$ rpki-client -vvf rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft File: 2jyR-PFV2QuZh8kTskxPnlRF6cw.mft (raw, json) Hash identifier: GUWCIEam/UWPVcAo2m1OUqKsp0ItI6zbsonHmDDFFXQ= Subject key identifier: A1:B6:79:E9:D6:D1:11:9B:B7:9C:79:36:1D:4C:F5:B8:B0:5B:7F:4E Authority key identifier: DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC Certificate issuer: /CN=A91E70ED/serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Certificate serial: 0DAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft Manifest number: 0D82 Signing time: Thu 16 Apr 2026 17:53:03 +0000 Manifest this update: Thu 16 Apr 2026 17:53:03 +0000 Manifest next update: Thu 23 Apr 2026 17:53:03 +0000 Files and hashes: 1: 2jyR-PFV2QuZh8kTskxPnlRF6cw.crl (hash: lFs+NffUo/FRrhS6WSrHCPXhwWs5MVQUkJj+qFTsbog=) 2: 8D9FFB3EEB2911EB9891D01DC4F9AE02.roa (hash: QT3QM4Ca91XVmmXNZAyaNX0ZIAsny+fn6mttdm0kFjo=) 3: 8E4647E6EB2911EB9891D01DC4F9AE02.roa (hash: AsxJJe7AQfPpeTieWhSPJw58k738mrKqvlACAyMZyn0=) 4: FEB624F6B94911EE897F7947C4F9AE02.roa (hash: ZqgPOrVGAVhmIWvwXmsHVZQruBjCO1WrYjc/KjSm8/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3498 (0xdaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E70ED, serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Validity Not Before: Apr 16 17:53:03 2026 GMT Not After : Apr 23 17:53:03 2026 GMT Subject: CN=69e121ff-5620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bd:51:18:ab:d1:2e:5a:31:4b:df:a7:ec:f3: 8d:c5:de:e0:87:f1:4d:be:ad:84:63:5b:1a:9f:c0: ed:c6:96:c6:8b:f9:ad:2d:5a:a3:2d:b1:66:b8:b9: ab:47:72:0b:65:9c:a8:fa:87:93:09:a9:91:2c:d5: 60:f6:97:a9:81:38:a9:f7:0a:86:ff:0b:e1:4d:56: 5d:a3:23:fd:fb:49:8d:83:31:76:33:76:39:42:5d: 07:57:7d:ed:36:29:dc:f1:34:0a:f2:43:7e:11:99: 80:d4:0c:82:12:7b:b8:83:76:cf:05:b3:3f:64:d1: 00:2a:ab:3b:50:14:e2:24:17:29:1f:ce:93:bf:e6: 39:7e:c4:21:d0:3d:30:34:27:4a:15:9d:33:ce:eb: 49:23:4b:98:4e:34:0b:68:c6:d6:fd:84:ba:b5:a8: b4:c2:ff:3c:4d:c0:88:87:d5:91:87:bb:1b:79:14: 2f:8f:0a:07:16:12:e3:c6:ea:f2:66:67:19:54:38: 25:f2:53:5c:40:4e:86:dc:d4:74:1a:6a:e3:f4:bd: d9:c1:86:bf:83:bb:01:e3:61:e5:99:7b:f4:0a:1e: 20:ec:c9:8b:76:0b:ab:66:b1:b3:01:90:2c:c3:f4: 9e:8f:fa:92:ad:1c:cf:2c:08:e3:b2:c8:e2:d1:68: a5:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B6:79:E9:D6:D1:11:9B:B7:9C:79:36:1D:4C:F5:B8:B0:5B:7F:4E X509v3 Authority Key Identifier: