$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft File: 2gE-F4NYyzWot2XJvAkK6c8cT74.mft (raw, json) Hash identifier: ir5AUavoh+0sUK+0+pumCXe2VdItvNfD6g38zhign04= Subject key identifier: 44:78:91:B4:82:DE:3F:11:27:92:BA:88:E2:17:14:44:9D:48:EB:9A Authority key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE Certificate issuer: /CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Certificate serial: 06F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft Manifest number: 06EB Signing time: Tue 12 May 2026 22:17:38 +0000 Manifest this update: Tue 12 May 2026 22:17:37 +0000 Manifest next update: Tue 19 May 2026 22:17:37 +0000 Files and hashes: 1: 2gE-F4NYyzWot2XJvAkK6c8cT74.crl (hash: lyNZgymVyEsf3jvtc+4utzFW8KGCJPMmMLDakaGzdSU=) 2: 3C5E55F041A411ECA73C8C0EC4F9AE02.roa (hash: w5l5bzdUBbOiymqqgIFAis/HyOoUZwKfNyUgPTXlOrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1783 (0x6f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C88, serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Validity Not Before: May 12 22:17:37 2026 GMT Not After : May 19 22:17:37 2026 GMT Subject: CN=6a03a702-7523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4a:3a:e6:42:20:77:75:2c:58:a4:23:f6:48: 92:23:05:38:d4:3b:a2:32:ef:f5:e1:24:d4:64:6c: 14:e2:74:b1:65:a3:84:6e:86:57:77:d4:c9:84:ad: af:82:1e:19:32:9d:55:bb:d0:a1:10:07:d7:76:dc: 52:89:c9:af:c3:89:2f:19:6f:0b:67:07:81:97:3c: 78:39:28:24:40:bf:c1:96:ca:0c:ad:ff:29:8e:09: 90:cf:fb:c4:c0:37:da:0a:7b:44:d4:dc:83:34:b1: 76:6c:bf:da:8b:cf:76:ff:1e:d9:1c:42:59:55:56: b3:7e:99:06:07:4a:e1:98:26:c8:0e:d9:79:18:df: 2a:b5:e3:c0:61:68:78:fd:26:35:67:c1:c4:f4:ce: dc:3b:0d:cb:74:0d:03:24:4c:e5:c3:2e:c8:87:45: 05:30:e2:b0:27:00:62:99:36:47:50:9a:b9:1f:54: 08:54:19:2b:1c:c0:8a:8e:01:6c:25:1e:f5:31:16: 5d:6d:f6:6b:b9:26:ec:55:98:5c:de:4e:02:e7:7d: 8e:0a:68:62:6c:d1:fd:9f:b0:24:27:33:c9:34:21: 9b:7a:b3:b2:7c:75:f0:41:18:f8:4e:28:7f:ad:24: 90:fa:b0:29:bc:e4:b6:ee:ce:e7:9d:05:08:ac:a4: 58:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:78:91:B4:82:DE:3F:11:27:92:BA:88:E2:17:14:44:9D:48:EB:9A X509v3 Authority Key Identifier: keyid:DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:a6:8a:27:ec:d2:a9:07:39:fa:19:67:2f:59:7f:45:f0:e7: 7b:e0:26:e0:f2:84:6d:51:96:7c:09:e4:b7:ad:74:c1:be:44: 71:0f:e1:ac:3c:03:f7:5d:c4:0a:e5:61:e1:95:a5:dd:2e:1b: 28:80:13:76:3f:df:38:7a:12:e1:b2:ed:dd:b5:e7:d8:ee:50: a2:48:0b:2d:b1:83:0c:0c:43:17:28:21:f2:a5:42:3c:c8:05: ee:56:c7:be:70:ca:0a:9f:a7:02:95:35:c0:a6:8c:fa:c2:91: 1f:e4:6c:39:72:30:5f:da:39:f8:3f:a0:ec:62:63:5e:1a:97: b8:ca:d9:55:f6:36:de:64:23:64:a5:fc:f1:d3:ec:2e:3b:3b: ee:95:24:32:fd:2b:be:67:6b:22:f5:28:98:02:6f:38:16:cf: 28:ee:32:38:6b:a4:68:20:80:89:23:3e:34:0f:01:9d:77:0b: e6:52:d1:fa:db:4c:e7:e4:49:06:13:0d:ad:ce:59:91:55:d4: 7d:0a:e8:09:b8:e8:ad:ab:e8:d6:83:da:82:d2:de:01:ab:73: ed:a2:de:fe:64:2e:03:38:23:b3:c9:c6:77:ec:92:da:d8:a4: f1:61:46:6e:8d:63:9c:bc:ce:d0:46:33:6b:cb:19:0b:54:cd: 7d:90:7d:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDODgxMTAvBgNVBAUTKERBMDEzRTE3ODM1OENCMzVBOEI3NjVDOUJDMDkwQUU5 Q0YxQzRGQkUwHhcNMjYwNTEyMjIxNzM3WhcNMjYwNTE5MjIxNzM3WjAYMRYwFAYD VQQDEw02YTAzYTcwMi03NTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzko65kIgd3UsWKQj9kiSIwU41DuiMu/14STUZGwU4nSxZaOEboZXd9TJhK2v gh4ZMp1Vu9ChEAfXdtxSicmvw4kvGW8LZweBlzx4OSgkQL/BlsoMrf8pjgmQz/vE wDfaCntE1NyDNLF2bL/ai892/x7ZHEJZVVazfpkGB0rhmCbIDtl5GN8qtePAYWh4 /SY1Z8HE9M7cOw3LdA0DJEzlwy7Ih0UFMOKwJwBimTZHUJq5H1QIVBkrHMCKjgFs JR71MRZdbfZruSbsVZhc3k4C532OCmhibNH9n7AkJzPJNCGberOyfHXwQRj4Tih/ rSSQ+rApvOS27s7nnQUIrKRYWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFER4kbSC 3j8RJ5K6iOIXFESdSOuaMB8GA1UdIwQYMBaAFNoBPheDWMs1qLdlybwJCunPHE++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM4OC8yNDI5OURDQTk3 OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6V290MlhKdkFrSzZjOGNU NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRS1GNE5ZeXpXb3QyWEp2QWtLNmM4Y1Q3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkM4OC8yNDI5OURDQTk3OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6 V290MlhKdkFrSzZjOGNUNzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAe6aKJ+zSqQc5+hlnL1l/RfDne+Am4PKEbVGWfAnkt610wb5EcQ/hrDwD913E CuVh4ZWl3S4bKIATdj/fOHoS4bLt3bXn2O5QokgLLbGDDAxDFygh8qVCPMgF7lbH vnDKCp+nApU1wKaM+sKRH+RsOXIwX9o5+D+g7GJjXhqXuMrZVfY23mQjZKX88dPs Ljs77pUkMv0rvmdrIvUomAJvOBbPKO4yOGukaCCAiSM+NA8BnXcL5lLR+ttM5+RJ BhMNrc5ZkVXUfQroCbjoravo1oPagtLeAatz7aLe/mQuAzgjs8nGd+yS2tik8WFG bo1jnLzO0EYza8sZC1TNfZB9fA== -----END CERTIFICATE-----Generated at Wed May 13 12:20:16 2026 by rpki-client