$ rpki-client -vvf rpki.apnic.net/member_repository/A918B6BC/A030CD30204C11F0963EB575C4F9AE02/2L7paV1DsznnVj8kE7cjGdFndLE.mft File: 2L7paV1DsznnVj8kE7cjGdFndLE.mft (raw, json) Hash identifier: AGEFUmcUU+xaCV5X6aPR/p7vbKN+Z4EqLBPym8fnWfs= Subject key identifier: 24:66:32:E3:EC:87:B2:34:D5:9A:55:20:7B:59:B5:C1:F3:44:2E:2A Authority key identifier: D8:BE:E9:69:5D:43:B3:39:E7:56:3F:24:13:B7:23:19:D1:67:74:B1 Certificate issuer: /CN=A918B6BC/serialNumber=D8BEE9695D43B339E7563F2413B72319D16774B1 Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2L7paV1DsznnVj8kE7cjGdFndLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B6BC/A030CD30204C11F0963EB575C4F9AE02/2L7paV1DsznnVj8kE7cjGdFndLE.mft Manifest number: D3 Signing time: Thu 21 May 2026 06:54:33 +0000 Manifest this update: Thu 21 May 2026 06:54:33 +0000 Manifest next update: Thu 28 May 2026 06:54:33 +0000 Files and hashes: 1: 2L7paV1DsznnVj8kE7cjGdFndLE.crl (hash: vxWBrcXiYwBCtiw3e7n2HvjGebEwzBwAXErmluIFuZQ=) 2: F5CE8322AA8A11F0B2091087C4F9AE02.roa (hash: RftIc/WPafbaN59fO/ljS0lkrMOduHYR+hGVEu5br4g=) 3: 998CA7F6B29611F0A9620F65C4F9AE02.roa (hash: vNh/5KqyGcLBgRea4GEaf1GiSDPNGV2ayLMJqKrT05s=) 4: E31A926E6EAF11F088699976C4F9AE02.roa (hash: FKzaSN7wk2dTCiUFf01WiFdCMnfThuKnhdLTnhYbGgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B6BC/A030CD30204C11F0963EB575C4F9AE02/2L7paV1DsznnVj8kE7cjGdFndLE.crl rsync://rpki.apnic.net/member_repository/A918B6BC/A030CD30204C11F0963EB575C4F9AE02/2L7paV1DsznnVj8kE7cjGdFndLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2L7paV1DsznnVj8kE7cjGdFndLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 06:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B6BC, serialNumber=D8BEE9695D43B339E7563F2413B72319D16774B1 Validity Not Before: May 21 06:54:33 2026 GMT Not After : May 28 06:54:33 2026 GMT Subject: CN=6a0eac29-238f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:90:7b:e8:69:00:e2:e1:29:a8:6d:37:5c:06: 41:d7:0a:5d:75:21:ff:4d:77:4a:64:e6:74:fe:99: 60:46:43:fd:50:29:ec:b8:fb:40:b7:58:bd:f4:49: 82:e4:67:95:4f:0c:29:2a:07:dd:04:19:c4:6c:7d: b6:eb:86:c0:ee:e6:73:df:59:95:e6:88:dc:6b:49: fa:4f:1b:88:ed:e6:a9:c3:cb:9d:9e:4c:39:d4:4d: 96:96:a0:fb:a5:be:6c:59:09:01:1d:7e:e4:36:da: 53:e9:6b:ef:58:41:d1:8c:fe:e9:15:c6:8e:6b:17: a6:83:ac:7d:9d:11:76:a8:aa:b0:7d:a9:e2:08:f7: 7c:af:d0:5f:c7:4c:c2:8a:c6:19:31:59:c9:5e:3d: 77:4e:9f:f8:45:86:bf:92:a3:e1:ef:d6:5e:83:f5: 9e:32:13:bb:bd:0e:c4:33:04:7d:e1:ce:b8:c9:32: 27:bb:6e:cd:64:67:77:b7:3e:02:08:c6:23:2c:e6: d8:cc:9c:67:cb:27:06:0f:2e:75:2f:dc:d2:76:03: 9e:7a:f7:87:b4:26:c5:74:b4:5a:1f:e0:55:ff:26: 6d:27:a8:1a:fa:2e:21:be:a5:8a:d3:51:3b:d0:54: be:ea:0a:ae:cf:2b:7d:d8:f5:a4:2a:2f:2e:79:76: 0d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:66:32:E3:EC:87:B2:34:D5:9A:55:20:7B:59:B5:C1:F3:44:2E:2A X509v3 Authority