$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft File: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft (raw, json) Hash identifier: SO4ctCVwhMLsr4Cb/xvQSXsKdPLAaVkGJHjKXGyfxQc= Subject key identifier: D8:1A:00:83:44:79:1E:E2:3D:75:73:23:03:2A:04:9B:63:52:F3:48 Authority key identifier: D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F Certificate issuer: /CN=A91758EC/serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft Manifest number: 90 Signing time: Sun 05 Apr 2026 07:00:27 +0000 Manifest this update: Sun 05 Apr 2026 07:00:26 +0000 Manifest next update: Sun 12 Apr 2026 07:00:26 +0000 Files and hashes: 1: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl (hash: vIBbcO4WFznbE+aR3aLjdX40AAI4BSlOvTVw9MlAYZY=) 2: 1AC14F60FC1C11F0AA0D3BE4396F56BC.roa (hash: d4/1Al7pieoNWzJ7p3qgYf6c/kIqYCPcAyGt54Cj2Fs=) 3: 1B34EF06FC1C11F0AA0D3BE4396F56BC.roa (hash: Dds/tHpcyRYMFvjsIod+yPijDRVhgC1FwQ1db6dOAxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 07:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Validity Not Before: Apr 5 07:00:26 2026 GMT Not After : Apr 12 07:00:26 2026 GMT Subject: CN=69d2088a-c3bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f7:5b:96:44:17:3e:00:f8:52:97:53:e4:29: 0b:50:57:b7:c5:43:12:ec:16:37:52:9c:b2:5c:c7: d4:ef:54:6e:1e:d1:73:c9:98:53:0a:89:50:f8:06: e7:de:ca:54:91:dd:5f:42:e5:0a:a6:c2:6c:53:5b: e0:73:22:69:ff:d9:ac:5d:88:89:12:51:7e:fc:e0: 71:b4:07:f0:17:54:64:95:e2:09:c7:d0:84:4d:52: aa:aa:bd:b4:01:87:1f:b2:10:7c:a9:3f:cd:f9:92: 33:63:63:42:92:3e:bf:27:71:2d:2b:73:f4:e8:fa: da:5b:c0:ba:24:77:50:65:ee:77:17:5e:25:81:cb: 9d:32:a3:66:b9:46:99:08:fd:26:45:f4:58:40:b4: 4b:d9:70:f3:b9:4a:4d:6d:47:e3:0b:d2:63:98:b4: 15:bd:10:db:60:08:e2:34:4a:c7:fe:f5:8d:0b:c9: cd:c7:ce:51:1c:48:42:54:b1:6b:f5:51:7f:43:92: 99:fa:66:19:6d:00:05:f6:e6:5b:88:c0:bf:89:94: ab:f8:05:ba:0f:11:a0:ab:9c:59:f4:a2:c9:61:f0: a4:f2:ce:fc:b5:7f:83:6e:c4:70:c4:39:46:37:9d: df:2a:dd:03:cb:1b:de:5b:61:ed:10:44:f7:c6:f0: f2:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:1A:00:83:44:79:1E:E2:3D:75:73:23:03:2A:04:9B:63:52:F3:48 X509v3 Authority Key Identifier: keyid:D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:3d:db:74:ef:85:9e:c2:bf:09:57:ef:5b:93:75:b8:5f:0b: 30:69:81:29:99:33:06:e3:24:be:87:8d:49:88:15:f2:d2:00: 33:fd:60:6a:22:69:10:31:52:09:fe:10:ca:aa:59:be:ce:6c: 88:20:32:66:0e:25:fe:2c:04:f3:89:71:15:17:e8:09:df:36: a5:47:16:c0:11:e4:e9:0c:6a:94:be:f4:9d:a5:ca:c0:00:6f: ad:90:f8:c1:e4:36:c1:4d:9c:0d:1a:84:99:fb:e7:15:09:ba: 85:a6:56:44:20:45:63:cf:d9:59:83:96:46:27:1d:6f:0a:79: 6f:19:0f:3e:42:56:a8:64:f5:af:1a:27:4c:3b:1a:e0:17:b2: 0c:fc:a6:c3:d3:82:ee:6b:aa:34:95:e4:8d:98:02:ad:30:3f: 39:a8:b1:51:49:92:c9:64:0f:5e:f2:0a:85:bc:f8:16:a2:0c: bf:22:a1:d8:16:4e:6c:7c:b5:91:b8:50:c8:8a:c1:07:91:7b: 61:72:bd:2d:41:8f:0b:dd:ae:83:13:da:8d:01:32:93:a4:4e: 4f:a8:e1:be:8f:78:34:51:f2:12:6e:9f:bc:3e:64:05:9f:83: 3b:c0:21:3b:21:89:b2:7a:fe:b4:3a:af:8b:76:c2:db:13:bc: f3:15:e1:46 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4RUMxMTAvBgNVBAUTKEQ4MjdCNjg0M0VCN0Y2QjlGMEVENUYyRkY3MjM0NEE1 MkMwNEI0OUYwHhcNMjYwNDA1MDcwMDI2WhcNMjYwNDEyMDcwMDI2WjAYMRYwFAYD VQQDEw02OWQyMDg4YS1jM2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/dblkQXPgD4UpdT5CkLUFe3xUMS7BY3UpyyXMfU71RuHtFzyZhTColQ+Abn 3spUkd1fQuUKpsJsU1vgcyJp/9msXYiJElF+/OBxtAfwF1RkleIJx9CETVKqqr20 AYcfshB8qT/N+ZIzY2NCkj6/J3EtK3P06PraW8C6JHdQZe53F14lgcudMqNmuUaZ CP0mRfRYQLRL2XDzuUpNbUfjC9JjmLQVvRDbYAjiNErH/vWNC8nNx85RHEhCVLFr 9VF/Q5KZ+mYZbQAF9uZbiMC/iZSr+AW6DxGgq5xZ9KLJYfCk8s78tX+DbsRwxDlG N53fKt0DyxveW2HtEET3xvDyTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNgaAINE eR7iPXVzIwMqBJtjUvNIMB8GA1UdIwQYMBaAFNgntoQ+t/a58O1fL/cjRKUsBLSf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThFQy82QkY4NkI4NDY2 MzAxMUYwQjlEQzRFNjRDNEY5QUUwMi8yQ2UyaEQ2Mzlybnc3Vjh2OXlORXBTd0V0 SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDZTJoRDYzOXJudzdWOHY5eU5FcFN3RXRKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NThFQy82QkY4NkI4NDY2MzAxMUYwQjlEQzRFNjRDNEY5QUUwMi8yQ2UyaEQ2Mzly bnc3Vjh2OXlORXBTd0V0SjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAij3bdO+FnsK/CVfvW5N1uF8LMGmBKZkzBuMkvoeNSYgV8tIAM/1gaiJpEDFS Cf4QyqpZvs5siCAyZg4l/iwE84lxFRfoCd82pUcWwBHk6QxqlL70naXKwABvrZD4 weQ2wU2cDRqEmfvnFQm6haZWRCBFY8/ZWYOWRicdbwp5bxkPPkJWqGT1rxonTDsa 4BeyDPymw9OC7muqNJXkjZgCrTA/OaixUUmSyWQPXvIKhbz4FqIMvyKh2BZObHy1 kbhQyIrBB5F7YXK9LUGPC92ugxPajQEyk6ROT6jhvo94NFHyEm6fvD5kBZ+DO8Ah OyGJsnr+tDqvi3bC2xO88xXhRg== -----END CERTIFICATE-----Generated at Mon Apr 6 14:54:01 2026 by rpki-client