$ rpki-client -vvf rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft File: 2RBlAbU10PfK1XyOenR8oGnQTVk.mft (raw, json) Hash identifier: azjkt+EwBBxPfBA9Ws3l6zlwmxtoglaF78p5vLuWQkY= Subject key identifier: DE:1E:AE:7F:D3:F4:1E:EB:AD:62:A3:14:A5:B1:7D:2C:B7:39:43:AC Authority key identifier: D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 Certificate issuer: /CN=A916FACB/serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Certificate serial: 0476 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft Manifest number: 046E Signing time: Thu 21 May 2026 00:12:07 +0000 Manifest this update: Thu 21 May 2026 00:12:07 +0000 Manifest next update: Thu 28 May 2026 00:12:07 +0000 Files and hashes: 1: 2RBlAbU10PfK1XyOenR8oGnQTVk.crl (hash: 1cVm6Uc5gEwVg/RABpja0EUO/FSB0cWYcYw6UrJRQlY=) 2: 97D35382924311EC927C972FC4F9AE02.roa (hash: aAWOfNb/dnXkGDMyjT0RYtdEn0OfU/UmCUamSuOloZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:12:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1142 (0x476) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FACB, serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Validity Not Before: May 21 00:12:07 2026 GMT Not After : May 28 00:12:07 2026 GMT Subject: CN=6a0e4dd7-e56d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:87:cf:73:28:4c:ba:61:94:8e:48:0b:77:47: 7d:14:e3:fc:89:ab:51:e7:51:53:52:4c:d9:38:bf: 22:92:ac:66:3d:75:d9:02:95:bc:ab:76:e7:a8:f1: ec:98:30:25:f5:2a:a8:e5:bf:c7:34:de:c9:73:a4: 9d:55:8b:dd:d2:73:74:af:26:63:c8:d2:d8:78:73: f0:63:1a:24:72:83:08:8b:cf:d1:cd:74:19:cf:89: 72:b9:c5:77:31:73:39:e1:c7:61:de:4a:5f:46:ae: 3a:e5:67:34:1c:3b:e8:27:63:4b:d4:20:e7:b8:ac: 55:a4:c5:68:cb:f8:ce:a1:9d:26:34:ee:8d:ce:5e: 7a:4b:51:8c:77:96:a2:36:3f:83:1a:21:2a:da:79: f2:a7:48:f4:56:6c:21:e7:fc:d1:66:18:c9:23:10: 6f:46:de:a7:01:68:d1:0e:f0:f1:3d:e6:e5:4f:5c: d7:f6:f6:fd:b7:c4:ea:f9:b2:dd:a6:10:22:21:75: 49:5e:1e:d2:ba:59:0b:56:3b:0e:f7:20:d7:dd:7e: 9c:9d:03:b0:38:5d:c1:67:f2:d6:21:dd:eb:41:71: 0b:51:f9:76:1e:2f:26:1d:d6:7f:4d:ba:dc:d7:a8: 61:c4:46:9f:02:51:f2:d2:09:56:c2:9d:6e:5d:7f: b5:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:1E:AE:7F:D3:F4:1E:EB:AD:62:A3:14:A5:B1:7D:2C:B7:39:43:AC X509v3 Authority Key Identifier: keyid:D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:b3:fd:e5:52:87:d7:45:bf:28:d1:34:17:ee:b1:24:68:fc: 07:ec:c4:15:b6:13:9d:97:7c:11:84:99:d3:c7:62:ec:58:2a: 23:4b:db:64:3f:46:4a:9b:8a:80:3b:e0:51:0c:29:31:25:ce: 33:4e:d9:e0:ab:87:44:de:46:ff:2b:6d:89:e5:a6:48:61:ba: 62:89:c7:a9:39:d4:3e:ab:62:63:83:35:d4:f9:40:dc:7d:d4: 26:3c:ba:5a:8f:be:1a:67:33:51:c0:18:ac:7d:97:d3:5f:b8: 2a:3d:4e:20:62:91:af:ad:3a:0b:4e:a6:98:9c:51:0f:89:32: ab:16:b1:ca:07:ff:d5:f8:52:af:7f:d6:cc:e2:ba:48:79:0d: b0:d3:d5:43:87:94:e8:21:3e:f5:68:90:59:0f:4c:59:68:61: 94:11:bc:72:02:44:84:b4:98:51:8e:81:1a:c9:dd:d1:06:e1: 84:c1:cd:82:98:a2:a1:77:f3:60:70:e6:89:e0:44:2f:67:91: 6c:f9:67:59:d1:cb:82:bf:dc:4c:02:80:39:5b:01:6d:53:f1: 98:4d:38:d9:de:c7:2f:39:8c:57:36:db:6a:82:c7:d4:cf:10: 5f:1b:93:0a:a9:93:ad:1f:62:25:fa:10:0f:cc:f9:3f:0e:1a: 2e:ad:16:e0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBQ0IxMTAvBgNVBAUTKEQ5MTA2NTAxQjUzNUQwRjdDQUQ1N0M4RTdBNzQ3Q0Ew NjlEMDRENTkwHhcNMjYwNTIxMDAxMjA3WhcNMjYwNTI4MDAxMjA3WjAYMRYwFAYD VQQDEw02YTBlNGRkNy1lNTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4fPcyhMumGUjkgLd0d9FOP8iatR51FTUkzZOL8ikqxmPXXZApW8q3bnqPHs mDAl9Sqo5b/HNN7Jc6SdVYvd0nN0ryZjyNLYeHPwYxokcoMIi8/RzXQZz4lyucV3 MXM54cdh3kpfRq465Wc0HDvoJ2NL1CDnuKxVpMVoy/jOoZ0mNO6Nzl56S1GMd5ai Nj+DGiEq2nnyp0j0Vmwh5/zRZhjJIxBvRt6nAWjRDvDxPeblT1zX9vb9t8Tq+bLd phAiIXVJXh7SulkLVjsO9yDX3X6cnQOwOF3BZ/LWId3rQXELUfl2Hi8mHdZ/Tbrc 16hhxEafAlHy0glWwp1uXX+1fQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN4ern/T 9B7rrWKjFKWxfSy3OUOsMB8GA1UdIwQYMBaAFNkQZQG1NdD3ytV8jnp0fKBp0E1Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkFDQi9GNTU5OEQwODky NDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQZksxWHlPZW5SOG9HblFU VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJSQmxBYlUxMFBmSzFYeU9lblI4b0duUVRWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkFDQi9GNTU5OEQwODkyNDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQ ZksxWHlPZW5SOG9HblFUVmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVLP95VKH10W/KNE0F+6xJGj8B+zEFbYTnZd8EYSZ08di7FgqI0vbZD9GSpuK gDvgUQwpMSXOM07Z4KuHRN5G/yttieWmSGG6YonHqTnUPqtiY4M11PlA3H3UJjy6 Wo++GmczUcAYrH2X01+4Kj1OIGKRr606C06mmJxRD4kyqxaxygf/1fhSr3/WzOK6 SHkNsNPVQ4eU6CE+9WiQWQ9MWWhhlBG8cgJEhLSYUY6BGsnd0QbhhMHNgpiioXfz YHDmieBEL2eRbPlnWdHLgr/cTAKAOVsBbVPxmE042d7HLzmMVzbbaoLH1M8QXxuT CqmTrR9iJfoQD8z5Pw4aLq0W4A== -----END CERTIFICATE-----Generated at Thu May 21 11:14:51 2026 by rpki-client