$ rpki-client -vvf rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft File: 2CVmixrBt_OBXwe82lfnSMSWSpo.mft (raw, json) Hash identifier: b3EYhUYbBPYv74crmfKmScQvU+4Uo5sIbwtW7H1HA+E= Subject key identifier: 78:0B:25:59:AB:36:29:28:79:97:CE:83:AC:0E:D3:71:6D:04:B4:E7 Authority key identifier: D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A Certificate issuer: /CN=A91756C3/serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft Manifest number: F5 Signing time: Thu 21 May 2026 06:23:44 +0000 Manifest this update: Thu 21 May 2026 06:23:43 +0000 Manifest next update: Thu 28 May 2026 06:23:43 +0000 Files and hashes: 1: 2CVmixrBt_OBXwe82lfnSMSWSpo.crl (hash: 4y1+1TKXUTqcRofifLdONT6hz5zegXeN2eNS9qwZ8Ck=) 2: 00078764E06811EF8716401DC4F9AE02.roa (hash: jAgpnq1+lwtrym5arlQne7Jb3Wult1dG/3ZGpOPdDZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 06:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756C3, serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Validity Not Before: May 21 06:23:43 2026 GMT Not After : May 28 06:23:43 2026 GMT Subject: CN=6a0ea4ef-f52e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0a:1e:7e:4f:3a:c6:3f:13:72:8b:6a:f6:8d: c8:c9:89:c2:27:73:a0:cd:81:09:99:e1:63:34:7d: 7f:76:90:ce:55:e7:20:0b:6b:92:f0:b1:2c:37:04: 92:df:e1:ce:83:c8:3e:fa:49:d1:57:a1:f2:db:6e: de:20:81:ee:a6:00:23:d9:2b:f3:c9:ea:0d:9b:45: 32:64:d5:f7:37:9c:81:44:3c:89:8a:1f:50:f8:6a: a2:36:e7:15:a2:29:2b:1e:65:3f:aa:80:10:d4:7b: 4b:73:9a:49:9c:a2:ce:a3:30:22:fe:4b:37:90:d9: 71:67:c9:50:48:33:cb:b8:df:b2:72:21:b8:95:66: e2:63:ec:c8:be:cc:71:0e:40:3c:6c:a4:a3:43:6c: 06:55:43:26:eb:5c:4c:69:c1:e5:18:8c:b8:a5:8b: 33:1d:9b:37:92:ef:17:53:dd:a1:33:d3:4c:ab:af: 74:b7:83:4a:b5:9d:82:94:f4:75:9f:58:b2:09:89: 94:3b:19:60:ac:cb:cf:cd:7e:ef:e2:69:8c:0c:bf: aa:a0:74:a9:50:21:c2:22:6d:a5:bf:fa:f4:18:b5: 63:b6:54:ac:1f:82:20:56:ed:8d:14:19:b9:3d:1d: da:42:26:a9:f5:54:a0:80:a5:78:0c:fa:ed:9a:bd: 73:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:0B:25:59:AB:36:29:28:79:97:CE:83:AC:0E:D3:71:6D:04:B4:E7 X509v3 Authority Key Identifier: keyid:D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:15:80:53:2d:82:d6:db:24:da:93:c4:09:0c:95:e7:ee:e5: 91:48:06:1b:f4:a5:a0:32:88:1a:e8:ad:de:21:cc:de:48:0d: de:52:62:64:b6:62:93:7e:2d:8c:ec:03:8f:05:22:27:4f:e2: 69:34:b7:99:b8:d3:c8:74:8e:41:d6:1e:8d:63:4c:22:ad:93: fc:10:36:cb:fb:17:4c:39:91:8e:15:66:65:a3:a7:ee:b7:c4: 08:b8:44:59:eb:10:67:9f:45:b3:0a:64:29:8f:14:74:93:e8: 97:de:0d:64:a5:4c:6e:7d:14:c7:28:00:58:9d:7c:88:5c:36: 0d:07:5e:e5:65:f5:0c:26:b9:31:f2:68:3e:9a:b5:01:4d:07: c4:54:b5:73:e4:ac:22:3b:7d:41:a7:92:e3:a2:d3:de:16:67: 67:b1:76:3e:f0:8c:5a:fb:0a:9d:aa:30:d8:26:c4:b3:3f:65: 88:b1:e4:dc:3a:24:a0:9e:7e:f4:f1:ad:26:91:0d:10:b1:0c: 72:fd:d7:32:cd:69:65:fc:7d:0b:53:d1:c0:af:8d:03:dc:8a: 88:77:4f:5d:7a:6b:92:e2:4e:36:97:f4:f6:3a:c0:2b:6e:87: 6f:a0:74:d4:13:ba:43:c3:9b:25:9e:9a:4c:20:94:15:6d:0a: 34:a6:3b:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU2QzMxMTAvBgNVBAUTKEQ4MjU2NjhCMUFDMUI3RjM4MTVGMDdCQ0RBNTdFNzQ4 QzQ5NjRBOUEwHhcNMjYwNTIxMDYyMzQzWhcNMjYwNTI4MDYyMzQzWjAYMRYwFAYD VQQDEw02YTBlYTRlZi1mNTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQoefk86xj8Tcotq9o3IyYnCJ3OgzYEJmeFjNH1/dpDOVecgC2uS8LEsNwSS 3+HOg8g++knRV6Hy227eIIHupgAj2SvzyeoNm0UyZNX3N5yBRDyJih9Q+GqiNucV oikrHmU/qoAQ1HtLc5pJnKLOozAi/ks3kNlxZ8lQSDPLuN+yciG4lWbiY+zIvsxx DkA8bKSjQ2wGVUMm61xMacHlGIy4pYszHZs3ku8XU92hM9NMq690t4NKtZ2ClPR1 n1iyCYmUOxlgrMvPzX7v4mmMDL+qoHSpUCHCIm2lv/r0GLVjtlSsH4IgVu2NFBm5 PR3aQiap9VSggKV4DPrtmr1zgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHgLJVmr NikoeZfOg6wO03FtBLTnMB8GA1UdIwQYMBaAFNglZosawbfzgV8HvNpX50jElkqa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTZDMy81QkY1MTkyQUUw NjcxMUVGQkMzRDE3MUJDNEY5QUUwMi8yQ1ZtaXhyQnRfT0JYd2U4MmxmblNNU1dT cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDVm1peHJCdF9PQlh3ZTgybGZuU01TV1Nwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTZDMy81QkY1MTkyQUUwNjcxMUVGQkMzRDE3MUJDNEY5QUUwMi8yQ1ZtaXhyQnRf T0JYd2U4MmxmblNNU1dTcG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiBWAUy2C1tsk2pPECQyV5+7lkUgGG/SloDKIGuit3iHM3kgN3lJiZLZik34t jOwDjwUiJ0/iaTS3mbjTyHSOQdYejWNMIq2T/BA2y/sXTDmRjhVmZaOn7rfECLhE WesQZ59FswpkKY8UdJPol94NZKVMbn0UxygAWJ18iFw2DQde5WX1DCa5MfJoPpq1 AU0HxFS1c+SsIjt9QaeS46LT3hZnZ7F2PvCMWvsKnaow2CbEsz9liLHk3DokoJ5+ 9PGtJpENELEMcv3XMs1pZfx9C1PRwK+NA9yKiHdPXXprkuJONpf09jrAK26Hb6B0 1BO6Q8ObJZ6aTCCUFW0KNKY7uA== -----END CERTIFICATE-----Generated at Thu May 21 10:15:17 2026 by rpki-client