$ rpki-client -vvf rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft File: 2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft (raw, json) Hash identifier: bjvbdguprD6+TngqjjL467xQNIT2U7xjX8uT8oMjajQ= Subject key identifier: CD:07:C4:1E:0F:27:40:1B:60:49:C6:EA:69:EF:F4:32:6D:75:50:81 Authority key identifier: DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 Certificate issuer: /CN=A916D687/serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Certificate serial: 09EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft Manifest number: 09DF Signing time: Tue 28 Apr 2026 20:09:28 +0000 Manifest this update: Tue 28 Apr 2026 20:09:28 +0000 Manifest next update: Tue 05 May 2026 20:09:28 +0000 Files and hashes: 1: 2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl (hash: 3U3uCMyLpQShLlGSx5yzDFMLdZ7MK0WKMMEyN12pl/0=) 2: 33CDE41E5A4711EFA5ED8487C4F9AE02.roa (hash: fay/JELjYgS3QhNYNRW2VHw728nS5DEnngJONGdEkuQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 20:09:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2538 (0x9ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D687, serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Validity Not Before: Apr 28 20:09:28 2026 GMT Not After : May 5 20:09:28 2026 GMT Subject: CN=69f113f8-5ed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:22:8b:68:11:e0:db:27:8a:af:72:6e:d7:c0: e7:81:4c:04:fc:8b:dd:53:b9:51:b8:ca:cc:44:3c: ca:48:fc:db:dc:1f:dc:f6:1d:f7:53:74:a4:0c:6d: 25:6e:50:2a:49:71:53:19:bc:5d:f5:0e:31:be:fb: a7:f2:e9:10:0c:da:67:fa:ce:80:65:a4:93:45:ff: 76:ea:2b:bd:99:84:e1:80:ae:bf:df:07:b2:0a:44: b2:cf:0d:95:57:e5:d5:90:73:e8:c7:80:f6:1e:8e: 74:e3:bf:17:19:a8:34:c6:7d:5d:ed:3a:dc:e6:b4: 2a:aa:84:27:5e:7f:bc:33:1b:be:70:aa:54:81:8b: 5f:3a:bd:e9:30:b0:d6:7c:78:cd:1e:b9:91:de:c0: 8a:bc:fd:0a:79:3f:f4:ee:fe:2b:d2:25:c2:e4:f2: 79:99:db:33:1e:1b:58:b5:a3:2d:4c:a5:54:bd:80: 2b:bc:81:b2:be:f0:bf:65:b5:88:21:dd:1d:13:05: 0d:b6:41:5a:7a:83:86:a8:a4:70:21:47:94:3b:cb: 81:1c:92:94:92:be:8b:5b:a1:36:f2:48:16:a5:d8: 74:20:05:2c:42:e2:86:66:c6:f3:fa:6b:1b:1f:23: dd:74:7b:1b:7e:27:1c:59:b3:97:19:6b:15:b2:a2: fa:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:07:C4:1E:0F:27:40:1B:60:49:C6:EA:69:EF:F4:32:6D:75:50:81 X509v3 Authority Key Identifier: keyid:DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:09:bd:64:56:62:55:6a:30:26:c8:23:77:f8:0c:4a:a3:a8: 43:92:f2:de:9c:ec:e5:2a:8c:4f:4d:d3:7f:34:de:7e:dc:5c: 5b:60:83:4a:c3:c8:56:b4:ec:d5:d2:9d:66:69:6b:1c:69:8f: 09:66:f0:85:65:99:ef:43:d9:d7:be:fd:83:68:48:f0:9c:26: 6d:18:dd:5d:43:51:56:59:14:85:5f:e1:d8:81:0b:15:77:31: d6:5d:2a:d5:d8:9a:0f:d3:ee:1e:e2:8c:a1:7a:72:45:32:51: 9f:e4:76:f7:13:dd:95:30:5e:74:b8:a8:1d:69:75:0a:9b:25: 5f:ab:c4:0e:a6:26:32:09:68:11:2c:05:f9:eb:bf:4c:8b:1f: 73:d1:c6:f8:d2:c9:64:05:c7:87:4d:09:c3:7c:09:0c:1d:34: ee:f3:26:4a:5b:bf:8d:10:f0:88:40:6d:95:9e:c5:d5:28:5f: 4d:83:7c:9c:b5:09:d2:fc:c3:10:b8:e3:df:23:d9:e4:38:5c: 81:68:ab:2a:b5:b2:52:83:3f:23:6a:71:74:a8:7b:84:99:54: f7:00:fa:15:36:7e:de:7b:d1:e3:39:7e:a5:12:4d:02:38:13: b8:38:80:2b:ff:7c:ca:f7:41:7c:09:64:5b:2e:f3:45:34:f8: c3:e4:a4:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ2ODcxMTAvBgNVBAUTKERBQkIxNjlEOUU5RDc3RTY1NzZDMDE4MTAxMjUyQ0Iw QjQ4NTdGNjIwHhcNMjYwNDI4MjAwOTI4WhcNMjYwNTA1MjAwOTI4WjAYMRYwFAYD VQQDEw02OWYxMTNmOC01ZWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSKLaBHg2yeKr3Ju18DngUwE/IvdU7lRuMrMRDzKSPzb3B/c9h33U3SkDG0l blAqSXFTGbxd9Q4xvvun8ukQDNpn+s6AZaSTRf926iu9mYThgK6/3weyCkSyzw2V V+XVkHPox4D2Ho50478XGag0xn1d7Trc5rQqqoQnXn+8Mxu+cKpUgYtfOr3pMLDW fHjNHrmR3sCKvP0KeT/07v4r0iXC5PJ5mdszHhtYtaMtTKVUvYArvIGyvvC/ZbWI Id0dEwUNtkFaeoOGqKRwIUeUO8uBHJKUkr6LW6E28kgWpdh0IAUsQuKGZsbz+msb HyPddHsbficcWbOXGWsVsqL6tQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM0HxB4P J0AbYEnG6mnv9DJtdVCBMB8GA1UdIwQYMBaAFNq7Fp2enXfmV2wBgQElLLC0hX9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDY4Ny83NkI0M0I2NDlG NDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2ZGQtWlhiQUdCQVNVc3NMU0Zm MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyc1duWjZkZC1aWGJBR0JBU1Vzc0xTRmYySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDY4Ny83NkI0M0I2NDlGNDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2ZGQt WlhiQUdCQVNVc3NMU0ZmMkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjAm9ZFZiVWowJsgjd/gMSqOoQ5Ly3pzs5SqMT03TfzTeftxcW2CDSsPIVrTs 1dKdZmlrHGmPCWbwhWWZ70PZ1779g2hI8JwmbRjdXUNRVlkUhV/h2IELFXcx1l0q 1diaD9PuHuKMoXpyRTJRn+R29xPdlTBedLioHWl1CpslX6vEDqYmMgloESwF+eu/ TIsfc9HG+NLJZAXHh00Jw3wJDB007vMmSlu/jRDwiEBtlZ7F1ShfTYN8nLUJ0vzD ELjj3yPZ5DhcgWirKrWyUoM/I2pxdKh7hJlU9wD6FTZ+3nvR4zl+pRJNAjgTuDiA K/98yvdBfAlkWy7zRTT4w+Skxg== -----END CERTIFICATE-----Generated at Wed Apr 29 13:42:11 2026 by rpki-client