$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft File: 2itDzBg8qOD2qPbapUzdcwb4Yig.mft (raw, json) Hash identifier: F4GoCpyo2m7Xg1x2ApvIwmtg4gOCA/uZOIA45qw5EDE= Subject key identifier: FD:F8:5D:D1:1F:3D:E2:E3:92:37:6F:AF:E7:08:4E:3E:D9:DE:96:C5 Authority key identifier: DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 Certificate issuer: /CN=A91DF0EC/serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Certificate serial: 0ACA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft Manifest number: 0AB0 Signing time: Tue 12 May 2026 19:33:31 +0000 Manifest this update: Tue 12 May 2026 19:33:31 +0000 Manifest next update: Tue 19 May 2026 19:33:31 +0000 Files and hashes: 1: 2itDzBg8qOD2qPbapUzdcwb4Yig.crl (hash: GywEFkoALU1/wya7zWrgiT6jJYkiCzrFujSdcAbc5Zg=) 2: C8A0E422831611EA95762453C4F9AE02.roa (hash: zy8s2JOSWvYwBrRrmYSE0kwJEPoK1AaNF1yfDHC6Css=) 3: 0D6FFE56BA3511ECA20A3817C4F9AE02.roa (hash: T6idJL8aHggzjv6s1JmSSpHwZuTbLSQAyDk/XLJrS3o=) 4: FD114232912711EFBCB4ED6EC4F9AE02.roa (hash: m31d9LY6Fb+rpx0iPU2nTzyFxPrcr/nSM8utNGuQQUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:33:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2762 (0xaca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF0EC, serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Validity Not Before: May 12 19:33:31 2026 GMT Not After : May 19 19:33:31 2026 GMT Subject: CN=6a03808b-b289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c7:b2:36:be:38:c3:74:91:ea:5f:0b:22:5d: 81:cc:16:95:6f:71:bf:5d:45:80:36:34:69:08:8e: 62:2e:c4:f2:c8:45:ae:60:2e:cf:bd:7f:e2:de:53: a5:4f:bb:a1:f6:a7:f4:0f:69:43:aa:4d:3e:e8:8d: 26:f6:89:23:be:48:25:46:46:93:15:0c:34:a0:cf: 4d:63:31:5f:e2:2e:5b:11:b6:94:e7:fc:96:33:85: 82:38:16:d9:2e:56:e0:1e:a7:ed:98:27:04:b1:60: c2:98:8d:c4:53:7c:8e:0e:18:2c:fb:3d:89:bf:f5: a1:65:61:bf:79:8d:a1:5f:17:5c:90:a2:8f:32:3b: c2:26:49:38:c5:e0:11:d6:90:c8:20:1c:5d:9d:6c: b5:7c:c1:04:b4:7e:9a:45:42:4e:2d:0a:1a:f5:bd: 88:c0:7e:09:3e:34:99:c2:9e:6a:29:49:72:17:a9: 7c:5c:e4:8a:d9:d7:b8:e8:86:34:3b:95:3c:90:ee: 60:9f:73:c7:cd:0f:92:e0:a3:b3:50:62:19:e3:04: 54:a2:2f:a0:3f:46:2e:bd:1f:58:43:55:6b:87:df: 50:83:c3:46:b7:c7:e2:b6:89:b5:b7:df:48:bd:c5: 02:18:f5:66:f2:bf:c4:55:24:2e:25:09:9b:2f:1e: 7e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:F8:5D:D1:1F:3D:E2:E3:92:37:6F:AF:E7:08:4E:3E:D9:DE:96:C5 X509v3 Authority Key Identifier: