$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft File: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft (raw, json) Hash identifier: yUNFa4zYIsi4tUTX95A+tqIw31DJx7zok4f+94hfh1c= Subject key identifier: 18:76:3D:4B:CA:A0:CC:A1:CD:5F:38:CD:12:10:27:E3:E1:40:C3:68 Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 0291 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft Manifest number: 028B Signing time: Wed 13 May 2026 00:29:57 +0000 Manifest this update: Wed 13 May 2026 00:29:57 +0000 Manifest next update: Wed 20 May 2026 00:29:57 +0000 Files and hashes: 1: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl (hash: BGmiJUwgJM2+ScOeOMR15tzqAEWXkpCMauVhOnyAMLw=) 2: F060FF0E720D11EDA84BE02EC4F9AE02.roa (hash: bBLigJeGoxjmDkmt5bCcINVBCGyLUX4lsMZpAacSwXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:29:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: May 13 00:29:57 2026 GMT Not After : May 20 00:29:57 2026 GMT Subject: CN=6a03c605-7e5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:24:f1:2f:2a:49:eb:8a:7c:70:61:dd:32:63: 6a:33:ae:fc:1e:3d:62:ab:bc:9d:c0:27:94:88:44: 11:14:bf:43:60:7b:b8:6a:7f:89:19:34:23:d0:f1: 0b:e4:52:9f:9e:2a:15:e2:e2:9c:92:10:1d:2a:7a: 5c:ba:e1:f9:62:d7:3b:a9:49:b9:37:45:81:5a:cf: e2:9b:26:51:db:47:75:bb:27:9b:8b:84:9d:1a:3c: 62:9e:6a:3e:e0:90:8e:06:9c:5c:3f:65:0f:57:36: 9b:74:40:b9:f9:a6:a7:d3:96:25:6a:87:9e:00:2c: 16:45:9d:30:64:ff:bf:db:5b:7a:36:a0:52:42:b0: 26:b6:ca:66:e8:b0:b3:7f:b3:e5:d6:72:32:e8:72: e3:21:dc:c9:f4:7d:5e:9b:3a:ba:b1:63:0d:07:3d: f5:71:e8:30:cc:49:94:b9:27:ea:7a:d8:d6:80:2e: a8:f3:e6:38:05:7d:63:55:8d:23:9d:8e:84:4b:57: dc:1a:b8:29:5c:47:ae:23:fe:8c:d2:11:65:81:e5: 28:01:44:fc:42:32:9c:ae:3e:8b:1a:10:5d:79:96: f1:8d:b8:5a:82:53:09:a9:5e:b6:9d:11:dd:83:7b: a7:f0:78:78:b0:64:d7:6c:57:50:42:2c:93:8d:44: 7f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:76:3D:4B:CA:A0:CC:A1:CD:5F:38:CD:12:10:27:E3:E1:40:C3:68 X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:28:ca:6f:1b:6b:95:55:b7:d6:f5:06:34:f5:5b:5b:06:62: 0c:70:01:e0:6c:60:90:24:fe:07:86:d2:81:6a:ae:68:a5:59: 1a:2d:c7:6c:99:b6:ee:20:42:e2:bc:49:05:40:64:af:99:f1: 1d:0a:65:f5:c5:6f:49:cd:e9:7c:bc:1b:57:cf:67:24:27:c5: c9:7d:5d:eb:be:0f:0a:6e:73:96:f2:42:2f:8a:2c:81:6b:78: 44:ec:71:51:62:db:e0:80:87:ef:4f:c3:ef:fb:9c:80:a3:96: da:02:2e:48:b4:b4:48:3e:7e:79:05:6b:3f:ca:b9:fc:f4:37: ac:25:4a:15:a7:55:9a:bb:f1:f6:e4:d1:e9:94:3b:15:9d:a9: b5:39:c1:9a:53:a7:a6:32:9d:d6:d2:72:be:5d:a2:ef:25:06: 65:e3:f6:7e:80:f5:94:46:eb:36:e4:65:1e:b9:cf:97:46:73: c1:49:0d:a6:39:5e:d9:98:42:c8:96:77:7c:8e:d3:ef:09:ee: 30:5f:c4:cd:66:6b:55:00:f9:60:2d:70:04:0f:47:f9:3c:20: 10:5b:95:ea:b5:2a:95:bf:93:ee:32:8a:38:27:0b:74:cd:ad: a1:d1:e5:db:91:8f:98:53:b4:b8:f4:54:ef:1e:a3:6f:de:9b: 50:a4:af:a2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjYwNTEzMDAyOTU3WhcNMjYwNTIwMDAyOTU3WjAYMRYwFAYD VQQDEw02YTAzYzYwNS03ZTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlSTxLypJ64p8cGHdMmNqM678Hj1iq7ydwCeUiEQRFL9DYHu4an+JGTQj0PEL 5FKfnioV4uKckhAdKnpcuuH5Ytc7qUm5N0WBWs/imyZR20d1uyebi4SdGjxinmo+ 4JCOBpxcP2UPVzabdEC5+aan05YlaoeeACwWRZ0wZP+/21t6NqBSQrAmtspm6LCz f7Pl1nIy6HLjIdzJ9H1emzq6sWMNBz31cegwzEmUuSfqetjWgC6o8+Y4BX1jVY0j nY6ES1fcGrgpXEeuI/6M0hFlgeUoAUT8QjKcrj6LGhBdeZbxjbhaglMJqV62nRHd g3un8Hh4sGTXbFdQQiyTjUR/1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBh2PUvK oMyhzV84zRIQJ+PhQMNoMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC83NTk4NDQ0NDcyMEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5Nlhk N1R0ejFnVXU0RkZzQWt4UE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKyjKbxtrlVW31vUGNPVbWwZiDHAB4GxgkCT+B4bSgWquaKVZGi3HbJm27iBC 4rxJBUBkr5nxHQpl9cVvSc3pfLwbV89nJCfFyX1d674PCm5zlvJCL4osgWt4ROxx UWLb4ICH70/D7/ucgKOW2gIuSLS0SD5+eQVrP8q5/PQ3rCVKFadVmrvx9uTR6ZQ7 FZ2ptTnBmlOnpjKd1tJyvl2i7yUGZeP2foD1lEbrNuRlHrnPl0ZzwUkNpjle2ZhC yJZ3fI7T7wnuMF/EzWZrVQD5YC1wBA9H+TwgEFuV6rUqlb+T7jKKOCcLdM2todHl 25GPmFO0uPRU7x6jb96bUKSvog== -----END CERTIFICATE-----Generated at Wed May 13 06:07:51 2026 by rpki-client