$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft File: 2QDd8konYiv5ZDdX7byv-u4yHDc.mft (raw, json) Hash identifier: r3wluNX7aHeug/eOtZBrAzoOSRB70T9W74biI4CsPBo= Subject key identifier: 6C:BB:06:93:55:82:A3:EE:FB:09:3D:67:6D:97:7E:82:09:90:2B:0E Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0F12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft Manifest number: 0EF4 Signing time: Sat 18 Apr 2026 17:33:34 +0000 Manifest this update: Sat 18 Apr 2026 17:33:33 +0000 Manifest next update: Sat 25 Apr 2026 17:33:33 +0000 Files and hashes: 1: 2QDd8konYiv5ZDdX7byv-u4yHDc.crl (hash: UvIAEkdoWZmpX2s/HZ36Po+iCA/Pwa7c0VA99nlfa50=) 2: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (hash: CNBlKRGQG6AMZt4K1SNsAWQxw9T+WIEHof1S1C1ZbKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 17:33:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3858 (0xf12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773, serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: Apr 18 17:33:33 2026 GMT Not After : Apr 25 17:33:33 2026 GMT Subject: CN=69e3c06e-6f3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e7:e2:42:e3:59:c7:68:d9:b8:f6:be:85:48: 43:53:e7:3e:2f:b0:00:64:6a:c2:d2:d5:f0:c3:30: 01:f3:ae:42:0d:b5:31:2a:ce:2e:a0:e0:d7:df:e9: d6:6d:7a:89:2b:9d:e9:03:bd:30:e8:1c:7c:28:09: 24:34:12:dc:cb:43:da:e7:7d:e9:aa:64:7a:34:b1: 8e:1c:46:d3:82:be:3b:cd:24:5a:a1:32:36:9f:6f: 40:c3:e6:87:b5:f4:63:1c:71:17:21:71:59:c6:b3: 35:d7:cf:0a:ac:ad:76:fc:06:1f:ee:0b:ec:be:c2: 1b:18:6a:fb:83:d1:aa:3b:a6:92:1b:81:e2:cc:06: 85:c8:32:6a:c7:a7:af:91:d7:0c:a6:4d:3e:33:12: 4b:6a:7f:b6:bc:92:1b:89:56:73:0d:44:30:6e:8f: 45:8b:e0:17:68:21:72:41:a8:e9:46:07:d8:8d:9d: 92:b5:6a:88:7a:3d:f9:5d:2b:bc:06:bf:6b:e5:e8: d9:a4:ca:1b:02:87:60:6a:bf:f5:6b:3a:d7:3c:92: 9d:9b:d1:96:3d:60:21:f5:2d:67:e7:c1:05:37:92: f3:40:e1:53:f1:ff:5b:ac:4e:74:e8:f1:1e:52:6d: 71:c7:73:70:d5:d7:ec:fa:6a:92:5f:86:19:2f:9e: 1c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:BB:06:93:55:82:A3:EE:FB:09:3D:67:6D:97:7E:82:09:90:2B:0E X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:08:e0:a7:3d:ba:7e:36:f4:82:0f:27:f2:a4:92:48:0c:aa: 45:e7:a1:75:96:90:ad:a2:43:ab:e3:08:64:50:b5:9c:93:9e: f2:cf:2b:dd:88:93:87:c6:a4:8f:b5:a6:35:0e:6e:79:f4:f7: 29:8e:f7:f1:73:ee:f7:f1:ac:57:ab:5f:44:6d:61:ec:28:2e: d4:da:7f:b2:f5:bf:70:4d:dd:d6:0b:2a:76:7c:9f:e2:1a:b3: 75:a1:be:41:b1:c6:44:ed:47:bb:e9:21:97:af:84:c2:be:d7: ec:be:af:6c:b4:3d:ee:f2:fe:80:9c:68:1f:26:13:90:59:15: 9d:2f:58:ac:84:20:b6:4a:df:6b:41:fa:43:08:68:be:ec:f6: 58:f2:ce:21:00:2e:47:0a:95:b7:c2:01:e3:32:37:3d:58:22: 85:e3:4b:b8:a3:f2:f3:fc:62:e8:6f:26:5e:09:27:3e:ad:94: f9:82:db:e0:f0:d8:38:30:26:bc:8b:bc:6b:db:24:a7:56:74: 4b:50:14:17:83:10:0d:78:f9:bb:7b:10:c1:48:e8:22:7b:ae: 41:4a:d1:6a:8b:e0:1b:56:49:d7:56:2b:fd:4f:49:36:44:bc: 7f:95:47:8f:26:e4:8a:84:fa:fe:17:da:b1:db:4e:c4:ca:1d: 37:07:1e:83 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjYwNDE4MTczMzMzWhcNMjYwNDI1MTczMzMzWjAYMRYwFAYD VQQDEw02OWUzYzA2ZS02ZjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOfiQuNZx2jZuPa+hUhDU+c+L7AAZGrC0tXwwzAB865CDbUxKs4uoODX3+nW bXqJK53pA70w6Bx8KAkkNBLcy0Pa533pqmR6NLGOHEbTgr47zSRaoTI2n29Aw+aH tfRjHHEXIXFZxrM1188KrK12/AYf7gvsvsIbGGr7g9GqO6aSG4HizAaFyDJqx6ev kdcMpk0+MxJLan+2vJIbiVZzDUQwbo9Fi+AXaCFyQajpRgfYjZ2StWqIej35XSu8 Br9r5ejZpMobAodgar/1azrXPJKdm9GWPWAh9S1n58EFN5LzQOFT8f9brE506PEe Um1xx3Nw1dfs+mqSX4YZL54c8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGy7BpNV gqPu+wk9Z22XfoIJkCsOMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc3My9BRDMyMjM3Q0EyRTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllp djVaRGRYN2J5di11NHlIRGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAigjgpz26fjb0gg8n8qSSSAyqReehdZaQraJDq+MIZFC1nJOe8s8r3YiTh8ak j7WmNQ5uefT3KY738XPu9/GsV6tfRG1h7Cgu1Np/svW/cE3d1gsqdnyf4hqzdaG+ QbHGRO1Hu+khl6+Ewr7X7L6vbLQ97vL+gJxoHyYTkFkVnS9YrIQgtkrfa0H6Qwho vuz2WPLOIQAuRwqVt8IB4zI3PVgiheNLuKPy8/xi6G8mXgknPq2U+YLb4PDYODAm vIu8a9skp1Z0S1AUF4MQDXj5u3sQwUjoInuuQUrRaovgG1ZJ11Yr/U9JNkS8f5VH jybkioT6/hfasdtOxModNwcegw== -----END CERTIFICATE-----Generated at Sun Apr 19 10:06:57 2026 by rpki-client