$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: sZkl90HrRg1noCcqinkwqW+5RiIj3ry/n0l+m5II9MU= Subject key identifier: B1:89:01:EF:CB:AE:5B:10:3F:6B:07:FE:9E:6E:AB:A5:84:BB:F2:78 Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 029A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 028A Signing time: Thu 21 May 2026 01:52:17 +0000 Manifest this update: Thu 21 May 2026 01:52:17 +0000 Manifest next update: Thu 28 May 2026 01:52:17 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: P+zFvLUhtb0B+CfuT/qL+HLJpXJrMCkoh9jWMlPrP1k=) 2: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: MpcjQVs1Jc1cjgEQDQ1xjrNe8yr/lbGI3mI0RqgvaQ8=) 3: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: /sj3JZ3p1665YJRvSUXz4i11ey7ZoPynVcwKSHS8SnQ=) 4: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: GVyHO9aPtU+XPsp7j3IVen2mhZWFCWup91n2kBUjWV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:52:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 666 (0x29a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: May 21 01:52:17 2026 GMT Not After : May 28 01:52:17 2026 GMT Subject: CN=6a0e6551-f081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:41:00:00:6d:78:4c:2a:0e:cd:b1:6d:28:1d: b8:06:56:d3:4c:a5:73:6b:c4:56:3b:0a:80:29:4b: f3:3f:46:a1:cd:19:e8:45:73:f1:a4:fd:0e:e9:97: 92:ff:44:cd:c8:ad:95:6d:1e:99:4a:97:5c:37:cb: da:23:5a:24:bb:c0:73:21:ab:d8:3d:5d:c3:eb:4d: 28:ba:68:55:79:0c:ca:3e:d4:f3:31:91:40:3c:c5: 0a:02:4a:88:40:a2:32:c8:56:8b:d6:29:e5:4a:e5: dc:71:9b:2c:6d:24:b8:ea:fc:61:31:b2:d4:bc:60: 48:e4:3e:98:bf:0c:af:c1:e7:3f:bf:80:ed:bc:d5: 13:7c:6c:30:0d:f2:4b:44:53:e3:2e:62:47:41:be: 68:1e:6d:01:32:bb:49:0b:ea:4e:e8:b0:bb:26:86: 97:08:96:fa:7c:14:7c:de:25:c8:fe:43:a6:e5:b7: a8:c5:9d:28:16:96:69:6b:9c:6c:23:44:d3:8f:59: de:6b:28:2a:88:c1:3e:09:34:9b:3f:04:1b:4f:5f: 02:3a:ac:33:20:06:28:20:a4:75:bd:46:06:5f:21: 3d:ba:1a:d8:00:13:d3:9c:da:80:b1:b5:39:83:d9: 48:64:55:6a:48:9a:61:96:e8:0a:27:18:90:19:ea: e2:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:89:01:EF:CB:AE:5B:10:3F:6B:07:FE:9E:6E:AB:A5:84:BB:F2:78 X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:7d:20:29:85:6d:22:65:f0:26:ba:d1:b0:94:2f:93:84:68: ef:6c:21:2f:67:b4:6e:a5:a2:9e:17:60:12:a8:e1:da:87:b4: ac:6b:d3:ae:25:a2:06:26:dc:c9:c3:c7:e1:7b:b5:19:60:b9: 67:ba:d5:8f:25:ef:fb:b2:e2:ff:a7:08:e4:f5:de:ad:2e:2a: 52:d3:2e:c6:a1:25:2c:cb:36:f9:a1:94:25:78:93:d1:6d:30: 4b:a1:f5:02:b9:8e:b4:d7:0f:44:9d:68:89:92:c8:8a:db:ba: 4f:2b:a6:45:ab:63:54:a6:82:a1:4f:e6:4c:6c:0e:bc:e4:ef: 11:0d:de:37:3d:e5:1a:2d:53:d1:72:25:a8:c8:a4:b0:e9:d0: 6f:a5:63:99:db:04:1c:70:4f:56:2b:61:a7:8b:3f:45:b0:bf: 75:13:09:86:45:01:f9:7d:45:3e:84:4a:e9:9e:d2:01:b4:d1: eb:dc:9f:ac:1c:d0:91:a6:44:00:d8:a4:6e:94:81:7a:ee:74: fe:4e:fd:df:75:e7:b7:79:ef:ea:3d:4f:65:61:03:03:28:dc: 1b:7e:19:55:7d:80:b1:7a:c0:4b:0f:15:09:91:70:9d:c4:b2: b6:3b:47:f3:4b:75:ad:e9:82:0a:fa:4d:be:7a:22:ea:cb:d2: 28:4b:6c:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjYwNTIxMDE1MjE3WhcNMjYwNTI4MDE1MjE3WjAYMRYwFAYD VQQDEw02YTBlNjU1MS1mMDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkEAAG14TCoOzbFtKB24BlbTTKVza8RWOwqAKUvzP0ahzRnoRXPxpP0O6ZeS /0TNyK2VbR6ZSpdcN8vaI1oku8BzIavYPV3D600oumhVeQzKPtTzMZFAPMUKAkqI QKIyyFaL1inlSuXccZssbSS46vxhMbLUvGBI5D6Yvwyvwec/v4DtvNUTfGwwDfJL RFPjLmJHQb5oHm0BMrtJC+pO6LC7JoaXCJb6fBR83iXI/kOm5beoxZ0oFpZpa5xs I0TTj1neaygqiME+CTSbPwQbT18COqwzIAYoIKR1vUYGXyE9uhrYABPTnNqAsbU5 g9lIZFVqSJphlugKJxiQGerilQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLGJAe/L rlsQP2sH/p5uq6WEu/J4MB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZH0gKYVtImXwJrrRsJQvk4Ro72whL2e0bqWinhdgEqjh2oe0rGvTriWiBibc ycPH4Xu1GWC5Z7rVjyXv+7Li/6cI5PXerS4qUtMuxqElLMs2+aGUJXiT0W0wS6H1 ArmOtNcPRJ1oiZLIitu6TyumRatjVKaCoU/mTGwOvOTvEQ3eNz3lGi1T0XIlqMik sOnQb6VjmdsEHHBPVithp4s/RbC/dRMJhkUB+X1FPoRK6Z7SAbTR69yfrBzQkaZE ANikbpSBeu50/k7933Xnt3nv6j1PZWEDAyjcG34ZVX2AsXrASw8VCZFwncSytjtH 80t1remCCvpNvnoi6svSKEtsbg== -----END CERTIFICATE-----Generated at Thu May 21 09:38:28 2026 by rpki-client