$ rpki-client -vvf rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft File: 2kdUAUEh0yaH2X05LZBgSagU_MM.mft (raw, json) Hash identifier: 2uF2F3Pjei58cuIYxwf/hWZzgywdXKxW03ST1pcg35E= Subject key identifier: 91:95:92:FA:81:73:DD:43:61:19:A5:FE:35:D1:F4:6A:13:14:58:90 Authority key identifier: DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 Certificate issuer: /CN=A91777A6/serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Certificate serial: 02E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft Manifest number: 02DA Signing time: Wed 25 Mar 2026 00:59:55 +0000 Manifest this update: Wed 25 Mar 2026 00:59:54 +0000 Manifest next update: Wed 01 Apr 2026 00:59:54 +0000 Files and hashes: 1: 2kdUAUEh0yaH2X05LZBgSagU_MM.crl (hash: piyB43eVZ8SzIxuo6uyv01R+i+ZEKSn11sZR7bEEkzI=) 2: 930770F4244C11ED95AA5569C4F9AE02.roa (hash: QRN3d7Kp62mAA4UY2PHj6uAygWUxtpM/GbpwgYao/0w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:59:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 737 (0x2e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777A6, serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Validity Not Before: Mar 25 00:59:54 2026 GMT Not After : Apr 1 00:59:54 2026 GMT Subject: CN=69c3338b-1a3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:d7:bf:db:85:82:a5:37:c9:ef:d1:3c:a4:8a: 13:5b:78:7f:e4:15:08:75:d6:44:45:16:37:ff:e9: 74:ab:91:3f:77:63:b2:76:0a:1e:39:c0:2c:6a:8e: c6:72:8c:91:63:63:f4:3d:c2:ce:14:2f:73:8d:d1: 81:9f:1b:e6:31:11:31:09:8e:14:ae:08:0f:c5:b7: 9a:91:a8:74:8b:7f:a0:2d:4b:4d:b4:f2:7a:21:2c: da:86:5e:00:18:83:fe:b5:8f:fd:15:6d:47:ef:e4: 9f:5a:7b:23:b8:c1:20:a8:0c:f3:07:bf:5a:61:2f: fe:6e:ce:29:bc:9b:17:a9:7c:97:78:0d:89:bf:2e: f9:d9:27:c2:ea:41:76:9b:58:ae:d2:c5:dd:ac:33: d4:7e:5e:13:fd:8b:3d:ed:1e:b7:c8:22:fb:a0:61: 39:31:9f:78:86:27:54:c0:18:72:71:28:ee:52:0c: 07:6f:22:b2:7e:86:0b:fb:f6:25:09:02:e4:ed:7f: fc:7d:0b:8b:3f:f0:26:cd:c9:0f:71:32:8e:44:74: 71:d4:78:bc:c6:27:e4:e5:55:5d:b2:b6:b6:98:f2: 33:4b:83:ce:da:ef:01:c0:86:3a:39:78:b4:47:93: e3:d7:65:ec:d1:73:cf:ff:49:d7:a2:6e:1f:34:35: 63:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:95:92:FA:81:73:DD:43:61:19:A5:FE:35:D1:F4:6A:13:14:58:90 X509v3 Authority Key Identifier: keyid:DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:91:e3:08:4f:b5:f4:62:c5:cf:84:42:38:23:f9:8a:d3:39: 2d:0a:91:4b:d0:d5:00:ef:45:9c:a8:af:22:26:b9:30:15:7f: 1e:04:87:8d:1d:ef:07:2b:92:18:56:d3:a2:bd:2a:c7:4f:24: 6b:f1:dd:cf:ee:27:f1:7c:aa:67:dc:aa:bf:c3:9d:66:db:e7: cc:ab:94:f8:2a:ee:9c:0c:e3:90:94:f5:99:6e:b5:43:50:78: 6c:55:90:a8:b6:e8:f2:86:1b:94:8c:24:85:dd:7d:01:18:95: 0d:41:b6:9c:06:38:38:42:ff:e7:8e:20:81:34:f2:ee:fd:e3: 8f:44:c5:ce:69:33:b9:cc:b8:fb:38:2e:0c:55:e0:27:b2:44: a7:92:27:cc:15:17:90:e6:37:ef:7f:1d:d7:ff:5a:95:7e:3d: 3a:25:f9:9f:3d:5f:38:c0:c6:1a:e6:76:f4:65:ea:a8:a7:85: aa:c6:7a:69:bd:ba:c8:85:f2:3d:3d:fd:a3:76:c4:3b:b1:56: 2d:28:94:ed:ea:3b:1c:69:b9:21:bb:8d:3c:48:01:ec:4a:a9: 25:be:69:5c:42:c4:f8:02:43:a4:b5:4b:55:66:9d:17:a4:6c: 5b:7f:19:03:a4:0e:e7:9d:55:08:f6:a4:23:a8:bc:0f:38:12: af:ea:fc:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QTYxMTAvBgNVBAUTKERBNDc1NDAxNDEyMUQzMjY4N0Q5N0QzOTJEOTA2MDQ5 QTgxNEZDQzMwHhcNMjYwMzI1MDA1OTU0WhcNMjYwNDAxMDA1OTU0WjAYMRYwFAYD VQQDEw02OWMzMzM4Yi0xYTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjte/24WCpTfJ79E8pIoTW3h/5BUIddZERRY3/+l0q5E/d2OydgoeOcAsao7G coyRY2P0PcLOFC9zjdGBnxvmMRExCY4UrggPxbeakah0i3+gLUtNtPJ6ISzahl4A GIP+tY/9FW1H7+SfWnsjuMEgqAzzB79aYS/+bs4pvJsXqXyXeA2Jvy752SfC6kF2 m1iu0sXdrDPUfl4T/Ys97R63yCL7oGE5MZ94hidUwBhycSjuUgwHbyKyfoYL+/Yl CQLk7X/8fQuLP/AmzckPcTKORHRx1Hi8xifk5VVdsra2mPIzS4PO2u8BwIY6OXi0 R5Pj12Xs0XPP/0nXom4fNDVjZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJGVkvqB c91DYRml/jXR9GoTFFiQMB8GA1UdIwQYMBaAFNpHVAFBIdMmh9l9OS2QYEmoFPzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdBNi9DOEE3OTlEMjI0 NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5YUgyWDA1TFpCZ1NhZ1Vf TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrZFVBVUVoMHlhSDJYMDVMWkJnU2FnVV9NTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdBNi9DOEE3OTlEMjI0NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5 YUgyWDA1TFpCZ1NhZ1VfTU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXZHjCE+19GLFz4RCOCP5itM5LQqRS9DVAO9FnKivIia5MBV/HgSHjR3vByuS GFbTor0qx08ka/Hdz+4n8XyqZ9yqv8OdZtvnzKuU+CrunAzjkJT1mW61Q1B4bFWQ qLbo8oYblIwkhd19ARiVDUG2nAY4OEL/544ggTTy7v3jj0TFzmkzucy4+zguDFXg J7JEp5InzBUXkOY3738d1/9alX49OiX5nz1fOMDGGuZ29GXqqKeFqsZ6ab26yIXy PT39o3bEO7FWLSiU7eo7HGm5IbuNPEgB7EqpJb5pXELE+AJDpLVLVWadF6RsW38Z A6QO551VCPakI6i8DzgSr+r80g== -----END CERTIFICATE-----Generated at Thu Mar 26 07:28:51 2026 by rpki-client