$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft File: R2e2k72EYu6vqD2egDydKGtiHcg.mft (raw, json) Hash identifier: rieni3gEPjRYSXUiPdVoMuWm3PQ+vU0Wjf+oUNqXWDk= Subject key identifier: 7B:BB:46:9E:77:EC:10:C8:BE:0D:67:7C:37:6F:9C:F5:C1:7D:BD:25 Authority key identifier: 47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8 Certificate issuer: /CN=A91F9B6C/serialNumber=4767B693BD8462EEAFA83D9E803C9D286B621DC8 Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft Manifest number: CF Signing time: Sun 05 Apr 2026 06:10:56 +0000 Manifest this update: Sun 05 Apr 2026 06:10:56 +0000 Manifest next update: Sun 12 Apr 2026 06:10:56 +0000 Files and hashes: 1: R2e2k72EYu6vqD2egDydKGtiHcg.crl (hash: +vBE3S5yG4qbwVxa1jfcOnbs8/MToPxjFOSlqC4xBaU=) 2: 3D60B6FCFA5E11EFB84AF068C4F9AE02.roa (hash: NN7TdFNt1WRW/52kOM2Hp51nX3VWKqgOLsvUo4lFNA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.crl rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9B6C, serialNumber=4767B693BD8462EEAFA83D9E803C9D286B621DC8 Validity Not Before: Apr 5 06:10:56 2026 GMT Not After : Apr 12 06:10:56 2026 GMT Subject: CN=69d1fcf0-b150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:ba:e5:d6:a8:bc:75:c7:ee:fc:39:fd:d6:c6: 96:e8:3b:e9:7b:37:cd:52:ca:77:48:04:5d:31:07: 35:fa:e1:70:e9:76:03:bd:48:46:a4:c6:83:8a:f3: 31:89:c6:73:5d:b4:60:47:98:22:e6:fa:ce:01:d3: 3a:da:23:cd:9e:d0:05:12:5d:25:7d:eb:76:79:5a: 5f:82:52:17:e9:c5:73:c9:ee:4f:01:5f:9d:06:f2: df:da:d5:ec:80:1a:0c:66:2f:47:f1:30:c0:d7:0e: c9:f7:ec:21:bc:9f:1f:a6:73:23:64:45:93:f7:04: fd:c0:5b:c4:12:b2:ac:50:ea:0f:45:ff:14:03:0f: a0:d3:10:1b:83:9f:57:76:97:7b:26:f6:08:56:e1: e3:d3:34:27:79:24:73:33:48:16:b7:0a:35:e7:68: ec:77:39:02:ec:c7:ce:c6:91:dd:f5:09:df:9b:9c: 78:1c:f9:0e:70:da:89:63:f6:85:51:1b:d5:62:e4: 9f:57:cf:3d:0a:71:9a:f8:ae:bd:86:f4:e8:b9:a8: 6f:91:00:28:0e:2b:08:de:21:7d:b5:72:3e:be:1c: 06:bd:f8:7e:cc:0c:41:ff:33:12:0e:a0:f2:8a:83: b3:48:60:70:ce:fa:c7:93:ef:1c:4a:43:be:31:d1: 5f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:BB:46:9E:77:EC:10:C8:BE:0D:67:7C:37:6F:9C:F5:C1:7D:BD:25 X509v3 Authority Key Identifier: keyid:47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:c6:10:aa:03:0e:43:3e:a7:4d:c8:1f:d9:d8:b0:c5:0f:ed: 0d:a0:a4:9f:dc:7d:46:e4:b7:cd:30:b0:12:f0:5c:01:43:54: