$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft File: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft (raw, json) Hash identifier: 2aTujJrhRfJNMo4xBAByCsr4v2zqgvVCGISMV4GCf6M= Subject key identifier: 23:CC:4D:3C:60:C5:4C:70:41:33:15:64:C5:4A:18:51:76:EC:B7:25 Authority key identifier: DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B Certificate issuer: /CN=A91D1C7F/serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Certificate serial: 041C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft Manifest number: 040D Signing time: Fri 17 Apr 2026 00:19:43 +0000 Manifest this update: Fri 17 Apr 2026 00:19:43 +0000 Manifest next update: Fri 24 Apr 2026 00:19:43 +0000 Files and hashes: 1: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl (hash: M0L0ZtJFCcUTnKKsSabrbvIgsiLdo36YqLVHOgJdmkg=) 2: E5B25D84B0D211ECB7B1BA7DC4F9AE02.roa (hash: VgbuCbt2B5V4RwKAtDeC1bN0tj3w9fLDaipQp5XINf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1052 (0x41c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1C7F, serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Validity Not Before: Apr 17 00:19:43 2026 GMT Not After : Apr 24 00:19:43 2026 GMT Subject: CN=69e17c9f-f90a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e9:3a:1b:b2:b3:90:c7:c6:2e:dc:66:21:f2: c8:b6:7e:30:c5:b5:8e:75:8a:d3:bd:9c:80:4f:ef: c3:7a:59:cc:10:78:2c:64:9a:f7:e3:0c:95:82:93: ba:be:0f:9d:aa:03:33:21:f1:ba:fc:dc:67:da:0b: f1:dc:87:1c:35:9a:a3:4e:e2:eb:18:cd:73:00:65: 4b:46:ae:ee:fd:b2:11:78:25:04:c5:48:99:67:34: 66:8e:25:c9:01:c7:70:eb:00:1b:e8:12:ca:95:8c: c6:3f:77:47:31:90:ba:01:bb:8b:81:4b:9c:d2:4d: a7:4e:18:a3:ab:df:ba:3a:f8:a9:c1:74:42:96:41: e5:9a:28:52:06:c3:73:2d:95:ba:25:e1:62:67:63: 95:8b:14:69:b7:9c:f0:c0:53:7a:4a:42:b7:bb:b5: cf:62:53:eb:d7:ab:ff:d6:ee:ec:09:6e:a1:f8:a2: f2:1d:a2:6b:6c:2b:f1:74:4f:39:fa:cd:6a:1e:75: 9f:40:27:0d:ce:9d:68:8f:70:0f:46:03:1a:88:c0: 84:65:57:ce:68:43:4d:33:96:b8:e5:62:43:58:f5: 0b:0b:71:c8:08:28:37:02:2e:85:c8:86:c8:c0:b7: 6f:c2:93:f0:c0:9f:35:38:c4:98:c5:bb:ca:0d:70: 78:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:CC:4D:3C:60:C5:4C:70:41:33:15:64:C5:4A:18:51:76:EC:B7:25 X509v3 Authority Key Identifier: keyid:DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:f3:e7:25:d5:46:32:d1:11:6d:f8:01:42:5c:d1:8d:85:87: 67:07:1b:05:8e:a6:de:3f:6e:57:49:8b:2e:c8:ce:65:d9:d9: d8:9d:71:3f:27:18:d6:cb:c9:5b:58:ec:ce:2f:1e:9a:5b:07: 98:14:55:df:f8:3d:1f:5f:9a:58:b2:39:f8:b7:ae:dc:8f:9d: 15:75:33:d7:8a:f9:ba:76:4e:37:e8:fb:4d:74:5f:21:53:b4: fc:e8:ec:27:4b:9d:61:99:44:9f:a9:ef:5d:17:9f:09:a7:34: 78:3d:9d:f6:a4:05:8c:f8:8b:44:18:8b:fa:cb:a0:2c:76:a7: b8:2f:7f:9b:aa:cd:9d:6f:79:44:64:2e:53:8d:be:05:49:11: b2:f7:96:46:05:9a:f9:4f:f0:79:e7:40:18:37:37:c5:dc:57: 38:ae:7a:64:ac:64:37:85:9e:d1:4a:40:f0:49:87:ea:e6:01: e9:4a:0d:3e:ec:b1:92:e6:dd:6b:22:d1:c2:dd:e7:58:2c:42: fc:0a:37:fe:65:da:0b:60:c9:e7:9e:34:40:98:0e:b8:b3:c2: 0f:e3:51:7c:d6:79:dd:f7:6b:d3:ae:a8:e5:62:42:59:14:3e: 79:fa:ee:43:61:03:af:2c:40:5d:57:d6:c2:78:8c:d2:ad:a9: 79:0d:29:37 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFDN0YxMTAvBgNVBAUTKERBQjRBNTJBOEVDMUFBRDZDOTI1MkVFQTRENUQxNTY5 RDI3QUY0NkIwHhcNMjYwNDE3MDAxOTQzWhcNMjYwNDI0MDAxOTQzWjAYMRYwFAYD VQQDEw02OWUxN2M5Zi1mOTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ok6G7KzkMfGLtxmIfLItn4wxbWOdYrTvZyAT+/DelnMEHgsZJr34wyVgpO6 vg+dqgMzIfG6/Nxn2gvx3IccNZqjTuLrGM1zAGVLRq7u/bIReCUExUiZZzRmjiXJ Acdw6wAb6BLKlYzGP3dHMZC6AbuLgUuc0k2nThijq9+6OvipwXRClkHlmihSBsNz LZW6JeFiZ2OVixRpt5zwwFN6SkK3u7XPYlPr16v/1u7sCW6h+KLyHaJrbCvxdE85 +s1qHnWfQCcNzp1oj3APRgMaiMCEZVfOaENNM5a45WJDWPULC3HICCg3Ai6FyIbI wLdvwpPwwJ81OMSYxbvKDXB4sQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCPMTTxg xUxwQTMVZMVKGFF27LclMB8GA1UdIwQYMBaAFNq0pSqOwarWySUu6k1dFWnSevRr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUM3Ri8wOTFFMUVBQUIw RDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0YkpKUzdxVFYwVmFkSjY5 R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyU2xLbzdCcXRiSkpTN3FUVjBWYWRKNjlHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUM3Ri8wOTFFMUVBQUIwRDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0 YkpKUzdxVFYwVmFkSjY5R3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFvPnJdVGMtERbfgBQlzRjYWHZwcbBY6m3j9uV0mLLsjOZdnZ2J1xPycY1svJ W1jszi8emlsHmBRV3/g9H1+aWLI5+Leu3I+dFXUz14r5unZON+j7TXRfIVO0/Ojs J0udYZlEn6nvXRefCac0eD2d9qQFjPiLRBiL+sugLHanuC9/m6rNnW95RGQuU42+ BUkRsveWRgWa+U/weedAGDc3xdxXOK56ZKxkN4We0UpA8EmH6uYB6UoNPuyxkubd ayLRwt3nWCxC/Ao3/mXaC2DJ5540QJgOuLPCD+NRfNZ53fdr066o5WJCWRQ+efru Q2EDryxAXVfWwniM0q2peQ0pNw== -----END CERTIFICATE-----Generated at Fri Apr 17 08:11:36 2026 by rpki-client