$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: dt2X44IPwAkWTbLIidkSbfHKnZYmxxkQAi+b4yo3gRg= Subject key identifier: CB:8C:12:B1:27:D3:7E:ED:AA:64:A5:96:93:D0:06:6C:0C:47:0F:DA Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: C3 Signing time: Tue 21 Apr 2026 06:45:52 +0000 Manifest this update: Tue 21 Apr 2026 06:45:52 +0000 Manifest next update: Tue 28 Apr 2026 06:45:52 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: bWlEJ5y89S8IW4mA20HYUObO11wyVSSzt2PClLephiM=) 2: D522C16CBAEB11F09547BA51C4F9AE02.roa (hash: RnihpSJKxhqk9WNkps/6xGJCCbveQoqTufTmq79Au24=) 3: B245BA601C4311F08254DE40C4F9AE02.roa (hash: lKCCxnQLqgGAAxb0II04awvwUyFApZ9TGbpShXSvZgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 06:45:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Apr 21 06:45:52 2026 GMT Not After : Apr 28 06:45:52 2026 GMT Subject: CN=69e71d20-36c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:26:a2:e9:76:ad:3a:f3:84:3a:2f:f1:58:40: 3b:8d:c1:66:cd:a9:b9:c6:1f:dc:3b:84:99:1e:fb: 97:31:1f:73:d1:fd:06:fe:3d:cc:e2:69:fe:88:52: 22:e5:c5:f7:ac:6d:1c:20:c5:a6:af:68:cb:76:b7: 85:fd:f1:de:60:e0:2c:af:3c:f3:1f:7e:60:93:ac: bd:d3:6d:7a:3f:e2:85:35:5e:80:84:f3:01:63:a4: 0e:2e:35:0e:a8:b0:b8:e6:e2:83:68:89:34:05:e6: 94:63:8a:5f:34:58:8c:4e:ff:f8:20:c1:62:fd:ec: e6:b2:a9:1c:f8:67:1f:ec:86:e5:82:4b:15:94:06: 76:07:82:be:7a:06:94:29:a2:9f:64:4e:0f:28:6a: 6c:5e:ee:bc:d8:07:06:c9:2b:53:d2:36:0e:00:7f: d6:38:f3:93:f9:98:ed:41:1c:52:20:82:8f:30:98: 51:ba:cc:89:98:d6:26:3f:48:62:a1:19:60:ca:8d: b3:a8:a1:6f:c5:d6:d4:11:eb:7e:28:7c:78:e9:4a: e9:d7:5d:0b:c6:7a:db:19:cd:c7:64:26:a5:60:71: cf:25:87:20:da:ea:f6:37:ca:6b:b2:de:c6:cf:91: 67:29:90:d0:69:8d:dc:06:bd:74:29:1f:dd:10:56: 6a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:8C:12:B1:27:D3:7E:ED:AA:64:A5:96:93:D0:06:6C:0C:47:0F:DA X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:a9:e1:e8:6f:9f:a5:f7:7e:9d:ba:a8:4d:da:e4:5c:a4:e5: 1a:97:b0:d2:51:c0:fa:b5:5a:af:cb:24:4b:13:8f:ab:02:e8: c1:8d:8a:47:c7:27:34:42:7b:4b:7f:d7:cc:e7:9e:af:15:6a: 1c:ad:2a:dc:4a:48:11:9f:14:5c:a6:92:d7:55:36:25:48:7a: 74:20:ca:12:b6:59:49:61:5c:13:b5:3d:92:0a:4d:f9:2e:0e: bc:2f:02:48:21:c4:ad:78:dd:5e:a4:0f:29:66:35:e4:51:b8: bb:81:05:d6:35:0a:ac:c0:91:a8:f4:14:84:88:20:fb:16:13: 30:7b:fe:d3:e4:c2:b9:97:5a:a5:bf:3e:02:44:0d:ce:50:6f: d8:b5:d3:5e:b7:3b:d9:58:7c:3f:eb:40:5f:03:41:f3:e4:c6: a5:96:08:dd:ac:b6:c4:ab:73:5b:a0:63:33:3a:57:9e:85:e7: 2c:e6:5b:d9:98:d8:9c:71:0a:26:cd:d0:f4:65:bc:30:e4:ca: d2:21:a7:2a:21:3f:a2:87:cb:9d:2b:5a:44:af:be:80:2e:13: ad:2f:d5:3c:ff:d8:93:e1:83:3a:a8:32:06:f7:15:c7:c9:f5: d4:16:66:c4:cd:04:c7:42:f4:11:40:93:e9:8e:50:95:7c:b4: e8:ab:f3:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NTYxMTAvBgNVBAUTKDVGNjk5MTg2QTJFQkNENDVCMUZGNkEwQTRBRjYwNjA2 RjNCM0QwOEQwHhcNMjYwNDIxMDY0NTUyWhcNMjYwNDI4MDY0NTUyWjAYMRYwFAYD VQQDEw02OWU3MWQyMC0zNmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCai6XatOvOEOi/xWEA7jcFmzam5xh/cO4SZHvuXMR9z0f0G/j3M4mn+iFIi 5cX3rG0cIMWmr2jLdreF/fHeYOAsrzzzH35gk6y90216P+KFNV6AhPMBY6QOLjUO qLC45uKDaIk0BeaUY4pfNFiMTv/4IMFi/ezmsqkc+Gcf7IblgksVlAZ2B4K+egaU KaKfZE4PKGpsXu682AcGyStT0jYOAH/WOPOT+ZjtQRxSIIKPMJhRusyJmNYmP0hi oRlgyo2zqKFvxdbUEet+KHx46Urp110LxnrbGc3HZCalYHHPJYcg2ur2N8prst7G z5FnKZDQaY3cBr10KR/dEFZq8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMuMErEn 037tqmSllpPQBmwMRw/aMB8GA1UdIwQYMBaAFF9pkYai681Fsf9qCkr2Bgbzs9CN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1Ni9FRkYyQTBBMDFD NDExMUYwQTk4MjFGM0VDNEY5QUUwMi9YMm1SaHFMcnpVV3hfMm9LU3ZZR0J2T3ow STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg1Ni9FRkYyQTBBMDFDNDExMUYwQTk4MjFGM0VDNEY5QUUwMi9YMm1SaHFMcnpV V3hfMm9LU3ZZR0J2T3owSTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVKnh6G+fpfd+nbqoTdrkXKTlGpew0lHA+rVar8skSxOPqwLowY2KR8cnNEJ7 S3/XzOeerxVqHK0q3EpIEZ8UXKaS11U2JUh6dCDKErZZSWFcE7U9kgpN+S4OvC8C SCHErXjdXqQPKWY15FG4u4EF1jUKrMCRqPQUhIgg+xYTMHv+0+TCuZdapb8+AkQN zlBv2LXTXrc72Vh8P+tAXwNB8+TGpZYI3ay2xKtzW6BjMzpXnoXnLOZb2ZjYnHEK Js3Q9GW8MOTK0iGnKiE/oofLnStaRK++gC4TrS/VPP/Yk+GDOqgyBvcVx8n11BZm xM0Ex0L0EUCT6Y5QlXy06KvzXA== -----END CERTIFICATE-----Generated at Wed Apr 22 02:59:52 2026 by rpki-client