$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft File: 2itDzBg8qOD2qPbapUzdcwb4Yig.mft (raw, json) Hash identifier: G9vbnuCP0XzjPVRQAqRoTepabUhBBBt3Haqoeut/GJ0= Subject key identifier: 7F:52:76:0B:35:03:DE:87:A0:4A:12:74:54:9E:E3:AB:B9:DB:9F:34 Authority key identifier: DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 Certificate issuer: /CN=A91DF0EC/serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Certificate serial: 0AB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft Manifest number: 0A98 Signing time: Thu 26 Mar 2026 19:26:41 +0000 Manifest this update: Thu 26 Mar 2026 19:26:40 +0000 Manifest next update: Thu 02 Apr 2026 19:26:40 +0000 Files and hashes: 1: 2itDzBg8qOD2qPbapUzdcwb4Yig.crl (hash: QV3IGm8boS+Hk7Z8DGJ9qMyHDi4MD31lW2uNZcbYiNY=) 2: 0D6FFE56BA3511ECA20A3817C4F9AE02.roa (hash: T6idJL8aHggzjv6s1JmSSpHwZuTbLSQAyDk/XLJrS3o=) 3: C8A0E422831611EA95762453C4F9AE02.roa (hash: zy8s2JOSWvYwBrRrmYSE0kwJEPoK1AaNF1yfDHC6Css=) 4: FD114232912711EFBCB4ED6EC4F9AE02.roa (hash: m31d9LY6Fb+rpx0iPU2nTzyFxPrcr/nSM8utNGuQQUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:26:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2738 (0xab2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF0EC, serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Validity Not Before: Mar 26 19:26:40 2026 GMT Not After : Apr 2 19:26:40 2026 GMT Subject: CN=69c58871-d10c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:66:0c:3a:61:a6:b5:2d:a0:01:15:ab:d2:f1: 8b:28:7e:e8:c5:91:81:92:ed:07:02:af:bd:90:9c: 39:06:d2:e9:e7:aa:64:3b:13:98:f0:5b:1a:1c:94: 4b:01:85:7a:56:cf:fb:59:f5:39:16:e1:e6:05:3c: 18:a0:39:e7:62:ad:0c:93:ed:ac:cc:70:05:07:0a: cc:92:b5:9d:ce:37:52:dc:21:19:35:a4:c9:9b:d5: 52:a1:83:e3:ca:a2:ea:66:17:f7:75:5f:fb:20:24: 08:95:dc:d6:4e:bc:2a:1f:9e:27:90:a9:4a:92:a8: 40:03:c3:26:f4:2e:47:ef:34:a0:00:1b:70:5e:79: 01:72:05:cc:94:70:4f:3d:23:44:af:82:0c:0e:f3: 70:39:40:d5:0e:52:16:68:e4:7d:45:21:c1:2b:90: 49:02:8f:78:87:64:7f:3e:79:7e:7d:9f:65:0d:f3: 1e:4d:f9:29:d7:1e:3e:01:8c:b1:e3:9d:4e:60:2e: cb:72:c8:f2:97:71:8b:40:43:66:76:ea:7d:71:3b: c8:87:85:df:90:99:5e:03:6b:75:82:32:40:98:4e: da:e2:34:89:1e:41:b8:f9:34:ca:4c:d3:fa:d5:21: 39:1a:f3:b6:03:e3:b3:92:89:54:69:3a:35:35:70: 6e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:52:76:0B:35:03:DE:87:A0:4A:12:74:54:9E:E3:AB:B9:DB:9F:34 X509v3 Authority Key Identifier: