$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft File: Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft (raw, json) Hash identifier: aXg1CDx0KCSVj6XA3vaInerZEGDJ4PPlrIJe4P36+b0= Subject key identifier: 46:87:48:C0:35:07:68:D1:1C:27:D2:68:0B:CE:6D:C9:00:00:64:EE Authority key identifier: 29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 Certificate issuer: /CN=A91FC985/serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft Manifest number: D2 Signing time: Sun 05 Apr 2026 06:09:07 +0000 Manifest this update: Sun 05 Apr 2026 06:09:06 +0000 Manifest next update: Sun 12 Apr 2026 06:09:06 +0000 Files and hashes: 1: Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl (hash: zgPvzD7QbSc3FuV3TJhi3uuJix3uIjbPdmRdEBYecss=) 2: DA3E289CF5B811EFA1046714C4F9AE02.roa (hash: oaeasOGheSroKPV3LiPVQfpD09ef36G8xHY2SVCQJWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:09:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC985, serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Validity Not Before: Apr 5 06:09:06 2026 GMT Not After : Apr 12 06:09:06 2026 GMT Subject: CN=69d1fc82-6abe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f7:11:3e:08:0f:7f:6d:ba:33:b2:eb:f3:9e: f0:84:01:1c:4e:21:b4:4e:71:51:2a:96:03:75:34: ef:29:52:2e:d5:af:ef:95:6d:ed:70:6f:c2:4a:81: cd:b3:b3:2d:aa:96:08:16:e8:40:8b:08:13:03:94: cd:60:0f:cc:fc:56:d6:b5:03:88:7d:cf:f1:c0:8e: f3:6b:9d:94:bd:75:52:73:d2:5d:b2:04:df:e9:fa: 24:ab:2e:e4:bc:29:d5:45:73:6c:7f:40:96:21:5d: 16:d4:1e:0a:32:f8:bd:99:d2:ca:25:51:5a:de:b1: da:4b:c0:a5:24:37:c7:f4:15:5e:26:ab:62:40:21: 1a:f6:04:4e:93:78:2d:b9:da:69:73:68:81:5c:b6: 1a:c3:0a:4e:ab:07:dd:0a:4e:ff:0e:b0:a5:6f:61: 54:bd:6f:50:df:d4:1a:b9:d5:e7:a6:2c:24:2d:5e: 74:db:d0:9a:da:34:11:4f:65:bb:8b:db:79:2a:0e: c8:0c:5f:0a:85:c9:22:00:d6:e9:cf:35:37:f3:5a: 23:69:00:02:1a:62:87:18:7a:eb:55:16:a2:38:6b: 34:e7:5e:75:3e:4c:e7:08:d4:13:71:65:9d:5a:64: 69:16:c7:ba:44:42:59:2e:5e:dd:b7:e2:a2:bc:03: 04:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:87:48:C0:35:07:68:D1:1C:27:D2:68:0B:CE:6D:C9:00:00:64:EE X509v3 Authority Key Identifier: keyid:29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:70:11:7c:47:9c:8a:65:f7:ae:77:13:61:19:3c:f7:ed:6c: 44:72:9d:38:2a:79:72:07:f5:07:44:34:f5:aa:9d:ae:5d:ba: 3c:3f:73:62:d9:a9:69:e4:be:2e:89:e8:76:c3:62:7b:e8:8e: 4f:81:1c:63:41:4b:83:41:40:cd:6e:4f:b6:89:b7:fa:f0:ab: 26:41:f2:c1:c8:a6:02:fa:73:68:6d:a0:1a:c0:38:4a:97:89: e8:59:ac:a6:ed:31:45:9f:a1:f7:07:98:59:bb:ab:13:11:28: c3:ed:43:d4:8a:35:c4:e6:e4:49:7e:84:28:f0:bc:6a:45:74: 2a:8b:7e:35:ff:88:ef:d2:52:9f:aa:f8:5b:c7:6b:a5:b9:7f: 84:67:03:58:86:10:8b:b3:10:fb:07:9c:b4:96:a5:5e:37:7c: 52:7b:e6:79:13:40:50:6e:bb:09:56:99:93:c7:b6:4b:41:68: 71:79:9b:43:3a:02:05:11:e3:d0:f5:d8:08:f6:ab:0a:c4:40: d0:2b:2e:39:06:f4:41:a2:3b:78:c6:01:7b:28:68:24:8b:3b: 5b:7b:d6:72:73:3a:cc:c1:80:09:7a:15:72:f8:0e:62:e2:45: 11:79:59:63:35:72:e7:ba:72:bf:59:e7:a9:f7:d5:3b:ea:18: 55:2b:b8:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5ODUxMTAvBgNVBAUTKDI5QURCMzlCNjIwRUFFM0NCOEFGQ0EyQ0ExODVGNUM0 ODc2RkQwNDMwHhcNMjYwNDA1MDYwOTA2WhcNMjYwNDEyMDYwOTA2WjAYMRYwFAYD VQQDEw02OWQxZmM4Mi02YWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfcRPggPf226M7Lr857whAEcTiG0TnFRKpYDdTTvKVIu1a/vlW3tcG/CSoHN s7MtqpYIFuhAiwgTA5TNYA/M/FbWtQOIfc/xwI7za52UvXVSc9JdsgTf6fokqy7k vCnVRXNsf0CWIV0W1B4KMvi9mdLKJVFa3rHaS8ClJDfH9BVeJqtiQCEa9gROk3gt udppc2iBXLYawwpOqwfdCk7/DrClb2FUvW9Q39QaudXnpiwkLV5029Ca2jQRT2W7 i9t5Kg7IDF8KhckiANbpzzU381ojaQACGmKHGHrrVRaiOGs05151PkznCNQTcWWd WmRpFse6REJZLl7dt+KivAMEEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEaHSMA1 B2jRHCfSaAvObckAAGTuMB8GA1UdIwQYMBaAFCmts5tiDq48uK/KLKGF9cSHb9BD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzk4NS82NzNBQTJGNEY1 QjcxMUVGOEMxRkY2MTFDNEY5QUUwMi9LYTJ6bTJJT3JqeTRyOG9zb1lYMXhJZHYw RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thMnptMklPcmp5NHI4b3NvWVgxeElkdjBFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzk4NS82NzNBQTJGNEY1QjcxMUVGOEMxRkY2MTFDNEY5QUUwMi9LYTJ6bTJJT3Jq eTRyOG9zb1lYMXhJZHYwRU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK3ARfEecimX3rncTYRk89+1sRHKdOCp5cgf1B0Q09aqdrl26PD9zYtmpaeS+ LonodsNie+iOT4EcY0FLg0FAzW5Ptom3+vCrJkHywcimAvpzaG2gGsA4SpeJ6Fms pu0xRZ+h9weYWburExEow+1D1Io1xObkSX6EKPC8akV0Kot+Nf+I79JSn6r4W8dr pbl/hGcDWIYQi7MQ+wectJalXjd8UnvmeRNAUG67CVaZk8e2S0FocXmbQzoCBRHj 0PXYCParCsRA0CsuOQb0QaI7eMYBeyhoJIs7W3vWcnM6zMGACXoVcvgOYuJFEXlZ YzVy57pyv1nnqffVO+oYVSu4cg== -----END CERTIFICATE-----Generated at Mon Apr 6 10:43:20 2026 by rpki-client