$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft File: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft (raw, json) Hash identifier: AWAgKinwW5aUtHrd3vCXeorRP/Msjijz/5CZmqvLp58= Subject key identifier: F5:EB:00:C1:AB:EF:1F:36:7E:F5:EC:A7:5F:D3:35:A3:1E:5E:9A:0E Authority key identifier: DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 Certificate issuer: /CN=A91CD00C/serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Certificate serial: 03E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft Manifest number: 03D6 Signing time: Fri 17 Apr 2026 00:28:19 +0000 Manifest this update: Fri 17 Apr 2026 00:28:18 +0000 Manifest next update: Fri 24 Apr 2026 00:28:18 +0000 Files and hashes: 1: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl (hash: zQzhXJcnGu2MlXg1dyL5jL7vycuZ8aA6D2UNoI9ODts=) 2: 15D68F5ED55011EFA0564D54C4F9AE02.roa (hash: 6ChvL5bIW0nd/LEwk1GkYjUq9x3wU+NsnqxaoPxGr+c=) 3: 46654408C6CB11ECB185E43EC4F9AE02.roa (hash: SAmq2qut5svZXJTr/IN8K0rrvVU2RQUex9B9Y/hGwvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 994 (0x3e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD00C, serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Validity Not Before: Apr 17 00:28:18 2026 GMT Not After : Apr 24 00:28:18 2026 GMT Subject: CN=69e17ea3-5cb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:d1:ad:9e:27:76:b1:e3:ca:38:8b:fa:4b:64: 1e:bc:47:5c:fe:e9:f7:92:ba:0e:7b:fb:96:ed:bd: 38:a3:d8:19:cd:83:a7:fd:a2:39:01:02:59:8a:38: 87:d6:8a:94:4e:b4:1a:3f:22:93:6f:50:7f:b1:43: ea:8d:07:0b:51:4f:2f:bb:57:1b:ff:a1:d3:2d:ec: 2f:44:03:85:bf:61:af:55:f5:38:af:33:f0:4a:12: a8:cb:3c:dc:b5:90:a4:1d:e3:ee:24:1d:f3:d0:d5: de:c8:3a:84:ad:da:21:26:ed:cf:6f:82:97:51:83: 7a:40:ff:3c:17:fe:e1:c3:08:ae:90:7a:88:42:1c: 2c:2b:94:4f:09:cf:c4:65:93:60:fc:0e:f1:1f:f1: 7a:13:78:d2:39:84:6b:99:8b:7a:ef:40:cc:15:23: e7:89:99:13:05:ae:71:b4:c1:f3:70:88:5f:cf:8f: b4:40:07:a0:16:32:d4:93:cc:0b:d8:60:d1:b9:5a: 27:ea:7c:8a:06:30:3c:0c:6b:77:83:f8:43:b2:dc: bd:19:f1:f0:20:8f:3f:06:54:53:e6:5b:2f:35:be: a2:4f:15:f4:ec:dd:1a:2e:9a:a5:2d:de:07:dd:ca: a0:0f:fc:e5:12:41:ab:6a:dd:71:7a:d2:a9:d7:c9: 41:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:EB:00:C1:AB:EF:1F:36:7E:F5:EC:A7:5F:D3:35:A3:1E:5E:9A:0E X509v3 Authority Key Identifier: keyid:DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:b4:47:2e:4d:2a:42:88:de:21:d6:45:b0:61:06:f4:49:26: d1:55:78:9f:49:72:da:29:a7:71:a6:54:f0:07:eb:fa:e9:49: 65:e2:a0:47:5f:86:dc:19:dd:40:85:3d:e0:e8:67:4d:ab:aa: 0a:dd:78:7e:d6:90:0a:fa:8c:2b:b5:dc:8b:30:73:c3:60:b8: 60:57:78:e1:6d:79:4d:49:b0:0c:04:7e:0e:27:82:e5:12:00: cc:c9:f5:11:e2:d5:1e:10:a3:d6:dc:75:01:c8:ab:da:36:cf: 32:6c:64:1a:dc:b2:58:10:a8:53:f7:09:8a:8d:70:3f:3f:2e: 4e:6b:9a:b6:21:a7:a2:28:f3:ea:59:d8:37:f8:e6:6b:14:cc: 11:73:83:78:1d:0d:5f:3b:71:e6:93:18:9a:01:b8:16:2d:1e: 03:b7:17:50:7a:d6:d4:0c:f4:b0:dd:84:ce:64:cb:e5:00:63: cb:4f:5f:b9:cf:3b:39:b3:41:14:9f:6d:fd:4c:bb:b9:c8:ff: db:f5:50:45:df:0a:80:67:65:99:5e:60:5f:82:44:a0:78:98: 6d:09:e7:f4:1e:46:cd:4c:77:49:98:42:6a:48:7b:d6:d6:09: 43:e0:4e:7f:10:de:56:bb:50:25:ea:5d:fe:e2:a1:f2:e5:6f: f5:48:37:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwMEMxMTAvBgNVBAUTKERCMkNDQ0E4M0Q4NTMyODhDNTAwQ0RGQzNBRTFFMkZF QTA0OUY1MTQwHhcNMjYwNDE3MDAyODE4WhcNMjYwNDI0MDAyODE4WjAYMRYwFAYD VQQDEw02OWUxN2VhMy01Y2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk9Gtnid2sePKOIv6S2QevEdc/un3kroOe/uW7b04o9gZzYOn/aI5AQJZijiH 1oqUTrQaPyKTb1B/sUPqjQcLUU8vu1cb/6HTLewvRAOFv2GvVfU4rzPwShKoyzzc tZCkHePuJB3z0NXeyDqErdohJu3Pb4KXUYN6QP88F/7hwwiukHqIQhwsK5RPCc/E ZZNg/A7xH/F6E3jSOYRrmYt670DMFSPniZkTBa5xtMHzcIhfz4+0QAegFjLUk8wL 2GDRuVon6nyKBjA8DGt3g/hDsty9GfHwII8/BlRT5lsvNb6iTxX07N0aLpqlLd4H 3cqgD/zlEkGrat1xetKp18lBmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPXrAMGr 7x82fvXsp1/TNaMeXpoOMB8GA1UdIwQYMBaAFNsszKg9hTKIxQDN/Drh4v6gSfUU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDAwQy9DQUE4ODYxRUM2 MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1vakZBTTM4T3VIaV9xQko5 UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ5ek1xRDJGTW9qRkFNMzhPdUhpX3FCSjlSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDAwQy9DQUE4ODYxRUM2MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1v akZBTTM4T3VIaV9xQko5UlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZrRHLk0qQojeIdZFsGEG9Ekm0VV4n0ly2imncaZU8Afr+ulJZeKgR1+G3Bnd QIU94OhnTauqCt14ftaQCvqMK7XcizBzw2C4YFd44W15TUmwDAR+DieC5RIAzMn1 EeLVHhCj1tx1Acir2jbPMmxkGtyyWBCoU/cJio1wPz8uTmuatiGnoijz6lnYN/jm axTMEXODeB0NXztx5pMYmgG4Fi0eA7cXUHrW1Az0sN2EzmTL5QBjy09fuc87ObNB FJ9t/Uy7ucj/2/VQRd8KgGdlmV5gX4JEoHiYbQnn9B5GzUx3SZhCakh71tYJQ+BO fxDeVrtQJepd/uKh8uVv9Ug3jQ== -----END CERTIFICATE-----Generated at Fri Apr 17 04:07:27 2026 by rpki-client