$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft File: 2iwTK47FBxr425BJG63bwPCntEU.mft (raw, json) Hash identifier: 0wsXAvCO1sE5cZEdeMAHrjfvMLadrauMlObcV79nB1o= Subject key identifier: 00:2D:9C:FD:97:E8:8B:DB:B1:C1:5F:52:5D:9D:05:7B:6D:84:03:4A Authority key identifier: DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 Certificate issuer: /CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Certificate serial: 0331 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft Manifest number: 0331 Signing time: Tue 21 Apr 2026 01:00:27 +0000 Manifest this update: Tue 21 Apr 2026 01:00:27 +0000 Manifest next update: Tue 28 Apr 2026 01:00:27 +0000 Files and hashes: 1: 2iwTK47FBxr425BJG63bwPCntEU.crl (hash: eOMgc11HNX8eHRW1AMA8nCgIfwsSP/Ijxl0887nXC7k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 01:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 817 (0x331) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Validity Not Before: Apr 21 01:00:27 2026 GMT Not After : Apr 28 01:00:27 2026 GMT Subject: CN=69e6cc2b-ed75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:33:51:0e:a8:ea:68:bb:36:1a:b8:2c:f5:52: f2:a3:46:56:6c:e2:c1:e3:f1:17:46:87:71:07:02: 7d:77:65:a7:5c:69:73:20:6a:27:28:ea:a2:14:a4: 49:f9:a9:d8:ce:07:43:8f:f8:6c:a9:1e:79:5b:fa: 41:cc:3f:18:f8:ba:c6:b8:d7:9d:67:44:b7:4a:49: e1:5b:a9:07:11:7e:9c:c1:22:38:40:33:61:91:00: 13:bf:8f:e8:40:ae:c0:3e:c4:37:3e:d7:f5:f6:0f: c2:d0:a2:d9:38:17:a5:00:d5:9a:8b:86:4a:b4:ba: fe:0b:fa:d7:d4:a7:b6:96:cf:ff:fe:b1:cf:03:ef: 00:52:71:31:47:51:19:f2:dd:a0:d8:9c:28:9b:ee: 8a:71:4d:b5:ed:96:d2:41:9a:74:9d:68:e2:fb:71: 7b:ad:d4:70:e1:d4:85:f6:8d:89:82:c2:9b:55:ab: ac:52:7b:71:b3:61:aa:99:54:31:fe:60:a6:b3:ad: 99:a7:0f:e4:6f:93:60:9d:60:4b:83:21:07:13:0d: 59:8e:f3:d0:9c:40:2a:1a:8d:f1:74:ee:ba:2a:92: 1a:b8:44:1a:fa:cb:5d:30:cb:3c:37:1f:90:e3:39: aa:59:cc:42:0c:b8:94:f2:fa:48:99:0f:b5:89:e5: cb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:2D:9C:FD:97:E8:8B:DB:B1:C1:5F:52:5D:9D:05:7B:6D:84:03:4A X509v3 Authority Key Identifier: keyid:DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:36:82:1a:26:71:74:17:d1:12:0b:94:7d:ad:6f:d1:2c:2e: 93:75:d5:b2:d6:2e:eb:96:4f:30:3b:9d:99:ec:61:fe:7b:80: be:64:7f:65:1f:cf:51:4d:16:5d:ac:e5:67:b9:f0:60:9e:9d: 2a:0e:fa:94:b7:f6:09:b0:3d:2e:b0:28:4e:8e:d4:bf:52:67: 4b:66:35:89:91:ad:d1:42:c3:d5:ed:b2:94:eb:be:1a:98:3f: 5f:92:6e:14:9b:1e:f2:b1:50:35:ac:50:d1:9c:be:fc:5c:c3: 92:df:12:06:99:6e:3f:36:8f:3f:4c:d3:1f:59:41:ba:86:fc: 6b:f7:d7:b0:d1:b7:4c:51:e6:42:6d:4c:31:98:84:c2:50:2d: ac:71:ee:a7:05:f2:9f:b6:5f:01:f5:df:f3:1e:7e:66:93:07: b3:c1:1d:82:0a:65:51:ac:d9:83:04:5b:f4:9f:22:c4:eb:43: a4:56:38:d9:0d:0f:74:f1:fa:c2:fb:b5:08:cd:fa:6a:f5:2c: f9:c3:03:cb:47:4f:c6:a3:72:2e:04:89:16:96:3c:79:49:ab: 78:bf:53:f1:9f:13:d6:cc:f0:d6:cd:e1:46:3a:c1:4b:a9:54: 9b:6e:de:04:e8:c7:8b:85:f3:f3:0d:01:19:c0:ed:81:9c:6b: 19:d4:57:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERBMkMxMzJCOEVDNTA3MUFGOERCOTA0OTFCQUREQkMw RjBBN0I0NDUwHhcNMjYwNDIxMDEwMDI3WhcNMjYwNDI4MDEwMDI3WjAYMRYwFAYD VQQDEw02OWU2Y2MyYi1lZDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDNRDqjqaLs2Grgs9VLyo0ZWbOLB4/EXRodxBwJ9d2WnXGlzIGonKOqiFKRJ +anYzgdDj/hsqR55W/pBzD8Y+LrGuNedZ0S3SknhW6kHEX6cwSI4QDNhkQATv4/o QK7APsQ3Ptf19g/C0KLZOBelANWai4ZKtLr+C/rX1Ke2ls///rHPA+8AUnExR1EZ 8t2g2Jwom+6KcU217ZbSQZp0nWji+3F7rdRw4dSF9o2JgsKbVausUntxs2GqmVQx /mCms62Zpw/kb5NgnWBLgyEHEw1ZjvPQnEAqGo3xdO66KpIauEQa+stdMMs8Nx+Q 4zmqWcxCDLiU8vpImQ+1ieXLOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAAtnP2X 6IvbscFfUl2dBXtthANKMB8GA1UdIwQYMBaAFNosEyuOxQca+NuQSRut28Dwp7RF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85NjY1OTk3RTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4cjQyNUJKRzYzYndQQ250 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzJpd1RLNDdGQnhyNDI1QkpHNjNid1BDbnRFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85NjY1OTk3RTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4 cjQyNUJKRzYzYndQQ250RVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASzaCGiZxdBfREguUfa1v0Swuk3XVstYu65ZPMDudmexh/nuAvmR/ZR/PUU0W XazlZ7nwYJ6dKg76lLf2CbA9LrAoTo7Uv1JnS2Y1iZGt0ULD1e2ylOu+Gpg/X5Ju FJse8rFQNaxQ0Zy+/FzDkt8SBpluPzaPP0zTH1lBuob8a/fXsNG3TFHmQm1MMZiE wlAtrHHupwXyn7ZfAfXf8x5+ZpMHs8EdggplUazZgwRb9J8ixOtDpFY42Q0PdPH6 wvu1CM36avUs+cMDy0dPxqNyLgSJFpY8eUmreL9T8Z8T1szw1s3hRjrBS6lUm27e BOjHi4Xz8w0BGcDtgZxrGdRX+g== -----END CERTIFICATE-----Generated at Tue Apr 21 22:54:28 2026 by rpki-client