ae:31:85:45:7d:d8:4f:aa:37:1d:de:21:e5:9a:95:81:69:c5: 72:4f:70:0a:e2:07:31:ac:e4:ce:3d:5e:6d:a0:7a:7f:85:31: 00:71:ad:cb:db:80:c6:28:43:bc:c4:13:bc:04:be:37:96:25: 0f:89:63:51:e7:26:5a:47:c9:40:c2:41:67:11:86:bb:08:51: 49:8c:ef:fa:57:5c:9f:e9:e9:5a:a7:fb:ca:18:92:a1:16:8e: 9b:47:ae:e9:ab:82:72:ed:7a:f9:2c:85:8e:04:c8:88:27:22: d8:d7:5b:95:bb:08:9e:7a:61:32:52:94:84:d4:69:be:1d:39: a9:9e:5d:47:04:71:87:de:96:ab:2e:43:e4:3c:64:cd:54:68: 6f:31:04:d7:d9:1c:25:80:1e:b8:0a:41:21:3d:61:4b:92:83: cf:9e:95:1b:4b:15:fa:91:78:f5:1c:80:fb:77:08:49:c8:5f: ac:14:05:de:09:d0:d4:97:47:31:a8:36:d0:53:4c:64:d5:e8: 71:d6:3d:7f:f4:5d:74:97:ef:1d:18:07:9a:7b:98:63:02:f5: 51:f2:f3:10 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlCNkMxMTAvBgNVBAUTKDQ3NjdCNjkzQkQ4NDYyRUVBRkE4M0Q5RTgwM0M5RDI4 NkI2MjFEQzgwHhcNMjYwNDA1MDYxMDU2WhcNMjYwNDEyMDYxMDU2WjAYMRYwFAYD VQQDEw02OWQxZmNmMC1iMTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAirrl1qi8dcfu/Dn91saW6DvpezfNUsp3SARdMQc1+uFw6XYDvUhGpMaDivMx icZzXbRgR5gi5vrOAdM62iPNntAFEl0lfet2eVpfglIX6cVzye5PAV+dBvLf2tXs gBoMZi9H8TDA1w7J9+whvJ8fpnMjZEWT9wT9wFvEErKsUOoPRf8UAw+g0xAbg59X dpd7JvYIVuHj0zQneSRzM0gWtwo152jsdzkC7MfOxpHd9Qnfm5x4HPkOcNqJY/aF URvVYuSfV889CnGa+K69hvTouahvkQAoDisI3iF9tXI+vhwGvfh+zAxB/zMSDqDy ioOzSGBwzvrHk+8cSkO+MdFfhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHu7Rp53 7BDIvg1nfDdvnPXBfb0lMB8GA1UdIwQYMBaAFEdntpO9hGLur6g9noA8nShrYh3I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUI2Qy9EN0RCMEEwOEZB NUQxMUVGQUUzNzRENjhDNEY5QUUwMi9SMmUyazcyRVl1NnZxRDJlZ0R5ZEtHdGlI Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IyZTJrNzJFWXU2dnFEMmVnRHlkS0d0aUhjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUI2Qy9EN0RCMEEwOEZBNUQxMUVGQUUzNzRENjhDNEY5QUUwMi9SMmUyazcyRVl1 NnZxRDJlZ0R5ZEtHdGlIY2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG8YQqgMOQz6nTcgf2diwxQ/tDaCkn9x9RuS3zTCwEvBcAUNUrjGFRX3YT6o3 Hd4h5ZqVgWnFck9wCuIHMazkzj1ebaB6f4UxAHGty9uAxihDvMQTvAS+N5YlD4lj UecmWkfJQMJBZxGGuwhRSYzv+ldcn+npWqf7yhiSoRaOm0eu6auCcu16+SyFjgTI iCci2NdblbsInnphMlKUhNRpvh05qZ5dRwRxh96Wqy5D5DxkzVRobzEE19kcJYAe uApBIT1hS5KDz56VG0sV+pF49RyA+3cISchfrBQF3gnQ1JdHMag20FNMZNXocdY9 f/RddJfvHRgHmnuYYwL1UfLzEA== -----END CERTIFICATE-----Generated at Sun Apr 5 20:58:04 2026 by rpki-client