$ rpki-client -vvf rpki.apnic.net/member_repository/A912B6D9/7743D51E1E5F11F0BA389A4EC4F9AE02/q2LZY5CMwOOoAZmkPTEqNKBIgfA.mft File: q2LZY5CMwOOoAZmkPTEqNKBIgfA.mft (raw, json) Hash identifier: 0DCMRMH/2PLqgKAQ8NHUb8Tk/gCSKDaRgyhEKsQU6x8= Subject key identifier: 70:67:F8:68:C9:6F:81:A1:96:36:13:29:93:09:84:7D:51:EC:9E:C8 Authority key identifier: AB:62:D9:63:90:8C:C0:E3:A8:01:99:A4:3D:31:2A:34:A0:48:81:F0 Certificate issuer: /CN=A912B6D9/serialNumber=AB62D963908CC0E3A80199A43D312A34A04881F0 Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2LZY5CMwOOoAZmkPTEqNKBIgfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B6D9/7743D51E1E5F11F0BA389A4EC4F9AE02/q2LZY5CMwOOoAZmkPTEqNKBIgfA.mft Manifest number: CD Signing time: Thu 21 May 2026 06:53:10 +0000 Manifest this update: Thu 21 May 2026 06:53:10 +0000 Manifest next update: Thu 28 May 2026 06:53:10 +0000 Files and hashes: 1: q2LZY5CMwOOoAZmkPTEqNKBIgfA.crl (hash: OOAnCusR1JDYslyoCYeDgvs5AScBAS3xk6/b3QYUjP0=) 2: 0E4F46F2532E11F0B87D127CC4F9AE02.roa (hash: N+2dubiMuqB/4gWD0ppVA6QZJO1Q/1zqaBt+voV0zVg=) 3: 330409804CCE11F08ADD6485C4F9AE02.roa (hash: uj9BtH+Gx30PB+Rd8YZACkYl9VczoWS9fHCOeF8FuCQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B6D9/7743D51E1E5F11F0BA389A4EC4F9AE02/q2LZY5CMwOOoAZmkPTEqNKBIgfA.crl rsync://rpki.apnic.net/member_repository/A912B6D9/7743D51E1E5F11F0BA389A4EC4F9AE02/q2LZY5CMwOOoAZmkPTEqNKBIgfA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2LZY5CMwOOoAZmkPTEqNKBIgfA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 06:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B6D9, serialNumber=AB62D963908CC0E3A80199A43D312A34A04881F0 Validity Not Before: May 21 06:53:10 2026 GMT Not After : May 28 06:53:10 2026 GMT Subject: CN=6a0eabd6-09df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:db:86:23:85:be:71:4b:01:5e:e4:e8:d7:82: be:2d:b9:a1:e1:8b:5e:56:e6:7e:54:ad:42:68:1a: 4f:ba:16:88:d4:5b:98:6f:44:f2:91:25:6c:08:f1: 0d:6d:cc:44:4d:66:38:c4:26:0b:bd:06:f3:69:b9: fc:39:2b:44:2e:11:01:76:99:15:e4:88:00:21:05: d1:b0:10:9e:58:62:fb:da:cb:e8:fa:4b:d0:9d:73: c6:49:16:95:44:80:64:be:aa:e9:16:16:33:9a:9b: 57:e4:cc:f9:0c:0e:d0:33:98:bf:4f:18:6c:5d:b6: b1:f3:86:3a:5a:eb:86:37:d1:aa:00:19:ec:e5:70: b2:90:6a:34:5b:be:0f:0c:7f:12:92:95:43:65:59: 40:c0:f2:06:44:3e:89:9b:1f:db:fc:f4:e7:81:49: 83:f9:fc:87:c4:75:b5:ec:4b:07:98:17:df:cc:14: 01:c5:51:72:7b:5d:d8:27:b0:e0:85:5f:ef:b3:c6: 05:f7:6b:96:bc:99:c0:02:aa:76:fd:11:1c:71:6f: 68:ae:a9:ef:c6:f6:b7:fc:78:74:3f:dc:9d:8b:95: 39:62:02:9f:77:05:3d:2c:f9:0a:99:37:5e:5a:fe: 23:20:01:03:8e:a9:e1:c5:9e:4c:60:79:03:61:d7: 90:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:67:F8:68:C9:6F:81:A1:96:36:13:29:93:09:84:7D:51:EC:9E:C8 X509v3 Authority Key Identifier: