$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft File: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft (raw, json) Hash identifier: 3aADWEwD0AOAvo0Hi7KOnfVo29b2jKAPIPiQzlwzL1Q= Subject key identifier: B4:10:D7:CC:A6:C0:BF:45:8B:4F:49:38:45:25:3B:3A:D7:50:3E:AE Authority key identifier: D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F Certificate issuer: /CN=A91758EC/serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft Manifest number: A3 Signing time: Wed 13 May 2026 07:32:46 +0000 Manifest this update: Wed 13 May 2026 07:32:46 +0000 Manifest next update: Wed 20 May 2026 07:32:46 +0000 Files and hashes: 1: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl (hash: K5alp2oTsE4CG32Lbw2bh2uUlgugzbOj/55HDYc2IhE=) 2: 1AC14F60FC1C11F0AA0D3BE4396F56BC.roa (hash: d4/1Al7pieoNWzJ7p3qgYf6c/kIqYCPcAyGt54Cj2Fs=) 3: 1B34EF06FC1C11F0AA0D3BE4396F56BC.roa (hash: Dds/tHpcyRYMFvjsIod+yPijDRVhgC1FwQ1db6dOAxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 06:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Validity Not Before: May 13 07:32:46 2026 GMT Not After : May 20 07:32:46 2026 GMT Subject: CN=6a04291e-5fad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:62:f6:ab:3f:74:31:ca:75:3a:9f:e6:99:1a: 85:bf:49:b6:51:ea:b7:2c:9c:4a:75:a9:2a:31:58: fe:91:e9:64:a6:87:5b:73:f1:b6:cb:8c:8f:a4:bb: bb:3d:17:90:32:00:32:fc:69:fc:27:26:0d:0f:6e: bf:96:f9:09:4b:e6:0f:d8:5f:b4:02:b8:63:f9:47: de:c8:8f:6b:0d:73:0c:b0:c1:cd:4d:c2:79:ac:33: 5c:ab:7f:c3:ff:ca:f7:63:3e:2b:54:e8:43:9f:50: 90:11:3b:9d:07:ee:0b:ce:bc:33:6f:ef:98:80:b9: 16:48:59:a4:99:4e:41:d5:0e:0c:d7:f4:32:29:35: 67:c1:e4:da:c5:2d:8d:c2:8a:b6:ce:d1:8a:a7:4b: 77:7d:19:66:74:d2:6e:8a:c9:f7:44:09:8f:2c:22: 86:09:02:cc:20:f7:8a:ef:fa:9e:4d:eb:46:97:cd: 6c:e2:c7:aa:ef:85:e9:05:65:8a:ca:68:30:8e:62: 44:f0:65:16:7b:37:06:97:0d:56:f6:7a:90:dc:6a: 82:ef:43:46:91:a1:62:d2:62:b1:de:44:a4:10:5f: 55:d7:a9:45:d5:4d:f3:e7:fd:27:7c:e0:e6:f2:1a: 2f:ef:9a:0f:40:36:34:d0:e6:ec:70:61:04:70:51: c3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:10:D7:CC:A6:C0:BF:45:8B:4F:49:38:45:25:3B:3A:D7:50:3E:AE X509v3 Authority Key Identifier: keyid:D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:aa:e8:45:6f:29:b7:45:50:96:8e:a8:72:3c:68:a5:0b:82: 44:d2:98:c9:bf:ce:4f:cb:d1:6d:b8:fc:16:95:26:7b:16:0f: 30:8d:8e:67:16:df:e3:55:9b:74:80:f9:aa:ab:d4:db:5b:56: 7d:7e:ed:29:70:27:36:70:44:f3:1a:2d:e6:f5:0e:07:6c:26: 08:8c:43:bd:5a:39:67:e2:ae:27:f7:11:af:68:cf:b5:34:0c: 80:d1:43:4d:e6:73:1b:6a:13:2c:93:0d:b8:77:52:c8:72:fa: 24:be:fc:0d:ff:6c:42:93:92:73:26:59:0a:2e:d6:37:3a:2d: dc:74:43:c2:d7:a7:f9:44:6c:0a:04:4d:28:e5:87:2b:8d:54: 6d:92:88:28:f7:b8:3b:c3:dc:84:fa:a6:92:7c:be:8a:c1:dd: f4:3b:19:ef:98:9f:f9:46:04:eb:3a:3e:85:6b:1d:e9:98:9d: 4d:1d:6a:0f:6f:cf:e4:64:ae:6a:e2:d3:b1:dc:2c:b9:31:86: 46:60:68:95:5a:0d:42:c7:f3:c2:7e:64:c5:a1:32:85:76:6e: 2b:7b:78:0b:34:d1:4d:4a:56:b8:11:cc:33:56:f5:32:e3:a4: 7b:03:63:fb:e7:4b:4c:e8:20:03:38:9c:1f:7b:bf:11:14:c0: 59:9d:7e:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4RUMxMTAvBgNVBAUTKEQ4MjdCNjg0M0VCN0Y2QjlGMEVENUYyRkY3MjM0NEE1 MkMwNEI0OUYwHhcNMjYwNTEzMDczMjQ2WhcNMjYwNTIwMDczMjQ2WjAYMRYwFAYD VQQDEw02YTA0MjkxZS01ZmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl2L2qz90Mcp1Op/mmRqFv0m2Ueq3LJxKdakqMVj+kelkpodbc/G2y4yPpLu7 PReQMgAy/Gn8JyYND26/lvkJS+YP2F+0Arhj+UfeyI9rDXMMsMHNTcJ5rDNcq3/D /8r3Yz4rVOhDn1CQETudB+4Lzrwzb++YgLkWSFmkmU5B1Q4M1/QyKTVnweTaxS2N woq2ztGKp0t3fRlmdNJuisn3RAmPLCKGCQLMIPeK7/qeTetGl81s4seq74XpBWWK ymgwjmJE8GUWezcGlw1W9nqQ3GqC70NGkaFi0mKx3kSkEF9V16lF1U3z5/0nfODm 8hov75oPQDY00ObscGEEcFHD5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLQQ18ym wL9Fi09JOEUlOzrXUD6uMB8GA1UdIwQYMBaAFNgntoQ+t/a58O1fL/cjRKUsBLSf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThFQy82QkY4NkI4NDY2 MzAxMUYwQjlEQzRFNjRDNEY5QUUwMi8yQ2UyaEQ2Mzlybnc3Vjh2OXlORXBTd0V0 SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDZTJoRDYzOXJudzdWOHY5eU5FcFN3RXRKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NThFQy82QkY4NkI4NDY2MzAxMUYwQjlEQzRFNjRDNEY5QUUwMi8yQ2UyaEQ2Mzly bnc3Vjh2OXlORXBTd0V0SjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoaroRW8pt0VQlo6ocjxopQuCRNKYyb/OT8vRbbj8FpUmexYPMI2OZxbf41Wb dID5qqvU21tWfX7tKXAnNnBE8xot5vUOB2wmCIxDvVo5Z+KuJ/cRr2jPtTQMgNFD TeZzG2oTLJMNuHdSyHL6JL78Df9sQpOScyZZCi7WNzot3HRDwten+URsCgRNKOWH K41UbZKIKPe4O8PchPqmkny+isHd9DsZ75if+UYE6zo+hWsd6ZidTR1qD2/P5GSu auLTsdwsuTGGRmBolVoNQsfzwn5kxaEyhXZuK3t4CzTRTUpWuBHMM1b1MuOkewNj ++dLTOggAzicH3u/ERTAWZ1+ww== -----END CERTIFICATE-----Generated at Wed May 13 09:32:41 2026 by rpki-client