$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft File: 2DkrDZFbmsH00jv5hBlxQG-2GsY.mft (raw, json) Hash identifier: SAPiRB5s+oo/06JRPbjy6kzvvy9ZxCoZMSe2HX/fXcY= Subject key identifier: 77:29:C6:91:45:9F:EB:AC:22:02:98:CF:BC:D5:8F:65:9C:74:E1:C2 Authority key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 Certificate issuer: /CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Certificate serial: 0A64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft Manifest number: 0A3E Signing time: Wed 20 May 2026 19:48:00 +0000 Manifest this update: Wed 20 May 2026 19:48:00 +0000 Manifest next update: Wed 27 May 2026 19:48:00 +0000 Files and hashes: 1: 2DkrDZFbmsH00jv5hBlxQG-2GsY.crl (hash: 2LV9FMhi5mEO02LHj7rtfjTzuBIukIWb/rRtNF+dt1k=) 2: 92B2469A90D411F09BC0A564C4F9AE02.roa (hash: BkbQUsKXIX52vzOm2/vANASw4HXX+/0xUFcUl5+7lq8=) 3: 5AEF27A42ECD11F1AE5BE4D1C4833773.roa (hash: pJrOfhLTXJrzDjh1PttmKiJG9g18KY+/mTy+A26VFpE=) 4: 41622F82F82E11F0BC7D9928396F56BC.roa (hash: BOsXgTgRuoFK1Abqu9y4jRVX+t+6P8y+y8+yHdVIkmA=) 5: 013B99DA986011F08FA4AB86C4F9AE02.roa (hash: SGPYvzHeLCeVexbh9lAx6+ESCRM1l3c2pzV/QopMYDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:47:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2660 (0xa64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DE5, serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Validity Not Before: May 20 19:48:00 2026 GMT Not After : May 27 19:48:00 2026 GMT Subject: CN=6a0e0ff0-d14f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a7:99:ba:46:ec:f7:90:d7:33:47:78:4d:65: 3b:d2:59:db:1f:0b:30:da:21:6d:c4:bb:0b:7e:19: e2:97:01:71:c1:17:cc:0e:62:b2:19:09:0f:40:87: b6:1f:55:8e:58:aa:d0:73:70:d4:5a:7c:b0:ad:9e: 8c:3f:5a:ae:76:11:d8:14:08:c8:1d:9e:bd:c6:c7: ed:b6:17:da:6a:d1:33:c8:e4:2d:2a:93:78:73:c7: 00:54:45:25:0c:d1:0f:52:f9:fd:72:bd:76:d8:80: 31:91:50:86:5b:a7:90:4c:1d:c5:d6:5f:b0:f2:64: 9c:d2:9a:e4:d5:12:3e:1c:fc:a0:08:1b:d9:79:ba: 95:2c:d2:20:d4:a7:0c:bf:ef:14:e8:7d:13:f6:d0: be:89:19:e4:0f:de:ad:07:8e:4a:3b:b8:2c:3e:e4: 39:60:39:34:ac:76:bf:23:27:7f:8d:04:34:01:af: 57:0e:b3:73:54:44:9f:11:5c:2d:43:fd:7b:c5:0f: ca:71:d4:34:64:6d:a4:c3:bd:5c:94:c1:80:83:57: aa:6d:ff:29:c5:b5:66:a3:33:2c:32:0e:25:ae:67: 50:18:45:de:dd:ff:b8:c6:cc:da:67:f7:9e:6c:98: 8b:85:69:fb:ba:05:c5:05:17:88:c3:ad:bb:a7:1d: 04:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:29:C6:91:45:9F:EB:AC:22:02:98:CF:BC:D5:8F:65:9C:74:E1:C2 X509v3 Authority Key Identifier: