$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft File: AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft (raw, json) Hash identifier: DmasEY7HnnVsHJ0yaIgKgjOU5a0M9EW8bSluoKwLKZ4= Subject key identifier: DE:ED:50:8D:25:49:E8:7C:90:3F:44:E0:D8:49:7C:BC:12:AE:B8:8C Authority key identifier: 01:7D:8D:B8:A7:88:74:AB:2F:9A:D9:7D:E5:7A:FD:E1:BE:16:7D:44 Certificate issuer: /CN=A91C2F8C/serialNumber=017D8DB8A78874AB2F9AD97DE57AFDE1BE167D44 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft Manifest number: 011F Signing time: Fri 17 Apr 2026 05:27:15 +0000 Manifest this update: Fri 17 Apr 2026 05:27:15 +0000 Manifest next update: Fri 24 Apr 2026 05:27:15 +0000 Files and hashes: 1: AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl (hash: uZSoWyLtVoY8ZbGzMkwebjJzU+OJGzzLK5zRcl8IKSg=) 2: CEB2CA5686E011EF81BE1A7FC4F9AE02.roa (hash: YmKXPzEd/i2vL9lk0X6JhFLGyxL9//RGwrN43Nv93+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2F8C, serialNumber=017D8DB8A78874AB2F9AD97DE57AFDE1BE167D44 Validity Not Before: Apr 17 05:27:15 2026 GMT Not After : Apr 24 05:27:15 2026 GMT Subject: CN=69e1c4b3-a1ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f3:2b:d6:82:ed:ce:66:76:6e:d3:b4:93:7d: d9:8a:fe:93:62:d3:6e:0e:13:3b:9e:d0:44:dd:03: 51:d2:bd:9e:80:a2:73:9a:eb:99:7c:5d:43:f1:fe: f2:6f:74:de:f4:41:50:ed:13:6a:0a:a6:43:18:0c: d4:d5:2c:56:a0:a4:33:68:c2:dc:6e:aa:03:57:11: 7a:51:c1:b2:91:0e:59:a2:38:cf:8d:b9:6b:fd:7c: 4c:c5:c0:9b:4f:44:f8:13:f6:a4:cf:95:9f:06:f1: 3c:a1:9b:37:c6:f5:03:7a:27:f8:97:90:97:13:39: 3a:bb:c0:7a:46:f4:98:cc:5a:77:6e:8a:59:b8:6b: 84:dc:30:a7:44:45:c4:35:77:3b:e2:38:06:38:11: 3d:86:ff:9a:4f:93:46:69:b3:7c:c2:06:11:a6:64: e9:d9:6a:80:eb:fc:47:c9:e5:32:c7:5b:95:47:86: ba:3f:8c:6a:92:f1:1e:4a:48:e0:93:d4:ac:c5:0a: 60:a3:48:eb:6d:bf:8b:d0:31:68:8f:cd:af:80:45: 51:ba:e7:3c:78:13:ca:4d:55:37:18:3b:77:d8:e7: 6c:66:a0:2e:7a:62:65:a4:b4:d9:08:f0:36:6d:f2: 1b:85:d8:71:70:fb:bd:f9:d9:8f:8e:bb:06:67:47: b0:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:ED:50:8D:25:49:E8:7C:90:3F:44:E0:D8:49:7C:BC:12:AE:B8:8C X509v3 Authority Key Identifier: keyid:01:7D:8D:B8:A7:88:74:AB:2F:9A:D9:7D:E5:7A:FD:E1:BE:16:7D:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:5e:e1:aa:ad:fe:4d:6c:4f:85:ac:15:4d:d6:c3:2b:71:0d: