$ rpki-client -vvf rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft File: 2en59z7k9bHN8XYsLfODKVCja30.mft (raw, json) Hash identifier: zBHC47R+yWQ69aHyVFumozv0aHv0nCnD0I9imNVKu9A= Subject key identifier: B2:6B:5D:19:EE:1D:B7:F2:DC:EA:BA:11:AD:75:08:22:D9:C0:22:C5 Authority key identifier: D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D Certificate issuer: /CN=A91AACB2/serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Certificate serial: 354B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft Manifest number: 3542 Signing time: Tue 12 May 2026 14:58:32 +0000 Manifest this update: Tue 12 May 2026 14:58:31 +0000 Manifest next update: Tue 19 May 2026 14:58:31 +0000 Files and hashes: 1: 2en59z7k9bHN8XYsLfODKVCja30.crl (hash: OSAY+KkuY9Ox/ketaFH0Tk4KMB1IEf6b8Bo0g/tU3Jc=) 2: 76B5C744B45E11EAB71DF94AC4F9AE02.roa (hash: OrYwlHpiSmZNjD507c7+5SVsF6TOXtHT7d2m6BJQ+nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:58:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13643 (0x354b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AACB2, serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Validity Not Before: May 12 14:58:31 2026 GMT Not After : May 19 14:58:31 2026 GMT Subject: CN=6a034018-e9bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:25:59:a8:b6:47:1f:76:01:51:c7:85:cb:92: 23:56:06:e3:f4:52:42:be:7e:0a:12:2e:06:b1:91: 0f:6c:f6:cf:26:3f:be:db:4b:ed:d8:ea:39:7d:5f: e8:4e:f4:2a:0d:e0:2d:72:2e:44:74:1d:b4:85:b0: 6c:76:66:c3:76:87:bb:db:f5:88:0a:05:fe:53:ed: a3:91:f8:45:98:c9:f5:3f:e8:71:8f:1c:31:5c:0b: d2:e3:90:87:56:7e:0b:2d:65:41:d2:ed:63:8c:11: 84:bf:04:7b:a5:ee:84:8e:d4:a1:37:4b:b0:cb:a1: 59:0d:73:fc:4f:c7:c0:09:0f:38:61:7f:70:71:8f: a6:d3:4f:1f:12:57:f5:ea:e0:aa:c7:2d:59:3c:5d: 2b:8f:c9:f5:56:ca:88:76:a3:22:aa:69:26:88:38: c2:b9:0f:32:cf:a5:29:ac:66:86:5e:ea:d8:1c:20: 88:2b:77:e2:c6:1b:c8:64:30:36:69:6f:5d:24:6f: 96:2c:a0:13:a8:8e:6c:a2:a6:c2:6a:43:c0:1c:12: e0:c0:54:24:11:56:6d:f5:e9:f6:fc:72:93:07:4a: 17:08:f1:dc:35:8a:2f:4e:be:2e:44:8b:ba:2e:dd: 94:89:05:fd:a8:39:76:33:23:a7:0c:48:06:7e:4e: da:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:6B:5D:19:EE:1D:B7:F2:DC:EA:BA:11:AD:75:08:22:D9:C0:22:C5 X509v3 Authority Key Identifier: keyid:D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:2c:84:80:fc:d8:3a:52:f2:6b:0a:73:d0:0d:8c:4c:46:e4: 07:21:e4:32:99:05:1a:a7:e4:69:da:ac:8c:b9:a0:37:04:af: 32:3d:0a:0a:58:04:3d:37:ca:cc:2b:29:cf:05:92:66:46:20: d9:17:0d:5a:62:7a:6d:0b:53:ac:61:d9:47:f3:13:9a:73:c7: 46:a0:5d:ce:b8:ed:4f:fb:86:97:f9:ad:c1:a0:ed:9c:c4:55: fa:a6:60:51:9b:c8:60:45:61:fd:cc:60:74:77:b7:0d:46:73: 62:8b:92:85:91:c8:c1:f9:44:72:5b:56:44:b0:83:c7:8f:b7: a5:b0:d3:d0:c6:e4:28:9d:4b:67:15:25:05:28:07:cb:a2:82: 54:63:64:4a:ea:1a:d6:ea:d2:2e:b3:89:9c:8a:96:64:0d:5a: b0:6a:e2:12:cc:16:73:34:49:67:b5:e1:23:31:2b:fa:06:8e: 27:af:d4:ac:be:3d:fc:cb:44:af:b5:26:71:6e:ab:1a:28:c6: e3:55:00:58:e3:1a:30:d7:fb:b5:47:b7:55:cd:45:1b:29:c2: 9e:33:84:31:68:3e:22:a5:c3:62:73:07:6e:16:5f:74:bd:bd: f0:70:5f:9d:2a:e5:d5:6a:36:c0:84:8f:e9:54:39:b0:6b:d4: 00:f5:b4:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDQjIxMTAvBgNVBAUTKEQ5RTlGOUY3M0VFNEY1QjFDREYxNzYyQzJERjM4MzI5 NTBBMzZCN0QwHhcNMjYwNTEyMTQ1ODMxWhcNMjYwNTE5MTQ1ODMxWjAYMRYwFAYD VQQDEw02YTAzNDAxOC1lOWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoCVZqLZHH3YBUceFy5IjVgbj9FJCvn4KEi4GsZEPbPbPJj++20vt2Oo5fV/o TvQqDeAtci5EdB20hbBsdmbDdoe72/WICgX+U+2jkfhFmMn1P+hxjxwxXAvS45CH Vn4LLWVB0u1jjBGEvwR7pe6EjtShN0uwy6FZDXP8T8fACQ84YX9wcY+m008fElf1 6uCqxy1ZPF0rj8n1VsqIdqMiqmkmiDjCuQ8yz6UprGaGXurYHCCIK3fixhvIZDA2 aW9dJG+WLKATqI5soqbCakPAHBLgwFQkEVZt9en2/HKTB0oXCPHcNYovTr4uRIu6 Lt2UiQX9qDl2MyOnDEgGfk7a1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLJrXRnu Hbfy3Oq6Ea11CCLZwCLFMB8GA1UdIwQYMBaAFNnp+fc+5PWxzfF2LC3zgylQo2t9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUNCMi8zN0Q1QTNERTFE OUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azliSE44WFlzTGZPREtWQ2ph MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJlbjU5ejdrOWJITjhYWXNMZk9ES1ZDamEzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUNCMi8zN0Q1QTNERTFEOUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azli SE44WFlzTGZPREtWQ2phMzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtCyEgPzYOlLyawpz0A2MTEbkByHkMpkFGqfkadqsjLmgNwSvMj0KClgEPTfK zCspzwWSZkYg2RcNWmJ6bQtTrGHZR/MTmnPHRqBdzrjtT/uGl/mtwaDtnMRV+qZg UZvIYEVh/cxgdHe3DUZzYouShZHIwflEcltWRLCDx4+3pbDT0MbkKJ1LZxUlBSgH y6KCVGNkSuoa1urSLrOJnIqWZA1asGriEswWczRJZ7XhIzEr+gaOJ6/UrL49/MtE r7UmcW6rGijG41UAWOMaMNf7tUe3Vc1FGynCnjOEMWg+IqXDYnMHbhZfdL298HBf nSrl1Wo2wISP6VQ5sGvUAPW0lQ== -----END CERTIFICATE-----Generated at Wed May 13 07:42:12 2026 by rpki-client