keyid:D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:c6:e4:23:f0:01:5e:c1:cb:1f:5d:3d:43:e1:8a:99:60:65: 04:df:c4:dd:48:75:33:d0:0a:a6:4d:fd:10:d3:f0:7f:2c:61: 93:ab:71:fd:e2:5f:b8:fc:eb:f4:75:4b:9f:d0:ce:e5:a0:56: cb:fe:52:6c:e8:28:cc:ea:4a:17:e4:93:f4:32:9a:19:c8:29: 14:86:5b:07:5f:a1:c2:eb:0c:ce:4a:aa:25:f2:e3:3d:16:82: d6:f1:bd:71:26:13:08:b5:0d:89:ff:56:0e:b3:ab:7c:41:cf: 27:61:d3:2e:ba:a1:8d:bc:4b:c1:ba:75:56:dd:00:91:e7:25: 5a:7e:91:e5:98:3b:4c:76:bd:42:86:53:c1:9a:0b:84:68:9f: 2e:8c:15:13:d8:41:07:c0:2f:61:ee:d9:7d:fa:40:ed:5f:22: 32:b2:cd:11:f9:a2:88:62:5f:de:49:bc:94:b9:92:18:a7:fb: 71:79:94:2e:76:f0:6e:17:c3:59:4b:a8:38:41:55:99:15:3c: 34:3e:e2:cb:d5:f5:8e:ac:6a:c1:42:42:00:dc:86:93:6e:54: f2:4a:bf:56:10:db:71:83:f1:51:46:84:60:8d:a9:22:b4:a5: 51:a0:d0:1c:f1:26:d5:1b:72:2d:c8:aa:65:a9:bc:17:cc:0a: 84:69:af:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZERTUxMTAvBgNVBAUTKEQ4MzkyQjBEOTE1QjlBQzFGNEQyM0JGOTg0MTk3MTQw NkZCNjFBQzYwHhcNMjYwNTIwMTk0ODAwWhcNMjYwNTI3MTk0ODAwWjAYMRYwFAYD VQQDEw02YTBlMGZmMC1kMTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaeZukbs95DXM0d4TWU70lnbHwsw2iFtxLsLfhnilwFxwRfMDmKyGQkPQIe2 H1WOWKrQc3DUWnywrZ6MP1qudhHYFAjIHZ69xsftthfaatEzyOQtKpN4c8cAVEUl DNEPUvn9cr122IAxkVCGW6eQTB3F1l+w8mSc0prk1RI+HPygCBvZebqVLNIg1KcM v+8U6H0T9tC+iRnkD96tB45KO7gsPuQ5YDk0rHa/Iyd/jQQ0Aa9XDrNzVESfEVwt Q/17xQ/KcdQ0ZG2kw71clMGAg1eqbf8pxbVmozMsMg4lrmdQGEXe3f+4xszaZ/ee bJiLhWn7ugXFBReIw627px0EYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHcpxpFF n+usIgKYz7zVj2WcdOHCMB8GA1UdIwQYMBaAFNg5Kw2RW5rB9NI7+YQZcUBvthrG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkRFNS83MkM1QTlDQzk0 MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1zSDAwanY1aEJseFFHLTJH c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEa3JEWkZibXNIMDBqdjVoQmx4UUctMkdzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkRFNS83MkM1QTlDQzk0MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1z SDAwanY1aEJseFFHLTJHc1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgcbkI/ABXsHLH109Q+GKmWBlBN/E3Uh1M9AKpk39ENPwfyxhk6tx/eJfuPzr 9HVLn9DO5aBWy/5SbOgozOpKF+ST9DKaGcgpFIZbB1+hwusMzkqqJfLjPRaC1vG9 cSYTCLUNif9WDrOrfEHPJ2HTLrqhjbxLwbp1Vt0AkeclWn6R5Zg7THa9QoZTwZoL hGifLowVE9hBB8AvYe7ZffpA7V8iMrLNEfmiiGJf3km8lLmSGKf7cXmULnbwbhfD WUuoOEFVmRU8ND7iy9X1jqxqwUJCANyGk25U8kq/VhDbcYPxUUaEYI2pIrSlUaDQ HPEm1RtyLciqZam8F8wKhGmvZQ== -----END CERTIFICATE-----Generated at Thu May 21 12:36:08 2026 by rpki-client