$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft File: 2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft (raw, json) Hash identifier: HzLZpGeuZFPdyk0i+8rel83FZ13HubWn+1ru8Cv1l14= Subject key identifier: 3F:8A:9C:2A:91:95:47:01:07:65:B0:AF:E5:ED:96:1C:F4:DD:E8:A6 Authority key identifier: DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21 Certificate issuer: /CN=A91CF848/serialNumber=DB353F96C0D02CDD4C1F08DA1BC169FEE58D7321 Certificate serial: 02E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft Manifest number: 02DC Signing time: Thu 21 May 2026 01:24:55 +0000 Manifest this update: Thu 21 May 2026 01:24:55 +0000 Manifest next update: Thu 28 May 2026 01:24:55 +0000 Files and hashes: 1: 2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl (hash: eOuFg31KWa+SinqOg4IVe2DDwyL9kw6BDnbLc5bs8PU=) 2: E9399E722E7211EDAE100C3DC4F9AE02.roa (hash: 41XnV0Dfd97uGyPbDbqHHH2dJuzZIdcHH6ek0SjFVbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:24:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 742 (0x2e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF848, serialNumber=DB353F96C0D02CDD4C1F08DA1BC169FEE58D7321 Validity Not Before: May 21 01:24:55 2026 GMT Not After : May 28 01:24:55 2026 GMT Subject: CN=6a0e5ee7-0af6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:be:5e:fd:d9:85:38:ec:99:8b:b8:6a:ed:56: 91:16:22:3e:68:30:7b:c7:b8:ee:07:4e:1e:07:50: 5c:f9:10:fb:75:4c:19:50:e0:97:9c:e8:89:aa:b6: aa:47:cd:d4:4c:59:f4:6b:7a:22:6f:cf:a5:6f:30: 5c:f5:de:be:ca:ef:17:c5:d8:c4:90:1e:bb:d8:1c: c7:5e:08:95:fd:82:a1:3b:55:ef:47:08:c7:00:c6: 51:dd:d4:44:3a:78:15:40:5f:2b:bb:bf:79:12:59: 6b:e5:e4:8e:f3:17:7c:1d:7d:bb:38:25:82:e4:65: 81:3c:fa:5e:f9:1b:de:a0:9c:fd:42:64:c5:a6:65: 86:b4:40:8a:e5:ba:9e:b3:e1:ba:57:5f:5f:66:9a: 63:e8:6c:63:15:b0:d8:63:9e:74:02:f1:e4:8f:b1: 2b:69:09:55:8d:73:a3:2b:e2:f8:c7:20:96:df:58: ac:f3:2e:dd:82:a1:34:1f:41:ba:2c:1a:d4:f7:e8: 1c:e9:52:22:11:c3:3a:0b:69:24:06:ef:fb:ef:25: 56:f2:96:b3:06:14:c3:0f:71:33:4c:86:8b:47:9e: d9:9e:47:38:e2:ec:fe:e0:5b:67:a6:39:5b:f0:fc: 01:9f:c2:91:c5:48:57:fa:49:bf:0c:af:39:ec:fa: a6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:8A:9C:2A:91:95:47:01:07:65:B0:AF:E5:ED:96:1C:F4:DD:E8:A6 X509v3 Authority Key Identifier: keyid:DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:77:7d:d6:f8:5d:e5:ea:a3:b0:bd:62:52:8c:59:01:f7:82: 11:0f:a4:ab:18:f9:a4:f7:08:ce:3d:26:b2:c7:b1:90:c1:0c: 1d:c8:b3:fe:f5:5b:84:fd:2a:1d:7c:6e:39:cb:57:55:4a:18: 8b:f5:c7:9a:68:91:71:69:7a:bd:de:a6:59:aa:c5:36:e0:8c: 47:b2:56:e9:ed:65:9c:ba:5b:2d:ad:15:ba:d9:81:b2:f8:5e: 34:dc:a7:91:69:48:0a:45:6c:a6:f9:a3:2e:5e:78:77:36:30: b1:2a:df:e2:dd:20:ba:8c:09:48:28:46:2a:c6:24:c9:08:2e: 22:ce:08:7d:9b:74:03:97:84:3c:e2:a1:d6:d9:28:16:6e:4d: da:f3:02:ee:81:f4:8b:b3:27:d9:15:bc:f1:0b:65:fa:44:73: c8:4a:8b:4c:ad:96:fb:89:06:77:22:d9:53:69:da:98:93:27: 81:66:62:9f:a7:41:d2:19:8a:0d:47:65:6c:84:9e:05:38:e7: 34:07:9d:c9:fa:3c:0e:10:25:09:b0:c9:46:ff:c4:1d:01:56: 2b:30:80:89:2d:7e:af:44:d0:5e:85:db:e6:32:ab:4f:89:74: d5:c4:d4:46:f6:f2:09:e4:9d:ee:9f:b2:28:81:6c:96:6d:a4: ff:24:53:ba -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y4NDgxMTAvBgNVBAUTKERCMzUzRjk2QzBEMDJDREQ0QzFGMDhEQTFCQzE2OUZF RTU4RDczMjEwHhcNMjYwNTIxMDEyNDU1WhcNMjYwNTI4MDEyNDU1WjAYMRYwFAYD VQQDEw02YTBlNWVlNy0wYWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApb5e/dmFOOyZi7hq7VaRFiI+aDB7x7juB04eB1Bc+RD7dUwZUOCXnOiJqraq R83UTFn0a3oib8+lbzBc9d6+yu8XxdjEkB672BzHXgiV/YKhO1XvRwjHAMZR3dRE OngVQF8ru795Ellr5eSO8xd8HX27OCWC5GWBPPpe+RveoJz9QmTFpmWGtECK5bqe s+G6V19fZppj6GxjFbDYY550AvHkj7EraQlVjXOjK+L4xyCW31is8y7dgqE0H0G6 LBrU9+gc6VIiEcM6C2kkBu/77yVW8pazBhTDD3EzTIaLR57Znkc44uz+4Ftnpjlb 8PwBn8KRxUhX+km/DK857Pqm7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD+KnCqR lUcBB2Wwr+Xtlhz03eimMB8GA1UdIwQYMBaAFNs1P5bA0CzdTB8I2hvBaf7ljXMh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjg0OC9DQURBQjdCMjJF NkUxMUVEQUVBQjNFMzZDNEY5QUUwMi8yelVfbHNEUUxOMU1Id2phRzhGcF91V05j eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6VV9sc0RRTE4xTUh3amFHOEZwX3VXTmN5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjg0OC9DQURBQjdCMjJFNkUxMUVEQUVBQjNFMzZDNEY5QUUwMi8yelVfbHNEUUxO MU1Id2phRzhGcF91V05jeUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmHd91vhd5eqjsL1iUoxZAfeCEQ+kqxj5pPcIzj0mssexkMEMHciz/vVbhP0q HXxuOctXVUoYi/XHmmiRcWl6vd6mWarFNuCMR7JW6e1lnLpbLa0VutmBsvheNNyn kWlICkVspvmjLl54dzYwsSrf4t0guowJSChGKsYkyQguIs4IfZt0A5eEPOKh1tko Fm5N2vMC7oH0i7Mn2RW88Qtl+kRzyEqLTK2W+4kGdyLZU2namJMngWZin6dB0hmK DUdlbISeBTjnNAedyfo8DhAlCbDJRv/EHQFWKzCAiS1+r0TQXoXb5jKrT4l01cTU RvbyCeSd7p+yKIFslm2k/yRTug== -----END CERTIFICATE-----Generated at Thu May 21 10:52:25 2026 by rpki-client