$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: ZcvkzTNEh3a+8Q/bHC2nvD1Guz9TELwBJtCFmyJR/zY= Subject key identifier: 5C:0E:44:1E:22:8C:19:22:04:6E:9F:DF:4D:DB:62:E7:89:8F:D4:AC Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 06B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 06B3 Signing time: Sat 04 Apr 2026 22:10:38 +0000 Manifest this update: Sat 04 Apr 2026 22:10:38 +0000 Manifest next update: Sat 11 Apr 2026 22:10:38 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: 9HWBZVZIlF1XDclhyQVz8E6P+kwXOwODtvzCymGfUeU=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: kb9zEE+gQtKtKJqnoxGKbZ4ZB03+JVAlcBPaLyfwBcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1721 (0x6b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Apr 4 22:10:38 2026 GMT Not After : Apr 11 22:10:38 2026 GMT Subject: CN=69d18c5e-a327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5b:cd:98:36:af:45:75:c6:fa:f9:63:f5:30: 0f:a5:0a:35:9c:df:02:8d:a8:e4:ae:48:0a:3c:d3: 6f:c5:59:5b:79:d9:19:1c:0c:4a:e8:7b:59:3a:ca: 2a:e3:df:1e:3d:59:a0:02:cc:6e:da:26:7f:fb:9d: 09:d9:b9:82:8c:87:2e:cb:5d:7c:15:e8:03:b5:1f: 16:31:3f:7a:04:a7:6b:a6:c9:e1:5e:af:fa:2b:ac: 87:50:18:c4:76:f1:f7:67:0d:42:b0:f5:8c:45:14: d0:14:9f:85:e2:5a:03:f2:06:c0:5a:39:a6:a7:83: d7:25:5d:94:3d:6b:06:68:8a:a7:e8:4d:1a:20:45: 98:29:81:74:80:75:bb:ff:9a:70:f9:1d:79:4d:cd: 16:52:8a:45:82:9d:55:57:c3:1b:38:92:7b:3d:ac: c2:4f:2d:46:60:c1:5c:20:6b:e1:97:24:50:11:66: 06:c4:c4:08:b2:be:65:ab:ce:0b:42:01:ee:49:7d: 71:f2:c8:26:48:7f:c0:ee:ac:ec:6a:d4:73:37:cc: 7a:83:7c:6f:4f:b2:72:2e:e3:ba:52:9f:fd:02:aa: dd:22:d1:f1:20:7f:bb:18:c2:fe:88:2b:81:16:37: 7f:fd:7c:60:fa:89:c9:da:68:22:2a:5a:da:b9:31: 4a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0E:44:1E:22:8C:19:22:04:6E:9F:DF:4D:DB:62:E7:89:8F:D4:AC X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:00:6a:42:a5:ac:29:dc:64:17:cf:b1:a7:af:3d:ff:67:f0: 52:65:e3:0f:fb:95:f5:1f:4a:1a:ac:ad:83:69:aa:30:7a:c0: fc:7d:67:81:ce:20:52:28:ff:ba:e7:9e:b4:99:30:17:42:5a: b6:e7:37:fa:68:c5:53:0b:95:0d:99:ce:08:08:70:e8:d3:ea: fc:3b:4e:2e:40:66:93:f2:05:01:aa:30:18:8c:c0:b2:db:9e: 36:84:b1:0a:c1:94:8a:5e:7d:e2:82:ba:8f:3c:01:a2:78:e2: be:cb:5b:35:7f:6c:ce:63:90:16:96:25:a5:18:4d:e6:14:9c: 4c:68:17:ae:68:8b:13:b4:2f:7c:b2:08:1b:5a:15:55:32:96: c9:da:01:6e:12:cf:6e:38:02:73:94:74:f8:ed:9a:ae:86:4c: 96:92:19:31:8f:19:f1:b4:18:e8:dc:61:25:28:36:40:e4:97: 0e:a7:de:7d:19:4d:9f:37:46:ce:88:16:b0:08:2e:91:07:8c: a4:72:91:ec:0d:0f:93:d8:d2:4f:08:e5:36:d4:1f:ad:92:03: 5e:1d:44:01:09:8d:f3:ba:39:86:6a:69:1b:15:16:ab:ea:ec: 71:99:91:e7:be:72:88:10:1d:4f:92:af:92:97:8f:a5:24:d4: 3f:5c:2e:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjYwNDA0MjIxMDM4WhcNMjYwNDExMjIxMDM4WjAYMRYwFAYD VQQDEw02OWQxOGM1ZS1hMzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VvNmDavRXXG+vlj9TAPpQo1nN8CjajkrkgKPNNvxVlbedkZHAxK6HtZOsoq 498ePVmgAsxu2iZ/+50J2bmCjIcuy118FegDtR8WMT96BKdrpsnhXq/6K6yHUBjE dvH3Zw1CsPWMRRTQFJ+F4loD8gbAWjmmp4PXJV2UPWsGaIqn6E0aIEWYKYF0gHW7 /5pw+R15Tc0WUopFgp1VV8MbOJJ7PazCTy1GYMFcIGvhlyRQEWYGxMQIsr5lq84L QgHuSX1x8sgmSH/A7qzsatRzN8x6g3xvT7JyLuO6Up/9AqrdItHxIH+7GML+iCuB Fjd//Xxg+onJ2mgiKlrauTFK7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFwORB4i jBkiBG6f303bYueJj9SsMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIgBqQqWsKdxkF8+xp689/2fwUmXjD/uV9R9KGqytg2mqMHrA/H1ngc4gUij/ uueetJkwF0Jatuc3+mjFUwuVDZnOCAhw6NPq/DtOLkBmk/IFAaowGIzAstueNoSx CsGUil594oK6jzwBonjivstbNX9szmOQFpYlpRhN5hScTGgXrmiLE7QvfLIIG1oV VTKWydoBbhLPbjgCc5R0+O2aroZMlpIZMY8Z8bQY6NxhJSg2QOSXDqfefRlNnzdG zogWsAgukQeMpHKR7A0Pk9jSTwjlNtQfrZIDXh1EAQmN87o5hmppGxUWq+rscZmR 575yiBAdT5KvkpePpSTUP1wugQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:42:42 2026 by rpki-client