$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft File: 2gE-F4NYyzWot2XJvAkK6c8cT74.mft (raw, json) Hash identifier: Ut6qyHMN8wlhsK1+lAz+1Ja4dl2j/uOMmgwYMXep2w4= Subject key identifier: 43:3C:6E:59:70:A2:4C:DB:57:58:94:E1:67:24:22:5D:54:79:12:81 Authority key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE Certificate issuer: /CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Certificate serial: 06D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft Manifest number: 06CE Signing time: Tue 24 Mar 2026 21:59:13 +0000 Manifest this update: Tue 24 Mar 2026 21:59:13 +0000 Manifest next update: Tue 31 Mar 2026 21:59:13 +0000 Files and hashes: 1: 2gE-F4NYyzWot2XJvAkK6c8cT74.crl (hash: 4y9e7FpMB9V5VzBHV9cJ12Xi8y9VMbWy1Kz/X1L0VFs=) 2: 3C5E55F041A411ECA73C8C0EC4F9AE02.roa (hash: 4TxPeOpygNRd5FzhVRcLMiJfVHn++ivvWRelDGah+N0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:59:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1753 (0x6d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C88, serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Validity Not Before: Mar 24 21:59:13 2026 GMT Not After : Mar 31 21:59:13 2026 GMT Subject: CN=69c30931-d457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:f2:f9:ba:42:f7:6f:fb:fe:8e:b4:51:fa:03: 27:57:3c:5a:79:c7:49:29:d8:d8:65:c0:95:58:b2: 5a:e0:a0:88:56:e5:86:1a:bf:a9:69:95:33:fa:51: 65:c1:0c:f3:30:06:8f:42:9f:84:5a:19:d8:5d:d1: ae:0d:92:f1:14:bc:93:8a:76:12:ef:84:b7:73:22: 5a:85:26:ec:07:9d:26:0f:bd:7a:db:29:36:ad:8c: fb:93:ae:54:d3:f4:ca:d7:d4:c4:77:e5:3e:59:93: 00:ef:c4:f9:33:34:72:11:3b:85:23:ef:dc:dc:b5: b9:55:3e:d0:67:22:16:7e:3c:18:40:b1:88:3b:8a: b5:ee:5a:33:e9:f5:87:08:6e:94:5e:e3:ce:09:14: 78:ad:2e:79:cb:59:30:49:34:94:d8:02:0a:56:62: 4c:8b:ec:2b:2b:6e:75:9e:73:00:33:5b:cc:5b:f6: 15:11:1b:46:7f:1b:75:01:55:20:a2:48:ea:b9:16: aa:06:73:31:49:14:88:01:bf:0a:d5:dd:45:65:84: fb:a6:90:49:e9:07:c2:52:13:d1:16:b4:01:5c:9d: 5d:66:7c:a8:b4:81:12:29:b0:d1:7d:3c:bd:13:a2: b3:77:0a:2f:48:48:54:73:d5:03:25:75:1a:1e:e4: c3:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:3C:6E:59:70:A2:4C:DB:57:58:94:E1:67:24:22:5D:54:79:12:81 X509v3 Authority Key Identifier: keyid:DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:42:d5:d9:c2:ab:80:ba:86:e0:2d:30:4d:59:b5:41:9b:68: 0f:30:49:f0:12:c0:e8:ad:26:fb:73:b3:f6:76:e0:1a:05:86: 49:8c:99:db:33:61:44:90:a6:37:40:25:31:35:7e:f6:50:0d: 03:9e:dd:86:98:b3:00:90:b7:f8:ec:31:52:56:5f:6d:7a:b0: d8:5d:c7:1b:05:d9:b3:60:a0:f5:f6:10:7f:18:a2:ec:e3:56: 75:a2:a9:20:cd:e5:a2:0a:8c:d0:10:d7:50:96:a6:a2:dd:95: 21:a7:22:d7:bb:47:b5:27:a8:29:d3:a5:01:19:2d:d6:e3:30: 7e:79:23:49:61:8d:bf:93:e8:11:59:41:09:9f:c2:46:e3:03: 4a:c4:96:32:f4:f8:89:7a:f2:bd:51:36:a2:9e:7c:9a:3f:25: f1:54:f8:82:bd:e5:6b:c5:8d:d0:88:06:38:04:98:b1:b6:bf: b1:d0:9a:27:a1:ed:e2:27:99:c5:24:f8:8a:4c:2d:e9:71:3a: 54:6e:fb:43:eb:23:b7:6a:0d:81:c9:0e:29:44:02:f4:7f:1b: d4:7a:2d:68:66:7a:16:c7:d1:6a:55:2c:b4:7a:d5:7d:42:52: fa:73:29:9f:47:81:fe:9d:57:52:89:be:77:11:b1:d2:8d:ea: 39:0d:7f:df -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDODgxMTAvBgNVBAUTKERBMDEzRTE3ODM1OENCMzVBOEI3NjVDOUJDMDkwQUU5 Q0YxQzRGQkUwHhcNMjYwMzI0MjE1OTEzWhcNMjYwMzMxMjE1OTEzWjAYMRYwFAYD VQQDEw02OWMzMDkzMS1kNDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9fL5ukL3b/v+jrRR+gMnVzxaecdJKdjYZcCVWLJa4KCIVuWGGr+paZUz+lFl wQzzMAaPQp+EWhnYXdGuDZLxFLyTinYS74S3cyJahSbsB50mD7162yk2rYz7k65U 0/TK19TEd+U+WZMA78T5MzRyETuFI+/c3LW5VT7QZyIWfjwYQLGIO4q17loz6fWH CG6UXuPOCRR4rS55y1kwSTSU2AIKVmJMi+wrK251nnMAM1vMW/YVERtGfxt1AVUg okjquRaqBnMxSRSIAb8K1d1FZYT7ppBJ6QfCUhPRFrQBXJ1dZnyotIESKbDRfTy9 E6KzdwovSEhUc9UDJXUaHuTD0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEM8bllw okzbV1iU4WckIl1UeRKBMB8GA1UdIwQYMBaAFNoBPheDWMs1qLdlybwJCunPHE++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM4OC8yNDI5OURDQTk3 OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6V290MlhKdkFrSzZjOGNU NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRS1GNE5ZeXpXb3QyWEp2QWtLNmM4Y1Q3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkM4OC8yNDI5OURDQTk3OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6 V290MlhKdkFrSzZjOGNUNzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgkLV2cKrgLqG4C0wTVm1QZtoDzBJ8BLA6K0m+3Oz9nbgGgWGSYyZ2zNhRJCm N0AlMTV+9lANA57dhpizAJC3+OwxUlZfbXqw2F3HGwXZs2Cg9fYQfxii7ONWdaKp IM3logqM0BDXUJamot2VIaci17tHtSeoKdOlARkt1uMwfnkjSWGNv5PoEVlBCZ/C RuMDSsSWMvT4iXryvVE2op58mj8l8VT4gr3la8WN0IgGOASYsba/sdCaJ6Ht4ieZ xST4ikwt6XE6VG77Q+sjt2oNgckOKUQC9H8b1HotaGZ6FsfRalUstHrVfUJS+nMp n0eB/p1XUom+dxGx0o3qOQ1/3w== -----END CERTIFICATE-----Generated at Thu Mar 26 14:28:06 2026 by rpki-client