$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: uQUNk+aaxwKhfeBcIpCNdDeKlfy+1HYI0SPtYf5MSQo= Subject key identifier: 3B:27:E8:3C:C2:A8:F5:D3:CF:DD:47:70:12:D8:F5:13:D1:16:B1:C0 Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 3552 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 3547 Signing time: Wed 20 May 2026 14:58:52 +0000 Manifest this update: Wed 20 May 2026 14:58:51 +0000 Manifest next update: Wed 27 May 2026 14:58:51 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: oye4lO+q+fZeEIz81R7YGWucoH0KmfYkxkhSUzLV70A=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: WIHf/g57A92kBt+M1v/6HUGwLpZi39D8KAuOlAkvShg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 14:58:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13650 (0x3552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC, serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: May 20 14:58:51 2026 GMT Not After : May 27 14:58:51 2026 GMT Subject: CN=6a0dcc2c-fa08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c1:29:ed:5e:33:71:f9:a5:de:1c:8b:a3:d7: ac:fa:25:1f:bf:83:95:87:49:5b:69:71:7b:77:d7: 7e:0c:32:8f:25:76:e3:4c:9b:6a:08:25:f0:8d:11: a0:56:46:ee:0a:b3:2d:3c:fb:7d:b8:c7:db:39:d1: a6:ee:66:f8:12:d1:a0:3d:88:c1:f6:d0:30:49:d8: 78:9e:3c:51:6c:ef:27:cc:14:86:62:e4:4e:49:03: f7:78:6c:b0:c8:b0:56:10:32:3d:6e:43:3c:13:54: 87:b6:9b:4f:82:cb:62:cf:b5:b6:e0:91:f2:f7:01: 88:a4:14:c0:dd:85:dc:6e:0b:67:23:ce:9a:2b:d2: de:ee:4c:9e:db:3a:57:1b:13:16:1d:58:93:5b:5e: 3a:44:e8:ba:fd:9f:1c:07:f9:79:01:a1:7c:75:8a: 87:35:7e:0a:1b:5e:ee:15:26:1a:27:c3:88:c5:66: 31:aa:57:b7:d4:d0:bb:85:91:6c:ad:ca:4a:44:6f: f0:9c:a7:17:34:da:da:f0:99:77:1f:86:ba:48:94: 2d:95:b1:cf:92:fa:2b:5d:74:e7:10:95:d4:d6:20: 62:30:9f:1d:f4:e1:6b:dd:bd:6b:a0:59:a4:e9:51: 69:54:8b:50:42:00:e7:c0:2e:e1:bc:3e:54:8a:d2: 35:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:27:E8:3C:C2:A8:F5:D3:CF:DD:47:70:12:D8:F5:13:D1:16:B1:C0 X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:16:ee:70:f2:0c:28:62:90:58:ad:f1:06:e8:18:67:21:25: 1c:2c:dc:c5:a8:de:2e:8e:22:b6:d5:ba:b8:b0:2f:76:d6:9c: ad:1f:eb:9c:47:ec:7f:b6:07:bc:be:b8:19:84:1c:3a:0b:89: 72:af:fe:23:16:59:46:6a:f6:1e:8a:57:08:b0:54:9f:6a:24: 48:9b:fd:51:b0:46:7d:00:68:01:49:1a:17:5d:53:43:b5:d2: 43:dc:e1:a4:7b:3b:f0:19:8b:3d:16:f6:6e:d3:f2:1a:a9:8d: d9:4d:0f:e6:21:62:cb:ee:9b:06:e5:f9:8b:47:3c:0e:29:1a: d0:e7:39:96:c4:75:3f:ef:c7:76:4e:7c:a4:38:f8:43:f3:3b: 43:83:50:ef:18:36:d6:cd:67:cc:b9:17:63:6b:62:ac:0f:cb: 33:7c:a0:11:4c:64:93:b5:e0:e0:a3:14:68:fe:fa:46:87:f7: c4:69:c2:5d:f3:a6:ba:86:59:89:c6:84:86:d7:95:82:77:8c: 60:86:93:9d:5d:71:be:97:57:c2:dd:46:71:0b:ad:82:ba:cb: 4b:25:21:34:73:6c:e9:59:03:03:ab:5a:80:15:6a:b1:a5:e0: 89:1c:26:2c:dd:3b:41:a8:fe:ed:3e:da:cd:08:85:79:38:4a: c2:b2:8e:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjYwNTIwMTQ1ODUxWhcNMjYwNTI3MTQ1ODUxWjAYMRYwFAYD VQQDEw02YTBkY2MyYy1mYTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8Ep7V4zcfml3hyLo9es+iUfv4OVh0lbaXF7d9d+DDKPJXbjTJtqCCXwjRGg VkbuCrMtPPt9uMfbOdGm7mb4EtGgPYjB9tAwSdh4njxRbO8nzBSGYuROSQP3eGyw yLBWEDI9bkM8E1SHtptPgstiz7W24JHy9wGIpBTA3YXcbgtnI86aK9Le7kye2zpX GxMWHViTW146ROi6/Z8cB/l5AaF8dYqHNX4KG17uFSYaJ8OIxWYxqle31NC7hZFs rcpKRG/wnKcXNNra8Jl3H4a6SJQtlbHPkvorXXTnEJXU1iBiMJ8d9OFr3b1roFmk 6VFpVItQQgDnwC7hvD5UitI10wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDsn6DzC qPXTz91HcBLY9RPRFrHAMB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaBbucPIMKGKQWK3xBugYZyElHCzcxajeLo4ittW6uLAvdtacrR/rnEfsf7YH vL64GYQcOguJcq/+IxZZRmr2HopXCLBUn2okSJv9UbBGfQBoAUkaF11TQ7XSQ9zh pHs78BmLPRb2btPyGqmN2U0P5iFiy+6bBuX5i0c8Dika0Oc5lsR1P+/Hdk58pDj4 Q/M7Q4NQ7xg21s1nzLkXY2tirA/LM3ygEUxkk7Xg4KMUaP76Rof3xGnCXfOmuoZZ icaEhteVgneMYIaTnV1xvpdXwt1GcQutgrrLSyUhNHNs6VkDA6tagBVqsaXgiRwm LN07Qaj+7T7azQiFeThKwrKOgg== -----END CERTIFICATE-----Generated at Thu May 21 09:37:27 2026 by rpki-client