$ rpki-client -vvf rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft File: 2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft (raw, json) Hash identifier: fGDrTB8+EtKBrwA4TqGb2r+t7uNaNDVsqkd+KAG7sS4= Subject key identifier: 16:5F:A6:ED:82:59:B0:C4:D7:E7:AE:22:3B:47:60:C4:97:70:74:17 Authority key identifier: DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 Certificate issuer: /CN=A91A300F/serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Certificate serial: 04F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft Manifest number: 04EE Signing time: Tue 12 May 2026 23:51:52 +0000 Manifest this update: Tue 12 May 2026 23:51:52 +0000 Manifest next update: Tue 19 May 2026 23:51:52 +0000 Files and hashes: 1: 2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl (hash: eOvoyZn1cwnGQHvwTdFZM5OkR7V4mbY9eIzNIHk1+AI=) 2: 90065F424DB511F0A1C8D30DC4F9AE02.roa (hash: vqS90tievR3HU16OsLXcBKQDauAULDoOuFd6Vz6BI+U=) 3: 9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa (hash: ez7xnIQP2Ioo5zgea1e7sjsLohhlbtgkdaKlVhizArA=) 4: E03427482D2411F192A7D59AB8833773.roa (hash: 6XCUaJGME6Z9CZytyWw6X1X7WoldzofbdyDhfxUS80A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:31:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1271 (0x4f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A300F, serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Validity Not Before: May 12 23:51:52 2026 GMT Not After : May 19 23:51:52 2026 GMT Subject: CN=6a03bd18-264d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:eb:de:19:9d:83:dc:98:25:a9:d0:ad:f7:ed: 26:41:ce:a9:ac:8a:28:38:f5:b0:75:c0:06:77:78: 54:d4:a7:38:7b:96:c4:b8:f5:be:b0:88:69:26:29: a8:41:52:63:f0:7b:01:3e:a1:d3:e1:58:57:7f:f1: 0a:a9:bf:76:d3:03:e6:77:51:58:93:3a:0a:10:96: b8:4d:29:26:57:7d:9d:b2:41:cd:fb:13:65:74:9e: 23:b1:fb:ed:b5:42:ce:e1:85:f9:88:fc:ca:5d:68: 6e:cd:ce:ab:7e:59:e3:ac:e7:cf:62:4b:16:6b:88: 1f:a6:0a:e1:ae:a9:d0:44:4e:41:c1:33:11:1a:d3: a0:45:77:91:57:26:44:4c:e4:9b:7f:86:d8:aa:0b: 93:8f:aa:cb:7e:38:af:76:b0:89:b5:09:b2:cf:31: 97:f5:22:56:f6:d9:5e:b9:ca:7c:71:15:8f:c3:b7: 7c:83:7b:54:f6:d1:b6:96:fb:fb:76:a7:9b:8c:8c: 69:c6:91:c5:a0:ac:28:c1:61:55:36:40:88:f3:08: e2:2a:63:97:cd:c5:c8:af:c4:86:64:43:af:d7:54: b7:2d:4c:09:31:7c:fe:63:d1:b5:b9:ee:d2:b1:04: 30:7f:78:5f:9e:29:f3:b2:5c:2b:f9:75:ad:ac:c9: ab:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:5F:A6:ED:82:59:B0:C4:D7:E7:AE:22:3B:47:60:C4:97:70:74:17 X509v3 Authority Key Identifier: keyid:DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:7e:fd:8d:84:b2:39:91:4c:61:67:bc:2d:a9:17:90:a7:be: 1b:8f:83:48:1a:08:b8:b7:fb:72:23:c8:63:c3:f3:06:60:1a: fc:37:30:d2:ea:57:c2:fb:cd:71:3a:fa:71:dc:4d:bb:d5:eb: 43:73:61:7e:fb:51:2b:5c:96:3c:4b:33:6e:be:91:48:e0:86: 58:74:1a:03:8b:bc:d8:cf:a5:00:37:00:3d:7c:f0:40:89:a5: 39:b3:08:fa:24:b3:a7:2a:1b:4c:ea:e4:51:ea:00:e3:59:e2: cf:42:c2:aa:22:8f:93:a8:0a:f2:3a:b0:b7:fc:fb:22:0f:56: 37:91:46:c8:ff:05:e7:94:04:fb:c9:78:31:ce:b9:b4:fd:40: 16:eb:cc:d4:2e:31:82:2f:6a:2f:7e:2e:96:ef:a3:e8:3f:72: 4c:46:b2:f3:f8:98:15:67:f1:99:7c:be:d8:5d:67:ea:14:77: bf:60:15:78:67:6e:f3:1b:8d:61:03:ee:7e:a6:c2:c4:ee:9c: fa:ba:0c:5f:09:7d:22:65:90:b7:f2:80:e4:bc:8c:cf:5f:3f: 0b:cf:92:1a:94:de:ea:2d:e4:6f:89:8d:cb:60:5d:fc:dd:34: 92:72:f8:1e:27:6f:79:23:71:f5:b0:a3:b5:6a:c9:ce:5e:94: a9:80:ab:44 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwMEYxMTAvBgNVBAUTKERCRUVFQkMyNUE3QTlCOUI2NzVBMDRFMkY0MjFFRkU0 NkVBNzI1MjAwHhcNMjYwNTEyMjM1MTUyWhcNMjYwNTE5MjM1MTUyWjAYMRYwFAYD VQQDEw02YTAzYmQxOC0yNjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvuveGZ2D3JglqdCt9+0mQc6prIooOPWwdcAGd3hU1Kc4e5bEuPW+sIhpJimo QVJj8HsBPqHT4VhXf/EKqb920wPmd1FYkzoKEJa4TSkmV32dskHN+xNldJ4jsfvt tULO4YX5iPzKXWhuzc6rflnjrOfPYksWa4gfpgrhrqnQRE5BwTMRGtOgRXeRVyZE TOSbf4bYqguTj6rLfjivdrCJtQmyzzGX9SJW9tleucp8cRWPw7d8g3tU9tG2lvv7 dqebjIxpxpHFoKwowWFVNkCI8wjiKmOXzcXIr8SGZEOv11S3LUwJMXz+Y9G1ue7S sQQwf3hfninzslwr+XWtrMmrkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBZfpu2C WbDE1+euIjtHYMSXcHQXMB8GA1UdIwQYMBaAFNvu68JaepubZ1oE4vQh7+RupyUg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzAwRi8xQUQ1QUY3NDVE OTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01dG5XZ1RpOUNIdjVHNm5K U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItN3J3bHA2bTV0bldnVGk5Q0h2NUc2bkpTQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzAwRi8xQUQ1QUY3NDVEOTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01 dG5XZ1RpOUNIdjVHNm5KU0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVn79jYSyOZFMYWe8LakXkKe+G4+DSBoIuLf7ciPIY8PzBmAa/Dcw0upXwvvN cTr6cdxNu9XrQ3NhfvtRK1yWPEszbr6RSOCGWHQaA4u82M+lADcAPXzwQImlObMI +iSzpyobTOrkUeoA41niz0LCqiKPk6gK8jqwt/z7Ig9WN5FGyP8F55QE+8l4Mc65 tP1AFuvM1C4xgi9qL34ulu+j6D9yTEay8/iYFWfxmXy+2F1n6hR3v2AVeGdu8xuN YQPufqbCxO6c+roMXwl9ImWQt/KA5LyMz18/C8+SGpTe6i3kb4mNy2Bd/N00knL4 HidveSNx9bCjtWrJzl6UqYCrRA== -----END CERTIFICATE-----Generated at Wed May 13 03:09:32 2026 by rpki-client