$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: WpBk8oqyuEHkhnT3ktZ2RDa+YnWNnyiEMZU/vFrvkvg= Subject key identifier: 29:B0:3E:8C:E2:0A:78:44:7E:9D:7D:80:B1:B1:1D:E6:82:DB:0C:ED Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 06B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 06AD Signing time: Tue 24 Mar 2026 22:06:44 +0000 Manifest this update: Tue 24 Mar 2026 22:06:44 +0000 Manifest next update: Tue 31 Mar 2026 22:06:44 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: lPypsyfKMl9jv9ubLTYPXwuEB6uTkHGMURSjsCMHxRA=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: kb9zEE+gQtKtKJqnoxGKbZ4ZB03+JVAlcBPaLyfwBcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:06:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1715 (0x6b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Mar 24 22:06:44 2026 GMT Not After : Mar 31 22:06:44 2026 GMT Subject: CN=69c30af4-c957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f6:04:b2:13:ea:e3:d7:83:78:1c:79:a6:b6: b4:20:1e:71:a8:eb:d3:2c:83:89:32:16:9b:c9:7e: be:a5:52:ef:48:eb:be:28:8f:ef:bd:a4:81:93:e4: d8:61:5d:7d:04:c3:d5:09:60:33:f1:7e:d5:e6:d6: af:3c:12:29:f5:e4:28:55:e2:2b:de:ef:00:ad:d8: 2c:d5:2b:27:35:d7:4f:41:be:21:91:ea:98:72:ef: a3:1e:0b:8b:6a:e0:5e:96:cd:8d:53:c6:45:f2:6d: 35:f7:ef:2d:43:43:8b:44:9e:0a:6d:fd:24:1b:97: f7:e9:61:d0:92:74:83:10:74:4d:5b:ad:1e:87:37: 4d:e1:74:c7:fc:32:bc:33:59:f7:c4:ca:96:0b:18: de:90:a0:06:17:54:91:6b:71:9f:01:de:71:b9:f9: 9f:09:d6:c9:d5:11:ac:b1:ed:0b:ef:22:d5:d1:7f: 46:75:6e:8e:ce:46:4f:7a:b9:c4:80:f4:27:a1:4a: 92:a5:87:0f:89:2f:0b:75:9f:5f:1f:cc:43:f5:31: ff:9b:62:50:54:a8:b1:87:fa:74:ef:a8:88:e6:27: 96:77:fb:ab:b9:0e:07:b8:be:c0:2a:72:b7:a6:a9: ea:43:e3:00:a1:ce:0c:b8:96:2f:dd:ea:ea:32:26: 45:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B0:3E:8C:E2:0A:78:44:7E:9D:7D:80:B1:B1:1D:E6:82:DB:0C:ED X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:74:b9:08:03:57:21:ca:c9:06:7b:41:a0:5c:ab:c6:79:40: 6f:0e:e2:ff:eb:66:60:03:88:d2:d3:8c:04:a4:8f:f8:52:df: 24:6e:53:ec:9c:f2:3a:84:c8:08:7c:78:46:d4:cb:43:dd:9c: 03:a7:29:59:4e:8e:cb:14:2e:98:ba:5e:7e:3c:9b:65:39:85: 37:fe:1b:48:3e:66:98:57:2c:c7:e7:9a:1d:74:1c:dc:02:c1: bb:69:ab:78:d3:2f:84:3a:12:cb:42:cf:2f:00:8b:c9:94:af: c1:1e:15:91:69:2b:c9:01:2e:f9:ac:d4:99:20:f6:5d:61:4f: d5:bb:72:b7:25:f1:40:6b:5c:9a:0c:09:9f:54:a5:d0:9e:ab: 39:f4:c5:9b:b8:38:37:97:2c:6d:e5:14:13:86:58:3a:fe:f9: 59:4f:d9:f9:4f:17:99:a0:ab:5a:52:84:2f:db:9c:da:36:e0: 8c:43:cc:bd:c3:94:62:b0:39:12:1f:94:71:ab:0e:e0:bb:10: 8a:f9:96:0e:85:9e:11:6e:50:17:d9:9c:1e:a0:4e:a6:51:ba: 56:a9:09:d4:e5:29:b9:4b:ce:f6:ba:2a:10:4a:0f:2e:1e:85: 90:da:05:d2:77:0c:a6:6d:0c:56:d6:e2:61:61:9a:ef:da:12: 83:ab:18:4d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjYwMzI0MjIwNjQ0WhcNMjYwMzMxMjIwNjQ0WjAYMRYwFAYD VQQDEw02OWMzMGFmNC1jOTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/YEshPq49eDeBx5pra0IB5xqOvTLIOJMhabyX6+pVLvSOu+KI/vvaSBk+TY YV19BMPVCWAz8X7V5tavPBIp9eQoVeIr3u8Ardgs1SsnNddPQb4hkeqYcu+jHguL auBels2NU8ZF8m019+8tQ0OLRJ4Kbf0kG5f36WHQknSDEHRNW60ehzdN4XTH/DK8 M1n3xMqWCxjekKAGF1SRa3GfAd5xufmfCdbJ1RGsse0L7yLV0X9GdW6OzkZPernE gPQnoUqSpYcPiS8LdZ9fH8xD9TH/m2JQVKixh/p076iI5ieWd/uruQ4HuL7AKnK3 pqnqQ+MAoc4MuJYv3erqMiZFkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCmwPozi CnhEfp19gLGxHeaC2wztMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQHS5CANXIcrJBntBoFyrxnlAbw7i/+tmYAOI0tOMBKSP+FLfJG5T7JzyOoTI CHx4RtTLQ92cA6cpWU6OyxQumLpefjybZTmFN/4bSD5mmFcsx+eaHXQc3ALBu2mr eNMvhDoSy0LPLwCLyZSvwR4VkWkryQEu+azUmSD2XWFP1btytyXxQGtcmgwJn1Sl 0J6rOfTFm7g4N5csbeUUE4ZYOv75WU/Z+U8XmaCrWlKEL9uc2jbgjEPMvcOUYrA5 Eh+UcasO4LsQivmWDoWeEW5QF9mcHqBOplG6VqkJ1OUpuUvO9roqEEoPLh6FkNoF 0ncMpm0MVtbiYWGa79oSg6sYTQ== -----END CERTIFICATE-----Generated at Thu Mar 26 14:09:03 2026 by rpki-client