$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: mEqC2MlXK60q70MyOSu84BvtxFBhvaVcN8pn8fV43fs= Subject key identifier: 7C:9A:81:4E:2C:2D:54:2D:FF:C2:71:4C:73:BD:90:E5:30:D9:E7:4C Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 0238 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 022E Signing time: Fri 17 Apr 2026 02:25:09 +0000 Manifest this update: Fri 17 Apr 2026 02:25:09 +0000 Manifest next update: Fri 24 Apr 2026 02:25:09 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: OGWpWyMPbB5j9fbkdQodPZ23gUCn8E/e/gmHR6CGQ7w=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: O6tGr92XmxFCney2TeehRmwSGnb7+7FigW1Tc3DQGsw=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: aAtHrkMecT5oO4nt1NPtMzyuWR2EapTbCzd38PiZviw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:25:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Apr 17 02:25:09 2026 GMT Not After : Apr 24 02:25:09 2026 GMT Subject: CN=69e19a05-86a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fd:cd:52:98:eb:e1:34:93:d5:c9:ae:98:9f: db:4b:6f:a7:97:32:bd:98:81:93:6c:98:ac:8f:a1: bf:56:99:b2:34:0e:48:1f:fd:ca:74:38:66:c7:54: ec:57:c3:08:f3:93:25:19:30:4b:3a:07:38:15:ba: 9d:27:1b:af:4e:e2:3f:2e:ae:8b:a5:66:ba:df:81: f3:d6:25:76:47:1d:0b:f1:e2:a3:6d:e2:78:1f:82: 0b:19:a1:4c:84:42:c7:e7:89:e0:20:4f:50:88:4c: 15:98:27:de:39:71:89:ad:a5:30:14:3a:7f:44:67: 90:00:76:2a:a3:0e:1f:09:a5:40:ca:b7:75:65:f8: 00:90:a8:b7:9a:89:55:cc:3e:55:c6:60:1c:5c:9b: db:c7:e1:3e:f0:cd:a9:7d:f4:14:8c:cc:c2:a8:be: 65:17:94:05:55:eb:3c:35:e9:2b:47:dd:b5:0b:03: aa:1f:63:c5:b8:5a:06:1c:0d:66:f5:4e:55:2c:70: 6a:38:a0:e6:45:77:d4:c6:36:05:b4:7d:6f:91:99: eb:e1:0e:bb:2a:33:20:bb:e1:37:f7:fd:35:4e:61: 26:a1:43:3a:35:de:e5:03:d9:d7:b4:51:e9:e7:cc: 19:2c:7a:9f:b2:ab:94:6b:59:b3:68:0b:19:48:9a: 5a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:9A:81:4E:2C:2D:54:2D:FF:C2:71:4C:73:BD:90:E5:30:D9:E7:4C X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:73:bf:a6:7b:09:bf:0a:fe:e3:7c:16:57:5a:e6:e8:3e:9b: 34:65:c1:c6:1c:1c:48:84:0c:83:48:e2:48:4c:02:85:2b:02: 5e:bb:07:f7:e6:ef:4c:67:df:f7:32:dd:dc:61:30:cd:e3:80: aa:3d:77:c6:1a:82:ee:4c:61:85:2a:f2:95:a2:cc:3d:73:74: 4d:66:35:61:f7:67:29:fd:8d:1b:4e:76:8c:42:50:df:09:98: 0f:65:0c:d1:1d:89:e0:17:68:1e:8d:02:ce:a8:a6:ae:ac:08: 3c:71:d5:87:48:a3:3d:a8:3d:d4:8f:f9:fb:d7:71:a6:d6:7c: b6:64:71:a0:5a:81:b4:5f:64:ef:0a:ac:45:fb:9d:85:bc:9d: 91:b3:6f:2f:0c:bd:2f:0e:7a:60:e9:00:46:15:86:1b:ec:8f: 1b:b9:cc:c2:fc:5c:01:29:a0:34:64:52:6a:57:1f:1b:e9:fa: 3b:fb:d4:ee:43:69:8c:e0:2d:28:92:b7:cc:5d:13:40:af:10: 15:66:d9:ce:e7:08:fc:c7:bc:ad:ab:a5:c0:c7:88:dd:4f:3d: a3:f1:35:5a:57:5a:33:30:0c:e2:9e:fe:05:d0:3b:81:a4:39: be:5a:31:c0:44:db:0b:e7:00:91:8d:2d:c9:b4:e4:5b:c9:1a: 59:2d:2e:4d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjYwNDE3MDIyNTA5WhcNMjYwNDI0MDIyNTA5WjAYMRYwFAYD VQQDEw02OWUxOWEwNS04NmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/3NUpjr4TST1cmumJ/bS2+nlzK9mIGTbJisj6G/VpmyNA5IH/3KdDhmx1Ts V8MI85MlGTBLOgc4FbqdJxuvTuI/Lq6LpWa634Hz1iV2Rx0L8eKjbeJ4H4ILGaFM hELH54ngIE9QiEwVmCfeOXGJraUwFDp/RGeQAHYqow4fCaVAyrd1ZfgAkKi3molV zD5VxmAcXJvbx+E+8M2pffQUjMzCqL5lF5QFVes8NekrR921CwOqH2PFuFoGHA1m 9U5VLHBqOKDmRXfUxjYFtH1vkZnr4Q67KjMgu+E39/01TmEmoUM6Nd7lA9nXtFHp 58wZLHqfsquUa1mzaAsZSJpaGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHyagU4s LVQt/8JxTHO9kOUw2edMMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG3O/pnsJvwr+43wWV1rm6D6bNGXBxhwcSIQMg0jiSEwChSsCXrsH9+bvTGff 9zLd3GEwzeOAqj13xhqC7kxhhSrylaLMPXN0TWY1YfdnKf2NG052jEJQ3wmYD2UM 0R2J4BdoHo0CzqimrqwIPHHVh0ijPag91I/5+9dxptZ8tmRxoFqBtF9k7wqsRfud hbydkbNvLwy9Lw56YOkARhWGG+yPG7nMwvxcASmgNGRSalcfG+n6O/vU7kNpjOAt KJK3zF0TQK8QFWbZzucI/Me8raulwMeI3U89o/E1WldaMzAM4p7+BdA7gaQ5vlox wETbC+cAkY0tybTkW8kaWS0uTQ== -----END CERTIFICATE-----Generated at Fri Apr 17 17:16:51 2026 by rpki-client