$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft File: 2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft (raw, json) Hash identifier: Ks8jk1CcYKF+ebouePb5wqFcHHEUpNiCdPFXhlzlSXg= Subject key identifier: 67:F6:65:15:E2:F3:35:5F:BB:48:A8:EE:AE:96:36:62:C3:20:30:71 Authority key identifier: DA:BF:B3:B5:9F:7D:71:6F:D5:2D:45:A7:41:AF:15:9A:F7:EA:F7:BA Certificate issuer: /CN=A91AEAE7/serialNumber=DABFB3B59F7D716FD52D45A741AF159AF7EAF7BA Certificate serial: 0703 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft Manifest number: 06DB Signing time: Thu 12 Mar 2026 21:49:42 +0000 Manifest this update: Thu 12 Mar 2026 21:49:41 +0000 Manifest next update: Thu 19 Mar 2026 21:49:41 +0000 Files and hashes: 1: 2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl (hash: 7Faae+7cXTcuhWPbDLCuQA/jNuiwePcPzXV0RAlR1N8=) 2: 0A7BC528913611EBBD9B811AC4F9AE02.roa (hash: Axv4ofsSe90yP+Tj74eBTq7TDNPSfa7eV4MAl8BctRE=) 3: 09A1853E913611EBBD9B811AC4F9AE02.roa (hash: EIzNMKDFWXT+xpDDB3WLdazu32oeLTAqnJXbS3MPXsE=) 4: 8A345D2891A111EB87E23C38C4F9AE02.roa (hash: mIm/bbZcQkFrDlz9RJ874pUYBEB1ADCrlxMEBQ9UkoE=) 5: 08DCE5BC913611EBBD9B811AC4F9AE02.roa (hash: kK1XQ5Qi/71Yzi7I23BLNly3sjDmgPxSxXxrn5KrS+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 21:49:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1795 (0x703) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEAE7, serialNumber=DABFB3B59F7D716FD52D45A741AF159AF7EAF7BA Validity Not Before: Mar 12 21:49:41 2026 GMT Not After : Mar 19 21:49:41 2026 GMT Subject: CN=69b334f6-ec28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0e:a4:25:8e:78:3d:0b:a7:3e:3e:8f:1a:d6: ae:0a:24:fc:ef:8c:75:ef:60:e1:88:59:c6:b4:95: f3:3b:f2:3e:49:53:dc:7b:fb:22:50:34:72:d4:48: ef:73:6e:77:13:ad:97:93:b4:fa:6b:7a:39:31:85: 3a:6d:fa:c9:ef:ae:1e:55:2c:9f:65:3d:6d:c1:6c: 7a:17:3b:31:64:5d:71:00:72:7b:67:d1:bf:5a:52: f5:34:fc:2f:db:69:9f:42:e8:e8:ff:d9:05:d8:17: 56:e2:e9:09:18:64:60:25:3e:e6:83:c2:66:8e:2e: 55:fd:7c:ff:6b:94:db:6c:5a:eb:b0:33:fa:a0:f1: 34:e0:06:06:64:ff:86:77:89:3d:e3:24:f7:e1:2a: ff:73:df:72:8f:e6:f2:62:92:e1:48:a2:e2:6a:da: 82:4b:06:d3:d8:ca:8d:51:ab:2a:43:cf:67:35:e1: 2c:81:29:89:ed:dc:df:77:18:b4:56:e0:4d:f2:4e: f9:42:54:d5:aa:d8:20:66:b7:7e:5d:43:e4:05:44: ee:3f:db:aa:22:e9:f9:c8:ba:d3:a9:39:53:fe:1e: 0d:65:c5:ee:07:a4:1c:a1:3d:43:68:64:b8:74:83: 59:48:11:55:70:8c:c7:ca:1c:fc:a2:4f:17:9a:d3: 03:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F6:65:15:E2:F3:35:5F:BB:48:A8:EE:AE:96:36:62:C3:20:30:71 X509v3 