$ rpki-client -vvf rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft File: 2en59z7k9bHN8XYsLfODKVCja30.mft (raw, json) Hash identifier: ++QBh07hl/v8xufoSGlxwNv3t1DQR+sztQ5iSq2pASU= Subject key identifier: 08:F9:AA:79:89:DD:0E:1F:B0:71:95:70:D6:0A:02:97:F6:2F:12:5A Authority key identifier: D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D Certificate issuer: /CN=A91AACB2/serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Certificate serial: 3538 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft Manifest number: 352F Signing time: Sat 04 Apr 2026 14:56:23 +0000 Manifest this update: Sat 04 Apr 2026 14:56:22 +0000 Manifest next update: Sat 11 Apr 2026 14:56:22 +0000 Files and hashes: 1: 2en59z7k9bHN8XYsLfODKVCja30.crl (hash: igtS6MELwWwHl6oX/zyxroL5jUOQfBRLibwV3KyMta8=) 2: 76B5C744B45E11EAB71DF94AC4F9AE02.roa (hash: OrYwlHpiSmZNjD507c7+5SVsF6TOXtHT7d2m6BJQ+nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:56:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13624 (0x3538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AACB2, serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Validity Not Before: Apr 4 14:56:22 2026 GMT Not After : Apr 11 14:56:22 2026 GMT Subject: CN=69d12696-f87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:95:cf:61:ba:fd:90:33:46:6a:d0:60:41:54: d7:4c:a2:51:9d:e0:f6:16:81:9f:58:50:8c:03:ff: ff:16:3a:3c:5b:42:b8:5a:97:55:a4:91:22:32:35: 14:c1:a9:d2:1f:b7:de:99:de:28:f4:1f:59:7a:af: 1f:6e:95:29:ba:69:d8:bd:e0:2f:4c:8f:04:92:77: b3:35:7d:99:27:19:21:86:fa:11:d5:24:49:aa:ef: 47:2f:5e:90:a6:ce:53:ae:4f:c5:93:1a:e3:d9:35: e2:6f:33:29:05:92:c8:16:56:0c:e9:46:76:0f:0d: ce:6e:b1:ff:20:6a:54:95:d6:1c:36:82:53:46:12: d1:a0:fe:7b:d8:bc:53:95:5e:22:35:4b:6e:5c:3a: 33:d1:6d:8a:57:88:ff:50:63:d0:a4:d1:03:a9:90: 54:f0:da:11:72:5a:61:f6:13:41:16:ae:d7:4d:fd: da:0d:14:98:43:2c:26:6e:77:56:ff:47:c4:00:d4: ab:a8:6d:7a:ef:b9:f3:f8:45:b6:19:a6:22:95:8c: 21:25:9e:c7:17:ec:23:ea:a6:20:b1:c1:80:c2:b5: ed:75:8a:9f:cf:31:d7:f0:84:fb:a3:1e:d8:c9:59: 04:0f:c1:e1:2f:bc:39:76:50:e2:ab:b4:cc:b4:14: d4:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:F9:AA:79:89:DD:0E:1F:B0:71:95:70:D6:0A:02:97:F6:2F:12:5A X509v3 Authority Key Identifier: keyid:D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:ad:e4:b3:79:cc:53:d8:c2:80:1b:b0:24:8c:a8:0f:85:f1: f6:aa:c3:f0:71:be:d9:93:04:b5:c6:6d:81:9d:dd:3f:0c:d1: a0:40:22:6a:83:70:4c:83:1c:43:70:54:87:35:a9:79:d7:56: 90:95:b2:8a:99:aa:13:10:ed:7f:3c:15:a8:08:95:00:d8:2f: c6:53:83:9a:c8:35:d1:42:46:ac:54:7c:cd:6f:0d:31:98:5e: eb:02:91:c4:0b:dc:be:d9:f9:0f:49:2c:f3:0d:bb:45:35:bc: c7:77:eb:c9:b2:35:52:fc:64:de:48:4e:0b:df:33:fc:f2:ba: 83:88:8f:ba:05:5c:a8:25:7a:4b:32:f6:e6:bc:6f:6e:3c:fc: 0e:3f:bc:97:18:6a:2c:2e:aa:23:39:3e:ec:37:08:c4:0f:d6: 1a:bd:f6:fc:c7:ff:33:59:42:6d:94:cb:a7:3e:79:69:00:f8: 1e:bd:4f:48:a3:c3:cd:7b:f1:68:b8:02:7d:8b:2a:e7:fa:3a: 81:50:91:28:4f:f3:67:05:3b:d6:c9:3a:ed:df:ce:af:9e:2f: d1:b7:30:d7:ad:bb:f7:08:86:72:89:cf:f4:18:ee:ad:42:d5: 9b:b9:6a:a5:96:33:9d:c4:e7:17:98:07:08:46:4b:99:63:b1: ad:0f:21:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDQjIxMTAvBgNVBAUTKEQ5RTlGOUY3M0VFNEY1QjFDREYxNzYyQzJERjM4MzI5 NTBBMzZCN0QwHhcNMjYwNDA0MTQ1NjIyWhcNMjYwNDExMTQ1NjIyWjAYMRYwFAYD VQQDEw02OWQxMjY5Ni1mODdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5XPYbr9kDNGatBgQVTXTKJRneD2FoGfWFCMA///Fjo8W0K4WpdVpJEiMjUU wanSH7femd4o9B9Zeq8fbpUpumnYveAvTI8EknezNX2ZJxkhhvoR1SRJqu9HL16Q ps5Trk/Fkxrj2TXibzMpBZLIFlYM6UZ2Dw3ObrH/IGpUldYcNoJTRhLRoP572LxT lV4iNUtuXDoz0W2KV4j/UGPQpNEDqZBU8NoRclph9hNBFq7XTf3aDRSYQywmbndW /0fEANSrqG1677nz+EW2GaYilYwhJZ7HF+wj6qYgscGAwrXtdYqfzzHX8IT7ox7Y yVkED8HhL7w5dlDiq7TMtBTUYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAj5qnmJ 3Q4fsHGVcNYKApf2LxJaMB8GA1UdIwQYMBaAFNnp+fc+5PWxzfF2LC3zgylQo2t9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUNCMi8zN0Q1QTNERTFE OUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azliSE44WFlzTGZPREtWQ2ph MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJlbjU5ejdrOWJITjhYWXNMZk9ES1ZDamEzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUNCMi8zN0Q1QTNERTFEOUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azli SE44WFlzTGZPREtWQ2phMzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAua3ks3nMU9jCgBuwJIyoD4Xx9qrD8HG+2ZMEtcZtgZ3dPwzRoEAiaoNwTIMc Q3BUhzWpeddWkJWyipmqExDtfzwVqAiVANgvxlODmsg10UJGrFR8zW8NMZhe6wKR xAvcvtn5D0ks8w27RTW8x3frybI1Uvxk3khOC98z/PK6g4iPugVcqCV6SzL25rxv bjz8Dj+8lxhqLC6qIzk+7DcIxA/WGr32/Mf/M1lCbZTLpz55aQD4Hr1PSKPDzXvx aLgCfYsq5/o6gVCRKE/zZwU71sk67d/Or54v0bcw16279wiGconP9BjurULVm7lq pZYzncTnF5gHCEZLmWOxrQ8h2Q== -----END CERTIFICATE-----Generated at Mon Apr 6 09:02:34 2026 by rpki-client