keyid:DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:5b:2b:44:96:4f:5b:d6:6e:d8:b7:04:59:2f:d9:0e:1e:3d: 8f:90:3e:13:4c:ab:94:1f:f6:4a:2a:4c:1e:07:4d:e4:f8:db: 9e:95:4e:1b:bb:b0:61:6b:85:5a:07:53:21:7c:a4:18:51:7d: 6d:18:57:93:05:a0:83:e2:7b:65:50:20:a4:c4:62:60:7e:be: 87:c8:06:29:a4:6e:4a:8c:7c:ac:70:50:e0:06:59:45:63:21: ea:ce:12:8a:7e:a2:43:00:c1:29:5e:cb:90:f1:cb:1d:4e:5c: 11:89:da:dd:d1:4b:38:4f:b0:06:5b:88:33:39:72:99:64:57: 61:fb:16:4f:8b:11:85:e8:dc:97:52:15:94:36:92:db:73:d8: 30:d6:dc:c8:dd:ef:66:30:14:4e:5c:06:e9:b7:f2:a7:d1:17: fe:f0:79:cd:5f:fc:de:70:70:b2:fc:88:85:df:ef:86:4c:3c: d0:fb:3c:64:c7:31:99:b2:48:1b:1a:e4:88:70:2f:4d:ca:ba: 05:27:fa:7e:90:25:45:04:60:61:55:b7:dd:dd:5a:33:ed:bb: 0d:c7:4a:26:8c:4e:76:c5:07:9b:bc:5c:a7:0d:ce:33:4b:c2: 7f:1e:74:34:8d:9b:31:52:e5:75:67:64:2d:df:07:22:99:b8: 33:0e:31:fd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcwRUQxMTAvBgNVBAUTKERBM0M5MUY4RjE1NUQ5MEI5OTg3QzkxM0IyNEM0RjlF NTQ0NUU5Q0MwHhcNMjYwNDE2MTc1MzAzWhcNMjYwNDIzMTc1MzAzWjAYMRYwFAYD VQQDEw02OWUxMjFmZi01NjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs71RGKvRLloxS9+n7PONxd7gh/FNvq2EY1san8DtxpbGi/mtLVqjLbFmuLmr R3ILZZyo+oeTCamRLNVg9pepgTip9wqG/wvhTVZdoyP9+0mNgzF2M3Y5Ql0HV33t Ninc8TQK8kN+EZmA1AyCEnu4g3bPBbM/ZNEAKqs7UBTiJBcpH86Tv+Y5fsQh0D0w NCdKFZ0zzutJI0uYTjQLaMbW/YS6tai0wv88TcCIh9WRh7sbeRQvjwoHFhLjxury ZmcZVDgl8lNcQE6G3NR0Gmrj9L3ZwYa/g7sB42HlmXv0Ch4g7MmLdgurZrGzAZAs w/Sej/qSrRzPLAjjssji0WilXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKG2eenW 0RGbt5x5Nh1M9biwW39OMB8GA1UdIwQYMBaAFNo8kfjxVdkLmYfJE7JMT55URenM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzBFRC9FNjI3N0EzRUU5 RTExMUU5QTU5ODdFMUZDNEY5QUUwMi8yanlSLVBGVjJRdVpoOGtUc2t4UG5sUkY2 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqeVItUEZWMlF1Wmg4a1Rza3hQbmxSRjZjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzBFRC9FNjI3N0EzRUU5RTExMUU5QTU5ODdFMUZDNEY5QUUwMi8yanlSLVBGVjJR dVpoOGtUc2t4UG5sUkY2Y3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIlsrRJZPW9Zu2LcEWS/ZDh49j5A+E0yrlB/2SipMHgdN5PjbnpVOG7uwYWuF WgdTIXykGFF9bRhXkwWgg+J7ZVAgpMRiYH6+h8gGKaRuSox8rHBQ4AZZRWMh6s4S in6iQwDBKV7LkPHLHU5cEYna3dFLOE+wBluIMzlymWRXYfsWT4sRhejcl1IVlDaS 23PYMNbcyN3vZjAUTlwG6bfyp9EX/vB5zV/83nBwsvyIhd/vhkw80Ps8ZMcxmbJI GxrkiHAvTcq6BSf6fpAlRQRgYVW33d1aM+27DcdKJoxOdsUHm7xcpw3OM0vCfx50 NI2bMVLldWdkLd8HIpm4Mw4x/Q== -----END CERTIFICATE-----Generated at Fri Apr 17 10:09:13 2026 by rpki-client