keyid:DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:b1:10:8e:7b:86:45:61:ce:1e:4f:af:74:be:4d:be:bf:f6: 4f:f1:51:d8:22:2c:ee:2d:98:78:e6:ca:01:e5:1c:62:f8:22: 35:b9:b0:3c:54:ad:1b:45:e7:31:d3:50:60:43:4a:47:ef:c1: b0:ee:a5:24:0e:4d:c2:26:a6:61:d3:20:62:c1:60:3e:e2:7d: 13:6d:55:3e:2c:39:12:38:3a:4d:54:64:0b:e9:ea:79:b2:9d: f2:7c:c6:34:92:71:3a:ed:c5:13:47:c4:ae:33:fc:81:b4:21: fa:78:d5:0f:b5:cb:1e:57:b0:a3:19:26:8e:47:1d:0b:b3:eb: 63:9e:f6:3a:0e:36:62:d0:7a:8a:e2:d1:2e:66:9d:a4:c1:3a: e4:a8:88:d1:c0:bc:90:f2:07:88:0c:77:ed:10:9c:74:ba:81: a1:c6:0a:4e:a6:05:c6:c9:81:73:74:ed:29:71:ba:0e:4f:c5: 67:67:a2:98:86:4b:3f:46:3b:ab:c7:4f:c6:e6:09:e9:3b:41: 7a:68:16:b1:fc:df:9f:87:6f:f1:3a:e1:45:0d:8e:0d:d0:c9: 54:97:07:c6:37:88:03:98:4a:5c:c1:3f:58:72:1a:50:7d:9d: 19:d8:17:ad:fd:e6:48:00:37:5e:ac:e3:33:cd:cf:18:9f:55: f9:d8:d1:a1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwRUMxMTAvBgNVBAUTKERBMkI0M0NDMTgzQ0E4RTBGNkE4RjZEQUE1NENERDcz MDZGODYyMjgwHhcNMjYwMzI2MTkyNjQwWhcNMjYwNDAyMTkyNjQwWjAYMRYwFAYD VQQDEw02OWM1ODg3MS1kMTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWYMOmGmtS2gARWr0vGLKH7oxZGBku0HAq+9kJw5BtLp56pkOxOY8FsaHJRL AYV6Vs/7WfU5FuHmBTwYoDnnYq0Mk+2szHAFBwrMkrWdzjdS3CEZNaTJm9VSoYPj yqLqZhf3dV/7ICQIldzWTrwqH54nkKlKkqhAA8Mm9C5H7zSgABtwXnkBcgXMlHBP PSNEr4IMDvNwOUDVDlIWaOR9RSHBK5BJAo94h2R/Pnl+fZ9lDfMeTfkp1x4+AYyx 451OYC7Lcsjyl3GLQENmdup9cTvIh4XfkJleA2t1gjJAmE7a4jSJHkG4+TTKTNP6 1SE5GvO2A+OzkolUaTo1NXBuWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH9Sdgs1 A96HoEoSdFSe46u52580MB8GA1UdIwQYMBaAFNorQ8wYPKjg9qj22qVM3XMG+GIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjBFQy85OTFDRUY3RTc5 NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFPRDJxUGJhcFV6ZGN3YjRZ aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJpdER6Qmc4cU9EMnFQYmFwVXpkY3diNFlpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjBFQy85OTFDRUY3RTc5NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFP RDJxUGJhcFV6ZGN3YjRZaWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA07EQjnuGRWHOHk+vdL5Nvr/2T/FR2CIs7i2YeObKAeUcYvgiNbmwPFStG0Xn MdNQYENKR+/BsO6lJA5NwiamYdMgYsFgPuJ9E21VPiw5Ejg6TVRkC+nqebKd8nzG NJJxOu3FE0fErjP8gbQh+njVD7XLHlewoxkmjkcdC7PrY572Og42YtB6iuLRLmad pME65KiI0cC8kPIHiAx37RCcdLqBocYKTqYFxsmBc3TtKXG6Dk/FZ2eimIZLP0Y7 q8dPxuYJ6TtBemgWsfzfn4dv8TrhRQ2ODdDJVJcHxjeIA5hKXME/WHIaUH2dGdgX rf3mSAA3XqzjM83PGJ9V+djRoQ== -----END CERTIFICATE-----Generated at Sat Mar 28 12:10:31 2026 by rpki-client