$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft File: 2j9P_11GRonTiYj1-yL2VVCz7_g.mft (raw, json) Hash identifier: aaN38mRqDLi0b78kCwqWUge1J9yDSQbUWLp7dhqPcJQ= Subject key identifier: B2:FC:71:84:5B:70:DA:0D:FE:97:E0:51:AE:59:3E:16:0F:80:27:B2 Authority key identifier: DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 Certificate issuer: /CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Certificate serial: 0542 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft Manifest number: 0509 Signing time: Sat 04 Apr 2026 23:26:29 +0000 Manifest this update: Sat 04 Apr 2026 23:26:28 +0000 Manifest next update: Sat 11 Apr 2026 23:26:28 +0000 Files and hashes: 1: 2j9P_11GRonTiYj1-yL2VVCz7_g.crl (hash: 9QPJnc+RKdcSpJz7SxAEsrXNb6Vpa+h1MVVYDbJ8qNA=) 2: 952AA4424DAF11EC86ED5273C4F9AE02.roa (hash: dY+BZEOINurtJjOA3yhjmWQ4kx2Zua1d5uXKZrya/Kk=) 3: AC63C4A4A62E11ECBDD6843FC4F9AE02.roa (hash: EOMIe0WcNYmNc20xtvF1NWvgi2RMO6+OBmsDK/hEYoY=) 4: 75426BC6A8C511EC8F560C42C4F9AE02.roa (hash: 7xZPQJy4FlDqQRK4ZNxBOqn11xvYRCTnG5Hl+SBa0kA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:26:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1346 (0x542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FFF, serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Validity Not Before: Apr 4 23:26:28 2026 GMT Not After : Apr 11 23:26:28 2026 GMT Subject: CN=69d19e24-8733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:33:00:b8:77:59:de:7c:e8:24:1f:b1:d7:f0: 59:a4:fe:9d:8c:59:5a:09:4e:0c:e3:68:06:43:e7: 38:b7:21:28:89:a8:42:a1:50:dc:d0:d9:c5:82:f0: 62:f6:e6:b0:34:e9:43:3e:75:89:5e:ea:8d:be:af: 31:a4:01:7f:24:40:5f:25:b0:29:2f:a9:b2:f6:53: bc:22:f9:f4:2c:43:c4:97:1e:08:54:c6:57:06:83: f1:9f:70:b9:54:48:1e:3c:da:0c:b5:12:d9:87:ed: 78:29:a6:7a:3c:25:49:a4:19:9d:45:1f:f7:26:47: 71:a9:f1:1c:f3:3f:5c:5f:37:37:ae:88:74:d4:b9: da:06:3a:08:f2:fe:b0:5b:f4:34:51:63:18:98:3b: ef:85:e8:0e:9f:d8:bc:9e:fe:6d:12:ea:f9:70:ad: 9f:bb:80:9b:a2:97:5e:7e:d7:f6:c2:af:ac:60:e5: e5:34:7e:3f:85:29:f1:b0:5c:6e:86:cf:26:57:08: 54:5a:a8:62:44:d5:08:ee:2d:b5:a6:8f:0c:84:f4: 6d:36:f3:7e:3f:2e:29:20:99:d3:13:27:76:e1:cc: 2b:2a:2a:3a:c1:fd:d1:d4:04:3a:e0:b5:20:43:a7: a0:41:cf:8f:52:05:df:c6:22:f9:52:58:18:e4:b9: 10:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:FC:71:84:5B:70:DA:0D:FE:97:E0:51:AE:59:3E:16:0F:80:27:B2 X509v3 Authority Key Identifier: