$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft File: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft (raw, json) Hash identifier: nA3P3XYuqVS9gB29/Js+K1CZr24YrjbPRTgu1hmvdq8= Subject key identifier: A3:87:60:E1:37:4E:DC:42:AC:2B:A1:CB:05:FD:C1:CE:D5:81:53:28 Authority key identifier: DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B Certificate issuer: /CN=A91D1C7F/serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Certificate serial: 0416 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft Manifest number: 0407 Signing time: Sun 05 Apr 2026 00:13:07 +0000 Manifest this update: Sun 05 Apr 2026 00:13:07 +0000 Manifest next update: Sun 12 Apr 2026 00:13:07 +0000 Files and hashes: 1: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl (hash: z3JfZl0MkiTdJToc4HRmNiEspzQqa2AXkRO+NrRGMDo=) 2: E5B25D84B0D211ECB7B1BA7DC4F9AE02.roa (hash: VgbuCbt2B5V4RwKAtDeC1bN0tj3w9fLDaipQp5XINf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1046 (0x416) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1C7F, serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Validity Not Before: Apr 5 00:13:07 2026 GMT Not After : Apr 12 00:13:07 2026 GMT Subject: CN=69d1a913-43a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:63:b8:11:6f:1a:5c:e3:a9:1e:3a:84:e6:ad: c5:5a:1d:3c:81:0a:0e:1f:ff:db:88:61:6f:94:9a: 04:44:95:07:01:a0:2b:a3:29:35:63:0d:df:89:7a: bf:11:6a:c8:19:70:57:ae:27:60:be:71:b0:cc:a7: ca:97:bb:b6:7c:9a:78:de:49:b8:1a:a6:30:b1:58: 8c:08:64:31:59:8c:b1:ef:49:ff:84:7b:11:94:d0: b5:08:29:77:e3:33:6e:0d:30:94:a8:87:2e:9b:6a: 5b:30:b0:75:da:c5:05:1e:46:87:13:60:0e:5f:54: 82:b0:8d:43:28:09:21:2e:30:2f:7e:dd:3a:0f:4a: 7b:11:95:61:be:43:3e:a2:46:35:b3:57:c4:55:e6: 17:6f:c1:36:ed:a2:34:85:79:84:41:ea:29:3e:c3: 4e:6f:8c:43:f7:a2:d3:1b:57:10:44:d0:5d:e4:ed: 99:66:5c:f2:90:7a:7b:d3:54:26:ae:5c:df:43:73: 3c:4f:94:10:d8:ad:c1:fc:26:8a:1a:c4:df:8b:74: 05:d2:27:09:ac:27:0d:5b:d9:69:71:8e:9a:6f:a0: 2c:d9:1e:0e:4f:23:f9:1f:d0:14:ef:9d:1e:37:61: 95:7d:8c:f6:78:5c:2b:4f:f4:9d:95:f3:84:1c:d0: df:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:87:60:E1:37:4E:DC:42:AC:2B:A1:CB:05:FD:C1:CE:D5:81:53:28 X509v3 Authority Key Identifier: keyid:DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:4f:a5:70:06:d3:cc:b0:75:b4:38:60:1a:b5:03:a6:43:c1: 46:c0:5a:76:88:73:12:83:6f:b5:00:16:8c:43:b9:43:5f:a5: 04:e1:90:b7:5c:43:d6:44:04:a0:9a:98:f4:07:2a:8e:37:89: b8:ac:b7:d1:0a:ea:2f:4f:42:69:00:94:ba:63:e2:93:9c:1d: 48:4a:59:97:08:ef:7a:f4:f5:83:91:10:4f:e5:b3:4c:fb:7b: 39:e8:27:44:14:b2:1c:ff:64:76:a6:93:ca:a7:38:df:ef:4e: af:23:65:55:c0:9e:bb:3d:f5:d8:1e:92:00:94:60:8f:3b:b3: bd:47:24:0b:ec:c3:89:d5:65:dd:91:03:9d:f6:1e:37:14:db: f0:a6:37:9b:c2:18:81:4a:40:cd:4f:6f:0f:a9:91:aa:cd:8f: d8:92:ea:f3:1c:54:b3:c9:ef:41:98:30:0b:bf:d1:58:77:2b: 5f:42:bb:5e:f2:c7:58:44:04:ec:2b:7d:53:b4:98:c5:f4:fb: 49:90:e9:23:42:9b:57:47:2e:79:da:67:cd:fe:0b:c3:43:77: de:52:db:df:86:70:c7:a4:b1:9a:57:ee:fb:10:c9:67:96:97: 71:16:02:e7:59:f6:fe:c4:f1:e4:c6:fc:f3:f1:a8:59:45:4c: 08:bf:70:4f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFDN0YxMTAvBgNVBAUTKERBQjRBNTJBOEVDMUFBRDZDOTI1MkVFQTRENUQxNTY5 RDI3QUY0NkIwHhcNMjYwNDA1MDAxMzA3WhcNMjYwNDEyMDAxMzA3WjAYMRYwFAYD VQQDEw02OWQxYTkxMy00M2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWO4EW8aXOOpHjqE5q3FWh08gQoOH//biGFvlJoERJUHAaAroyk1Yw3fiXq/ EWrIGXBXridgvnGwzKfKl7u2fJp43km4GqYwsViMCGQxWYyx70n/hHsRlNC1CCl3 4zNuDTCUqIcum2pbMLB12sUFHkaHE2AOX1SCsI1DKAkhLjAvft06D0p7EZVhvkM+ okY1s1fEVeYXb8E27aI0hXmEQeopPsNOb4xD96LTG1cQRNBd5O2ZZlzykHp701Qm rlzfQ3M8T5QQ2K3B/CaKGsTfi3QF0icJrCcNW9lpcY6ab6As2R4OTyP5H9AU750e N2GVfYz2eFwrT/SdlfOEHNDf0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKOHYOE3 TtxCrCuhywX9wc7VgVMoMB8GA1UdIwQYMBaAFNq0pSqOwarWySUu6k1dFWnSevRr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUM3Ri8wOTFFMUVBQUIw RDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0YkpKUzdxVFYwVmFkSjY5 R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyU2xLbzdCcXRiSkpTN3FUVjBWYWRKNjlHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUM3Ri8wOTFFMUVBQUIwRDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0 YkpKUzdxVFYwVmFkSjY5R3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeU+lcAbTzLB1tDhgGrUDpkPBRsBadohzEoNvtQAWjEO5Q1+lBOGQt1xD1kQE oJqY9AcqjjeJuKy30QrqL09CaQCUumPik5wdSEpZlwjvevT1g5EQT+WzTPt7Oegn RBSyHP9kdqaTyqc43+9OryNlVcCeuz312B6SAJRgjzuzvUckC+zDidVl3ZEDnfYe NxTb8KY3m8IYgUpAzU9vD6mRqs2P2JLq8xxUs8nvQZgwC7/RWHcrX0K7XvLHWEQE 7Ct9U7SYxfT7SZDpI0KbV0cuedpnzf4Lw0N33lLb34Zwx6Sxmlfu+xDJZ5aXcRYC 51n2/sTx5Mb88/GoWUVMCL9wTw== -----END CERTIFICATE-----Generated at Mon Apr 6 09:02:02 2026 by rpki-client