$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: /E35+WDms5YcNbXqMY2YNUcAQw1Y9PKB3BAe4eE60CM= Subject key identifier: 08:31:4D:C9:F5:8D:E6:D3:D6:ED:35:F7:23:39:4A:82:6A:49:89:95 Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0EB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 10E1 Signing time: Sat 04 Apr 2026 17:35:44 +0000 Manifest this update: Sat 04 Apr 2026 17:35:44 +0000 Manifest next update: Sat 11 Apr 2026 17:35:44 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: +vvLOT0jgH6EyHNPhvwwRZWyHfOiD+EXyVtYP/82H2k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3768 (0xeb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Apr 4 17:35:44 2026 GMT Not After : Apr 11 17:35:44 2026 GMT Subject: CN=69d14bf0-0cfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d1:1f:bb:1c:af:73:26:3b:f4:d0:86:93:48: c1:e0:28:4b:d4:c8:56:fb:53:f1:62:96:37:6a:63: 93:03:1d:4e:da:a0:bc:fe:62:a9:d7:b5:5e:5e:7b: 28:73:1b:c5:3f:f2:67:7c:7a:d3:a8:dd:1c:dc:07: 96:6e:56:20:35:e5:16:91:aa:ff:88:e9:c4:e7:e5: 93:09:a5:82:2e:2b:f6:16:ca:ea:bc:df:bc:1b:d1: a6:75:59:da:90:04:4d:05:81:f2:5c:84:df:ed:fb: b6:c2:17:01:d4:b9:2b:cb:b4:88:8d:27:85:c4:93: 80:e8:e2:a6:80:21:f7:93:20:96:e3:b5:37:17:b1: f8:78:98:1b:94:9c:f0:20:c0:33:49:dd:57:96:fb: a4:1a:d0:4c:6f:f9:53:0d:0c:7a:5e:76:7c:7f:ca: 5f:2c:29:e1:5a:66:6d:e1:a3:3d:48:1b:bd:ec:8e: c5:46:35:90:73:79:fd:bd:01:f8:79:82:85:97:4e: 9e:77:cd:c3:45:4e:aa:aa:21:ff:eb:db:6c:59:1c: 1f:6a:a3:5d:3d:4f:d5:f5:1d:00:ff:a6:98:9b:a4: 06:d1:ae:ed:31:75:e6:e9:fc:11:0c:31:76:f8:b7: 6e:7a:17:cb:e7:4a:84:59:83:3b:2d:58:53:9b:38: c7:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:31:4D:C9:F5:8D:E6:D3:D6:ED:35:F7:23:39:4A:82:6A:49:89:95 X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:47:0a:76:f4:0b:30:89:4f:05:ef:f9:69:01:73:77:8b:83: 5d:51:9b:28:a3:65:b3:c6:06:0a:e8:24:07:f8:c8:b8:65:57: 6b:e1:c0:19:6e:9f:19:17:ce:87:6b:94:18:e7:67:ea:16:b9: 76:72:c4:29:e1:35:88:c2:bb:32:de:b5:bf:0e:bc:90:1e:92: f2:b1:86:b6:93:dd:44:01:e2:15:39:9c:02:57:88:50:94:f4: ca:c8:0d:db:65:c6:8a:55:28:45:6b:a1:d0:1a:8b:21:98:6e: 63:48:9b:a6:59:f3:cf:0f:36:93:5c:73:56:97:e7:5f:38:1c: 9a:15:00:6f:8a:dc:f2:16:9b:2a:fb:07:24:20:31:9e:22:b8: ab:e4:a2:31:39:08:3a:3b:3c:1f:16:53:c6:71:f4:f5:20:50: 68:53:c2:c4:b6:23:63:95:97:4e:90:a4:bb:15:b6:c9:b4:1c: 21:9f:2e:37:69:c1:e0:8f:58:da:cb:59:62:49:42:58:b5:ea: 77:c7:af:11:58:fd:95:d8:65:69:f0:3c:e4:17:a1:12:3f:18: cc:48:62:cd:3c:60:db:12:b3:de:ce:c3:21:17:54:ef:93:e1: bc:10:54:f3:9e:35:33:84:40:ce:bd:bd:a9:c7:ca:57:41:eb: 2d:42:84:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjYwNDA0MTczNTQ0WhcNMjYwNDExMTczNTQ0WjAYMRYwFAYD VQQDEw02OWQxNGJmMC0wY2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNEfuxyvcyY79NCGk0jB4ChL1MhW+1PxYpY3amOTAx1O2qC8/mKp17VeXnso cxvFP/JnfHrTqN0c3AeWblYgNeUWkar/iOnE5+WTCaWCLiv2FsrqvN+8G9GmdVna kARNBYHyXITf7fu2whcB1Lkry7SIjSeFxJOA6OKmgCH3kyCW47U3F7H4eJgblJzw IMAzSd1XlvukGtBMb/lTDQx6XnZ8f8pfLCnhWmZt4aM9SBu97I7FRjWQc3n9vQH4 eYKFl06ed83DRU6qqiH/69tsWRwfaqNdPU/V9R0A/6aYm6QG0a7tMXXm6fwRDDF2 +LduehfL50qEWYM7LVhTmzjH0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAgxTcn1 jebT1u019yM5SoJqSYmVMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ0cKdvQLMIlPBe/5aQFzd4uDXVGbKKNls8YGCugkB/jIuGVXa+HAGW6fGRfO h2uUGOdn6ha5dnLEKeE1iMK7Mt61vw68kB6S8rGGtpPdRAHiFTmcAleIUJT0ysgN 22XGilUoRWuh0BqLIZhuY0ibplnzzw82k1xzVpfnXzgcmhUAb4rc8habKvsHJCAx niK4q+SiMTkIOjs8HxZTxnH09SBQaFPCxLYjY5WXTpCkuxW2ybQcIZ8uN2nB4I9Y 2stZYklCWLXqd8evEVj9ldhlafA85BehEj8YzEhizTxg2xKz3s7DIRdU75PhvBBU 8541M4RAzr29qcfKV0HrLUKETA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:33:01 2026 by rpki-client