$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: /XuvsRVMz0FDUNNHhVg1QYL7/qw8yxTZufVnZtYoAug= Subject key identifier: EB:0A:90:C8:B5:49:A0:46:E1:D3:1E:7A:DC:B1:9F:85:AC:8F:CB:10 Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0EBE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 10ED Signing time: Thu 16 Apr 2026 17:38:33 +0000 Manifest this update: Thu 16 Apr 2026 17:38:33 +0000 Manifest next update: Thu 23 Apr 2026 17:38:33 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: 0cHktRMcNkLMB00Fy6NvZjUmSO8o9frMh/rwRFhUXZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3774 (0xebe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Apr 16 17:38:33 2026 GMT Not After : Apr 23 17:38:33 2026 GMT Subject: CN=69e11e99-710c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c4:b6:81:58:6b:c8:69:1a:0d:a9:ee:01:91: 71:28:df:cc:23:f5:a1:37:92:ee:17:7b:86:bc:49: f9:b7:d2:22:8f:68:7f:84:b2:6c:f3:98:e6:22:f7: 67:96:65:d9:69:e5:15:69:41:6d:87:b3:56:6d:5b: 7a:de:04:13:48:32:b4:ae:14:90:42:5d:d5:72:2e: df:23:1b:e4:dd:22:44:d1:10:41:6d:63:d2:a5:0a: 9f:bc:6c:3f:b7:89:f5:ad:95:79:10:22:b2:3c:78: 99:1a:1a:71:cd:c2:6c:1e:0d:37:32:f0:f5:47:57: 0a:d3:22:4f:a2:25:2a:8a:a5:33:6e:6a:1c:0f:99: d9:b8:8d:ee:69:15:c7:c8:ff:bc:e6:e9:46:3c:ec: 6f:84:42:3f:13:f6:34:28:0b:d0:6e:e3:cb:a2:0a: a7:d4:48:f0:15:1b:86:6e:0b:38:d8:06:4c:d8:14: 9d:0e:77:13:b7:fb:63:10:bd:e8:c5:e1:53:93:43: cc:57:c9:e4:74:e3:f8:9a:10:63:c1:1c:58:9b:b3: b4:fa:7a:ea:38:b6:fc:b3:e3:93:98:5d:14:8e:4a: f8:80:6f:39:c3:4d:84:79:4f:01:09:86:1c:69:34: 0a:aa:44:5d:bf:7c:d9:29:29:64:a3:ef:c2:cd:74: 91:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:0A:90:C8:B5:49:A0:46:E1:D3:1E:7A:DC:B1:9F:85:AC:8F:CB:10 X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:ab:da:15:95:4c:46:48:e4:60:ff:8f:db:b6:79:e8:2d:96: c0:ec:82:3b:45:ad:34:08:50:2d:65:a8:5f:00:43:65:46:4d: 9c:86:95:02:4c:b3:33:f7:ce:11:02:d3:80:ce:d2:f1:e0:68: 6f:00:18:b7:e7:ac:ea:3a:e4:84:47:fc:9f:75:39:74:4e:9c: ba:9c:6a:90:b1:92:05:54:d5:42:b6:d9:ae:2d:e6:43:4d:fd: 72:e1:63:cf:fe:c3:ee:35:4f:19:7b:37:42:4b:ae:ce:2a:71: 44:81:f6:47:71:37:d6:40:8a:e4:b9:be:83:c5:b7:3c:f9:fe: 33:b3:9b:c4:23:dc:12:b9:82:dd:7d:a1:4a:b2:f4:63:b4:a6: 42:87:83:a4:58:1f:09:52:85:e3:7f:07:00:60:82:7f:6f:34: 8a:34:b7:74:73:44:da:4f:ae:c8:68:ea:6e:0b:7b:31:cf:47: 73:cc:07:60:33:fa:2c:5c:fa:9c:da:d8:3a:1a:76:da:7c:cd: ef:99:ec:5b:d4:2f:66:59:2d:1f:d8:63:fc:82:3d:f5:56:ba: b6:54:2f:7f:26:cd:14:39:d2:a7:bb:f9:e4:03:39:21:51:e6: c0:27:e3:ff:aa:25:63:bb:f2:2d:a3:d9:bc:a1:a3:86:f8:43: ef:13:af:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjYwNDE2MTczODMzWhcNMjYwNDIzMTczODMzWjAYMRYwFAYD VQQDEw02OWUxMWU5OS03MTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcS2gVhryGkaDanuAZFxKN/MI/WhN5LuF3uGvEn5t9Iij2h/hLJs85jmIvdn lmXZaeUVaUFth7NWbVt63gQTSDK0rhSQQl3Vci7fIxvk3SJE0RBBbWPSpQqfvGw/ t4n1rZV5ECKyPHiZGhpxzcJsHg03MvD1R1cK0yJPoiUqiqUzbmocD5nZuI3uaRXH yP+85ulGPOxvhEI/E/Y0KAvQbuPLogqn1EjwFRuGbgs42AZM2BSdDncTt/tjEL3o xeFTk0PMV8nkdOP4mhBjwRxYm7O0+nrqOLb8s+OTmF0Ujkr4gG85w02EeU8BCYYc aTQKqkRdv3zZKSlko+/CzXSRdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOsKkMi1 SaBG4dMeetyxn4Wsj8sQMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWKvaFZVMRkjkYP+P27Z56C2WwOyCO0WtNAhQLWWoXwBDZUZNnIaVAkyzM/fO EQLTgM7S8eBobwAYt+es6jrkhEf8n3U5dE6cupxqkLGSBVTVQrbZri3mQ039cuFj z/7D7jVPGXs3QkuuzipxRIH2R3E31kCK5Lm+g8W3PPn+M7ObxCPcErmC3X2hSrL0 Y7SmQoeDpFgfCVKF438HAGCCf280ijS3dHNE2k+uyGjqbgt7Mc9Hc8wHYDP6LFz6 nNrYOhp22nzN75nsW9QvZlktH9hj/II99Va6tlQvfybNFDnSp7v55AM5IVHmwCfj /6olY7vyLaPZvKGjhvhD7xOvpw== -----END CERTIFICATE-----Generated at Fri Apr 17 19:40:50 2026 by rpki-client