$ rpki-client -vvf rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft File: 2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft (raw, json) Hash identifier: 2jS0nqRhJAT9rvYAez5NVSVJ7qLm7uEwPjq33xZP+v4= Subject key identifier: F1:E3:D4:C3:14:B9:3F:DA:9A:35:F5:13:96:AB:4D:73:50:F7:EA:6D Authority key identifier: DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 Certificate issuer: /CN=A91A300F/serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Certificate serial: 04DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft Manifest number: 04D5 Signing time: Thu 26 Mar 2026 23:37:11 +0000 Manifest this update: Thu 26 Mar 2026 23:37:11 +0000 Manifest next update: Thu 02 Apr 2026 23:37:11 +0000 Files and hashes: 1: 2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl (hash: S+xOPaB6U3EkO18DRmowQiXJpd8V7NGgSGBMjC+LOzU=) 2: 9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa (hash: ez7xnIQP2Ioo5zgea1e7sjsLohhlbtgkdaKlVhizArA=) 3: 90065F424DB511F0A1C8D30DC4F9AE02.roa (hash: vqS90tievR3HU16OsLXcBKQDauAULDoOuFd6Vz6BI+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:37:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1245 (0x4dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A300F, serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Validity Not Before: Mar 26 23:37:11 2026 GMT Not After : Apr 2 23:37:11 2026 GMT Subject: CN=69c5c327-b7a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:fc:52:9a:ef:42:25:06:86:70:ed:6f:b6:c6: cf:96:f3:9f:af:26:c9:f9:6b:4b:0f:85:f3:e4:35: 87:fb:15:66:f7:6f:3c:8e:25:67:dd:0f:3f:f4:48: f7:c8:7d:98:81:1f:10:ee:92:9b:70:f2:c6:1b:3e: bd:ba:93:fd:fc:9f:7b:82:33:23:77:37:85:6f:88: 7e:ae:1b:54:18:75:e6:39:56:e8:be:5f:b0:68:8f: 73:9c:2b:a6:07:7b:78:cd:32:88:07:ce:8f:a0:f4: 83:a2:f8:a8:60:6a:e9:6c:9b:67:76:21:89:63:82: 49:05:ac:b0:51:cc:7c:22:f3:ee:b6:28:64:1a:9a: bc:ed:20:c3:d0:87:dc:43:d1:f0:ef:b8:c6:db:3a: 44:73:7b:4d:0d:f0:a8:32:0e:9f:bb:e1:e9:70:81: 61:f3:6d:e5:96:47:3a:5a:a1:ff:ca:53:a0:8b:b5: 2f:c5:ea:11:03:34:f3:13:94:01:81:ce:94:23:61: b6:88:d3:d4:c9:4a:96:2b:c5:33:3a:21:89:a6:b2: 7d:ca:b0:01:72:8d:d3:58:29:5b:49:b7:74:8c:62: bb:f4:01:a3:c0:5d:75:66:8c:94:44:a7:c9:8d:64: 9a:e9:f7:43:33:d6:e8:5e:09:4f:d0:66:12:92:28: d8:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:E3:D4:C3:14:B9:3F:DA:9A:35:F5:13:96:AB:4D:73:50:F7:EA:6D X509v3 Authority Key Identifier: keyid:DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:ce:bb:1d:d4:ad:63:a8:aa:ea:74:16:e8:a5:1d:30:9a:ee: c8:90:56:2a:c3:4e:0b:51:a1:68:d2:0d:85:92:03:f5:50:90: 37:ad:89:f4:69:0f:d0:2b:5d:13:65:46:4c:d0:84:7f:ab:a8: e3:ae:fc:6c:da:f8:d7:bf:86:43:49:d2:3b:22:f0:78:74:76: 1d:e7:c1:3b:22:e7:d5:15:12:96:9d:3f:89:fc:3c:a2:74:2b: eb:47:05:6a:aa:db:b1:40:06:4d:f2:f8:5a:f1:ee:f3:ed:98: d7:80:01:ab:91:ca:09:b1:7a:f5:dd:29:93:b9:08:f9:ad:bd: 4d:1e:2a:65:d3:38:75:e9:90:25:a9:98:4a:92:42:5e:cf:10: a9:b8:47:9f:f4:52:8d:c5:8a:38:1f:5d:b5:39:f9:a9:1c:1e: 34:88:56:e0:e9:c6:a7:09:0f:9f:60:dc:2b:40:f9:4c:2f:cc: 9e:f0:1f:07:58:2f:2f:b3:31:e5:d5:b3:82:58:4f:52:9b:c0: 54:60:10:22:6a:0b:49:bf:de:20:a4:ce:3e:eb:3f:dc:ca:97: d8:73:93:85:db:45:ec:f6:4f:8d:d4:48:69:c8:4f:85:86:1a: 56:24:bb:df:80:a9:43:d8:b9:84:57:3f:84:2e:40:50:5b:27: 58:ad:9e:cf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwMEYxMTAvBgNVBAUTKERCRUVFQkMyNUE3QTlCOUI2NzVBMDRFMkY0MjFFRkU0 NkVBNzI1MjAwHhcNMjYwMzI2MjMzNzExWhcNMjYwNDAyMjMzNzExWjAYMRYwFAYD VQQDEw02OWM1YzMyNy1iN2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk/xSmu9CJQaGcO1vtsbPlvOfrybJ+WtLD4Xz5DWH+xVm9288jiVn3Q8/9Ej3 yH2YgR8Q7pKbcPLGGz69upP9/J97gjMjdzeFb4h+rhtUGHXmOVbovl+waI9znCum B3t4zTKIB86PoPSDovioYGrpbJtndiGJY4JJBaywUcx8IvPutihkGpq87SDD0Ifc Q9Hw77jG2zpEc3tNDfCoMg6fu+HpcIFh823llkc6WqH/ylOgi7UvxeoRAzTzE5QB gc6UI2G2iNPUyUqWK8UzOiGJprJ9yrABco3TWClbSbd0jGK79AGjwF11ZoyURKfJ jWSa6fdDM9boXglP0GYSkijYdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPHj1MMU uT/amjX1E5arTXNQ9+ptMB8GA1UdIwQYMBaAFNvu68JaepubZ1oE4vQh7+RupyUg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzAwRi8xQUQ1QUY3NDVE OTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01dG5XZ1RpOUNIdjVHNm5K U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItN3J3bHA2bTV0bldnVGk5Q0h2NUc2bkpTQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzAwRi8xQUQ1QUY3NDVEOTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01 dG5XZ1RpOUNIdjVHNm5KU0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsc67HdStY6iq6nQW6KUdMJruyJBWKsNOC1GhaNINhZID9VCQN62J9GkP0Ctd E2VGTNCEf6uo4678bNr417+GQ0nSOyLweHR2HefBOyLn1RUSlp0/ifw8onQr60cF aqrbsUAGTfL4WvHu8+2Y14ABq5HKCbF69d0pk7kI+a29TR4qZdM4demQJamYSpJC Xs8QqbhHn/RSjcWKOB9dtTn5qRweNIhW4OnGpwkPn2DcK0D5TC/MnvAfB1gvL7Mx 5dWzglhPUpvAVGAQImoLSb/eIKTOPus/3MqX2HOThdtF7PZPjdRIachPhYYaViS7 34CpQ9i5hFc/hC5AUFsnWK2ezw== -----END CERTIFICATE-----Generated at Sat Mar 28 10:44:54 2026 by rpki-client