$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft File: 2cZrDkILkTQXPVU9FqoLFGt3R3M.mft (raw, json) Hash identifier: 7GiRNNzn4TF5IJo+ETY7Zt+Pq4UhQ2BPFxGA1JXTWOA= Subject key identifier: C8:8F:EF:18:85:79:77:BD:C9:6B:F0:C3:A6:8A:88:36:9A:BD:D7:2F Authority key identifier: D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73 Certificate issuer: /CN=A91B9B0D/serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773 Certificate serial: 06F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft Manifest number: 06F0 Signing time: Sat 04 Apr 2026 21:53:20 +0000 Manifest this update: Sat 04 Apr 2026 21:53:19 +0000 Manifest next update: Sat 11 Apr 2026 21:53:19 +0000 Files and hashes: 1: 2cZrDkILkTQXPVU9FqoLFGt3R3M.crl (hash: iHxiSBgGy9Evrv1es0Jk1OlRizt5KHKj9TXWjiG1HKM=) 2: E0147FC48AB811EB92252D18C4F9AE02.roa (hash: 8HuI6yxWa1nS2qzAi58P3BL+IKSitnw2yYjxmsq1lXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:53:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1785 (0x6f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773 Validity Not Before: Apr 4 21:53:19 2026 GMT Not After : Apr 11 21:53:19 2026 GMT Subject: CN=69d1884f-0706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0a:50:96:33:e8:b6:6e:db:c3:e3:5b:9e:f8: 11:05:09:24:b6:ab:3b:e7:07:7a:71:be:c4:20:c7: 05:a9:81:bf:27:0e:30:32:5d:0f:18:ac:ff:63:fc: af:b8:10:f5:87:fd:89:46:1a:78:79:15:24:9b:13: 41:9f:83:24:2d:28:b5:52:52:e3:3d:48:09:7c:62: 95:43:e0:95:6b:de:07:5b:18:3e:d6:05:db:84:1f: 9b:43:a4:05:b0:8c:2a:7f:3c:6d:94:33:c8:aa:75: ae:09:02:f3:b0:92:a7:79:45:84:b5:ff:be:c1:e4: 3c:45:33:02:88:ca:39:c6:83:5e:35:87:c1:7a:fb: 5a:5b:24:d3:9e:1f:c8:df:47:50:dc:1c:94:da:58: 05:50:63:0d:d6:e1:57:b0:b6:c5:d9:2d:d6:28:2b: 63:c8:0f:f2:78:2f:d5:2e:70:02:57:ec:71:8d:f5: aa:1c:9f:ee:6e:27:37:6c:81:7d:0b:46:dd:01:b8: 5e:2f:b7:6b:4f:1b:bf:18:99:e5:c7:bc:47:7d:59: b8:c5:40:24:53:b8:97:ba:dd:15:ce:ef:81:93:d8: da:f0:7b:9e:26:88:1b:22:31:92:94:ec:f7:38:e6: a0:49:21:e2:7f:54:0e:b2:1a:75:e8:90:dc:09:32: 98:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:8F:EF:18:85:79:77:BD:C9:6B:F0:C3:A6:8A:88:36:9A:BD:D7:2F X509v3 Authority Key Identifier: keyid:D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:55:b0:cd:4a:22:f0:fb:5d:be:e1:a5:1f:1b:1a:02:fe:48: 3c:c2:0a:70:9b:ff:90:17:52:81:aa:cc:fd:61:5a:52:28:26: 05:87:01:31:73:80:84:2b:bc:f2:19:79:6e:83:9a:3f:8b:59: 61:fd:b3:3d:45:d4:ef:9e:4f:9d:3a:f8:99:89:3f:c6:fc:91: 94:ad:d0:ac:c7:ab:88:a2:7d:61:ae:37:4f:82:df:29:4d:09: 83:fe:3b:77:5d:1b:0f:c7:b4:7d:8a:bc:35:cb:77:80:54:58: d4:01:70:53:c4:25:af:97:98:5b:a2:54:9e:0d:27:67:94:bf: 90:8c:91:c4:5c:44:8b:ad:a7:73:79:25:99:eb:d6:6b:a0:48: 2f:97:d5:92:92:24:43:0a:33:89:e5:39:37:3e:6b:c2:9f:d1: 6f:56:fb:30:c2:b2:99:1a:1d:05:62:0a:0e:f0:16:5c:9e:5c: 6e:a8:42:57:74:d7:ca:da:da:4f:5b:6d:64:c8:92:08:eb:d4: 9c:ef:61:c3:27:48:79:99:f7:ab:0a:4e:40:14:7a:3d:cc:2a: db:8f:64:7c:65:5f:39:70:78:49:8c:75:ed:2c:28:a6:35:3f: 80:73:a4:4a:80:95:98:f8:01:f3:b4:e2:38:47:09:b0:6a:27: ab:2a:c1:3d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEQ5QzY2QjBFNDIwQjkxMzQxNzNENTUzRDE2QUEwQjE0 NkI3NzQ3NzMwHhcNMjYwNDA0MjE1MzE5WhcNMjYwNDExMjE1MzE5WjAYMRYwFAYD VQQDEw02OWQxODg0Zi0wNzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQpQljPotm7bw+NbnvgRBQkktqs75wd6cb7EIMcFqYG/Jw4wMl0PGKz/Y/yv uBD1h/2JRhp4eRUkmxNBn4MkLSi1UlLjPUgJfGKVQ+CVa94HWxg+1gXbhB+bQ6QF sIwqfzxtlDPIqnWuCQLzsJKneUWEtf++weQ8RTMCiMo5xoNeNYfBevtaWyTTnh/I 30dQ3ByU2lgFUGMN1uFXsLbF2S3WKCtjyA/yeC/VLnACV+xxjfWqHJ/ubic3bIF9 C0bdAbheL7drTxu/GJnlx7xHfVm4xUAkU7iXut0Vzu+Bk9ja8HueJogbIjGSlOz3 OOagSSHif1QOshp16JDcCTKYSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMiP7xiF eXe9yWvww6aKiDaavdcvMB8GA1UdIwQYMBaAFNnGaw5CC5E0Fz1VPRaqCxRrd0dz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC85OEI3MjgwRThB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi8yY1pyRGtJTGtUUVhQVlU5RnFvTEZHdDNS M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJjWnJEa0lMa1RRWFBWVTlGcW9MRkd0M1IzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC85OEI3MjgwRThBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi8yY1pyRGtJTGtU UVhQVlU5RnFvTEZHdDNSM00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbFWwzUoi8PtdvuGlHxsaAv5IPMIKcJv/kBdSgarM/WFaUigmBYcBMXOAhCu8 8hl5boOaP4tZYf2zPUXU755PnTr4mYk/xvyRlK3QrMeriKJ9Ya43T4LfKU0Jg/47 d10bD8e0fYq8Nct3gFRY1AFwU8Qlr5eYW6JUng0nZ5S/kIyRxFxEi62nc3klmevW a6BIL5fVkpIkQwozieU5Nz5rwp/Rb1b7MMKymRodBWIKDvAWXJ5cbqhCV3TXytra T1ttZMiSCOvUnO9hwydIeZn3qwpOQBR6Pcwq249kfGVfOXB4SYx17SwopjU/gHOk SoCVmPgB87TiOEcJsGonqyrBPQ== -----END CERTIFICATE-----Generated at Mon Apr 6 13:56:53 2026 by rpki-client