$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft File: 2IDvJluUDjHf7RxCrvUUS2RBNxc.mft (raw, json) Hash identifier: mSLJXUHu8c5NUh6RaADEKyITh5DvHR5Dt1vsWqgDS9c= Subject key identifier: EA:36:0A:A2:01:A8:DC:5C:7C:00:F4:87:CB:85:75:8E:36:70:3F:51 Authority key identifier: D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 Certificate issuer: /CN=A91CFA8E/serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Certificate serial: 0259 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft Manifest number: 0244 Signing time: Sun 05 Apr 2026 02:22:02 +0000 Manifest this update: Sun 05 Apr 2026 02:22:02 +0000 Manifest next update: Sun 12 Apr 2026 02:22:02 +0000 Files and hashes: 1: 2IDvJluUDjHf7RxCrvUUS2RBNxc.crl (hash: iYpQUHlp0qxpibqpzlli1E/0BPHrMVqPdTqL/QgmVCQ=) 2: 61663178F88311EDB1DF555DC4F9AE02.roa (hash: G33TYspXU2Fxzv5ILVfshRhaPdOVDek7NtRxACK31hc=) 3: 43E961E013E711EE8ECA2D3CC4F9AE02.roa (hash: m/7u6/cH3KIH4vE9NfTnYL7F2XJXhLpUKXKxJGJi1F4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:22:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 601 (0x259) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8E, serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Validity Not Before: Apr 5 02:22:02 2026 GMT Not After : Apr 12 02:22:02 2026 GMT Subject: CN=69d1c74a-43e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0c:5e:9e:da:69:92:4f:f8:49:ce:01:ec:2b: a2:ce:77:b5:8d:75:1a:cd:12:1f:ee:1d:a2:59:86: 8d:6b:cd:ca:90:ac:fb:8c:8b:79:e7:a2:16:73:3b: 4c:01:be:f4:a8:6a:d0:6f:13:f4:6b:10:8a:b5:ad: 56:2c:90:07:5b:d2:98:cc:a1:60:cd:3e:3a:67:1a: a5:09:4a:da:23:be:72:2d:65:a9:69:cf:9e:1f:fa: d5:ae:5b:ee:92:63:01:a7:c7:1d:48:3f:d6:9a:2e: b2:df:e4:57:75:6e:b7:30:69:6b:6b:34:1d:d3:12: 3a:54:b9:7a:cc:8f:e0:84:9d:46:59:bc:78:59:46: 74:77:2a:0c:4e:82:12:ce:9a:43:bf:c0:2d:96:0f: 55:c5:fe:32:90:3e:87:e6:6f:ab:de:7b:84:fe:46: e0:54:ae:e5:59:ad:98:28:f1:0c:07:82:dd:8b:67: cd:ee:c0:1e:20:cb:f9:fa:50:a7:02:84:65:51:e2: ba:d3:2c:ea:7a:23:56:82:0b:58:3c:c1:cb:22:7d: 7c:b9:09:29:d9:7c:97:43:90:09:0d:b3:9c:2f:8a: 28:0f:a7:10:40:bb:b4:f3:c5:35:90:d0:a1:0e:39: 34:49:71:12:70:5d:18:d4:e8:7d:1b:9d:70:b8:d0: bf:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:36:0A:A2:01:A8:DC:5C:7C:00:F4:87:CB:85:75:8E:36:70:3F:51 X509v3 Authority Key Identifier: keyid:D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:b4:a6:e5:9d:2a:f6:5f:40:a4:82:f7:e6:8d:f8:53:26:4a: 