc:e2:b1: a8:a3:22:fe:ca:03:24:97:63:92:6b:9d:26:a1:1d: 43:21:b9:43:94:dc:18:1a:45:5f:46:d4:8c:2d:c8: 0c:71:c7:78:c5:e8:08:40:e0:d6:d7:48:df:a7:f6: 90:ac:ed:58:ad:cf:e0:d9:56:13:58:73:19:cf:ca: f3:41:26:ee:dc:b6:21:a8:81:0b:b0:5b:10:9e:ad: 4e:f6:dc:eb:b4:1a:5c:84:b9:0e:2d:01:82:65:5e: c7:db:fe:ce:58:2c:2f:0d:b9:5b:8b:d1:4a:dd:8a: 48:2a:85:49:8c:1c:c1:75:d3:f9:04:da:81:81:49: 41:60:a6:e8:07:0e:d6:4c:88:fc:82:1c:94:f7:bb: 6e:e3:1e:82:f5:a4:e7:12:ab:fc:06:81:a3:4d:af: 2f:8e:49:58:d6:62:48:bb:70:c7:9e:32:01:0a:96: ad:08:f8:69:a9:54:14:9e:af:84:11:11:bd:6f:28: 5c:ea:f7:c6:3a:43:91:f3:88:50:2b:c6:58:9e:ae: 2d:0c:4a:1e:51:97:ca:d4:9e:3e:d1:bd:a7:2a:2f: 5f:7d:6f:16:86:b8:1b:15:74:35:d9:6b:69:14:98: e0:68:15:f8:04:ba:2a:dc:97:d6:c4:9a:af:e7:b4: 60:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:87:09:4E:86:A5:8C:7E:EC:4D:EB:CB:59:24:6C:D0:14:77:16:D4 X509v3 Authority Key Identifier: keyid:D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:61:0e:2b:48:3c:c4:74:cb:b7:6e:0a:6b:45:15:26:05:e6: 44:aa:95:54:2e:dd:23:fc:2d:a7:9e:24:d3:af:0c:4d:4b:4b: ff:fd:c5:a5:fa:b8:b0:dc:a6:60:9a:6e:35:ad:eb:69:14:1a: 44:81:f9:4e:0b:bd:c3:24:ac:a9:5a:7a:b0:23:69:3d:20:3c: 46:0a:02:7e:e9:2d:d6:0c:0d:26:38:71:b2:d2:3b:f5:3a:12: 92:76:11:26:d2:f2:b8:44:51:4c:b9:f9:76:83:a3:b0:b8:d0: 22:6a:a5:3a:a2:91:17:c3:54:a9:4c:1e:e7:96:1b:c7:af:a9: 3a:ba:e3:2e:6e:b4:d4:7b:70:b0:86:f9:88:0e:b6:f6:a4:f5: c4:b0:0c:66:f9:9d:90:ac:bb:14:74:7b:42:72:98:da:cd:b1: 92:7c:d5:02:a8:eb:14:89:2c:d1:49:23:15:a0:4c:95:83:52: a8:7d:8b:28:3b:62:24:e9:c0:5d:44:d6:4b:ab:50:85:b3:25: 8f:5d:4a:df:49:f7:c2:c6:e3:42:ee:50:0d:78:ad:f1:5e:1d: 8a:26:05:83:7e:82:89:da:53:29:ba:bb:95:2c:55:2e:84:33: 1e:bc:c0:f7:f4:c8:e6:ca:8b:86:dc:0e:dd:49:b4:28:da:d1: 34:3e:b8:6c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2RDAxMTAvBgNVBAUTKEQ4QUYzNzcxMkQ1NkIxQjY5M0VGNkQwM0UzNDZDMDBD RjNGMDQ5M0UwHhcNMjYwNDE4MTcyMzIwWhcNMjYwNDI1MTcyMzIwWjAYMRYwFAYD VQQDEw02OWUzYmUwOC0xODk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApevExLI78ZbVMBT84rGooyL+ygMkl2OSa50moR1DIblDlNwYGkVfRtSMLcgM ccd4xegIQODW10jfp/aQrO1Yrc/g2VYTWHMZz8rzQSbu3LYhqIELsFsQnq1O9tzr tBpchLkOLQGCZV7H2/7OWCwvDblbi9FK3YpIKoVJjBzBddP5BNqBgUlBYKboBw7W TIj8ghyU97tu4x6C9aTnEqv8BoGjTa8vjklY1mJIu3DHnjIBCpatCPhpqVQUnq+E ERG9byhc6vfGOkOR84hQK8ZYnq4tDEoeUZfK1J4+0b2nKi9ffW8WhrgbFXQ12Wtp FJjgaBX4BLoq3JfWxJqv57RgBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEaHCU6G pYx+7E3ry1kkbNAUdxbUMB8GA1UdIwQYMBaAFNivN3EtVrG2k+9tA+NGwAzz8Ek+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODZEMC9GQTc4QjA0NDZG Q0UxMUU5ODhDNDRCM0VDNEY5QUUwMi8ySzgzY1MxV3NiYVQ3MjBENDBiQURQUHdT VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJLODNjUzFXc2JhVDcyMEQ0MGJBRFBQd1NUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODZEMC9GQTc4QjA0NDZGQ0UxMUU5ODhDNDRCM0VDNEY5QUUwMi8ySzgzY1MxV3Ni YVQ3MjBENDBiQURQUHdTVDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkmEOK0g8xHTLt24Ka0UVJgXmRKqVVC7dI/wtp54k068MTUtL//3Fpfq4sNym YJpuNa3raRQaRIH5Tgu9wySsqVp6sCNpPSA8RgoCfukt1gwNJjhxstI79ToSknYR JtLyuERRTLn5doOjsLjQImqlOqKRF8NUqUwe55Ybx6+pOrrjLm601HtwsIb5iA62 9qT1xLAMZvmdkKy7FHR7QnKY2s2xknzVAqjrFIks0UkjFaBMlYNSqH2LKDtiJOnA XUTWS6tQhbMlj11K30n3wsbjQu5QDXit8V4diiYFg36CidpTKbq7lSxVLoQzHrzA 9/TI5sqLhtwO3Um0KNrRND64bA== -----END CERTIFICATE-----Generated at Sun Apr 19 12:51:10 2026 by rpki-client