$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft File: 2gE-F4NYyzWot2XJvAkK6c8cT74.mft (raw, json) Hash identifier: JCxl8Mb0TkO76Pom15781Ks9apnaiCpg0Bb07z7uKTw= Subject key identifier: 5A:74:E8:0C:6E:F2:48:A6:E3:AC:34:B6:61:70:ED:1D:FE:DE:E0:B0 Authority key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE Certificate issuer: /CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Certificate serial: 06DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft Manifest number: 06D0 Signing time: Sat 28 Mar 2026 22:09:02 +0000 Manifest this update: Sat 28 Mar 2026 22:09:02 +0000 Manifest next update: Sat 04 Apr 2026 22:09:02 +0000 Files and hashes: 1: 2gE-F4NYyzWot2XJvAkK6c8cT74.crl (hash: 7EW6zqu/xUvuLmofzOi/u1NbzMNsa28MF75SF/NXYko=) 2: 3C5E55F041A411ECA73C8C0EC4F9AE02.roa (hash: 4TxPeOpygNRd5FzhVRcLMiJfVHn++ivvWRelDGah+N0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 22:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1755 (0x6db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C88, serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Validity Not Before: Mar 28 22:09:02 2026 GMT Not After : Apr 4 22:09:02 2026 GMT Subject: CN=69c8517e-1593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2a:ef:70:b2:de:da:2b:d3:f4:04:dc:05:76: 10:55:35:06:6a:f1:6f:74:fe:05:ef:a1:93:8d:6d: 97:59:56:32:d4:66:23:a9:8a:8f:17:64:25:2d:8e: 2a:fb:b5:ba:af:9c:34:25:42:25:2d:83:b2:95:ee: 0c:1e:28:f0:0c:65:b7:94:10:a0:f3:7b:5c:06:89: fb:ac:30:4a:36:fa:d2:ed:45:ed:a7:fb:94:d9:f9: 80:c2:7e:cb:f9:27:98:47:a8:89:37:c5:ac:37:0b: 56:a2:9c:f0:18:31:d9:af:25:e5:a2:95:ba:3e:11: 32:40:ea:04:f7:b5:28:4c:96:99:40:da:99:31:39: 1c:2b:8a:77:88:fc:1f:fe:f1:bc:86:a6:92:5b:e6: 1c:ae:26:89:a4:10:02:3e:a7:83:6f:8f:c6:9d:7a: df:50:94:b2:31:42:22:eb:00:ce:3b:7c:a0:78:12: a0:5c:8a:9f:76:50:77:cb:df:45:c5:62:2d:1d:c8: 56:18:68:01:b4:fd:d5:20:a6:36:54:66:3b:7f:09: 71:33:27:79:b5:b1:1a:49:66:fd:f9:15:06:b0:0a: 67:b6:1e:32:38:3b:81:b8:0f:ee:e5:14:4c:c6:1a: 14:c1:09:6b:f6:6a:b7:24:76:cf:77:09:de:3e:bb: 6a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:74:E8:0C:6E:F2:48:A6:E3:AC:34:B6:61:70:ED:1D:FE:DE:E0:B0 X509v3 Authority Key Identifier: keyid:DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:f7:ad:ea:99:6b:13:92:ab:c4:4f:8c:b2:fa:01:68:c7:65: 68:ca:d5:15:e8:f4:ba:56:3e:fc:ad:11:95:e1:27:96:af:bc: 6c:06:56:99:cb:2b:47:15:07:64:f0:3c:ea:ca:69:4d:81:17: 10:8a:5b:b4:41:e7:dc:0f:e6:df:8f:40:95:29:11:47:9e:08: 47:ce:e2:e6:6d:1e:92:2a:a5:89:14:74:d7:35:50:10:60:9d: f6:bf:3f:6c:0e:1b:4e:8f:b2:2b:1d:a8:16:c8:56:fa:03:cd: e2:b9:47:c2:d4:ab:65:ef:4e:ed:da:41:23:d5:02:e1:d2:29: a7:02:1c:bc:85:e5:36:80:33:f2:cf:4f:a6:9c:f3:75:c4:57: 5f:8e:64:06:42:98:6e:1c:c7:b2:31:7b:a8:b2:c1:11:13:25: eb:4a:8c:ce:f1:56:8f:dd:25:bf:91:9b:3e:51:44:85:c1:5a: 2c:b8:26:52:32:aa:2d:39:45:25:dd:f8:ed:6b:78:27:c8:be: db:f5:06:ad:aa:97:aa:be:31:fa:43:e8:d0:d8:c9:0b:a9:7d: 3b:53:0b:12:fc:4e:b7:81:79:8f:65:92:22:e1:00:a4:46:cb: 75:b0:28:cd:04:14:ea:c6:2c:db:b2:4a:8c:6b:85:f0:e7:75: b4:67:27:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDODgxMTAvBgNVBAUTKERBMDEzRTE3ODM1OENCMzVBOEI3NjVDOUJDMDkwQUU5 Q0YxQzRGQkUwHhcNMjYwMzI4MjIwOTAyWhcNMjYwNDA0MjIwOTAyWjAYMRYwFAYD VQQDEw02OWM4NTE3ZS0xNTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2SrvcLLe2ivT9ATcBXYQVTUGavFvdP4F76GTjW2XWVYy1GYjqYqPF2QlLY4q +7W6r5w0JUIlLYOyle4MHijwDGW3lBCg83tcBon7rDBKNvrS7UXtp/uU2fmAwn7L +SeYR6iJN8WsNwtWopzwGDHZryXlopW6PhEyQOoE97UoTJaZQNqZMTkcK4p3iPwf /vG8hqaSW+YcriaJpBACPqeDb4/GnXrfUJSyMUIi6wDOO3ygeBKgXIqfdlB3y99F xWItHchWGGgBtP3VIKY2VGY7fwlxMyd5tbEaSWb9+RUGsApnth4yODuBuA/u5RRM xhoUwQlr9mq3JHbPdwnePrtqwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFp06Axu 8kim46w0tmFw7R3+3uCwMB8GA1UdIwQYMBaAFNoBPheDWMs1qLdlybwJCunPHE++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM4OC8yNDI5OURDQTk3 OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6V290MlhKdkFrSzZjOGNU NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRS1GNE5ZeXpXb3QyWEp2QWtLNmM4Y1Q3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkM4OC8yNDI5OURDQTk3OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6 V290MlhKdkFrSzZjOGNUNzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAB/et6plrE5KrxE+MsvoBaMdlaMrVFej0ulY+/K0RleEnlq+8bAZWmcsrRxUH ZPA86sppTYEXEIpbtEHn3A/m349AlSkRR54IR87i5m0ekiqliRR01zVQEGCd9r8/ bA4bTo+yKx2oFshW+gPN4rlHwtSrZe9O7dpBI9UC4dIppwIcvIXlNoAz8s9Pppzz dcRXX45kBkKYbhzHsjF7qLLBERMl60qMzvFWj90lv5GbPlFEhcFaLLgmUjKqLTlF Jd347Wt4J8i+2/UGraqXqr4x+kPo0NjJC6l9O1MLEvxOt4F5j2WSIuEApEbLdbAo zQQU6sYs27JKjGuF8Od1tGcnQw== -----END CERTIFICATE-----Generated at Sun Mar 29 17:17:50 2026 by rpki-client