$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft File: 2QDd8konYiv5ZDdX7byv-u4yHDc.mft (raw, json) Hash identifier: fEGj17TWTxejBKQHQMGfkWruFHNQ0FL/2xIELNtH9hA= Subject key identifier: 77:AC:72:4A:49:D1:B3:A9:AC:A1:2E:5E:2F:BC:D3:AD:22:F7:63:10 Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0F1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft Manifest number: 0F00 Signing time: Tue 12 May 2026 17:40:10 +0000 Manifest this update: Tue 12 May 2026 17:40:10 +0000 Manifest next update: Tue 19 May 2026 17:40:10 +0000 Files and hashes: 1: 2QDd8konYiv5ZDdX7byv-u4yHDc.crl (hash: Q/4fMfdyZsEGSou6lgFO6qNI0l+u9o4W+6PQDLPWIiQ=) 2: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (hash: CNBlKRGQG6AMZt4K1SNsAWQxw9T+WIEHof1S1C1ZbKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:40:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3870 (0xf1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773, serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: May 12 17:40:10 2026 GMT Not After : May 19 17:40:10 2026 GMT Subject: CN=6a0365fa-23c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:00:b0:cd:e1:03:86:d9:50:76:0c:21:f7:1b: b9:2a:88:9e:9d:9d:51:e8:a7:5a:d2:2a:dd:30:f5: 52:2f:9d:52:0b:98:86:1a:b5:93:b1:a0:5f:de:5a: f8:07:09:0a:7a:02:73:00:84:90:26:a9:6f:ec:26: 3b:67:79:14:62:c9:5b:73:39:02:67:dc:0a:fd:da: 8d:75:c5:fb:01:83:54:37:06:3f:58:8b:60:4f:98: 42:f7:79:2b:b6:e6:e5:db:48:d8:e8:58:0c:81:cb: 3e:58:5a:93:e9:99:95:c0:b7:7b:87:cd:0c:8b:ec: 85:25:f2:5e:4b:54:7b:5e:51:2e:a2:34:8e:e0:fc: 1f:32:af:d2:0c:6b:19:fd:01:23:94:2e:8b:13:b2: 21:03:b6:4a:be:fc:d9:9a:57:b5:43:7b:09:16:5a: 59:41:89:2a:0d:c4:79:e7:33:2e:25:03:b3:1e:2d: 26:46:de:38:ac:92:9c:18:af:c5:9c:7d:f7:42:02: ba:2d:7c:bc:ad:ba:b2:91:8d:ca:3f:46:96:78:a6: ee:a8:6c:3a:16:d7:17:b4:39:cb:83:c6:62:97:b0: 60:be:4b:97:5f:0b:7a:29:16:b8:05:72:db:b9:8e: 8a:d8:c1:e2:ec:59:3d:84:8e:48:89:90:c5:16:45: e4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:AC:72:4A:49:D1:B3:A9:AC:A1:2E:5E:2F:BC:D3:AD:22:F7:63:10 X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:1f:9f:8e:9a:a0:51:12:86:69:1f:b5:c0:dd:1a:88:24:63: 33:9e:07:0d:a9:77:53:91:0b:c4:e9:88:5f:ad:ec:7f:5b:bc: 85:36:50:bf:07:81:4c:dd:9e:67:9e:ac:54:11:7c:50:67:6e: 3c:13:29:64:a7:13:9a:00:a3:36:36:da:f4:6e:3c:0a:81:00: bd:32:8e:aa:37:5c:7e:33:13:4f:5a:39:f3:8a:1e:0a:f4:2d: 98:db:3c:0d:c1:e6:b7:c3:12:08:91:98:4e:2b:af:22:0f:74: 80:48:87:d7:8c:f2:68:36:be:f9:02:d4:bf:28:04:aa:1e:6f: 0d:c5:fd:d0:67:26:6b:33:52:c3:af:bd:96:0c:f1:3f:43:15: 95:e0:b0:9e:c6:42:be:b3:d7:be:7b:bd:18:80:61:0e:bc:23: 32:25:07:61:0f:3a:4b:96:0c:84:38:87:92:82:a5:39:a3:4d: 92:7b:09:14:3c:a0:76:d1:35:d1:62:a4:d7:f2:fb:15:c3:02: 0a:18:3b:6e:19:49:39:7b:8d:7c:72:67:f1:c9:12:41:9e:ac: fd:f2:d1:e2:36:e1:27:e4:c3:fe:aa:be:d0:ef:88:64:ec:e5: 56:da:d1:a9:62:db:ae:ed:47:4a:df:6f:fb:8b:a6:3a:82:7e: da:52:2f:a1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjYwNTEyMTc0MDEwWhcNMjYwNTE5MTc0MDEwWjAYMRYwFAYD VQQDEw02YTAzNjVmYS0yM2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhwCwzeEDhtlQdgwh9xu5KoienZ1R6Kda0irdMPVSL51SC5iGGrWTsaBf3lr4 BwkKegJzAISQJqlv7CY7Z3kUYslbczkCZ9wK/dqNdcX7AYNUNwY/WItgT5hC93kr tubl20jY6FgMgcs+WFqT6ZmVwLd7h80Mi+yFJfJeS1R7XlEuojSO4PwfMq/SDGsZ /QEjlC6LE7IhA7ZKvvzZmle1Q3sJFlpZQYkqDcR55zMuJQOzHi0mRt44rJKcGK/F nH33QgK6LXy8rbqykY3KP0aWeKbuqGw6FtcXtDnLg8Zil7BgvkuXXwt6KRa4BXLb uY6K2MHi7Fk9hI5IiZDFFkXkHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHesckpJ 0bOprKEuXi+8060i92MQMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc3My9BRDMyMjM3Q0EyRTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllp djVaRGRYN2J5di11NHlIRGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASB+fjpqgURKGaR+1wN0aiCRjM54HDal3U5ELxOmIX63sf1u8hTZQvweBTN2e Z56sVBF8UGduPBMpZKcTmgCjNjba9G48CoEAvTKOqjdcfjMTT1o584oeCvQtmNs8 DcHmt8MSCJGYTiuvIg90gEiH14zyaDa++QLUvygEqh5vDcX90GcmazNSw6+9lgzx P0MVleCwnsZCvrPXvnu9GIBhDrwjMiUHYQ86S5YMhDiHkoKlOaNNknsJFDygdtE1 0WKk1/L7FcMCChg7bhlJOXuNfHJn8ckSQZ6s/fLR4jbhJ+TD/qq+0O+IZOzlVtrR qWLbru1HSt9v+4umOoJ+2lIvoQ== -----END CERTIFICATE-----Generated at Wed May 13 03:22:28 2026 by rpki-client