$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft File: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft (raw, json) Hash identifier: J0bbV9BrknQzI070WoPnkbv1UNBKDLvpyildLRwR6/g= Subject key identifier: 86:35:41:AF:40:E8:AE:31:58:54:6D:F3:F1:7D:E1:5E:CD:AE:B4:23 Authority key identifier: D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B Certificate issuer: /CN=A91A5A57/serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft Manifest number: 0139 Signing time: Sun 05 Apr 2026 04:48:13 +0000 Manifest this update: Sun 05 Apr 2026 04:48:12 +0000 Manifest next update: Sun 12 Apr 2026 04:48:12 +0000 Files and hashes: 1: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl (hash: nPHHmTpR8AAavVGk9vveB5okw5yLLmb9eLkqSRqE644=) 2: F6382C7A56EC11EF85879C50C4F9AE02.roa (hash: shtxP/SBAQ2iT3UezvldJfibekIWgVIPJ+ZajU+8AuA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:48:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A57, serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B Validity Not Before: Apr 5 04:48:12 2026 GMT Not After : Apr 12 04:48:12 2026 GMT Subject: CN=69d1e98d-9164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:49:65:5f:6b:48:46:47:00:e3:ca:84:73:1f: 74:96:52:05:ee:76:39:90:81:1b:7d:2a:50:9b:5f: f9:44:79:38:55:03:ec:b6:e8:b6:cf:6e:bb:f7:55: 0e:37:92:b6:eb:87:34:ac:d1:4c:c4:32:02:15:bd: 1a:cb:cc:e6:54:78:7e:a6:af:a4:ac:b6:b0:2c:a8: 26:4e:5b:b3:44:20:c0:ca:c1:18:47:b9:c2:34:fb: c1:01:d1:ec:71:45:f5:c6:2c:18:cd:89:4d:fa:49: 63:2a:3c:cf:76:09:80:08:93:1e:79:fc:67:bb:fa: b0:6b:53:1d:30:e4:96:b5:1f:6b:e2:3b:fa:d1:f8: 17:68:68:97:bf:17:ea:39:2a:9f:91:f0:df:0a:ce: 19:3b:9f:e5:8e:f8:d9:1e:34:5f:18:92:bc:06:4d: c8:05:d7:91:c2:80:b2:d4:32:8e:45:61:f7:77:ab: 13:56:7d:5f:2f:59:78:36:db:74:db:a3:22:97:1e: ed:8d:c1:5e:ae:97:77:49:ea:4b:c0:74:48:02:5d: 39:f7:d4:d9:97:b7:4d:37:4f:92:f2:69:35:d4:d7: 1f:6e:5b:9a:c5:b8:90:c8:be:d5:f3:73:10:5e:d7: 18:af:8e:4a:38:95:26:e2:9d:92:36:4e:a7:2f:b2: 29:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:35:41:AF:40:E8:AE:31:58:54:6D:F3:F1:7D:E1:5E:CD:AE:B4:23 X509v3 Authority Key Identifier: keyid:D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:e8:8b:81:50:64:74:60:f2:79:dc:ee:86:8e:1a:c4:2c:e1: e2:2a:a7:eb:59:cf:88:89:7f:6f:27:7c:1e:30:13:2e:7c:2d: 54:4d:19:57:a7:c6:a8:9c:29:7a:10:d7:be:5c:1d:fd:bd:93: d4:c6:73:4e:be:1a:c8:b6:28:fc:6c:20:38:36:8d:fa:1b:75: 2e:fd:05:e0:f5:1b:e8:95:73:2e:66:c2:c9:f8:0f:3b:97:d0: 96:98:ef:92:e8:8d:82:ab:76:54:ce:b6:e8:c6:f5:5a:e3:e6: 86:5f:e0:10:1a:7c:ae:82:35:52:0e:09:7c:ae:d1:16:0e:63: e0:72:53:c9:e3:4f:37:42:61:91:36:39:d3:d9:65:eb:79:52: aa:e6:41:b5:dc:38:d6:e3:8d:12:ce:d1:cc:9d:af:4b:04:d3: ed:13:c9:22:e0:06:6f:91:dd:21:d4:68:b0:41:a7:8e:26:b5: f1:42:f3:25:69:0b:b1:33:fa:58:57:0c:53:32:c8:e3:07:df: 72:0f:3c:b8:e8:1d:5b:4b:ac:79:6b:4f:6e:68:f2:97:8e:58: 3c:30:a0:bd:26:26:20:a1:4c:1e:a7:a2:27:e1:b7:00:26:96: 38:a7:5a:31:11:86:42:02:e9:fd:8f:e8:1e:06:89:b4:93:8e: a9:da:37:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVBNTcxMTAvBgNVBAUTKEQ5QzVEODJBQkQzMEZERDIwRkE5Q0FGM0QxRUQ4NjdE QjA3Njk1NkIwHhcNMjYwNDA1MDQ0ODEyWhcNMjYwNDEyMDQ0ODEyWjAYMRYwFAYD VQQDEw02OWQxZTk4ZC05MTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0llX2tIRkcA48qEcx90llIF7nY5kIEbfSpQm1/5RHk4VQPstui2z26791UO N5K264c0rNFMxDICFb0ay8zmVHh+pq+krLawLKgmTluzRCDAysEYR7nCNPvBAdHs cUX1xiwYzYlN+kljKjzPdgmACJMeefxnu/qwa1MdMOSWtR9r4jv60fgXaGiXvxfq OSqfkfDfCs4ZO5/ljvjZHjRfGJK8Bk3IBdeRwoCy1DKORWH3d6sTVn1fL1l4Ntt0 26Milx7tjcFerpd3SepLwHRIAl0599TZl7dNN0+S8mk11NcfbluaxbiQyL7V83MQ XtcYr45KOJUm4p2SNk6nL7IpowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIY1Qa9A 6K4xWFRt8/F94V7NrrQjMB8GA1UdIwQYMBaAFNnF2Cq9MP3SD6nK89Hthn2wdpVr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUE1Ny82RTc0ODMxMDU2 RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi8yY1hZS3Iwd19kSVBxY3J6MGUyR2ZiQjJs V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJjWFlLcjB3X2RJUHFjcnowZTJHZmJCMmxXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUE1Ny82RTc0ODMxMDU2RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi8yY1hZS3Iwd19k SVBxY3J6MGUyR2ZiQjJsV3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkeiLgVBkdGDyedzuho4axCzh4iqn61nPiIl/byd8HjATLnwtVE0ZV6fGqJwp ehDXvlwd/b2T1MZzTr4ayLYo/GwgODaN+ht1Lv0F4PUb6JVzLmbCyfgPO5fQlpjv kuiNgqt2VM626Mb1WuPmhl/gEBp8roI1Ug4JfK7RFg5j4HJTyeNPN0JhkTY509ll 63lSquZBtdw41uONEs7RzJ2vSwTT7RPJIuAGb5HdIdRosEGnjia18ULzJWkLsTP6 WFcMUzLI4wffcg88uOgdW0useWtPbmjyl45YPDCgvSYmIKFMHqeiJ+G3ACaWOKda MRGGQgLp/Y/oHgaJtJOOqdo32Q== -----END CERTIFICATE-----Generated at Mon Apr 6 13:56:57 2026 by rpki-client