$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: mI3/fR4O6Q2xGdgP2bDnmsNno6FLFBpQlyaOKwX0X2s= Subject key identifier: 00:2D:1F:EA:AF:AC:20:92:0D:3A:6B:94:28:0D:AC:D8:57:23:4E:02 Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: C1 Signing time: Fri 17 Apr 2026 06:42:25 +0000 Manifest this update: Fri 17 Apr 2026 06:42:25 +0000 Manifest next update: Fri 24 Apr 2026 06:42:25 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: xgYcUJhpVbBErjJqicWOfZUYdnFg43AQ1AtJUlW5v6M=) 2: D522C16CBAEB11F09547BA51C4F9AE02.roa (hash: RnihpSJKxhqk9WNkps/6xGJCCbveQoqTufTmq79Au24=) 3: B245BA601C4311F08254DE40C4F9AE02.roa (hash: lKCCxnQLqgGAAxb0II04awvwUyFApZ9TGbpShXSvZgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:42:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Apr 17 06:42:25 2026 GMT Not After : Apr 24 06:42:25 2026 GMT Subject: CN=69e1d651-468b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f5:6b:71:a5:bc:da:75:ed:5d:75:44:85:05: 8f:0b:ba:56:bb:1f:20:8e:3b:b0:d8:2f:59:52:12: 66:48:5f:d7:ac:80:f1:1a:b4:5e:d0:31:56:92:3e: fb:cc:50:97:3e:44:89:7e:b4:a5:c7:60:b1:b7:ac: c1:ec:3e:b1:9e:ca:50:86:a6:d0:08:77:ee:76:71: 95:33:4b:ee:97:30:18:f7:61:e4:24:05:0c:17:04: 45:9b:96:ca:22:a8:83:8b:c0:eb:17:2b:78:e0:f3: 67:8f:62:0f:d4:20:b6:d8:21:ce:c4:7b:81:f7:ff: 30:f2:b8:4d:fb:0e:ab:ec:6e:05:49:92:89:8a:2f: de:c8:17:d7:91:3d:d9:4e:54:05:c1:24:79:5c:f8: 77:ea:5f:44:f1:a0:21:5b:22:b1:97:26:4f:d2:37: 3d:78:54:34:a6:fc:3b:57:dd:f5:6b:99:55:07:60: e4:29:e5:55:90:bc:53:1b:31:0e:7f:08:d4:99:0b: e6:05:f9:be:01:b9:c8:36:2f:9f:f9:57:18:d9:a0: 32:9b:c3:b0:4d:49:39:cd:0e:7c:ed:af:6e:de:b2: 86:6f:6b:a0:5c:bc:eb:a1:0c:df:0e:c0:fe:fa:fb: dc:81:b8:43:c0:f0:f7:72:39:0e:eb:0f:07:56:99: 5c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:2D:1F:EA:AF:AC:20:92:0D:3A:6B:94:28:0D:AC:D8:57:23:4E:02 X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:1d:13:49:83:e4:27:85:72:0f:0c:0a:11:d1:bb:e3:64:68: 7d:20:2b:ed:2a:d8:aa:3d:8b:fc:59:53:f6:41:dd:65:c0:a8: d1:12:c1:b2:d5:78:7a:8e:93:bb:e5:bf:57:c1:e2:4d:cc:37: 78:39:f8:ec:24:cd:76:95:d4:16:3b:54:78:78:7e:52:8b:fa: c2:85:c0:15:56:f1:99:67:43:13:d1:b1:25:cb:5f:5c:bc:b8: 6a:94:64:ed:2a:0c:7c:9f:07:fd:4c:3e:34:3c:01:8d:e2:cf: 1a:98:60:b1:59:e9:cd:79:e9:78:80:df:07:c1:9c:45:9d:a8: 90:18:d2:b0:ea:7b:2d:7f:21:47:6c:61:0c:b2:81:4f:39:66: be:c1:60:c2:13:21:83:94:6c:82:7c:53:5f:f1:6f:9e:1b:0a: cb:8b:e4:aa:37:5c:6f:3d:f7:46:95:19:94:79:40:ac:93:55: 40:53:3a:03:a3:c1:c3:04:e8:25:76:52:c8:24:f3:e3:5d:c0: 33:cb:31:36:2c:13:12:f9:6c:9f:74:e6:3d:d2:98:dd:ac:d6: 38:75:00:d8:b0:96:77:a7:86:42:2c:8b:2e:8e:dc:fc:a7:10: 27:a6:62:db:b3:11:d2:19:d7:bd:61:1e:c3:8c:ee:30:31:90: 73:f4:a0:71 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NTYxMTAvBgNVBAUTKDVGNjk5MTg2QTJFQkNENDVCMUZGNkEwQTRBRjYwNjA2 RjNCM0QwOEQwHhcNMjYwNDE3MDY0MjI1WhcNMjYwNDI0MDY0MjI1WjAYMRYwFAYD VQQDEw02OWUxZDY1MS00NjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfVrcaW82nXtXXVEhQWPC7pWux8gjjuw2C9ZUhJmSF/XrIDxGrRe0DFWkj77 zFCXPkSJfrSlx2Cxt6zB7D6xnspQhqbQCHfudnGVM0vulzAY92HkJAUMFwRFm5bK IqiDi8DrFyt44PNnj2IP1CC22CHOxHuB9/8w8rhN+w6r7G4FSZKJii/eyBfXkT3Z TlQFwSR5XPh36l9E8aAhWyKxlyZP0jc9eFQ0pvw7V931a5lVB2DkKeVVkLxTGzEO fwjUmQvmBfm+AbnINi+f+VcY2aAym8OwTUk5zQ587a9u3rKGb2ugXLzroQzfDsD+ +vvcgbhDwPD3cjkO6w8HVplcbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAAtH+qv rCCSDTprlCgNrNhXI04CMB8GA1UdIwQYMBaAFF9pkYai681Fsf9qCkr2Bgbzs9CN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1Ni9FRkYyQTBBMDFD NDExMUYwQTk4MjFGM0VDNEY5QUUwMi9YMm1SaHFMcnpVV3hfMm9LU3ZZR0J2T3ow STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg1Ni9FRkYyQTBBMDFDNDExMUYwQTk4MjFGM0VDNEY5QUUwMi9YMm1SaHFMcnpV V3hfMm9LU3ZZR0J2T3owSTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALh0TSYPkJ4VyDwwKEdG742RofSAr7SrYqj2L/FlT9kHdZcCo0RLBstV4eo6T u+W/V8HiTcw3eDn47CTNdpXUFjtUeHh+Uov6woXAFVbxmWdDE9GxJctfXLy4apRk 7SoMfJ8H/Uw+NDwBjeLPGphgsVnpzXnpeIDfB8GcRZ2okBjSsOp7LX8hR2xhDLKB TzlmvsFgwhMhg5RsgnxTX/FvnhsKy4vkqjdcbz33RpUZlHlArJNVQFM6A6PBwwTo JXZSyCTz413AM8sxNiwTEvlsn3TmPdKY3azWOHUA2LCWd6eGQiyLLo7c/KcQJ6Zi 27MR0hnXvWEew4zuMDGQc/SgcQ== -----END CERTIFICATE-----Generated at Fri Apr 17 18:04:12 2026 by rpki-client