$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: lGeaoJMQ2vjmFjdhieJNQfmyJMc6GfnXACuTdToPFGo= Subject key identifier: 97:A2:6A:54:13:B1:E4:43:B1:47:17:CB:D5:D3:53:CF:29:B5:24:45 Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 028A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 027B Signing time: Wed 13 May 2026 02:07:43 +0000 Manifest this update: Wed 13 May 2026 02:07:43 +0000 Manifest next update: Wed 20 May 2026 02:07:43 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: LrDl3/kdLReSzYXTcmQFV+ZBBzIpNI7jCF7KrrWHaaE=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: ijHVWHANYsNS9d5u+2L0OG/TAcPXhYDdTjzMH7Olj0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:07:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 650 (0x28a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68, serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: May 13 02:07:43 2026 GMT Not After : May 20 02:07:43 2026 GMT Subject: CN=6a03dcef-020e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:98:78:15:1f:94:e7:ce:8e:11:54:eb:be:c2: d7:60:16:1c:f1:23:14:d8:b4:76:0e:62:1b:e3:9a: fd:7e:c9:b5:2b:0b:3b:ed:ad:d2:16:d6:29:f2:2b: 9d:5e:f4:9a:48:bb:ad:9a:65:dc:ef:7f:1a:1d:ce: 7b:a1:52:23:e1:29:07:f7:7b:92:0c:16:18:07:59: a3:d5:32:5d:27:52:4d:b9:6e:02:db:a3:ab:8a:86: 7e:6e:dc:8a:74:09:13:39:9f:35:d9:a4:47:f1:20: b5:11:00:44:6b:b1:62:c4:c2:ef:b1:02:73:62:bf: 3c:a4:f2:82:54:db:5d:ab:f7:c4:c2:29:b4:14:0d: 1b:31:94:ff:3f:48:ca:d7:a0:db:b0:01:d4:43:99: f4:2a:f7:dc:bd:0f:55:11:98:ea:2a:d7:09:bd:aa: 3e:c0:45:eb:ee:87:92:d5:52:18:93:56:41:95:3e: 6a:9a:1b:db:be:68:2c:41:b1:18:67:d9:67:6d:a5: f9:9e:bf:48:71:40:54:53:c0:e6:35:88:56:b7:2a: b8:9f:8a:f0:f8:b0:01:ce:c8:ec:cb:89:ee:06:db: 47:87:c5:7d:4c:de:f9:82:2f:cd:5e:da:d2:43:7c: 35:81:b2:65:e3:3e:b9:11:e7:f3:d7:5f:c9:49:c2: 0b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:A2:6A:54:13:B1:E4:43:B1:47:17:CB:D5:D3:53:CF:29:B5:24:45 X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:cc:46:21:ec:80:d3:f4:76:98:68:96:07:91:85:67:f3:9d: df:d3:ea:12:32:cc:3a:3a:e0:b6:17:41:b6:33:67:b9:37:26: 8b:39:a0:e2:aa:f3:7e:be:91:fa:56:7b:e4:8b:f3:53:06:bf: 55:63:08:50:e0:cb:ef:03:5f:52:d5:86:4c:ca:c9:58:c7:ec: c0:ac:2d:e9:b1:e2:8e:ea:1c:b1:b0:fb:ea:1b:b7:7a:3e:91: 66:6e:0e:0f:54:03:e8:1b:2b:86:bd:75:a5:f6:05:eb:88:91: ef:40:bb:18:bb:8b:01:10:14:69:20:9e:6c:25:46:12:a5:2c: d1:5c:1f:e6:76:cd:dd:6f:eb:7a:8e:2c:85:0f:f5:c1:1c:71: 2f:e0:e1:7d:e2:59:6e:51:b7:6c:d0:64:45:fc:e8:b6:be:63: 30:24:85:35:5f:cb:34:aa:91:42:06:c1:aa:63:9f:bc:d0:75: 20:b6:a3:f7:da:1e:5e:e3:d2:07:c2:e2:53:73:7e:79:c4:7a: a8:d2:64:14:0f:89:8c:10:3a:5d:92:17:f7:5f:7d:4e:03:bb: 7e:c1:ee:95:a6:1d:46:19:d9:8e:76:63:c2:9c:d6:2f:2e:3f: ab:cf:34:40:c1:56:f0:50:77:4d:ce:0e:dd:00:6c:c3:0c:85: 0c:67:2e:da -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjYwNTEzMDIwNzQzWhcNMjYwNTIwMDIwNzQzWjAYMRYwFAYD VQQDEw02YTAzZGNlZi0wMjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5h4FR+U586OEVTrvsLXYBYc8SMU2LR2DmIb45r9fsm1Kws77a3SFtYp8iud XvSaSLutmmXc738aHc57oVIj4SkH93uSDBYYB1mj1TJdJ1JNuW4C26OrioZ+btyK dAkTOZ812aRH8SC1EQBEa7FixMLvsQJzYr88pPKCVNtdq/fEwim0FA0bMZT/P0jK 16DbsAHUQ5n0KvfcvQ9VEZjqKtcJvao+wEXr7oeS1VIYk1ZBlT5qmhvbvmgsQbEY Z9lnbaX5nr9IcUBUU8DmNYhWtyq4n4rw+LABzsjsy4nuBttHh8V9TN75gi/NXtrS Q3w1gbJl4z65Eefz11/JScILxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJeialQT seRDsUcXy9XTU88ptSRFMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI8xGIeyA0/R2mGiWB5GFZ/Od39PqEjLMOjrgthdBtjNnuTcmizmg4qrzfr6R +lZ75IvzUwa/VWMIUODL7wNfUtWGTMrJWMfswKwt6bHijuocsbD76hu3ej6RZm4O D1QD6Bsrhr11pfYF64iR70C7GLuLARAUaSCebCVGEqUs0Vwf5nbN3W/reo4shQ/1 wRxxL+DhfeJZblG3bNBkRfzotr5jMCSFNV/LNKqRQgbBqmOfvNB1ILaj99oeXuPS B8LiU3N+ecR6qNJkFA+JjBA6XZIX9199TgO7fsHulaYdRhnZjnZjwpzWLy4/q880 QMFW8FB3Tc4O3QBswwyFDGcu2g== -----END CERTIFICATE-----Generated at Wed May 13 06:44:20 2026 by rpki-client