$ rpki-client -vvf rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft File: 2fwVW2_aEGxpmlabEgOEkJWKoy8.mft (raw, json) Hash identifier: em6PIq3WUtwReMZONlgez3Lq+++kwX2xmxp4qhk6ARk= Subject key identifier: 2D:AD:5F:FD:07:EC:F4:E8:76:65:5D:08:46:E0:B5:33:A0:C4:B5:13 Authority key identifier: D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F Certificate issuer: /CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Certificate serial: 1AF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft Manifest number: 1AD3 Signing time: Sat 28 Mar 2026 16:15:30 +0000 Manifest this update: Sat 28 Mar 2026 16:15:29 +0000 Manifest next update: Sat 04 Apr 2026 16:15:29 +0000 Files and hashes: 1: 2fwVW2_aEGxpmlabEgOEkJWKoy8.crl (hash: Kemi2pu5L0fMUmSWOv3ez1WisjnNdn0/tpqLt9SJh20=) 2: C443D86A55A311E7896BED09C4F9AE02.roa (hash: fUG/ZYYnzDR6Zz8MPXkWB3U7KRWzJ6ve4ty+0m9uSLY=) 3: A9286C0E6D4411E7AF539270C4F9AE02.roa (hash: 6XEd0uCxQtA9wBbV+Q7/BBTxLNihLCwNHh1QPcQVifo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 16:15:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6899 (0x1af3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B53A5, serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Validity Not Before: Mar 28 16:15:29 2026 GMT Not After : Apr 4 16:15:29 2026 GMT Subject: CN=69c7fea2-8c53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c1:51:e1:2e:92:f8:e0:88:73:f5:28:d9:f9: d6:59:02:db:a5:61:ac:98:c0:a9:33:5d:dc:e2:8d: d0:0c:87:7b:1a:bc:e3:c1:06:e0:10:35:7a:d8:d8: 03:b1:19:54:ec:4b:ba:db:0b:7b:4f:39:bd:7d:d6: f4:0c:ae:fe:cc:1c:ed:be:0e:bc:8f:d4:99:20:1b: 75:74:62:f3:5c:a7:3e:78:b5:ec:8f:46:b4:b3:91: 16:7d:6f:10:e1:55:b1:f5:cf:0d:89:c1:57:01:ab: 83:77:11:de:36:da:b3:fd:d9:1f:4a:3f:9c:4a:71: f6:77:5c:9b:0d:c7:d5:d6:1d:54:e3:bc:a2:00:82: 1f:31:75:c1:20:4c:85:bf:ee:88:e0:9a:40:6e:a9: b4:6f:c7:aa:ef:81:00:27:3a:f6:00:bf:10:6b:92: 01:e7:40:d4:e0:9a:5c:f0:4d:75:38:b1:a0:3d:38: 22:e7:bc:aa:c1:de:15:fc:80:67:6c:aa:76:c8:1a: da:08:09:61:db:98:3c:eb:d2:8c:2f:87:7e:eb:8c: 67:54:0a:6a:55:12:97:f3:43:5f:64:ec:55:40:2a: 81:7b:79:80:36:f0:c5:0c:a6:e6:51:c4:9d:78:a3: 15:41:ed:b2:0e:4b:d5:a4:6b:89:6b:78:71:31:de: cc:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:AD:5F:FD:07:EC:F4:E8:76:65:5D:08:46:E0:B5:33:A0:C4:B5:13 X509v3 Authority Key Identifier: keyid:D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:0c:98:be:c8:64:4c:b3:ec:ec:42:a9:94:ca:01:75:3c:12: