$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft File: 2QDd8konYiv5ZDdX7byv-u4yHDc.mft (raw, json) Hash identifier: 5WHtKHk1oFSutpb1ijz6ocMesGDVoDyqLM3oKV8RCi4= Subject key identifier: 95:92:CD:2B:47:0C:FB:E8:D8:AA:37:1A:52:C5:CE:79:3C:72:87:02 Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0F0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft Manifest number: 0EED Signing time: Sat 04 Apr 2026 17:31:46 +0000 Manifest this update: Sat 04 Apr 2026 17:31:46 +0000 Manifest next update: Sat 11 Apr 2026 17:31:46 +0000 Files and hashes: 1: 2QDd8konYiv5ZDdX7byv-u4yHDc.crl (hash: BY4T+TY7xbqeYHVUS3tnTa1SMnizjRwx6uzdZ6N7eQk=) 2: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (hash: CNBlKRGQG6AMZt4K1SNsAWQxw9T+WIEHof1S1C1ZbKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:31:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3851 (0xf0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773, serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: Apr 4 17:31:46 2026 GMT Not After : Apr 11 17:31:46 2026 GMT Subject: CN=69d14b02-c8c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:31:56:ef:9e:41:cb:ea:54:45:00:6f:29:e4: 91:26:ed:2c:26:ea:95:f5:cb:cb:48:0c:fe:b2:d1: 93:59:9c:74:ab:a6:e1:20:46:75:d0:ea:ed:8a:17: 33:6a:d7:a8:d1:31:35:4b:73:60:42:8b:ca:0b:3a: 11:c7:e3:21:2d:0f:7c:81:5a:a3:48:a3:e6:cf:0e: 64:b3:0c:13:04:60:b5:c7:38:ae:b0:a6:d5:cf:99: ec:37:82:cb:de:3c:8b:0d:cc:c7:ef:c6:c6:be:65: 15:99:dd:3d:5d:35:6b:f9:83:3c:79:7e:ea:c8:af: b0:21:40:bc:36:dc:cc:3f:03:93:e8:73:a4:63:58: 23:57:52:c8:38:51:14:fb:74:1f:fd:d4:c9:b4:55: 65:65:0e:60:c0:e2:c6:88:fd:7e:ed:b9:ad:3f:96: 8d:b5:5b:e9:22:3a:9a:c4:1d:f9:1a:bb:a0:38:bb: cf:58:6e:f0:9a:07:0a:5c:c7:6b:36:43:16:b3:ae: f5:c6:1e:e4:32:2e:d1:bb:40:36:b3:aa:ea:9c:d9: 41:a8:1c:47:37:ae:fe:be:8d:b1:4a:9f:d7:66:5c: b1:57:f1:bc:24:b1:95:30:70:82:c4:60:3f:8f:b1: 90:ef:a0:39:4d:aa:23:3c:39:a8:bc:ae:53:e7:54: e8:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:92:CD:2B:47:0C:FB:E8:D8:AA:37:1A:52:C5:CE:79:3C:72:87:02 X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:63:6c:f3:55:a1:69:59:d7:63:9a:7a:9a:bf:5e:90:ba:94: 3f:f4:c1:2a:fa:7a:9d:02:ce:e5:4e:c0:98:83:89:32:94:8c: 83:b2:cb:ac:af:ac:6e:f9:26:65:a1:55:1a:40:3b:4f:7e:0d: 4d:83:58:b2:0d:c4:56:b2:3f:f3:f5:59:3a:aa:20:c1:d7:b0: 60:61:60:f7:bd:1a:08:ed:27:eb:93:d8:73:84:9a:c6:f4:80: 31:1e:ed:9f:ea:09:14:50:b8:2d:06:1d:be:20:83:c0:93:30: 76:f6:5d:ac:16:cf:14:1a:ec:b8:a1:2e:bc:ac:54:cb:e7:d4: a6:2e:97:43:b6:35:91:2f:ad:3a:c8:fd:9a:d4:84:d1:3a:5d: 89:1e:e5:08:eb:92:5d:25:a5:3e:39:89:39:ec:f4:58:98:99: c1:c0:e5:97:fa:98:b0:15:38:0e:d3:da:fb:e1:75:7d:16:ab: da:91:09:71:25:23:ee:1a:0c:2a:ea:e9:1a:f8:68:42:c1:b4: 99:85:5b:77:ea:de:c7:ea:43:5d:33:75:e3:36:59:67:f9:8e: f1:e9:6d:9f:71:14:34:00:d8:b6:ec:db:82:3d:a1:11:a1:e6: 95:e7:54:58:3d:a4:ab:9d:ab:45:71:ae:3e:97:3e:e8:43:71: ef:c4:b7:76 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjYwNDA0MTczMTQ2WhcNMjYwNDExMTczMTQ2WjAYMRYwFAYD VQQDEw02OWQxNGIwMi1jOGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzFW755By+pURQBvKeSRJu0sJuqV9cvLSAz+stGTWZx0q6bhIEZ10Ortihcz ateo0TE1S3NgQovKCzoRx+MhLQ98gVqjSKPmzw5kswwTBGC1xziusKbVz5nsN4LL 3jyLDczH78bGvmUVmd09XTVr+YM8eX7qyK+wIUC8NtzMPwOT6HOkY1gjV1LIOFEU +3Qf/dTJtFVlZQ5gwOLGiP1+7bmtP5aNtVvpIjqaxB35GrugOLvPWG7wmgcKXMdr NkMWs671xh7kMi7Ru0A2s6rqnNlBqBxHN67+vo2xSp/XZlyxV/G8JLGVMHCCxGA/ j7GQ76A5TaojPDmovK5T51ToYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJWSzStH DPvo2Ko3GlLFznk8cocCMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc3My9BRDMyMjM3Q0EyRTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllp djVaRGRYN2J5di11NHlIRGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxmNs81WhaVnXY5p6mr9ekLqUP/TBKvp6nQLO5U7AmIOJMpSMg7LLrK+sbvkm ZaFVGkA7T34NTYNYsg3EVrI/8/VZOqogwdewYGFg970aCO0n65PYc4SaxvSAMR7t n+oJFFC4LQYdviCDwJMwdvZdrBbPFBrsuKEuvKxUy+fUpi6XQ7Y1kS+tOsj9mtSE 0TpdiR7lCOuSXSWlPjmJOez0WJiZwcDll/qYsBU4DtPa++F1fRar2pEJcSUj7hoM KurpGvhoQsG0mYVbd+rex+pDXTN14zZZZ/mO8eltn3EUNADYtuzbgj2hEaHmledU WD2kq52rRXGuPpc+6ENx78S3dg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:02 2026 by rpki-client