$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json) Hash identifier: FXRXBi6Zkw/bwBcspl7qhCJolO0oU+v69ZoDrD9Fir0= Subject key identifier: C3:7D:B1:25:2B:AB:D5:E8:07:84:B0:6F:0F:9C:00:27:88:8C:65:0E Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0D21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft Manifest number: 1ED3 Signing time: Thu 16 Apr 2026 17:06:38 +0000 Manifest this update: Thu 16 Apr 2026 17:06:37 +0000 Manifest next update: Thu 23 Apr 2026 17:06:37 +0000 Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: 64vTUBsrfpakLMlY4wwl+JhpNGv8hnLefm7XJJPatQ0=) 2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: pVllpqaYkicaFIWTL2XyjS6RmEOfq4yPCoNoR4rIsP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:06:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3361 (0xd21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: Apr 16 17:06:37 2026 GMT Not After : Apr 23 17:06:37 2026 GMT Subject: CN=69e1171e-2a0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:bc:ac:cb:cd:62:38:8e:70:63:9e:fc:e0:d7: a8:22:26:b7:6d:e3:24:e5:67:62:9b:fd:d0:c8:f2: f3:a4:f5:b9:ad:62:5b:7f:89:d9:57:1c:86:9e:8d: a7:c0:e0:3c:ff:51:e8:64:48:55:9b:35:86:2d:e0: 95:9a:0f:79:fe:a1:c7:2d:12:f4:0d:e8:ae:0e:58: 4b:6e:65:2e:73:45:68:7d:ed:6f:0e:92:ea:ae:22: 54:13:d9:07:19:d6:b3:d9:54:39:ad:d4:e2:fd:a7: 40:62:37:d7:dd:da:a1:27:33:9a:d9:c1:a5:9b:1d: b0:83:74:32:2e:c3:23:9f:c6:b2:af:1e:40:e4:28: 2c:27:60:84:6c:1d:71:25:b5:82:aa:3a:b3:71:05: 91:46:2c:52:b0:67:f8:8a:f1:5f:d5:18:80:c9:bc: cf:11:4b:99:25:ce:ea:e1:4a:61:7f:df:8f:e3:28: 5a:c6:3d:4b:3e:c3:34:4c:0b:84:12:73:c5:53:4e: dd:0d:09:3d:e7:5c:80:6b:a0:2e:2b:8b:08:e3:1d: e4:61:22:15:fb:bd:ca:9a:df:c3:64:f9:f0:80:03: 28:fb:b1:79:9f:61:fc:24:50:1b:b8:29:2f:c5:17: a2:76:ff:de:b0:ce:49:61:2a:64:23:4e:61:17:5e: 23:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:7D:B1:25:2B:AB:D5:E8:07:84:B0:6F:0F:9C:00:27:88:8C:65:0E X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:51:2c:84:75:a8:63:bf:87:5d:ed:b6:6d:fb:68:07:88:3b: ca:f6:16:a3:48:7d:30:1a:0a:5e:8c:f1:66:0a:65:4c:41:bd: 2a:e1:72:34:a5:a9:b7:ec:df:fb:c9:9e:eb:1c:e4:60:5a:31: a7:45:f6:0f:31:57:fc:bf:2c:86:30:1b:14:e7:75:c2:df:62: 41:42:9f:41:5c:ae:33:0c:23:53:c3:6c:01:fe:75:b3:ff:ca: 20:37:d6:61:20:63:07:09:c4:b1:5b:c1:3f:60:af:4c:22:08: f3:bd:a3:1c:0a:cb:44:94:b6:a8:a8:59:5a:89:93:35:94:56: 0e:d7:ed:4b:7e:e1:ac:3a:aa:33:1a:eb:73:14:44:60:c8:b4: 3a:8d:cd:97:75:9c:7b:2d:ea:06:57:61:d3:c2:aa:6f:fb:14: 0e:3f:ad:86:82:ed:cf:55:92:1b:bc:a4:c5:fa:57:8e:74:ad: a9:a9:cc:f1:6a:3c:74:48:61:17:65:bb:0f:05:af:ee:02:6e: 80:81:76:5c:84:d5:0b:5f:7f:b8:3b:95:15:ed:47:50:dc:59: 8a:54:29:80:b4:6b:5a:c5:9b:4f:05:66:7c:fd:34:44:4e:0b: e1:2a:bf:7d:ac:8f:0f:6c:50:1c:6b:70:ca:84:ac:90:72:d8: 0b:79:02:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjYwNDE2MTcwNjM3WhcNMjYwNDIzMTcwNjM3WjAYMRYwFAYD VQQDEw02OWUxMTcxZS0yYTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmLysy81iOI5wY5784NeoIia3beMk5Wdim/3QyPLzpPW5rWJbf4nZVxyGno2n wOA8/1HoZEhVmzWGLeCVmg95/qHHLRL0DeiuDlhLbmUuc0Vofe1vDpLqriJUE9kH Gdaz2VQ5rdTi/adAYjfX3dqhJzOa2cGlmx2wg3QyLsMjn8ayrx5A5CgsJ2CEbB1x JbWCqjqzcQWRRixSsGf4ivFf1RiAybzPEUuZJc7q4Uphf9+P4yhaxj1LPsM0TAuE EnPFU07dDQk951yAa6AuK4sI4x3kYSIV+73Kmt/DZPnwgAMo+7F5n2H8JFAbuCkv xReidv/esM5JYSpkI05hF14jMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMN9sSUr q9XoB4Swbw+cACeIjGUOMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh NVVPRmNVam1NMUw5cUV3SG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb1EshHWoY7+HXe22bftoB4g7yvYWo0h9MBoKXozxZgplTEG9KuFyNKWpt+zf +8me6xzkYFoxp0X2DzFX/L8shjAbFOd1wt9iQUKfQVyuMwwjU8NsAf51s//KIDfW YSBjBwnEsVvBP2CvTCII872jHArLRJS2qKhZWomTNZRWDtftS37hrDqqMxrrcxRE YMi0Oo3Nl3Wcey3qBldh08Kqb/sUDj+thoLtz1WSG7ykxfpXjnStqanM8Wo8dEhh F2W7DwWv7gJugIF2XITVC19/uDuVFe1HUNxZilQpgLRrWsWbTwVmfP00RE4L4Sq/ fayPD2xQHGtwyoSskHLYC3kC0A== -----END CERTIFICATE-----Generated at Fri Apr 17 09:55:16 2026 by rpki-client