62:c8:70:cd:d4:ff:d5:9c:33:5f:f9:61:b2:65:d5:a5:ea:83: b2:67:eb:87:9a:0e:68:fe:43:1a:1c:ad:2c:14:e6:18:fc:7d: b1:fb:62:ac:8b:d2:cf:e5:1f:9d:e9:b5:96:e1:8b:3f:ff:80: 56:f9:85:fe:e7:11:5c:81:cc:f6:97:17:f2:4a:e0:1a:ae:24: ae:44:b1:ca:25:0a:70:8b:06:77:c3:5d:f9:65:a5:a5:c8:f0: 4d:6b:08:8a:45:eb:6c:25:31:48:1c:23:28:9c:06:bb:87:83: 0a:0f:59:e5:0e:b8:86:33:63:e6:ab:54:55:27:fb:52:bf:85: 4f:b2:6e:b6:7e:9c:ad:23:d9:a5:ef:e2:66:1d:2f:87:74:d7: 54:1a:72:11:0a:b6:5d:30:0c:8a:8e:80:95:06:ea:c0:95:06: b2:2c:d1:18:6a:93:bb:06:38:7b:b0:13:6c:91:27:95:d2:e7: 1c:f2:d4:f5:0d:4e:ba:be:26:c0:35:69:a6:6f:62:46:32:59: 01:6c:22:67:77:a6:e8:de:42:de:e1:1d:03:43:91:9c:5c:ff: 1e:97:48:53:30:8a:17:e6:32:e6:72:9e:05:42:f9:d1:1d:e7: f5:cc:00:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEUxMTAvBgNVBAUTKEQ4ODBFRjI2NUI5NDBFMzFERkVEMUM0MkFFRjUxNDRC NjQ0MTM3MTcwHhcNMjYwNDA1MDIyMjAyWhcNMjYwNDEyMDIyMjAyWjAYMRYwFAYD VQQDEw02OWQxYzc0YS00M2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQxentppkk/4Sc4B7Cuizne1jXUazRIf7h2iWYaNa83KkKz7jIt556IWcztM Ab70qGrQbxP0axCKta1WLJAHW9KYzKFgzT46ZxqlCUraI75yLWWpac+eH/rVrlvu kmMBp8cdSD/Wmi6y3+RXdW63MGlrazQd0xI6VLl6zI/ghJ1GWbx4WUZ0dyoMToIS zppDv8Atlg9Vxf4ykD6H5m+r3nuE/kbgVK7lWa2YKPEMB4Ldi2fN7sAeIMv5+lCn AoRlUeK60yzqeiNWggtYPMHLIn18uQkp2XyXQ5AJDbOcL4ooD6cQQLu088U1kNCh Djk0SXEScF0Y1Oh9G51wuNC/RwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOo2CqIB qNxcfAD0h8uFdY42cD9RMB8GA1UdIwQYMBaAFNiA7yZblA4x3+0cQq71FEtkQTcX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RS82MUJBRDhFMEY4 N0UxMUVEOTBEODQ0NUNDNEY5QUUwMi8ySUR2Smx1VURqSGY3UnhDcnZVVVMyUkJO eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJJRHZKbHVVRGpIZjdSeENydlVVUzJSQk54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RS82MUJBRDhFMEY4N0UxMUVEOTBEODQ0NUNDNEY5QUUwMi8ySUR2Smx1VURq SGY3UnhDcnZVVVMyUkJOeGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGrSm5Z0q9l9ApIL35o34UyZKYshwzdT/1ZwzX/lhsmXVpeqDsmfrh5oOaP5D GhytLBTmGPx9sftirIvSz+Ufnem1luGLP/+AVvmF/ucRXIHM9pcX8krgGq4krkSx yiUKcIsGd8Nd+WWlpcjwTWsIikXrbCUxSBwjKJwGu4eDCg9Z5Q64hjNj5qtUVSf7 Ur+FT7Jutn6crSPZpe/iZh0vh3TXVBpyEQq2XTAMio6AlQbqwJUGsizRGGqTuwY4 e7ATbJEnldLnHPLU9Q1Our4mwDVppm9iRjJZAWwiZ3em6N5C3uEdA0ORnFz/HpdI UzCKF+Yy5nKeBUL50R3n9cwAaQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:31:49 2026 by rpki-client