keyid:DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:de:79:0e:b7:76:1d:4f:9f:4b:20:5b:23:b7:06:f5:7c:73: 87:77:10:64:07:da:b2:3e:7e:16:88:72:49:3b:0b:83:c8:ad: d5:13:78:d3:5b:76:87:1a:9b:dd:6b:20:ad:e1:d5:ad:94:fb: fc:94:f0:88:95:66:a9:06:8b:a4:b8:7f:82:f5:a6:10:83:63: a3:b6:81:01:3a:5a:7b:5d:aa:06:88:bf:e8:39:34:5a:3a:e0: 8f:dc:7a:8d:a2:95:f2:e2:bd:93:21:a8:a5:d7:fd:ec:30:9e: 47:38:ca:7a:f8:a1:ff:1b:80:87:e7:01:20:a8:1f:4b:d6:61: 01:4b:d6:74:6a:2c:af:1c:bf:eb:de:31:e6:5a:a5:a5:6a:10: 07:67:ad:5d:a4:ff:6f:49:95:c9:8f:45:b3:1b:e1:5f:f4:a6: f7:f8:63:dd:8a:8b:61:64:b9:a1:96:27:34:74:cc:80:a6:20: 2b:6d:cf:2d:94:c8:1d:71:54:de:ef:68:91:32:34:c7:67:3d: 74:a4:ae:d1:bf:4f:d8:36:e8:55:24:6e:25:e1:ed:bc:c5:26: 1e:5f:1d:90:b2:1b:58:36:6c:a6:d8:a2:c2:ae:a2:43:f6:52: e5:47:c5:38:1a:6a:dc:c1:bc:2c:ba:72:68:2a:dd:11:a8:0d: 23:5c:5b:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRkYxMTAvBgNVBAUTKERBM0Y0RkZGNUQ0NjQ2ODlEMzg5ODhGNUZCMjJGNjU1 NTBCM0VGRjgwHhcNMjYwNDA0MjMyNjI4WhcNMjYwNDExMjMyNjI4WjAYMRYwFAYD VQQDEw02OWQxOWUyNC04NzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzMAuHdZ3nzoJB+x1/BZpP6djFlaCU4M42gGQ+c4tyEoiahCoVDc0NnFgvBi 9uawNOlDPnWJXuqNvq8xpAF/JEBfJbApL6my9lO8Ivn0LEPElx4IVMZXBoPxn3C5 VEgePNoMtRLZh+14KaZ6PCVJpBmdRR/3JkdxqfEc8z9cXzc3roh01LnaBjoI8v6w W/Q0UWMYmDvvhegOn9i8nv5tEur5cK2fu4Cbopdeftf2wq+sYOXlNH4/hSnxsFxu hs8mVwhUWqhiRNUI7i21po8MhPRtNvN+Py4pIJnTEyd24cwrKio6wf3R1AQ64LUg Q6egQc+PUgXfxiL5UlgY5LkQqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLL8cYRb cNoN/pfgUa5ZPhYPgCeyMB8GA1UdIwQYMBaAFNo/T/9dRkaJ04mI9fsi9lVQs+/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZGRi84MkFEMzc3QTRE QUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1JvblRpWWoxLXlMMlZWQ3o3 X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqOVBfMTFHUm9uVGlZajEteUwyVlZDejdfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0ZGRi84MkFEMzc3QTREQUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1Jv blRpWWoxLXlMMlZWQ3o3X2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAq955Drd2HU+fSyBbI7cG9Xxzh3cQZAfasj5+FohySTsLg8it1RN401t2hxqb 3WsgreHVrZT7/JTwiJVmqQaLpLh/gvWmEINjo7aBATpae12qBoi/6Dk0Wjrgj9x6 jaKV8uK9kyGopdf97DCeRzjKevih/xuAh+cBIKgfS9ZhAUvWdGosrxy/694x5lql pWoQB2etXaT/b0mVyY9FsxvhX/Sm9/hj3YqLYWS5oZYnNHTMgKYgK23PLZTIHXFU 3u9okTI0x2c9dKSu0b9P2DboVSRuJeHtvMUmHl8dkLIbWDZsptiiwq6iQ/ZS5UfF OBpq3MG8LLpyaCrdEagNI1xbsg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:47:30 2026 by rpki-client