$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: k7MiJENbeAowknckACy6XRNuiwgnqUQYtM4ZgqDS+/E= Subject key identifier: 8C:5C:7E:7B:7C:9F:4F:66:63:EE:00:BC:94:CD:F9:29:AE:09:C6:D4 Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2C33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2C0D Signing time: Sat 04 Apr 2026 15:29:13 +0000 Manifest this update: Sat 04 Apr 2026 15:29:13 +0000 Manifest next update: Sat 11 Apr 2026 15:29:13 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: BsFh1l7xvO8WX9eFgdM5vMzVp9Pqtc2xs+VPsyYmh3E=) 2: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: 9yPl2RyPXoic4hgvWw1sNI2e0xi/PvyG32cZkvJi8ws=) 3: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: uipKT1Jp/DMN4bzHM/v/VQW3NmoiBvgfgpPCrWFueSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:29:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11315 (0x2c33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Apr 4 15:29:13 2026 GMT Not After : Apr 11 15:29:13 2026 GMT Subject: CN=69d12e49-853f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:1f:96:57:8f:a4:8e:ce:85:3b:5f:15:8d:90: 66:e4:a9:89:56:57:8d:16:8f:58:03:99:03:17:7a: 19:fa:5e:98:84:b1:d2:24:10:a3:29:fe:be:6c:d3: a3:6b:97:69:33:2e:2a:bd:e1:b7:89:38:2d:80:3f: 8b:98:92:2d:04:83:89:cd:9e:d6:b4:c3:3d:ee:84: 40:2f:ea:95:3e:df:cf:03:9f:29:16:1b:4b:ee:31: 90:30:de:47:7c:2a:4a:be:fa:5b:a0:28:60:77:f1: 72:60:71:8a:40:f6:fd:08:30:ea:9c:19:0b:45:c7: 7a:9a:6b:ba:1a:20:46:21:88:82:61:ef:ca:3e:7b: 27:49:fc:97:7b:c2:2a:cd:54:60:98:20:e9:dd:34: 7b:95:e5:ac:9d:4c:0b:eb:81:bf:e9:28:1e:25:e1: 7e:49:3f:88:6b:1f:09:41:7a:cb:6c:53:d4:ea:90: e6:79:7e:e8:ed:a0:2f:f8:ef:af:0d:5c:94:f1:bf: 1a:cc:d6:1b:aa:78:4c:26:fe:2d:98:a7:9c:28:a6: 7c:26:ae:70:55:cf:ed:6f:ac:2e:4a:ef:3f:4d:cc: b0:5b:83:33:85:f4:f8:49:3b:0b:28:3b:13:35:fd: 7b:9c:1a:96:33:a9:1f:05:26:39:77:8a:da:eb:d7: 65:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:5C:7E:7B:7C:9F:4F:66:63:EE:00:BC:94:CD:F9:29:AE:09:C6:D4 X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:72:9e:01:2c:38:e6:ca:12:0c:61:25:b2:f4:9b:43:b6:2a: 3f:e3:31:20:73:22:b4:23:f4:86:79:7c:aa:1f:cf:1a:2a:5d: 51:85:28:99:72:19:21:51:6a:5f:7c:78:e6:5f:72:75:c2:72: 70:f2:f1:eb:e2:e2:3f:ea:bb:ba:7d:ac:83:ee:f7:5e:02:2d: 80:47:41:55:98:19:eb:c6:33:8e:6f:86:e6:c6:90:0f:55:e1: 34:ac:da:8c:ca:40:44:9c:9f:31:b1:78:db:64:2e:da:b5:0b: 3e:3d:70:22:cf:47:d2:f5:da:38:9d:b8:8a:1f:ae:6f:4c:15: 2c:82:a2:7f:2f:08:2b:42:76:bd:c6:00:ac:f0:4d:7d:69:97: 2c:fd:9a:10:a8:66:93:60:67:3d:02:f9:ea:fe:c4:73:12:12: 77:9e:63:9d:82:20:95:c2:fe:0a:c2:fd:ae:94:9f:c6:a8:25: 45:d0:11:67:37:89:17:3e:36:1d:a3:5d:d3:2e:3d:9d:37:62: d9:da:10:9a:b8:02:40:c2:d7:9d:23:b2:e0:e0:74:ff:a0:30: 60:f3:a2:e0:85:b6:e1:b0:2c:5b:e9:3b:51:60:71:a0:17:89: e3:e4:d0:9b:41:75:ae:36:da:12:f4:df:c3:1b:47:c0:69:d0: fc:7f:72:b6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjYwNDA0MTUyOTEzWhcNMjYwNDExMTUyOTEzWjAYMRYwFAYD VQQDEw02OWQxMmU0OS04NTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4R+WV4+kjs6FO18VjZBm5KmJVleNFo9YA5kDF3oZ+l6YhLHSJBCjKf6+bNOj a5dpMy4qveG3iTgtgD+LmJItBIOJzZ7WtMM97oRAL+qVPt/PA58pFhtL7jGQMN5H fCpKvvpboChgd/FyYHGKQPb9CDDqnBkLRcd6mmu6GiBGIYiCYe/KPnsnSfyXe8Iq zVRgmCDp3TR7leWsnUwL64G/6SgeJeF+ST+Iax8JQXrLbFPU6pDmeX7o7aAv+O+v DVyU8b8azNYbqnhMJv4tmKecKKZ8Jq5wVc/tb6wuSu8/TcywW4MzhfT4STsLKDsT Nf17nBqWM6kfBSY5d4ra69dlHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIxcfnt8 n09mY+4AvJTN+SmuCcbUMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAnKeASw45soSDGElsvSbQ7YqP+MxIHMitCP0hnl8qh/PGipdUYUomXIZIVFq X3x45l9ydcJycPLx6+LiP+q7un2sg+73XgItgEdBVZgZ68Yzjm+G5saQD1XhNKza jMpARJyfMbF422Qu2rULPj1wIs9H0vXaOJ24ih+ub0wVLIKify8IK0J2vcYArPBN fWmXLP2aEKhmk2BnPQL56v7EcxISd55jnYIglcL+CsL9rpSfxqglRdARZzeJFz42 HaNd0y49nTdi2doQmrgCQMLXnSOy4OB0/6AwYPOi4IW24bAsW+k7UWBxoBeJ4+TQ m0F1rjbaEvTfwxtHwGnQ/H9ytg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:33:16 2026 by rpki-client