$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft (raw, json) Hash identifier: 9hE4OmKdWS4VFpr8wC5NHixL8Xbr2BZpuOVLP6us1kw= Subject key identifier: FD:49:3E:FE:2A:0C:79:05:FB:5A:22:91:E6:C0:61:C6:1F:26:F3:DB Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: 0188 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft Manifest number: 017C Signing time: Wed 29 Apr 2026 05:12:11 +0000 Manifest this update: Wed 29 Apr 2026 05:12:10 +0000 Manifest next update: Wed 06 May 2026 05:12:10 +0000 Files and hashes: 1: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl (hash: ljKd3qf629lWhX3mNMRHFkebPEriSZmfKIJNPl4JJFI=) 2: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (hash: EOqSQLbOPrsjZ56mAXCzCp42zP2pW/1hVyLkMumCHLc=) 3: B00A68E6014A11EFA8F03B5BC4F9AE02.roa (hash: EFBskJYMHfJRXujHupPsFrdh1ToDlvL0xJdWDE7eAo8=) 4: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (hash: i2+AU5JC1CnIuV2WebgbR1MhXzhp17jyG1HTb2dIKP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 05:12:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93, serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: Apr 29 05:12:10 2026 GMT Not After : May 6 05:12:10 2026 GMT Subject: CN=69f1932a-0274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:be:f7:33:ef:0a:93:47:3f:12:a2:d6:99:e9: 69:7a:6c:37:99:85:03:5d:b9:bb:cc:9e:c7:3e:52: a3:39:7e:fd:34:8d:0f:57:32:8b:79:9a:bc:61:ca: 75:0b:8c:c4:67:eb:e1:e2:d3:a4:49:6f:34:0a:eb: c2:b8:cf:3c:8f:94:d8:ba:2b:10:80:c5:0a:ed:29: c9:18:9a:85:9b:b8:67:f6:fe:f7:fb:56:46:a4:68: 37:7c:38:8f:8e:d7:9a:16:f1:11:96:b7:93:0d:24: b1:e7:f5:c3:d9:ff:ea:a2:2e:63:b9:2a:34:bc:29: 95:e8:10:0a:20:00:39:e1:ab:e6:6e:a4:73:90:85: ed:e6:77:f7:c8:7b:e1:13:6e:a5:e1:c1:8f:3a:0e: 37:0a:69:d2:dc:b2:6b:c5:42:fb:bb:91:7d:f4:56: d3:37:95:42:0f:d3:26:a9:d8:04:fd:94:09:9d:fc: 5c:c0:6a:75:93:c9:32:ca:e9:a2:8f:62:67:42:b6: f2:ee:e4:26:76:db:70:d3:a2:70:4d:f9:20:5b:66: d4:98:a2:cc:2c:63:6f:c5:70:a0:e7:4b:29:36:8b: e2:b7:fb:ef:15:bf:ff:e0:07:e0:13:9a:a2:0c:02: df:33:af:7d:63:8f:7c:ab:c9:0c:f3:41:fc:7d:b0: 3f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:49:3E:FE:2A:0C:79:05:FB:5A:22:91:E6:C0:61:C6:1F:26:F3:DB X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:17:7d:4d:a3:59:f0:d8:46:c5:66:87:0e:5a:07:bf:b4:5a: d7:a9:42:a2:13:10:15:e1:66:94:7b:6f:e1:7b:56:1e:57:ca: f7:f8:a1:f6:e5:73:d2:d1:98:0e:e2:d3:20:81:d4:6a:fb:99: e1:b1:f9:22:3d:39:54:37:3e:1f:fa:0d:5e:82:9c:13:3e:20: be:f5:0f:2d:09:94:e1:fe:cf:e3:cb:80:c4:54:fb:78:00:5a: 35:58:d0:74:42:29:14:b0:05:00:b9:59:0a:9f:a1:6a:30:73: 8f:f6:3a:c6:30:b9:a4:45:b3:a2:2d:f7:2e:b2:0b:4a:68:42: 89:78:73:a4:ae:35:50:90:2a:2f:a8:57:59:99:b9:8e:ae:3f: 60:25:c1:60:01:45:64:ea:5d:20:03:87:a1:c1:33:64:09:c7: b7:45:e7:f6:47:27:d5:b9:4b:d8:46:b5:ac:8f:ec:d5:f3:4a: c5:bd:9c:31:18:9b:86:79:ff:c0:80:89:92:ba:e4:81:e7:52: d4:00:28:a8:ef:de:4d:be:dc:bb:63:6e:d1:6c:6d:e3:d2:86: d3:56:dc:fc:65:13:ec:3f:69:d5:f6:7f:9b:ea:46:59:1e:0d: 8b:e6:c9:e6:ef:61:09:4c:26:1c:88:25:72:26:9f:49:18:dc: da:65:d6:36 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJCOTMxMTAvBgNVBAUTKEQ5RDY1RjdGMzYwOTBDNDAxQkNGMjBENEJDODBDNDNG MERDNTkzM0QwHhcNMjYwNDI5MDUxMjEwWhcNMjYwNTA2MDUxMjEwWjAYMRYwFAYD VQQDEw02OWYxOTMyYS0wMjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArL73M+8Kk0c/EqLWmelpemw3mYUDXbm7zJ7HPlKjOX79NI0PVzKLeZq8Ycp1 C4zEZ+vh4tOkSW80CuvCuM88j5TYuisQgMUK7SnJGJqFm7hn9v73+1ZGpGg3fDiP jteaFvERlreTDSSx5/XD2f/qoi5juSo0vCmV6BAKIAA54avmbqRzkIXt5nf3yHvh E26l4cGPOg43CmnS3LJrxUL7u5F99FbTN5VCD9MmqdgE/ZQJnfxcwGp1k8kyyumi j2JnQrby7uQmdttw06JwTfkgW2bUmKLMLGNvxXCg50spNovit/vvFb//4AfgE5qi DALfM699Y498q8kM80H8fbA/xwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP1JPv4q DHkF+1oikebAYcYfJvPbMB8GA1UdIwQYMBaAFNnWX382CQxAG88g1LyAxD8NxZM9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkI5My8zQUM4NzRFRTAx NDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRFQWJ6eURVdklERVB3M0Zr ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkI5My8zQUM4NzRFRTAxNDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRF QWJ6eURVdklERVB3M0ZrejAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABRd9TaNZ8NhGxWaHDloHv7Ra16lCohMQFeFmlHtv4XtWHlfK9/ih9uVz0tGY DuLTIIHUavuZ4bH5Ij05VDc+H/oNXoKcEz4gvvUPLQmU4f7P48uAxFT7eABaNVjQ dEIpFLAFALlZCp+hajBzj/Y6xjC5pEWzoi33LrILSmhCiXhzpK41UJAqL6hXWZm5 jq4/YCXBYAFFZOpdIAOHocEzZAnHt0Xn9kcn1blL2Ea1rI/s1fNKxb2cMRibhnn/ wICJkrrkgedS1AAoqO/eTb7cu2Nu0Wxt49KG01bc/GUT7D9p1fZ/m+pGWR4Ni+bJ 5u9hCUwmHIglciafSRjc2mXWNg== -----END CERTIFICATE-----Generated at Wed Apr 29 16:58:54 2026 by rpki-client