$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: t+aHRMXQeaTkdZaSYMnXNu3IVJR7tbR7RmpDxx4eXHs= Subject key identifier: 4F:9D:43:49:E1:8A:55:C5:B8:77:5F:52:68:34:C5:8B:2B:B8:32:F0 Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 0249 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 023D Signing time: Wed 13 May 2026 02:37:04 +0000 Manifest this update: Wed 13 May 2026 02:37:03 +0000 Manifest next update: Wed 20 May 2026 02:37:03 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: WEillxvnswAow4qeZHgyAI3n7nHaaWctftbslgOd8Dw=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: 2kSM4B/k8NdFJAL4ebPd/o/E0Fw58aj47tXGXUAxnss=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: JS1ZBhltkdXyrySkpU8SpuqRR1QN77GhpUZ60d1ygSU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 585 (0x249) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: May 13 02:37:03 2026 GMT Not After : May 20 02:37:03 2026 GMT Subject: CN=6a03e3d0-7818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e3:bf:96:9e:51:10:2c:fb:6e:c2:b8:45:d9: 1b:fa:27:f2:ca:a6:b1:d2:69:74:32:65:9a:c4:04: 75:00:ed:b5:15:0b:20:d0:00:d8:6d:b1:80:41:62: ef:64:1a:f7:e1:14:b3:c3:86:8c:ac:1b:30:ab:73: 2a:be:47:4b:ac:10:8c:29:a4:d5:3f:ad:dc:60:a3: a9:a7:d2:c5:7c:38:cf:eb:5b:ad:1e:79:d2:92:81: 88:aa:6b:4e:77:59:44:e0:09:9a:e0:92:cc:60:e9: 21:2b:77:fb:85:b3:1b:dc:61:ea:e3:47:b4:05:be: 2c:ca:20:a7:25:69:86:7b:ed:84:8f:4d:00:39:ab: 02:f3:06:fb:6f:c4:3d:2a:a1:a7:8d:6a:e1:ae:92: 29:41:e2:1f:f2:d8:0c:11:b1:91:c2:74:d8:f6:b8: 4e:02:72:43:4a:74:77:87:cb:65:d9:d7:f8:7e:88: 90:0e:a8:1b:8e:74:ce:0b:65:15:59:2b:dc:f3:77: 21:4d:d1:16:be:d9:e7:b9:f8:43:f0:0e:e6:bc:da: 94:89:2c:c4:ae:3b:0c:24:ec:27:4d:68:6b:84:bb: 57:27:32:f0:c4:a3:af:a2:49:29:fb:f9:19:91:c7: bb:b7:ca:9a:e8:1f:e6:6c:30:87:dc:61:4a:af:7a: 03:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:9D:43:49:E1:8A:55:C5:B8:77:5F:52:68:34:C5:8B:2B:B8:32:F0 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:ca:3d:82:71:e7:4c:ef:99:48:dd:bf:00:5a:63:05:f4:a7: c7:35:85:3d:b6:6f:dd:cf:dd:b1:fa:ff:0b:69:5b:90:5c:f9: 90:b3:2c:bd:db:72:d5:e9:fd:99:e4:2b:17:f0:92:25:a2:a3: 6a:df:21:da:34:33:17:e4:36:2f:94:85:1a:bf:60:ee:b3:74: 84:9a:2a:de:aa:72:0c:7e:51:e8:92:28:96:71:7d:ae:f0:1b: 44:4c:5a:cb:ef:ac:00:74:9a:1d:2a:f8:10:ce:35:4e:08:40: e1:fa:c2:05:71:6d:17:23:5b:43:bc:a4:4c:f3:63:d0:93:e3: 62:ee:2e:ed:72:a1:47:af:33:20:89:b8:d6:fd:6b:d5:fc:ab: e6:c4:bb:a1:61:39:8e:94:f2:4f:c4:0b:61:35:15:1c:e8:ff: 8a:0c:e5:e6:08:fa:24:3c:b7:8b:cf:21:81:eb:c3:e9:8a:00: b1:a2:34:8b:b5:52:e5:b6:be:0b:90:45:7f:96:1d:51:aa:f6: e1:6c:0f:cc:60:90:d0:60:ee:74:b9:ea:9d:56:50:91:46:af: 7d:77:0a:69:3f:1b:19:7c:46:c9:44:6c:96:5d:42:09:f8:50: 4d:b4:a2:01:f6:1d:0b:a6:ac:c3:39:d6:68:7d:8a:fd:11:82: 9d:d8:aa:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjYwNTEzMDIzNzAzWhcNMjYwNTIwMDIzNzAzWjAYMRYwFAYD VQQDEw02YTAzZTNkMC03ODE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruO/lp5RECz7bsK4Rdkb+ifyyqax0ml0MmWaxAR1AO21FQsg0ADYbbGAQWLv ZBr34RSzw4aMrBswq3MqvkdLrBCMKaTVP63cYKOpp9LFfDjP61utHnnSkoGIqmtO d1lE4Ama4JLMYOkhK3f7hbMb3GHq40e0Bb4syiCnJWmGe+2Ej00AOasC8wb7b8Q9 KqGnjWrhrpIpQeIf8tgMEbGRwnTY9rhOAnJDSnR3h8tl2df4foiQDqgbjnTOC2UV WSvc83chTdEWvtnnufhD8A7mvNqUiSzErjsMJOwnTWhrhLtXJzLwxKOvokkp+/kZ kce7t8qa6B/mbDCH3GFKr3oD0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE+dQ0nh ilXFuHdfUmg0xYsruDLwMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAu8o9gnHnTO+ZSN2/AFpjBfSnxzWFPbZv3c/dsfr/C2lbkFz5kLMsvdty1en9 meQrF/CSJaKjat8h2jQzF+Q2L5SFGr9g7rN0hJoq3qpyDH5R6JIolnF9rvAbRExa y++sAHSaHSr4EM41TghA4frCBXFtFyNbQ7ykTPNj0JPjYu4u7XKhR68zIIm41v1r 1fyr5sS7oWE5jpTyT8QLYTUVHOj/igzl5gj6JDy3i88hgevD6YoAsaI0i7VS5ba+ C5BFf5YdUar24WwPzGCQ0GDudLnqnVZQkUavfXcKaT8bGXxGyURsll1CCfhQTbSi AfYdC6aswznWaH2K/RGCndiqqA== -----END CERTIFICATE-----Generated at Wed May 13 11:17:30 2026 by rpki-client