$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft File: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft (raw, json) Hash identifier: x6FY2wZ5OJLR22DJoJMATozg5w/UFCxo2T5afy8HPYQ= Subject key identifier: E6:20:D1:66:AA:33:4F:64:14:BA:AF:5B:32:2A:16:5C:BE:34:1D:15 Authority key identifier: D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F Certificate issuer: /CN=A91758EC/serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Certificate serial: 94 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft Manifest number: 8A Signing time: Wed 25 Mar 2026 06:55:27 +0000 Manifest this update: Wed 25 Mar 2026 06:55:27 +0000 Manifest next update: Wed 01 Apr 2026 06:55:27 +0000 Files and hashes: 1: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl (hash: GqnOTdBC7mGjG6zjc8J0gaWYdG4dX7tOUYixZtJqpFM=) 2: 1AC14F60FC1C11F0AA0D3BE4396F56BC.roa (hash: d4/1Al7pieoNWzJ7p3qgYf6c/kIqYCPcAyGt54Cj2Fs=) 3: 1B34EF06FC1C11F0AA0D3BE4396F56BC.roa (hash: Dds/tHpcyRYMFvjsIod+yPijDRVhgC1FwQ1db6dOAxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Validity Not Before: Mar 25 06:55:27 2026 GMT Not After : Apr 1 06:55:27 2026 GMT Subject: CN=69c386df-8d6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:19:c0:70:6a:20:fb:81:54:43:81:21:29:e0: 28:2f:de:aa:cc:67:05:c1:ca:bc:65:7b:2f:9c:50: 38:12:58:f8:4f:8e:80:2e:11:62:c0:56:58:2c:86: 84:f1:a5:c4:f4:3e:c5:77:64:b8:7b:92:91:a8:22: 25:15:d8:11:46:ef:5e:08:43:61:48:ea:aa:bd:49: f9:75:33:e1:fd:11:9c:dc:e0:2c:43:00:2f:a7:26: a4:33:c7:b1:24:c0:35:c2:22:1d:d9:5a:55:bd:cb: 76:21:1c:fd:1c:d1:b6:7e:62:c4:d8:7c:70:a8:e2: 0c:02:5d:07:35:f0:f9:f5:8a:47:8c:88:cc:28:20: b8:77:73:47:92:08:47:85:8a:2f:c1:88:12:1f:67: 74:a7:85:76:9f:f5:2e:b8:0d:81:87:68:09:2a:03: 5f:7d:88:db:fc:e7:05:47:43:ac:75:cd:2c:8a:bf: e8:2d:72:6b:bd:24:9e:b2:ee:f1:42:e8:5f:40:16: ee:cb:15:8a:5b:53:59:0c:25:62:ad:e6:17:42:17: c0:65:0a:ec:b1:1d:97:ac:52:b9:cf:9b:1e:55:4e: 90:3b:7e:0b:4d:70:ba:f2:44:82:93:67:20:ea:87: 08:d9:f3:11:77:ee:39:c0:df:cf:32:44:ef:75:78: d5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:20:D1:66:AA:33:4F:64:14:BA:AF:5B:32:2A:16:5C:BE:34:1D:15 X509v3 Authority Key Identifier: keyid:D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:4b:b4:51:d2:60:b2:38:4b:37:26:c0:06:e9:9a:5e:15:ba: 7f:aa:a1:69:03:e6:68:e4:d9:68:0e:79:b6:42:ff:66:11:54: 58:b0:3a:c3:0f:f7:a5:e4:6f:20:58:f6:ab:cf:54:15:51:3d: 50:d4:0e:81:5b:0b:cb:d1:bd:cd:c1:6b:f7:b2:a3:fa:b0:cc: ea:98:b7:bc:f2:d8:7b:e5:c0:9c:76:36:ca:a5:57:d3:2e:77: 70:f5:c3:2d:28:2a:db:d1:2d:7d:c6:78:7a:8a:f6:4b:2d:07: 4a:5f:a8:3d:eb:af:1d:7c:82:29:6e:d2:34:a4:33:a2:b7:77: 8b:05:50:97:17:40:b9:12:4d:61:5e:e6:d5:39:9e:bb:bf:4e: a6:5d:84:6b:89:ea:5a:13:ed:25:1b:ae:16:b2:36:29:38:81: f6:5e:95:a6:04:9e:db:29:35:83:9d:61:af:ed:bd:35:d6:04: 18:bf:13:2d:97:ed:95:5f:b4:74:86:7f:22:43:8c:3c:b4:c5: b3:61:0f:d8:f9:54:bf:51:7e:a1:2a:56:86:61:37:e2:de:4d: 98:51:a6:cf:0e:5c:1b:32:90:52:92:d9:7b:4e:78:eb:ea:11: 0e:9a:32:9f:f2:ff:5d:00:0c:0e:ad:6c:eb:5c:63:41:91:74: 56:72:cf:59 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4RUMxMTAvBgNVBAUTKEQ4MjdCNjg0M0VCN0Y2QjlGMEVENUYyRkY3MjM0NEE1 MkMwNEI0OUYwHhcNMjYwMzI1MDY1NTI3WhcNMjYwNDAxMDY1NTI3WjAYMRYwFAYD VQQDEw02OWMzODZkZi04ZDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6hnAcGog+4FUQ4EhKeAoL96qzGcFwcq8ZXsvnFA4Elj4T46ALhFiwFZYLIaE 8aXE9D7Fd2S4e5KRqCIlFdgRRu9eCENhSOqqvUn5dTPh/RGc3OAsQwAvpyakM8ex JMA1wiId2VpVvct2IRz9HNG2fmLE2HxwqOIMAl0HNfD59YpHjIjMKCC4d3NHkghH hYovwYgSH2d0p4V2n/UuuA2Bh2gJKgNffYjb/OcFR0Osdc0sir/oLXJrvSSesu7x QuhfQBbuyxWKW1NZDCVireYXQhfAZQrssR2XrFK5z5seVU6QO34LTXC68kSCk2cg 6ocI2fMRd+45wN/PMkTvdXjVbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOYg0Waq M09kFLqvWzIqFly+NB0VMB8GA1UdIwQYMBaAFNgntoQ+t/a58O1fL/cjRKUsBLSf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThFQy82QkY4NkI4NDY2 MzAxMUYwQjlEQzRFNjRDNEY5QUUwMi8yQ2UyaEQ2Mzlybnc3Vjh2OXlORXBTd0V0 SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDZTJoRDYzOXJudzdWOHY5eU5FcFN3RXRKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NThFQy82QkY4NkI4NDY2MzAxMUYwQjlEQzRFNjRDNEY5QUUwMi8yQ2UyaEQ2Mzly bnc3Vjh2OXlORXBTd0V0SjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABEu0UdJgsjhLNybABumaXhW6f6qhaQPmaOTZaA55tkL/ZhFUWLA6ww/3peRv IFj2q89UFVE9UNQOgVsLy9G9zcFr97Kj+rDM6pi3vPLYe+XAnHY2yqVX0y53cPXD LSgq29EtfcZ4eor2Sy0HSl+oPeuvHXyCKW7SNKQzord3iwVQlxdAuRJNYV7m1Tme u79Opl2Ea4nqWhPtJRuuFrI2KTiB9l6VpgSe2yk1g51hr+29NdYEGL8TLZftlV+0 dIZ/IkOMPLTFs2EP2PlUv1F+oSpWhmE34t5NmFGmzw5cGzKQUpLZe0546+oRDpoy n/L/XQAMDq1s61xjQZF0VnLPWQ== -----END CERTIFICATE-----Generated at Thu Mar 26 16:19:53 2026 by rpki-client