$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft File: C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft (raw, json) Hash identifier: LT8B9f2D8ah6wdxDYk2TpO3fg2nnR1bJ4DA6k4w11i0= Subject key identifier: E8:61:03:80:35:A6:F9:27:8C:E7:E5:35:06:DA:8E:45:3B:E4:E2:4C Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 069E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft Manifest number: 0679 Signing time: Sun 26 Apr 2026 22:33:15 +0000 Manifest this update: Sun 26 Apr 2026 22:33:15 +0000 Manifest next update: Sun 03 May 2026 22:33:15 +0000 Files and hashes: 1: C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl (hash: JHtrGBrFI+1ad1OFbLTTMKkwZyKQT2VAs980cRB61CI=) 2: 4FF7919CA3AE11F08498344CC4F9AE02.roa (hash: vr8P+P39aT/1jKl6iJb1sUFbpi5nliJVWaBLeOW46aY=) 3: F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa (hash: AcX/Q7kCXs6/lVr70u8Z/hkgVWbgvWKfVvGr/7kslLM=) 4: 1DE394187C2F11F0902A5A0CC4F9AE02.roa (hash: pdws3t0lZJ1KRtlaVi7T3cqSeY6vMdRKeuikmdwYWhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 22:33:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1694 (0x69e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB, serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Validity Not Before: Apr 26 22:33:15 2026 GMT Not After : May 3 22:33:15 2026 GMT Subject: CN=69ee92ab-9213 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:99:a3:a5:0d:a8:17:59:d8:c3:fe:2d:9d:be: b6:cd:b4:ee:64:a1:14:8e:a1:39:63:59:4d:74:62: 70:38:e4:8e:45:d0:ea:3a:fd:e7:44:e0:5e:9a:05: f3:71:bc:1d:db:d5:4c:92:b6:1d:3d:60:d1:47:bc: a8:91:7a:96:c6:39:98:4f:f6:d8:59:85:3a:fd:b3: b6:e1:81:8f:0b:f1:2c:42:4c:ee:2b:9c:2c:a0:9e: 23:f9:07:18:fa:82:46:d7:bd:68:d9:f7:1d:2a:8d: b8:60:93:57:03:73:48:9b:36:e3:ca:0f:fc:10:2e: 8e:2e:d9:2e:0c:90:60:bb:a0:02:68:6a:79:90:a4: 71:0a:6f:f5:ce:25:9a:11:87:4a:f0:a4:a9:3f:20: 3a:4d:f3:1e:13:f2:28:83:ed:5a:9a:98:38:3e:b3: d0:7c:cc:d8:d7:a6:e6:ae:b6:d3:1e:0d:45:08:0c: db:a8:42:23:0b:ff:ce:e3:bf:75:cb:d9:50:c3:b3: 60:bb:bc:54:22:7d:12:9b:d3:65:06:d3:37:3d:6c: 2f:4d:4b:8c:c1:76:a4:10:39:5d:a9:fd:72:10:cb: 3d:2e:00:7e:cc:bf:86:ed:7f:1b:bc:66:ea:e8:fc: fe:bc:a7:d1:46:01:41:f4:a9:c4:fe:5e:cd:54:99: 89:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:61:03:80:35:A6:F9:27:8C:E7:E5:35:06:DA:8E:45:3B:E4:E2:4C X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:dc:d9:78:83:2d:70:51:78:5e:1d:b6:e1:87:fd:7b:a0:d2: ce:a2:0d:e5:bb:58:5f:31:fa:8c:7a:1c:04:b4:35:60:a7:6a: 90:1e:11:b6:03:94:6b:08:fe:03:cc:ec:9b:fa:e4:92:d7:67: a4:10:e5:9d:06:c4:ee:fc:25:3f:ec:4a:9e:52:09:90:ca:42: 3b:61:3a:cd:16:c1:4d:6b:98:02:da:67:c5:e4:98:f0:f2:92: a9:9d:ad:f1:37:a2:9f:1a:f5:f3:04:2a:07:b6:7f:71:31:3b: f3:f1:95:26:f0:80:cb:a1:7a:13:2a:b9:fc:4f:5e:7f:de:89: 25:aa:ba:05:04:63:d1:13:26:1c:b7:17:a4:c7:88:ae:b9:47: 9b:11:43:50:75:00:9e:e6:ad:eb:9e:d3:1d:54:bf:b1:1a:ff: 98:34:5d:08:75:ee:53:69:31:a6:77:75:8c:1c:2e:ca:1a:52: bb:00:53:32:84:60:c8:09:10:cc:98:2a:5b:ed:e9:62:e7:4a: e2:55:d5:79:5a:23:e7:65:f2:45:d6:2d:8f:37:e0:32:ec:01: e6:21:16:e2:c4:98:dc:7c:94:42:ed:7f:85:06:aa:65:1d:1e: 8d:a1:53:f4:5e:c7:fb:c2:d5:a3:28:6f:7e:87:a5:b7:b5:b9: 64:c4:91:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjYwNDI2MjIzMzE1WhcNMjYwNTAzMjIzMzE1WjAYMRYwFAYD VQQDEw02OWVlOTJhYi05MjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5mjpQ2oF1nYw/4tnb62zbTuZKEUjqE5Y1lNdGJwOOSORdDqOv3nROBemgXz cbwd29VMkrYdPWDRR7yokXqWxjmYT/bYWYU6/bO24YGPC/EsQkzuK5wsoJ4j+QcY +oJG171o2fcdKo24YJNXA3NImzbjyg/8EC6OLtkuDJBgu6ACaGp5kKRxCm/1ziWa EYdK8KSpPyA6TfMeE/Iog+1ampg4PrPQfMzY16bmrrbTHg1FCAzbqEIjC//O4791 y9lQw7Ngu7xUIn0Sm9NlBtM3PWwvTUuMwXakEDldqf1yEMs9LgB+zL+G7X8bvGbq 6Pz+vKfRRgFB9KnE/l7NVJmJYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOhhA4A1 pvknjOflNQbajkU75OJMMB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTJFQi9GRDAwODFERUM1NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dM ZUdrbTNoT2ZIZzluUkVCbFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALtzZeIMtcFF4Xh224Yf9e6DSzqIN5btYXzH6jHocBLQ1YKdqkB4RtgOUawj+ A8zsm/rkktdnpBDlnQbE7vwlP+xKnlIJkMpCO2E6zRbBTWuYAtpnxeSY8PKSqZ2t 8Teinxr18wQqB7Z/cTE78/GVJvCAy6F6Eyq5/E9ef96JJaq6BQRj0RMmHLcXpMeI rrlHmxFDUHUAnuat657THVS/sRr/mDRdCHXuU2kxpnd1jBwuyhpSuwBTMoRgyAkQ zJgqW+3pYudK4lXVeVoj52XyRdYtjzfgMuwB5iEW4sSY3HyUQu1/hQaqZR0ejaFT 9F7H+8LVoyhvfoelt7W5ZMSRXA== -----END CERTIFICATE-----Generated at Tue Apr 28 08:39:58 2026 by rpki-client