$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: V7va08F/5gBcIbHIQTxaOHPMJ9G97Duf/fEk6lsTloc= Subject key identifier: 39:55:E3:12:F5:58:D1:45:85:85:B3:A2:1B:BC:A8:A1:1C:FF:06:61 Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 027F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 0271 Signing time: Mon 27 Apr 2026 01:58:47 +0000 Manifest this update: Mon 27 Apr 2026 01:58:47 +0000 Manifest next update: Mon 04 May 2026 01:58:47 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: LSv0OMzS6D3tMoAvBhGbl+WVBak83eDfPzxgKx3I4ZA=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: oqs2HbQnUMYYMDR47oCqmjCl1ra9AMLnfmPG6sV1Oco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 639 (0x27f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68, serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: Apr 27 01:58:47 2026 GMT Not After : May 4 01:58:47 2026 GMT Subject: CN=69eec2d7-cc66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:38:8f:a2:fc:d0:2a:17:22:e9:21:a4:d6:64: cc:ba:80:be:5e:41:ac:70:d9:02:6a:33:ad:01:12: 5e:73:96:0b:05:04:f3:91:54:f1:7c:4d:7e:1b:fa: a6:66:0c:20:38:bc:7c:cf:21:c8:8d:4b:65:52:8c: 98:1c:2f:f0:0b:c7:0b:9f:ed:31:0d:a6:55:9b:6b: 8d:25:b6:c6:b0:bb:52:53:b1:8d:6c:e4:9d:fb:f4: a4:54:e0:8e:ad:6c:85:b7:fb:f7:6a:10:fd:9f:7e: 6c:43:94:71:da:72:3d:cb:c5:78:d3:d5:95:56:8e: 59:39:a6:b6:3a:76:b4:eb:83:59:1e:e7:d3:b6:38: bf:5a:61:f2:62:e8:a2:46:f6:03:65:89:7f:bb:dd: 6a:0e:b2:bb:a5:b1:25:b5:73:e5:b0:e2:0c:27:f6: 08:62:cc:a8:7d:83:f5:72:77:7a:d8:1a:75:0b:ee: 07:fd:78:f0:b7:c5:87:80:d9:19:9f:f3:9a:b5:6b: 93:36:58:c8:86:7d:91:e2:13:c6:2a:81:1d:bd:b4: 40:f4:8d:68:0b:f9:18:86:47:a5:3c:9d:b1:78:6d: 68:8d:b1:f0:c3:a1:65:3a:2e:34:22:fb:dd:0c:00: 46:23:01:73:f1:6f:1c:9c:dd:87:67:68:f4:d6:f6: 23:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:55:E3:12:F5:58:D1:45:85:85:B3:A2:1B:BC:A8:A1:1C:FF:06:61 X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:2b:f9:e8:3f:83:63:fb:92:ef:28:fd:18:76:7b:a2:e1:3a: 61:bc:ca:2d:2e:cd:ca:87:3b:77:0f:2f:3f:c0:6b:1a:c1:98: 4b:24:fb:de:41:80:fc:75:32:f8:9a:71:77:18:80:48:04:4f: c1:c4:9d:fb:e7:23:ab:fe:b6:11:8c:0e:74:53:d1:ad:a7:10: bb:00:34:46:1c:cb:f0:c1:e8:f4:cc:a1:c8:7a:87:8b:b1:f1: c6:6d:9f:f9:32:ee:b2:cc:01:1f:a1:08:00:88:15:44:55:9f: 65:97:ee:47:27:96:24:f1:7d:40:0d:8d:e7:44:08:39:36:da: ca:ea:ff:8a:ee:50:17:d9:9b:a5:60:34:85:8d:50:ad:b0:3b: b3:66:29:da:71:7c:cd:b2:07:d1:c9:e1:82:c4:19:9a:ec:af: d3:0e:6e:3c:d0:21:d9:6a:23:54:2c:4e:a9:d3:56:87:6b:da: f9:1e:a8:e3:f8:c4:43:7e:cb:f3:eb:10:1d:76:47:a2:b8:6d: 27:42:0e:72:94:e5:dd:c8:59:f1:39:54:23:ac:c4:76:00:ec: 04:cc:91:8b:35:5f:4e:34:1b:91:0d:a1:79:73:75:37:47:d4: 46:94:ae:4f:8b:6c:a0:3b:34:36:58:c1:36:8e:06:05:15:67: a2:1b:cb:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjYwNDI3MDE1ODQ3WhcNMjYwNTA0MDE1ODQ3WjAYMRYwFAYD VQQDEw02OWVlYzJkNy1jYzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvziPovzQKhci6SGk1mTMuoC+XkGscNkCajOtARJec5YLBQTzkVTxfE1+G/qm ZgwgOLx8zyHIjUtlUoyYHC/wC8cLn+0xDaZVm2uNJbbGsLtSU7GNbOSd+/SkVOCO rWyFt/v3ahD9n35sQ5Rx2nI9y8V409WVVo5ZOaa2Ona064NZHufTtji/WmHyYuii RvYDZYl/u91qDrK7pbEltXPlsOIMJ/YIYsyofYP1cnd62Bp1C+4H/Xjwt8WHgNkZ n/OatWuTNljIhn2R4hPGKoEdvbRA9I1oC/kYhkelPJ2xeG1ojbHww6FlOi40Ivvd DABGIwFz8W8cnN2HZ2j01vYjQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDlV4xL1 WNFFhYWzohu8qKEc/wZhMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXyv56D+DY/uS7yj9GHZ7ouE6YbzKLS7Nyoc7dw8vP8BrGsGYSyT73kGA/HUy +JpxdxiASARPwcSd++cjq/62EYwOdFPRracQuwA0RhzL8MHo9MyhyHqHi7Hxxm2f +TLusswBH6EIAIgVRFWfZZfuRyeWJPF9QA2N50QIOTbayur/iu5QF9mbpWA0hY1Q rbA7s2Yp2nF8zbIH0cnhgsQZmuyv0w5uPNAh2WojVCxOqdNWh2va+R6o4/jEQ37L 8+sQHXZHorhtJ0IOcpTl3chZ8TlUI6zEdgDsBMyRizVfTjQbkQ2heXN1N0fURpSu T4tsoDs0NljBNo4GBRVnohvLJA== -----END CERTIFICATE-----Generated at Tue Apr 28 23:59:19 2026 by rpki-client