c1:8b:ed:05:cc:75:6c:8f:0f:b8:22:08:11:a6:e2:05:32:3c: 66:cf:d8:ec:8f:bd:d4:cb:dd:fa:b8:68:06:77:d3:12:87:9a: fd:cf:33:2e:b6:e2:13:ff:6c:5e:75:57:9c:59:10:5f:7b:79: 08:ea:70:86:80:5a:c0:a6:00:ba:ff:f4:7a:28:a1:2e:b9:01: c9:cd:cc:e9:6b:18:c1:2b:c0:1a:7e:da:9e:19:d8:a2:87:5c: 17:38:a0:67:9a:44:28:46:7e:54:85:84:d5:64:f0:c2:ea:7a: c6:b0:1d:a6:57:41:5a:fc:c7:d5:96:6e:b9:a3:ce:fb:f5:09: b2:98:1a:33:1e:1f:12:cd:cb:1f:88:25:38:6d:19:22:23:7b: 36:0d:c7:e8:72:1d:b4:c9:2d:cd:ff:3d:c7:c9:a6:06:a2:e9: f0:a5:c6:3d:fa:13:d1:e0:72:f3:e6:aa:06:c2:c6:de:57:7e: 83:8b:2f:3e:5b:72:66:50:02:90:ee:cc:4d:01:c6:ab:ec:34: 96:20:48:09:74:09:79:6b:4c:73:2f:c6:51:95:1e:3b:f5:97: fa:6b:64:73:47:16:3a:5d:f8:9d:2e:f7:e3:fc:8f:ce:50:25: d5:04:d5:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzQTUxMTAvBgNVBAUTKEQ5RkMxNTVCNkZEQTEwNkM2OTlBNTY5QjEyMDM4NDkw OTU4QUEzMkYwHhcNMjYwMzI4MTYxNTI5WhcNMjYwNDA0MTYxNTI5WjAYMRYwFAYD VQQDEw02OWM3ZmVhMi04YzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocFR4S6S+OCIc/Uo2fnWWQLbpWGsmMCpM13c4o3QDId7GrzjwQbgEDV62NgD sRlU7Eu62wt7Tzm9fdb0DK7+zBztvg68j9SZIBt1dGLzXKc+eLXsj0a0s5EWfW8Q 4VWx9c8NicFXAauDdxHeNtqz/dkfSj+cSnH2d1ybDcfV1h1U47yiAIIfMXXBIEyF v+6I4JpAbqm0b8eq74EAJzr2AL8Qa5IB50DU4Jpc8E11OLGgPTgi57yqwd4V/IBn bKp2yBraCAlh25g869KML4d+64xnVApqVRKX80NfZOxVQCqBe3mANvDFDKbmUcSd eKMVQe2yDkvVpGuJa3hxMd7MawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC2tX/0H 7PTodmVdCEbgtTOgxLUTMB8GA1UdIwQYMBaAFNn8FVtv2hBsaZpWmxIDhJCViqMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTNBNS8yNTgwQThENjRC NjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVHeHBtbGFiRWdPRWtKV0tv eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmd1ZXMl9hRUd4cG1sYWJFZ09Fa0pXS295OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTNBNS8yNTgwQThENjRCNjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVH eHBtbGFiRWdPRWtKV0tveTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbwyYvshkTLPs7EKplMoBdTwSwYvtBcx1bI8PuCIIEabiBTI8Zs/Y7I+91Mvd +rhoBnfTEoea/c8zLrbiE/9sXnVXnFkQX3t5COpwhoBawKYAuv/0eiihLrkByc3M 6WsYwSvAGn7anhnYoodcFzigZ5pEKEZ+VIWE1WTwwup6xrAdpldBWvzH1ZZuuaPO +/UJspgaMx4fEs3LH4glOG0ZIiN7Ng3H6HIdtMktzf89x8mmBqLp8KXGPfoT0eBy 8+aqBsLG3ld+g4svPltyZlACkO7MTQHGq+w0liBICXQJeWtMcy/GUZUeO/WX+mtk c0cWOl34nS734/yPzlAl1QTVDw== -----END CERTIFICATE-----Generated at Sun Mar 29 22:57:34 2026 by rpki-client