Key Identifier: keyid:D8:BE:E9:69:5D:43:B3:39:E7:56:3F:24:13:B7:23:19:D1:67:74:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B6BC/A030CD30204C11F0963EB575C4F9AE02/2L7paV1DsznnVj8kE7cjGdFndLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2L7paV1DsznnVj8kE7cjGdFndLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B6BC/A030CD30204C11F0963EB575C4F9AE02/2L7paV1DsznnVj8kE7cjGdFndLE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:dd:5f:2d:53:f0:eb:a1:e0:6f:f1:f8:95:74:81:74:13:c9: 7c:83:78:6b:69:94:e2:d4:59:e5:89:12:5c:c9:fe:b1:ba:eb: 5b:14:d1:98:32:df:9f:21:40:50:b7:05:e4:7d:d5:68:71:79: 81:64:3e:64:a8:36:8f:61:ff:09:0f:6b:9a:bc:d5:da:f4:c0: 12:b3:3d:44:5a:ab:2f:be:35:ac:58:c2:74:37:1c:fc:52:28: 6e:63:1f:f9:87:1d:af:67:7c:53:ab:8c:14:2e:a7:a8:5c:40: 62:70:a0:44:d4:a5:97:6e:70:3b:29:66:ba:40:af:d4:e9:f6: 2f:ec:16:b3:8d:92:fc:d5:a1:8f:56:9e:47:a4:d3:09:d0:f5: a9:98:51:28:df:69:c3:66:19:b0:c4:68:b4:c1:7e:86:44:ce: 43:da:a0:60:21:bd:73:47:3d:11:c8:19:1c:85:f9:35:ed:c2: 34:35:ae:5f:8a:a6:34:ec:91:9c:3b:26:e8:bf:70:ed:34:a4: 6f:b0:df:a6:8f:b2:3b:dc:ed:64:8a:a8:51:c3:19:98:76:3d: 9e:aa:8f:1d:2f:25:48:59:16:db:4a:0f:fd:7e:03:ab:5d:31: 82:a2:2c:cd:3b:c0:83:de:e3:60:29:79:89:8c:ce:07:50:9d: cd:e9:5e:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI2QkMxMTAvBgNVBAUTKEQ4QkVFOTY5NUQ0M0IzMzlFNzU2M0YyNDEzQjcyMzE5 RDE2Nzc0QjEwHhcNMjYwNTIxMDY1NDMzWhcNMjYwNTI4MDY1NDMzWjAYMRYwFAYD VQQDEw02YTBlYWMyOS0yMzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pB76GkA4uEpqG03XAZB1wpddSH/TXdKZOZ0/plgRkP9UCnsuPtAt1i99EmC 5GeVTwwpKgfdBBnEbH2264bA7uZz31mV5ojca0n6TxuI7eapw8udnkw51E2WlqD7 pb5sWQkBHX7kNtpT6WvvWEHRjP7pFcaOaxemg6x9nRF2qKqwfaniCPd8r9Bfx0zC isYZMVnJXj13Tp/4RYa/kqPh79Zeg/WeMhO7vQ7EMwR94c64yTInu27NZGd3tz4C CMYjLObYzJxnyycGDy51L9zSdgOeeveHtCbFdLRaH+BV/yZtJ6ga+i4hvqWK01E7 0FS+6gquzyt92PWkKi8ueXYN8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCRmMuPs h7I01ZpVIHtZtcHzRC4qMB8GA1UdIwQYMBaAFNi+6WldQ7M551Y/JBO3IxnRZ3Sx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjZCQy9BMDMwQ0QzMDIw NEMxMUYwOTYzRUI1NzVDNEY5QUUwMi8yTDdwYVYxRHN6bm5WajhrRTdjakdkRm5k TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJMN3BhVjFEc3publZqOGtFN2NqR2RGbmRMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjZCQy9BMDMwQ0QzMDIwNEMxMUYwOTYzRUI1NzVDNEY5QUUwMi8yTDdwYVYxRHN6 bm5WajhrRTdjakdkRm5kTEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQd1fLVPw66Hgb/H4lXSBdBPJfIN4a2mU4tRZ5YkSXMn+sbrrWxTRmDLfnyFA ULcF5H3VaHF5gWQ+ZKg2j2H/CQ9rmrzV2vTAErM9RFqrL741rFjCdDcc/FIobmMf +Ycdr2d8U6uMFC6nqFxAYnCgRNSll25wOylmukCv1On2L+wWs42S/NWhj1aeR6TT CdD1qZhRKN9pw2YZsMRotMF+hkTOQ9qgYCG9c0c9EcgZHIX5Ne3CNDWuX4qmNOyR nDsm6L9w7TSkb7Dfpo+yO9ztZIqoUcMZmHY9nqqPHS8lSFkW20oP/X4Dq10xgqIs zTvAg97jYCl5iYzOB1Cdzele1g== -----END CERTIFICATE-----Generated at Thu May 21 10:15:12 2026 by rpki-client