$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: vaWWeaRHbMeGucd8D7DGEVdm6dmRM/UO8VTYrtni8Oc= Subject key identifier: 67:0F:17:F0:F4:84:A6:4C:4B:23:77:D5:0C:96:5A:03:F5:09:52:46 Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 06D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 06CC Signing time: Wed 20 May 2026 22:21:34 +0000 Manifest this update: Wed 20 May 2026 22:21:34 +0000 Manifest next update: Wed 27 May 2026 22:21:34 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: i2jS3Vty9qESsD2LrkiLHANxKVQuBoTkXS7PcSi4qRs=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: u5ce3mhL9MTgfMANLqmHFxu4YGZmlzL+s2cu4dHRCdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 22:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1747 (0x6d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: May 20 22:21:34 2026 GMT Not After : May 27 22:21:34 2026 GMT Subject: CN=6a0e33ee-cd6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:01:a1:05:42:e7:d3:0a:a2:61:c7:b7:68:4a: 8b:b5:f0:8f:6f:03:97:2a:18:83:90:c1:15:7b:e4: 67:fa:f7:ca:ff:d2:ec:be:83:ab:3b:bd:cd:45:ac: c4:52:82:3b:18:d9:84:06:88:d1:ed:ad:66:8c:c4: 30:25:2c:9a:a2:23:14:76:64:ec:ae:03:88:10:b2: 18:2a:4a:fd:85:1d:ec:c4:a4:7e:90:be:49:80:0e: 79:bf:60:a0:13:f7:7d:39:41:07:b9:d0:74:b4:57: bd:be:23:b5:12:f0:4d:9c:d9:95:be:29:51:c5:71: 71:33:77:ad:3a:de:66:13:ab:98:c3:c7:2b:9f:b2: 6a:b1:5b:ac:77:bd:11:19:20:7b:55:2b:6f:8d:dc: 2e:f4:bd:35:ae:37:ee:67:86:1a:ed:5a:19:2a:72: 44:cd:d9:3f:fc:53:14:35:da:45:6d:cd:6c:fa:be: 6c:4c:77:60:ab:64:8a:8f:a0:f5:d7:39:ac:3b:ca: 05:00:6f:0d:75:0b:9a:19:90:54:66:67:b8:7b:af: 73:d6:84:2f:b3:21:0c:86:28:d6:d1:8b:f8:c9:9f: 97:c1:0d:37:dd:a3:3e:6e:b1:3c:ea:d9:13:1a:05: 08:1b:26:9d:f4:db:fe:89:48:13:6b:cb:21:c1:59: 1e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:0F:17:F0:F4:84:A6:4C:4B:23:77:D5:0C:96:5A:03:F5:09:52:46 X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:98:56:95:d4:6f:c1:c4:be:d1:ee:45:c2:59:2b:e7:cc:ab: e2:1c:8c:cb:92:ef:4e:3d:c2:45:c6:42:99:ec:87:dd:4d:a5: 6c:69:46:1d:50:2e:a3:7b:57:be:29:0b:6d:08:cd:13:80:a7: af:7f:21:d7:f7:0b:f4:47:06:4a:83:c2:a4:dc:78:4b:c2:30: c2:ce:10:12:28:51:8c:a1:ee:08:a9:6f:a9:91:e6:f1:6d:a0: 1b:09:af:1a:bb:4c:97:32:ab:cf:55:7d:53:4a:3b:31:bb:6e: 80:e4:f1:c0:ef:ee:ba:0f:9d:f0:7c:48:e4:a9:ad:87:ec:63: 74:2c:71:6c:33:55:e7:42:d3:f1:c5:6d:8b:19:e8:43:af:37: 53:e8:64:c3:93:48:9e:59:ca:49:b6:10:be:bc:fb:74:d0:62: 83:0a:c0:17:57:04:6b:50:ad:1e:e9:b6:db:fd:d0:b8:1d:ec: bb:2c:5b:f3:24:da:09:0a:90:ba:3f:45:30:63:07:42:7e:91: 45:02:dd:03:bf:5f:39:02:01:39:f8:bc:cc:b4:6a:91:c7:6d: 09:39:12:47:2c:d3:b1:42:c0:d9:63:0e:55:f2:d5:9e:c6:ad: d2:17:bd:9f:f8:40:ab:08:c9:85:8f:c3:73:8e:4e:a8:96:70: d5:ca:64:2e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjYwNTIwMjIyMTM0WhcNMjYwNTI3MjIyMTM0WjAYMRYwFAYD VQQDEw02YTBlMzNlZS1jZDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlAGhBULn0wqiYce3aEqLtfCPbwOXKhiDkMEVe+Rn+vfK/9LsvoOrO73NRazE UoI7GNmEBojR7a1mjMQwJSyaoiMUdmTsrgOIELIYKkr9hR3sxKR+kL5JgA55v2Cg E/d9OUEHudB0tFe9viO1EvBNnNmVvilRxXFxM3etOt5mE6uYw8crn7JqsVusd70R GSB7VStvjdwu9L01rjfuZ4Ya7VoZKnJEzdk//FMUNdpFbc1s+r5sTHdgq2SKj6D1 1zmsO8oFAG8NdQuaGZBUZme4e69z1oQvsyEMhijW0Yv4yZ+XwQ033aM+brE86tkT GgUIGyad9Nv+iUgTa8shwVkedwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGcPF/D0 hKZMSyN31QyWWgP1CVJGMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMJhWldRvwcS+0e5Fwlkr58yr4hyMy5LvTj3CRcZCmeyH3U2lbGlGHVAuo3tX vikLbQjNE4Cnr38h1/cL9EcGSoPCpNx4S8Iwws4QEihRjKHuCKlvqZHm8W2gGwmv GrtMlzKrz1V9U0o7MbtugOTxwO/uug+d8HxI5Kmth+xjdCxxbDNV50LT8cVtixno Q683U+hkw5NInlnKSbYQvrz7dNBigwrAF1cEa1CtHum22/3QuB3suyxb8yTaCQqQ uj9FMGMHQn6RRQLdA79fOQIBOfi8zLRqkcdtCTkSRyzTsULA2WMOVfLVnsat0he9 n/hAqwjJhY/Dc45OqJZw1cpkLg== -----END CERTIFICATE-----Generated at Thu May 21 10:16:01 2026 by rpki-client