$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: bZimkT8016zt56kkwyeBbiViNn4StGf18UVEVlkKvO4= Subject key identifier: 73:A3:8B:B9:3B:15:7D:DF:E9:87:75:69:16:A1:63:AC:94:9A:EE:79 Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 022C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 0222 Signing time: Wed 25 Mar 2026 02:09:07 +0000 Manifest this update: Wed 25 Mar 2026 02:09:06 +0000 Manifest next update: Wed 01 Apr 2026 02:09:06 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: QuW35vgaXLIgfhiR4eiRFQhezxiJAbBvr0gt7TWJFnA=) 2: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: aAtHrkMecT5oO4nt1NPtMzyuWR2EapTbCzd38PiZviw=) 3: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: O6tGr92XmxFCney2TeehRmwSGnb7+7FigW1Tc3DQGsw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Mar 25 02:09:06 2026 GMT Not After : Apr 1 02:09:06 2026 GMT Subject: CN=69c343c3-f342 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:de:d0:cb:38:20:b7:35:a8:32:3b:a4:c0:63: ab:6d:bc:45:1d:e6:f5:70:7c:d6:ae:cc:3f:0e:8c: 35:5b:06:53:00:ba:b5:e8:87:2c:44:d5:68:44:f0: b9:dc:0a:7e:33:c3:60:d6:ae:11:e3:e0:af:7c:40: 9d:0b:03:20:fa:b9:aa:b1:c4:5b:ea:01:5f:14:97: 76:b2:7b:ea:f8:77:b2:5c:4c:95:5e:5a:ed:a0:8c: aa:96:b2:21:0c:44:72:90:f5:ea:f0:30:17:01:e7: 62:91:ba:f7:e9:d2:d2:2d:49:1f:51:b4:d8:49:cc: 10:2e:e1:10:77:f9:6e:6f:77:ea:8c:95:31:9e:d8: 5d:f6:19:20:fd:cc:e8:d7:23:22:98:17:73:b1:c1: ae:77:5e:91:50:9a:e8:e7:80:40:8c:c8:84:0c:e0: ee:04:62:fb:fc:eb:e7:9d:83:8f:6a:f9:99:4f:bf: cb:2e:0d:3d:3b:24:2b:af:99:a5:79:b6:9d:ac:f1: f0:8e:9a:e8:f1:7d:3c:a8:40:09:b4:eb:27:4d:78: 78:d1:0e:a3:ac:17:04:ae:f6:5b:d2:84:ee:a5:17: eb:dd:83:b1:69:08:cf:3a:cc:b0:8a:5e:c4:c6:92: 28:e7:5e:c9:34:74:ac:c6:5a:02:4f:f7:5c:40:df: 37:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A3:8B:B9:3B:15:7D:DF:E9:87:75:69:16:A1:63:AC:94:9A:EE:79 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:f4:0d:79:9b:cb:d3:5b:04:48:9b:96:2d:30:19:8b:a7:bb: 7b:71:97:4b:d7:f5:66:4d:81:e8:80:df:fb:f6:c0:c5:de:b6: 31:db:d5:9f:68:a2:9b:ea:53:73:7d:09:6e:6c:9c:38:48:da: 5d:36:5e:82:17:ec:58:93:31:c3:df:1e:ad:08:be:f7:68:09: 2d:c3:bd:aa:f1:ef:17:d1:19:80:84:5d:33:27:0d:9b:9f:d3: c9:d7:cc:a6:07:8c:5a:32:46:40:99:94:3b:31:34:82:70:04: 43:36:9d:1b:25:b4:ec:6c:53:8f:c4:eb:df:b7:5a:bc:7d:6f: 02:69:aa:68:44:f9:6d:c1:86:9c:51:d9:08:77:7b:59:05:f8: 45:d3:32:6e:ab:2f:e1:20:e0:8b:49:1f:01:89:51:1a:33:fc: 65:db:20:3f:d1:88:2e:77:89:26:88:2b:44:cc:e2:21:89:a6: bb:1c:d3:d4:27:c4:01:ff:7f:c7:b9:7a:19:c6:35:8b:ca:ed: 6b:81:18:1f:dc:e5:2d:f9:43:14:9e:f0:30:b3:73:9c:68:7e: d6:00:74:50:e3:62:51:09:f5:b3:5a:2a:d4:cc:12:1a:28:63: ba:84:87:85:3b:7c:cb:6e:96:2d:d0:c3:57:90:17:cb:c5:01: c7:3c:9d:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjYwMzI1MDIwOTA2WhcNMjYwNDAxMDIwOTA2WjAYMRYwFAYD VQQDEw02OWMzNDNjMy1mMzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjN7QyzggtzWoMjukwGOrbbxFHeb1cHzWrsw/Dow1WwZTALq16IcsRNVoRPC5 3Ap+M8Ng1q4R4+CvfECdCwMg+rmqscRb6gFfFJd2snvq+HeyXEyVXlrtoIyqlrIh DERykPXq8DAXAedikbr36dLSLUkfUbTYScwQLuEQd/lub3fqjJUxnthd9hkg/czo 1yMimBdzscGud16RUJro54BAjMiEDODuBGL7/OvnnYOPavmZT7/LLg09OyQrr5ml ebadrPHwjpro8X08qEAJtOsnTXh40Q6jrBcErvZb0oTupRfr3YOxaQjPOsywil7E xpIo517JNHSsxloCT/dcQN83wwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHOji7k7 FX3f6Yd1aRahY6yUmu55MB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAPQNeZvL01sESJuWLTAZi6e7e3GXS9f1Zk2B6IDf+/bAxd62MdvVn2iim+pT c30JbmycOEjaXTZeghfsWJMxw98erQi+92gJLcO9qvHvF9EZgIRdMycNm5/TydfM pgeMWjJGQJmUOzE0gnAEQzadGyW07GxTj8Tr37davH1vAmmqaET5bcGGnFHZCHd7 WQX4RdMybqsv4SDgi0kfAYlRGjP8ZdsgP9GILneJJogrRMziIYmmuxzT1CfEAf9/ x7l6GcY1i8rta4EYH9zlLflDFJ7wMLNznGh+1gB0UONiUQn1s1oq1MwSGihjuoSH hTt8y26WLdDDV5AXy8UBxzydrA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:58:06 2026 by rpki-client