keyid:AB:62:D9:63:90:8C:C0:E3:A8:01:99:A4:3D:31:2A:34:A0:48:81:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B6D9/7743D51E1E5F11F0BA389A4EC4F9AE02/q2LZY5CMwOOoAZmkPTEqNKBIgfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2LZY5CMwOOoAZmkPTEqNKBIgfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B6D9/7743D51E1E5F11F0BA389A4EC4F9AE02/q2LZY5CMwOOoAZmkPTEqNKBIgfA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:58:46:a3:30:08:70:56:d8:63:52:ac:ac:af:70:45:72:d1: a9:47:d6:10:b0:50:20:cf:51:cc:8f:ab:80:a4:86:f5:c8:75: c8:14:c2:d2:26:0d:6e:8e:fe:fa:39:ce:45:aa:96:a3:9c:22: 4a:3f:73:e7:71:d6:66:22:f8:d5:78:72:39:58:2a:fc:70:e5: 1f:74:ca:8c:11:9f:eb:70:be:da:2b:84:3b:29:e9:6b:ea:8f: 17:3e:ed:23:bf:33:cd:da:eb:cb:4f:5d:26:12:54:26:bc:73: 62:06:f2:26:02:02:36:de:d6:a9:fa:00:4e:d6:58:9d:8c:1e: 76:2a:66:47:d6:7d:33:b1:d3:bc:c1:1c:ee:6d:9a:0f:be:d6: db:ba:89:16:29:2a:b9:2d:e0:3c:78:44:18:b4:3f:a6:d0:35: ef:70:14:2f:b8:4f:d9:ac:6b:c7:b9:fc:8f:c5:32:29:39:22: 2a:12:5d:ac:50:01:e8:43:bc:15:24:44:cd:69:45:a2:18:66: d4:d4:55:29:43:5f:18:94:ea:b9:7a:fe:b2:e4:5b:92:6a:e8: b8:cb:b3:f9:74:02:fe:80:d8:d1:00:86:f1:02:eb:e0:57:5a: 5b:25:4d:35:fe:de:e8:1d:3a:99:46:df:8c:3c:55:ea:2a:d0: 25:a7:cf:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI2RDkxMTAvBgNVBAUTKEFCNjJEOTYzOTA4Q0MwRTNBODAxOTlBNDNEMzEyQTM0 QTA0ODgxRjAwHhcNMjYwNTIxMDY1MzEwWhcNMjYwNTI4MDY1MzEwWjAYMRYwFAYD VQQDEw02YTBlYWJkNi0wOWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA49uGI4W+cUsBXuTo14K+Lbmh4YteVuZ+VK1CaBpPuhaI1FuYb0TykSVsCPEN bcxETWY4xCYLvQbzabn8OStELhEBdpkV5IgAIQXRsBCeWGL72svo+kvQnXPGSRaV RIBkvqrpFhYzmptX5Mz5DA7QM5i/TxhsXbax84Y6WuuGN9GqABns5XCykGo0W74P DH8SkpVDZVlAwPIGRD6Jmx/b/PTngUmD+fyHxHW17EsHmBffzBQBxVFye13YJ7Dg hV/vs8YF92uWvJnAAqp2/REccW9orqnvxva3/Hh0P9ydi5U5YgKfdwU9LPkKmTde Wv4jIAEDjqnhxZ5MYHkDYdeQuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHBn+GjJ b4GhljYTKZMJhH1R7J7IMB8GA1UdIwQYMBaAFKti2WOQjMDjqAGZpD0xKjSgSIHw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjZEOS83NzQzRDUxRTFF NUYxMUYwQkEzODlBNEVDNEY5QUUwMi9xMkxaWTVDTXdPT29BWm1rUFRFcU5LQkln ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EyTFpZNUNNd09Pb0FabWtQVEVxTktCSWdmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjZEOS83NzQzRDUxRTFFNUYxMUYwQkEzODlBNEVDNEY5QUUwMi9xMkxaWTVDTXdP T29BWm1rUFRFcU5LQklnZkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGFhGozAIcFbYY1KsrK9wRXLRqUfWELBQIM9RzI+rgKSG9ch1yBTC0iYNbo7+ +jnORaqWo5wiSj9z53HWZiL41XhyOVgq/HDlH3TKjBGf63C+2iuEOynpa+qPFz7t I78zzdrry09dJhJUJrxzYgbyJgICNt7WqfoATtZYnYwedipmR9Z9M7HTvMEc7m2a D77W27qJFikquS3gPHhEGLQ/ptA173AUL7hP2axrx7n8j8UyKTkiKhJdrFAB6EO8 FSREzWlFohhm1NRVKUNfGJTquXr+suRbkmrouMuz+XQC/oDY0QCG8QLr4FdaWyVN Nf7e6B06mUbfjDxV6irQJafPdw== -----END CERTIFICATE-----Generated at Thu May 21 14:15:04 2026 by rpki-client