$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft File: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft (raw, json) Hash identifier: d471BDMkc+G0qCVva0ohY+34ZLY3vPEZhncgZYRDkE8= Subject key identifier: 88:E3:44:BE:A5:C4:55:02:AD:74:67:CE:D8:DA:FF:F9:54:19:8B:AA Authority key identifier: D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F Certificate issuer: /CN=A91758EC/serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft Manifest number: A7 Signing time: Thu 21 May 2026 07:28:14 +0000 Manifest this update: Thu 21 May 2026 07:28:14 +0000 Manifest next update: Thu 28 May 2026 07:28:14 +0000 Files and hashes: 1: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl (hash: x0GXr83K0rbT07SNZEoNRZuqR54GdtGjJaW5Y+DirLw=) 2: 1AC14F60FC1C11F0AA0D3BE4396F56BC.roa (hash: d4/1Al7pieoNWzJ7p3qgYf6c/kIqYCPcAyGt54Cj2Fs=) 3: 1B34EF06FC1C11F0AA0D3BE4396F56BC.roa (hash: Dds/tHpcyRYMFvjsIod+yPijDRVhgC1FwQ1db6dOAxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 07:28:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Validity Not Before: May 21 07:28:14 2026 GMT Not After : May 28 07:28:14 2026 GMT Subject: CN=6a0eb40e-b272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:44:81:b3:8f:15:a4:df:14:2f:b8:6d:09:55: 03:19:17:b3:5d:63:11:5b:b4:72:83:e4:0d:90:84: 4d:b2:79:4e:83:6e:df:9a:94:64:3d:db:11:5f:0e: d6:47:1b:8b:e9:53:76:6c:f5:5a:06:af:1f:59:e7: 48:00:f7:8f:d6:47:68:63:78:6e:4b:b9:db:cf:8e: 21:99:80:da:49:e6:82:e7:92:8c:a1:5d:51:d1:77: c9:1f:f4:ed:e7:e4:39:7b:41:da:7d:d9:bd:b5:52: 22:a8:21:b6:1b:6f:0c:ce:ca:09:23:1d:f5:92:14: 54:c9:a4:71:f9:b6:28:27:75:75:62:87:f1:5f:6d: ac:01:d3:65:3a:bb:6b:71:67:49:fb:5f:f6:15:c1: 12:0b:33:08:14:62:4e:d7:8a:5d:74:e4:05:af:05: c4:2c:05:87:51:42:9c:1b:91:f0:12:7e:6a:03:53: 9e:f5:60:50:2c:ca:1f:c3:45:54:f5:ad:94:6e:a1: 9d:76:d3:a4:13:40:38:6a:3a:d2:cf:e5:28:db:dd: d9:a7:21:ec:61:79:15:3a:e0:ab:2b:ab:c7:21:85: 1b:76:d3:ba:e3:d4:14:41:a2:fe:c2:72:f5:5e:24: d6:83:9f:fb:db:47:0f:6e:3e:d2:5c:de:b9:6a:40: c2:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:E3:44:BE:A5:C4:55:02:AD:74:67:CE:D8:DA:FF:F9:54:19:8B:AA X509v3 Authority Key Identifier: keyid:D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:8e:82:cc:ac:a6:78:fd:2e:90:39:c9:91:bb:67:5a:b3:59: fa:7c:95:e9:9e:a0:45:5a:fa:1f:84:49:ce:aa:d4:4f:bc:d9: d8:fb:cd:7b:96:5e:01:e0:8c:50:13:48:f1:5b:28:f3:33:e4: df:43:da:cf:fb:0b:5c:db:b9:a0:77:ba:84:a3:f7:2d:fc:c5: 5e:b9:31:30:75:d6:b1:37:a3:08:a5:7e:93:26:02:8a:c4:b8: cc:19:64:6b:17:24:18:d8:13:6a:96:cd:9d:d8:ed:26:5e:fb: 1e:b7:d5:90:23:e7:1e:b4:82:3d:27:ec:b9:9d:62:24:51:c4: 5d:ea:4a:6c:4b:f5:a4:df:df:99:b2:49:42:0a:f7:dd:8d:dc: 0f:b6:d4:89:d3:85:7b:9f:35:a0:2d:c6:4f:d4:c0:29:7b:44: db:12:87:3c:57:42:89:dd:39:c2:ca:5a:33:10:89:45:3e:dc: c2:7e:da:08:da:c3:21:5e:42:68:35:25:4f:c8:d8:ec:10:0b: cd:9c:21:0b:c9:04:16:20:78:45:92:f9:30:48:2a:cd:1a:7a: 4d:8c:d2:3a:6f:4a:de:08:ae:9c:27:86:58:51:f1:8e:40:21: 08:66:41:a1:b4:3c:8a:53:34:1a:11:c1:b4:01:41:1e:0f:d0: c6:5f:ca:30 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4RUMxMTAvBgNVBAUTKEQ4MjdCNjg0M0VCN0Y2QjlGMEVENUYyRkY3MjM0NEE1 MkMwNEI0OUYwHhcNMjYwNTIxMDcyODE0WhcNMjYwNTI4MDcyODE0WjAYMRYwFAYD VQQDEw02YTBlYjQwZS1iMjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUSBs48VpN8UL7htCVUDGRezXWMRW7Ryg+QNkIRNsnlOg27fmpRkPdsRXw7W RxuL6VN2bPVaBq8fWedIAPeP1kdoY3huS7nbz44hmYDaSeaC55KMoV1R0XfJH/Tt 5+Q5e0Hafdm9tVIiqCG2G28MzsoJIx31khRUyaRx+bYoJ3V1YofxX22sAdNlOrtr cWdJ+1/2FcESCzMIFGJO14pddOQFrwXELAWHUUKcG5HwEn5qA1Oe9WBQLMofw0VU 9a2UbqGddtOkE0A4ajrSz+Uo293ZpyHsYXkVOuCrK6vHIYUbdtO649QUQaL+wnL1 XiTWg5/720cPbj7SXN65akDC2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIjjRL6l xFUCrXRnztja//lUGYuqMB8GA1UdIwQYMBaAFNgntoQ+t/a58O1fL/cjRKUsBLSf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThFQy82QkY4NkI4NDY2 MzAxMUYwQjlEQzRFNjRDNEY5QUUwMi8yQ2UyaEQ2Mzlybnc3Vjh2OXlORXBTd0V0 SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDZTJoRDYzOXJudzdWOHY5eU5FcFN3RXRKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NThFQy82QkY4NkI4NDY2MzAxMUYwQjlEQzRFNjRDNEY5QUUwMi8yQ2UyaEQ2Mzly bnc3Vjh2OXlORXBTd0V0SjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAo6CzKymeP0ukDnJkbtnWrNZ+nyV6Z6gRVr6H4RJzqrUT7zZ2PvNe5ZeAeCM UBNI8Vso8zPk30Paz/sLXNu5oHe6hKP3LfzFXrkxMHXWsTejCKV+kyYCisS4zBlk axckGNgTapbNndjtJl77HrfVkCPnHrSCPSfsuZ1iJFHEXepKbEv1pN/fmbJJQgr3 3Y3cD7bUidOFe581oC3GT9TAKXtE2xKHPFdCid05wspaMxCJRT7cwn7aCNrDIV5C aDUlT8jY7BALzZwhC8kEFiB4RZL5MEgqzRp6TYzSOm9K3giunCeGWFHxjkAhCGZB obQ8ilM0GhHBtAFBHg/Qxl/KMA== -----END CERTIFICATE-----Generated at Thu May 21 16:31:17 2026 by rpki-client