$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: oldOKfnNGPQwu32OYXxZaqhl2pPHc5axTK73IELDnhE= Subject key identifier: F6:28:FE:21:0E:A5:0C:B9:15:6C:42:F3:16:55:EF:A8:A0:F4:9F:EC Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 148B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 1465 Signing time: Sat 18 Apr 2026 15:23:27 +0000 Manifest this update: Sat 18 Apr 2026 15:23:27 +0000 Manifest next update: Sat 25 Apr 2026 15:23:27 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: bb1VI2ccJt727WH1Eb+n4SvQSL6CZnQ8wwhSvJPNDlI=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: Ahq8pAmeUbi/UnTEDIDcD1i65MG+Vf7huahab+3HR9s=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: yi1Y4ZAzUNkEpGZbqmVVGbSuzm1HULg6+CfEtcyOZy0=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: w2NWjfabvdQFP3C4IwPEM+fGnRuZMPns4zEDrwbMyxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5259 (0x148b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Apr 18 15:23:27 2026 GMT Not After : Apr 25 15:23:27 2026 GMT Subject: CN=69e3a1ef-9e5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:60:0f:1e:19:d1:b5:4d:2b:f0:8e:43:bb:37: 60:f2:3b:e4:d7:8c:8c:4f:01:9c:9f:6f:44:c0:b4: af:71:5e:27:ed:9b:bd:d9:4b:1d:dd:8e:b0:de:fa: 37:09:df:28:fa:91:57:52:82:1e:ca:a4:d3:e0:fb: b2:15:bd:82:1f:e9:92:a9:21:28:66:d7:a7:81:ee: 46:45:eb:ef:25:de:49:34:5e:51:2f:df:ed:6f:52: 19:22:31:e6:cc:79:b7:aa:5b:22:97:20:7b:72:8d: ca:4b:bb:34:c5:f3:d4:de:9f:28:87:a2:d2:11:4c: 53:99:a2:d8:a5:29:f8:9e:d7:66:96:69:d8:91:d4: e4:41:42:83:cd:15:72:fb:90:46:f6:50:e9:9b:0a: ca:71:3f:59:fd:7f:b1:81:4e:87:a5:48:ca:39:c8: fd:a1:60:14:c9:e3:0b:fb:4e:2e:a8:38:27:3e:56: de:3a:7e:a5:c0:9a:48:ee:d7:4c:40:04:cb:f2:c7: 1d:d7:05:b1:44:b7:e0:90:08:85:d4:a3:ff:61:5e: 14:8c:c8:20:3e:34:67:b9:41:6b:06:34:1b:d7:39: 7e:41:aa:25:08:9b:3d:0c:04:23:5f:59:c6:0e:ac: da:08:bd:f1:5b:65:0b:ac:a2:d9:5b:7d:10:fb:fb: e9:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:28:FE:21:0E:A5:0C:B9:15:6C:42:F3:16:55:EF:A8:A0:F4:9F:EC X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:ce:3b:99:0c:bf:63:6a:da:ff:5b:f9:22:ef:ed:d9:04:0b: 26:a1:8f:fe:a4:d0:6c:13:e1:72:3e:91:49:08:8e:0b:e3:ac: d9:96:df:ea:53:6d:df:ae:e0:e6:c2:24:24:3c:3a:8e:47:7d: 45:80:8e:a8:b2:48:ea:75:5b:e9:61:66:25:8b:b8:c0:2c:84: 57:ba:3f:64:bc:b0:2e:b4:cd:1c:14:da:ef:3f:11:cd:8f:93: 3c:d3:c9:42:c5:35:c6:fb:f0:75:b3:f5:2f:e0:95:5b:57:a7: 15:3f:02:ec:ca:70:4b:60:86:02:5b:34:20:89:4f:ac:12:d0: b4:8f:2a:04:32:5d:b1:6f:08:c2:69:cf:96:37:9a:52:0b:f6: 5e:1f:bd:7a:25:59:4e:dd:b7:14:da:15:36:ab:1e:b4:54:a3: 43:70:c0:d6:c9:cf:5a:8f:80:22:06:47:80:39:bb:28:b0:cf: 36:20:25:1d:9e:e6:6e:f5:b6:b2:10:c3:0c:49:49:c8:56:ec: fa:b3:3f:55:e7:e2:1b:61:10:2c:da:a7:a9:d0:f6:8a:03:7a: fe:f8:7c:f1:5e:f2:0b:1d:46:c0:df:36:2d:d2:0f:cd:84:a7: 48:f0:dd:07:a8:bc:4f:64:c8:92:0d:82:e9:52:58:40:50:67: ae:ae:ac:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjYwNDE4MTUyMzI3WhcNMjYwNDI1MTUyMzI3WjAYMRYwFAYD VQQDEw02OWUzYTFlZi05ZTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnGAPHhnRtU0r8I5Duzdg8jvk14yMTwGcn29EwLSvcV4n7Zu92Usd3Y6w3vo3 Cd8o+pFXUoIeyqTT4PuyFb2CH+mSqSEoZtenge5GRevvJd5JNF5RL9/tb1IZIjHm zHm3qlsilyB7co3KS7s0xfPU3p8oh6LSEUxTmaLYpSn4ntdmlmnYkdTkQUKDzRVy +5BG9lDpmwrKcT9Z/X+xgU6HpUjKOcj9oWAUyeML+04uqDgnPlbeOn6lwJpI7tdM QATL8scd1wWxRLfgkAiF1KP/YV4UjMggPjRnuUFrBjQb1zl+QaolCJs9DAQjX1nG DqzaCL3xW2ULrKLZW30Q+/vpAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPYo/iEO pQy5FWxC8xZV76ig9J/sMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiM47mQy/Y2ra/1v5Iu/t2QQLJqGP/qTQbBPhcj6RSQiOC+Os2Zbf6lNt367g 5sIkJDw6jkd9RYCOqLJI6nVb6WFmJYu4wCyEV7o/ZLywLrTNHBTa7z8RzY+TPNPJ QsU1xvvwdbP1L+CVW1enFT8C7MpwS2CGAls0IIlPrBLQtI8qBDJdsW8IwmnPljea Ugv2Xh+9eiVZTt23FNoVNqsetFSjQ3DA1snPWo+AIgZHgDm7KLDPNiAlHZ7mbvW2 shDDDElJyFbs+rM/VefiG2EQLNqnqdD2igN6/vh88V7yCx1GwN82LdIPzYSnSPDd B6i8T2TIkg2C6VJYQFBnrq6s1Q== -----END CERTIFICATE-----Generated at Sat Apr 18 21:06:56 2026 by rpki-client