Authority Key Identifier: keyid:DA:BF:B3:B5:9F:7D:71:6F:D5:2D:45:A7:41:AF:15:9A:F7:EA:F7:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:27:db:d0:f4:6f:ce:72:80:e9:cd:f4:3e:98:47:cd:8b:a8: a5:52:78:6d:90:dd:4c:5f:b4:d5:5e:78:49:28:79:f5:b3:c6: b8:5a:55:c0:de:2e:a5:03:5c:e5:bb:f9:14:ce:f3:73:84:31: fb:73:3e:19:ff:b4:b1:35:33:0a:f2:ee:a0:be:d0:a5:0a:94: 1e:eb:11:45:46:3e:f8:4c:66:3f:8e:8f:c2:72:8b:93:32:93: 05:e5:20:98:6d:4d:2c:4f:02:b6:ec:9b:a1:17:45:ee:c3:e0: 37:7e:82:32:49:e5:c3:9b:ee:98:bf:a0:5c:b8:09:c5:52:94: 31:92:61:7e:77:47:3b:97:a8:55:73:57:9e:86:d8:6d:f9:5d: 86:a6:ed:c8:d1:58:7e:8e:06:b3:72:a7:a4:dc:ee:d5:d2:a2: 5e:61:3c:55:38:42:82:52:4f:21:f3:e1:c9:17:94:ce:8a:01: 95:0b:49:b6:b0:2f:9b:0e:38:c6:a7:91:3e:47:16:2e:6d:ed: 4e:58:58:ea:fe:d0:f9:46:12:90:fd:86:a8:e7:22:04:a4:8d: 05:70:3c:16:71:ac:0e:85:58:f1:f0:52:39:02:ad:b7:8f:31: a5:02:3c:1c:e1:d2:cf:15:59:ae:d6:13:ef:39:cb:9d:42:f4: f5:86:d9:da -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVBRTcxMTAvBgNVBAUTKERBQkZCM0I1OUY3RDcxNkZENTJENDVBNzQxQUYxNTlB RjdFQUY3QkEwHhcNMjYwMzEyMjE0OTQxWhcNMjYwMzE5MjE0OTQxWjAYMRYwFAYD VQQDEw02OWIzMzRmNi1lYzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5g6kJY54PQunPj6PGtauCiT874x172DhiFnGtJXzO/I+SVPce/siUDRy1Ejv c253E62Xk7T6a3o5MYU6bfrJ764eVSyfZT1twWx6FzsxZF1xAHJ7Z9G/WlL1NPwv 22mfQujo/9kF2BdW4ukJGGRgJT7mg8Jmji5V/Xz/a5TbbFrrsDP6oPE04AYGZP+G d4k94yT34Sr/c99yj+byYpLhSKLiatqCSwbT2MqNUasqQ89nNeEsgSmJ7dzfdxi0 VuBN8k75QlTVqtggZrd+XUPkBUTuP9uqIun5yLrTqTlT/h4NZcXuB6QcoT1DaGS4 dINZSBFVcIzHyhz8ok8XmtMD0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGf2ZRXi 8zVfu0io7q6WNmLDIDBxMB8GA1UdIwQYMBaAFNq/s7WffXFv1S1Fp0GvFZr36ve6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUFFNy9FMTgyNTc5Njkw RjMxMUVCOUQyRTBFNEZDNEY5QUUwMi8yci16dFo5OWNXX1ZMVVduUWE4Vm12ZnE5 N28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyLXp0Wjk5Y1dfVkxVV25RYThWbXZmcTk3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUFFNy9FMTgyNTc5NjkwRjMxMUVCOUQyRTBFNEZDNEY5QUUwMi8yci16dFo5OWNX X1ZMVVduUWE4Vm12ZnE5N28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUSfb0PRvznKA6c30PphHzYuopVJ4bZDdTF+01V54SSh59bPGuFpVwN4upQNc 5bv5FM7zc4Qx+3M+Gf+0sTUzCvLuoL7QpQqUHusRRUY++ExmP46PwnKLkzKTBeUg mG1NLE8CtuyboRdF7sPgN36CMknlw5vumL+gXLgJxVKUMZJhfndHO5eoVXNXnobY bfldhqbtyNFYfo4Gs3KnpNzu1dKiXmE8VThCglJPIfPhyReUzooBlQtJtrAvmw44 xqeRPkcWLm3tTlhY6v7Q+UYSkP2GqOciBKSNBXA8FnGsDoVY8fBSOQKtt48xpQI8 HOHSzxVZrtYT7znLnUL09YbZ2g== -----END CERTIFICATE-----Generated at Fri Mar 13 07:25:05 2026 by rpki-client