$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft File: 2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft (raw, json) Hash identifier: jJp2D2fZAGMUl9uSU3IHqHA6I+CnVLxgjqwt6BqV3ho= Subject key identifier: F8:9F:F8:0E:54:AB:63:F2:2F:15:9B:D5:E8:F8:3C:D4:12:AA:91:B1 Authority key identifier: D9:04:D5:52:C0:EF:32:F2:49:AB:A4:59:7B:D8:4A:15:EE:55:55:C1 Certificate issuer: /CN=A91A5ED2/serialNumber=D904D552C0EF32F249ABA4597BD84A15EE5555C1 Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft Manifest number: B2 Signing time: Tue 21 Apr 2026 06:54:06 +0000 Manifest this update: Tue 21 Apr 2026 06:54:06 +0000 Manifest next update: Tue 28 Apr 2026 06:54:06 +0000 Files and hashes: 1: 2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl (hash: fgBrdlZeWc6raUcIKiyh5zW6VJmDHAHeElrT0km2MNs=) 2: 7C0B5320D61411F0877B8D3FC4F9AE02.roa (hash: KpQfxiJyvIICVPsdtuLBwSdbonk+CBS6pnKnS4H/dIw=) 3: 5A9C0D58311C11F0B91A2E64C4F9AE02.roa (hash: EOyR31nb50n9WnNlb3rcrt1TfJ23uFl543E7Owa7HQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 06:54:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5ED2, serialNumber=D904D552C0EF32F249ABA4597BD84A15EE5555C1 Validity Not Before: Apr 21 06:54:06 2026 GMT Not After : Apr 28 06:54:06 2026 GMT Subject: CN=69e71f0e-f80e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:66:46:b1:e7:d5:0d:74:7a:6e:56:d7:0a:9b: dd:e0:d9:e8:0b:de:3d:3b:06:3e:40:5a:d0:0b:5f: 58:83:83:03:dd:db:d3:f6:2d:70:b5:4f:22:d0:59: 82:69:53:a8:7f:b5:99:a3:9a:a5:e8:08:b0:65:87: dc:9f:a3:d5:f3:f3:22:79:b2:0a:89:78:64:0c:c1: 0c:e7:55:cd:53:35:cc:94:2a:57:b0:b2:1b:b6:e4: f1:a5:2a:05:6b:79:e9:3e:09:9d:27:c9:bd:42:2a: b9:e2:35:d8:aa:5e:50:ca:56:47:ed:fd:24:c3:c4: 9b:78:3a:f2:cb:ed:04:5f:b4:bd:c1:c4:2d:50:51: a1:7c:99:76:f5:44:69:d3:d1:3a:6e:24:62:0d:f9: 2c:29:89:be:69:a6:ff:b9:52:df:4e:55:8d:2c:1f: d6:6f:21:c6:b7:8f:c1:45:8f:00:2d:c9:09:47:af: ca:56:6a:04:b9:7d:9c:e7:65:51:68:d1:6e:8b:12: db:8f:d6:99:57:6e:48:4a:b6:6a:75:87:d2:86:81: 85:e0:42:1d:ca:bc:ec:2d:c3:f9:14:ed:8e:64:ad: 20:85:76:b3:90:66:e0:7e:c7:17:28:05:18:4b:8f: 25:0f:4f:f3:7c:36:c6:9a:45:8b:3b:73:9b:eb:ea: e7:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:9F:F8:0E:54:AB:63:F2:2F:15:9B:D5:E8:F8:3C:D4:12:AA:91:B1 X509v3 Authority Key Identifier: keyid:D9:04:D5:52:C0:EF:32:F2:49:AB:A4:59:7B:D8:4A:15:EE:55:55:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:58:2e:c6:81:74:84:bb:ce:bc:c6:48:27:d1:45:89:2e:71: 