f6:5b:e8:de:2e:2c:54:bf:73:9b:cf:25:e4:9c:47:11:f6:a1: 3e:22:d6:98:7b:c4:b3:4d:72:13:9d:68:13:e8:a7:80:17:b6: e0:25:5d:24:7b:ac:81:1d:70:ef:79:38:93:76:6a:0e:08:de: 25:2f:ed:92:ef:86:d7:29:a3:01:b9:bf:61:66:51:3f:f1:b3: 36:9a:75:ef:a7:13:44:8a:4c:7d:8a:bd:03:d9:a8:e9:63:0a: 7e:fb:67:6e:1f:c0:5b:ad:04:62:ab:13:6f:d0:92:bb:ce:9b: 16:9d:e1:e6:d6:fe:a5:59:ae:9a:e5:fc:8b:53:fc:2f:94:03: 49:54:fd:c7:e4:f7:99:8a:14:f9:47:0b:8d:1a:a6:a7:51:41: d6:d9:ea:14:f9:4c:29:3a:bc:a1:5b:cf:29:bf:ef:12:a4:6a: da:5e:26:89:4d:91:0c:b7:e2:5f:85:7d:d9:6e:2d:36:be:b3: 16:e9:a1:f8:62:46:a3:3c:23:7a:df:06:78:2f:0a:81:e2:f5: 3e:68:1c:24:12:f3:03:db:9f:47:91:a4:c6:00:78:f6:a8:5d: 90:96:64:a0:43:1c:a9:01:16:4b:70:53:74:7d:15:5e:bf:a2: 2e:76:3a:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJGOEMxMTAvBgNVBAUTKDAxN0Q4REI4QTc4ODc0QUIyRjlBRDk3REU1N0FGREUx QkUxNjdENDQwHhcNMjYwNDE3MDUyNzE1WhcNMjYwNDI0MDUyNzE1WjAYMRYwFAYD VQQDEw02OWUxYzRiMy1hMWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfMr1oLtzmZ2btO0k33Ziv6TYtNuDhM7ntBE3QNR0r2egKJzmuuZfF1D8f7y b3Te9EFQ7RNqCqZDGAzU1SxWoKQzaMLcbqoDVxF6UcGykQ5ZojjPjblr/XxMxcCb T0T4E/akz5WfBvE8oZs3xvUDeif4l5CXEzk6u8B6RvSYzFp3bopZuGuE3DCnREXE NXc74jgGOBE9hv+aT5NGabN8wgYRpmTp2WqA6/xHyeUyx1uVR4a6P4xqkvEeSkjg k9SsxQpgo0jrbb+L0DFoj82vgEVRuuc8eBPKTVU3GDt32OdsZqAuemJlpLTZCPA2 bfIbhdhxcPu9+dmPjrsGZ0ewOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN7tUI0l Seh8kD9E4NhJfLwSrriMMB8GA1UdIwQYMBaAFAF9jbiniHSrL5rZfeV6/eG+Fn1E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkY4Qy81NTc5QjlCMDg2 RTAxMUVGOUI2QjE3N0VDNEY5QUUwMi9BWDJOdUtlSWRLc3ZtdGw5NVhyOTRiNFdm VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FYMk51S2VJZEtzdm10bDk1WHI5NGI0V2ZVUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkY4Qy81NTc5QjlCMDg2RTAxMUVGOUI2QjE3N0VDNEY5QUUwMi9BWDJOdUtlSWRL c3ZtdGw5NVhyOTRiNFdmVVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM17hqq3+TWxPhawVTdbDK3EN9lvo3i4sVL9zm88l5JxHEfahPiLWmHvEs01y E51oE+ingBe24CVdJHusgR1w73k4k3ZqDgjeJS/tku+G1ymjAbm/YWZRP/GzNpp1 76cTRIpMfYq9A9mo6WMKfvtnbh/AW60EYqsTb9CSu86bFp3h5tb+pVmumuX8i1P8 L5QDSVT9x+T3mYoU+UcLjRqmp1FB1tnqFPlMKTq8oVvPKb/vEqRq2l4miU2RDLfi X4V92W4tNr6zFumh+GJGozwjet8GeC8KgeL1PmgcJBLzA9ufR5GkxgB49qhdkJZk oEMcqQEWS3BTdH0VXr+iLnY6Ag== -----END CERTIFICATE-----Generated at Fri Apr 17 11:38:30 2026 by rpki-client