keyid:DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:3f:cb:4b:f6:5a:16:6f:ae:d0:87:b0:49:71:ad:1c:d6:f8: ec:5a:1d:6d:5d:21:2e:86:14:da:8d:da:d7:55:cd:9f:60:96: db:48:b0:86:4a:38:8b:1d:f5:26:e8:82:fe:52:83:82:8f:16: b4:5d:43:3b:67:31:9c:21:a4:55:b3:0d:f4:84:82:d9:cd:db: fb:b1:a7:4a:18:7a:6b:90:29:dc:22:22:ac:63:39:0a:1b:32: b4:a6:9a:dc:04:17:71:c6:14:02:56:2f:48:b7:98:fd:3a:aa: ee:e3:76:30:e0:c4:61:fd:bf:93:fe:77:4f:1b:59:8e:7e:9c: 9c:50:00:f9:61:0d:47:24:1f:77:a9:b8:6e:91:40:07:bf:25: 89:1c:3b:07:e5:6f:f9:0a:2d:ab:01:0d:57:53:a0:9e:22:78: 8e:d8:55:1e:16:8f:00:d8:5f:af:3e:7f:19:09:98:4c:c3:32: 7e:f6:ce:cf:2e:77:2b:98:bc:a3:01:8b:59:fa:2b:7f:ef:79: 47:8c:8a:c7:49:ba:74:e5:8c:46:46:4d:27:8f:90:17:4b:e0: 7b:09:32:0d:58:6d:b1:a0:cf:d2:1a:9d:20:ae:49:37:38:a2: cc:98:34:b1:37:74:7a:0d:4a:6c:a7:f0:64:f8:81:8b:c5:9c: 82:58:26:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwRUMxMTAvBgNVBAUTKERBMkI0M0NDMTgzQ0E4RTBGNkE4RjZEQUE1NENERDcz MDZGODYyMjgwHhcNMjYwNTEyMTkzMzMxWhcNMjYwNTE5MTkzMzMxWjAYMRYwFAYD VQQDEw02YTAzODA4Yi1iMjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48eyNr44w3SR6l8LIl2BzBaVb3G/XUWANjRpCI5iLsTyyEWuYC7PvX/i3lOl T7uh9qf0D2lDqk0+6I0m9okjvkglRkaTFQw0oM9NYzFf4i5bEbaU5/yWM4WCOBbZ LlbgHqftmCcEsWDCmI3EU3yODhgs+z2Jv/WhZWG/eY2hXxdckKKPMjvCJkk4xeAR 1pDIIBxdnWy1fMEEtH6aRUJOLQoa9b2IwH4JPjSZwp5qKUlyF6l8XOSK2de46IY0 O5U8kO5gn3PHzQ+S4KOzUGIZ4wRUoi+gP0YuvR9YQ1Vrh99Qg8NGt8fitom1t99I vcUCGPVm8r/EVSQuJQmbLx5+CQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP34XdEf PeLjkjdvr+cITj7Z3pbFMB8GA1UdIwQYMBaAFNorQ8wYPKjg9qj22qVM3XMG+GIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjBFQy85OTFDRUY3RTc5 NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFPRDJxUGJhcFV6ZGN3YjRZ aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJpdER6Qmc4cU9EMnFQYmFwVXpkY3diNFlpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjBFQy85OTFDRUY3RTc5NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFP RDJxUGJhcFV6ZGN3YjRZaWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEz/LS/ZaFm+u0IewSXGtHNb47FodbV0hLoYU2o3a11XNn2CW20iwhko4ix31 JuiC/lKDgo8WtF1DO2cxnCGkVbMN9ISC2c3b+7GnShh6a5Ap3CIirGM5ChsytKaa 3AQXccYUAlYvSLeY/Tqq7uN2MODEYf2/k/53TxtZjn6cnFAA+WENRyQfd6m4bpFA B78liRw7B+Vv+QotqwENV1OgniJ4jthVHhaPANhfrz5/GQmYTMMyfvbOzy53K5i8 owGLWforf+95R4yKx0m6dOWMRkZNJ4+QF0vgewkyDVhtsaDP0hqdIK5JNziizJg0 sTd0eg1KbKfwZPiBi8Wcglgmhw== -----END CERTIFICATE-----Generated at Wed May 13 02:33:23 2026 by rpki-client