0b:ba:d6:06:51:bb:24:3e:d5:9e:4b:e2:8e:68:86:9e:1b:47: c8:8e:25:f4:3e:ba:9f:6d:61:54:3f:cf:b3:6a:57:d7:48:4b: d4:7f:bc:d5:aa:bc:c2:d4:ee:8c:26:1e:d8:47:f5:a8:52:6e: b0:ad:bb:a0:a3:aa:05:03:22:a2:36:ed:d0:a0:a1:5b:e0:db: 0f:24:d3:ad:25:14:80:60:cb:1e:27:07:a3:01:89:87:34:11: 03:c4:8a:5d:15:5a:e7:9e:4c:19:4b:6b:8c:d5:78:d5:02:9d: 53:0a:2c:dd:ef:17:fa:bb:bf:3b:eb:de:04:33:96:8e:6a:2f: 77:f8:a3:3a:6e:49:ba:a2:92:0c:2d:f1:9f:61:9d:70:1f:7a: 41:43:46:45:50:bc:a1:b1:15:90:20:d7:0c:bb:80:9f:ce:a7: 08:72:06:b3:ab:33:72:15:19:60:05:ad:89:1b:30:f7:bb:00: c0:bb:92:30:40:e7:32:4a:0b:ce:82:3c:32:15:e6:35:a2:0b: d1:2e:04:9a:61:13:13:00:42:00:a6:a1:de:9a:93:b2:01:79: 0c:8c:21:48:4e:f3:4f:23:8e:65:72:c0:10:cb:25:57:7d:a0: 7a:21:bf:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVFRDIxMTAvBgNVBAUTKEQ5MDRENTUyQzBFRjMyRjI0OUFCQTQ1OTdCRDg0QTE1 RUU1NTU1QzEwHhcNMjYwNDIxMDY1NDA2WhcNMjYwNDI4MDY1NDA2WjAYMRYwFAYD VQQDEw02OWU3MWYwZS1mODBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomZGsefVDXR6blbXCpvd4NnoC949OwY+QFrQC19Yg4MD3dvT9i1wtU8i0FmC aVOof7WZo5ql6AiwZYfcn6PV8/MiebIKiXhkDMEM51XNUzXMlCpXsLIbtuTxpSoF a3npPgmdJ8m9Qiq54jXYql5QylZH7f0kw8SbeDryy+0EX7S9wcQtUFGhfJl29URp 09E6biRiDfksKYm+aab/uVLfTlWNLB/WbyHGt4/BRY8ALckJR6/KVmoEuX2c52VR aNFuixLbj9aZV25ISrZqdYfShoGF4EIdyrzsLcP5FO2OZK0ghXazkGbgfscXKAUY S48lD0/zfDbGmkWLO3Ob6+rnjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPif+A5U q2PyLxWb1ej4PNQSqpGxMB8GA1UdIwQYMBaAFNkE1VLA7zLySaukWXvYShXuVVXB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUVEMi9GMjQ1QjJENjMx MUIxMUYwQTJGNTExNjBDNEY5QUUwMi8yUVRWVXNEdk12SkpxNlJaZTloS0ZlNVZW Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJRVFZVc0R2TXZKSnE2UlplOWhLRmU1VlZjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUVEMi9GMjQ1QjJENjMxMUIxMUYwQTJGNTExNjBDNEY5QUUwMi8yUVRWVXNEdk12 SkpxNlJaZTloS0ZlNVZWY0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASFguxoF0hLvOvMZIJ9FFiS5xC7rWBlG7JD7VnkvijmiGnhtHyI4l9D66n21h VD/Ps2pX10hL1H+81aq8wtTujCYe2Ef1qFJusK27oKOqBQMiojbt0KChW+DbDyTT rSUUgGDLHicHowGJhzQRA8SKXRVa555MGUtrjNV41QKdUwos3e8X+ru/O+veBDOW jmovd/ijOm5JuqKSDC3xn2GdcB96QUNGRVC8obEVkCDXDLuAn86nCHIGs6szchUZ YAWtiRsw97sAwLuSMEDnMkoLzoI8MhXmNaIL0S4EmmETEwBCAKah3pqTsgF5DIwh SE7zTyOOZXLAEMslV32geiG/Dw== -----END CERTIFICATE-----Generated at Wed Apr 22 07:24:33 2026 by rpki-client