$ rpki-client -vvf rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft File: 2kcELjdqlHP8Dt_IRFc53RMorg4.mft (raw, json) Hash identifier: SXZUF4Pwkmu3o9B3RkvtLW5AMokvOVP8YWiPzAeK1b4= Subject key identifier: 5C:2E:78:59:4E:AC:7C:25:A8:ED:06:1D:B8:D7:EB:3D:01:0A:5D:4A Authority key identifier: DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E Certificate issuer: /CN=A9191DF4/serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Certificate serial: 0EB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft Manifest number: 0E99 Signing time: Sat 18 Apr 2026 17:39:15 +0000 Manifest this update: Sat 18 Apr 2026 17:39:14 +0000 Manifest next update: Sat 25 Apr 2026 17:39:14 +0000 Files and hashes: 1: 2kcELjdqlHP8Dt_IRFc53RMorg4.crl (hash: 8YkgDiuzO9OW9WZ4chMGorjM2qWqDz1yiUz/5+NfTFI=) 2: B5D4A156598B11EC82C8685CC4F9AE02.roa (hash: DFvUjSl+6A6klX7hNwdfn4zHvZwMt+wqIU2vy92vesE=) 3: B922DB22E84211EA918B8F09C4F9AE02.roa (hash: LfIFl6rYWrXVoxcyn0clPS9g9F++NUROBoNirluuY6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 17:39:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3764 (0xeb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191DF4, serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Validity Not Before: Apr 18 17:39:14 2026 GMT Not After : Apr 25 17:39:14 2026 GMT Subject: CN=69e3c1c3-91cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:50:39:15:53:6e:d4:ca:f4:77:76:d4:0f:a3: fb:2d:5a:da:a5:ca:0d:31:fe:b5:52:5b:cf:f6:e8: cf:e8:06:8a:f4:37:16:b8:84:79:1a:59:b6:97:f4: 0d:bd:95:b6:32:16:57:a5:18:ae:3a:2f:45:39:b5: e9:a7:e8:04:e7:52:7c:35:fc:07:b8:da:26:74:80: 96:58:f9:a9:ba:c5:2a:63:68:2f:d4:b4:de:54:b9: 22:5b:5d:d1:9f:0d:e8:08:b3:f2:39:b3:fe:69:2c: 38:93:c0:96:53:01:3b:e4:42:00:91:34:9a:d6:82: e7:bd:de:4c:ab:f6:cc:a5:d1:66:60:5d:23:ca:65: 6c:ae:32:30:d3:a4:67:4f:04:21:51:c6:91:2b:31: 92:31:7a:10:39:5f:4b:4a:b4:fc:96:80:36:38:ab: f8:e4:07:7f:b9:f8:c4:67:5e:42:d6:b7:cb:bb:6d: 57:70:ae:82:13:f2:c6:72:96:ff:33:a7:40:5f:c8: 06:f2:4d:3e:50:a7:21:57:2d:47:14:ed:d1:28:4e: 72:a9:7d:97:35:cc:12:43:64:24:82:54:f6:31:47: 20:be:a7:69:81:d7:64:63:81:28:e8:d8:4e:3f:a8: 63:a9:09:5a:03:08:09:2c:3c:fc:53:47:34:c8:59: 46:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:2E:78:59:4E:AC:7C:25:A8:ED:06:1D:B8:D7:EB:3D:01:0A:5D:4A X509v3 Authority Key Identifier: keyid:DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:ad:81:5a:f0:4a:c4:52:85:c9:97:79:77:42:f0:ec:6c:31: ac:77:6b:e7:8a:49:84:b6:2c:3d:f7:7c:91:ec:71:bd:c0:e7: 5a:10:19:67:24:92:ec:25:eb:84:20:65:60:4f:3e:96:e2:fd: fb:7e:d9:b7:bb:28:6d:08:8d:99:93:59:e2:31:ab:23:76:ee: 7d:d9:c6:c5:23:de:c1:5f:50:cf:72:0f:49:01:95:b7:63:6b: 09:b7:ed:27:f8:ba:75:a2:89:32:d1:9f:5b:e0:03:06:51:cd: 96:4a:15:f4:bb:13:20:83:c4:ed:ba:e2:51:0f:7a:79:b5:81: 0e:1a:cc:cc:4d:ec:68:7c:42:c3:01:02:25:55:b4:99:4b:3a: d2:97:27:6c:d2:94:47:81:e2:88:35:46:e5:cc:d8:a8:e9:f1: 8b:06:f5:bf:f1:b2:50:42:24:53:0f:94:d7:a1:c0:cc:bd:c0: 81:0e:a8:e7:55:b9:bc:d1:44:9c:ee:7a:ec:d6:86:40:17:c9: 29:8d:cc:18:34:0f:6c:c0:32:2d:79:d0:a8:fe:07:7a:f1:28: b1:aa:04:7d:bd:88:e0:3d:69:79:7f:5f:72:f1:9f:4a:86:74: fe:0b:97:de:7f:1c:01:4f:6a:0c:48:6f:87:17:5c:19:00:5a: f4:68:1b:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFERjQxMTAvBgNVBAUTKERBNDcwNDJFMzc2QTk0NzNGQzBFREZDODQ0NTczOURE MTMyOEFFMEUwHhcNMjYwNDE4MTczOTE0WhcNMjYwNDI1MTczOTE0WjAYMRYwFAYD VQQDEw02OWUzYzFjMy05MWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVA5FVNu1Mr0d3bUD6P7LVrapcoNMf61UlvP9ujP6AaK9DcWuIR5Glm2l/QN vZW2MhZXpRiuOi9FObXpp+gE51J8NfwHuNomdICWWPmpusUqY2gv1LTeVLkiW13R nw3oCLPyObP+aSw4k8CWUwE75EIAkTSa1oLnvd5Mq/bMpdFmYF0jymVsrjIw06Rn TwQhUcaRKzGSMXoQOV9LSrT8loA2OKv45Ad/ufjEZ15C1rfLu21XcK6CE/LGcpb/ M6dAX8gG8k0+UKchVy1HFO3RKE5yqX2XNcwSQ2QkglT2MUcgvqdpgddkY4Eo6NhO P6hjqQlaAwgJLDz8U0c0yFlG/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFwueFlO rHwlqO0GHbjX6z0BCl1KMB8GA1UdIwQYMBaAFNpHBC43apRz/A7fyERXOd0TKK4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MURGNC9GNDFEMUMxOEIz OEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxIUDhEdF9JUkZjNTNSTW9y ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY0VMamRxbEhQOER0X0lSRmM1M1JNb3JnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MURGNC9GNDFEMUMxOEIzOEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxI UDhEdF9JUkZjNTNSTW9yZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoK2BWvBKxFKFyZd5d0Lw7GwxrHdr54pJhLYsPfd8kexxvcDnWhAZZySS7CXr hCBlYE8+luL9+37Zt7sobQiNmZNZ4jGrI3bufdnGxSPewV9Qz3IPSQGVt2NrCbft J/i6daKJMtGfW+ADBlHNlkoV9LsTIIPE7briUQ96ebWBDhrMzE3saHxCwwECJVW0 mUs60pcnbNKUR4HiiDVG5czYqOnxiwb1v/GyUEIkUw+U16HAzL3AgQ6o51W5vNFE nO567NaGQBfJKY3MGDQPbMAyLXnQqP4HevEosaoEfb2I4D1peX9fcvGfSoZ0/guX 3n8cAU9qDEhvhxdcGQBa9GgbHA== -----END CERTIFICATE-----Generated at Mon Apr 20 08:40:56 2026 by rpki-client