$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: hGpBjPj54WGco3HidHvWj1yvwH0f3HA1QegpsRmzYu4= Subject key identifier: 63:1F:BF:B2:19:B9:B2:65:A0:99:42:3F:76:B4:7F:54:D8:BF:FE:A6 Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 0232 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 0228 Signing time: Sun 05 Apr 2026 02:16:38 +0000 Manifest this update: Sun 05 Apr 2026 02:16:38 +0000 Manifest next update: Sun 12 Apr 2026 02:16:38 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: 58A/y7kUDzig+z34wBZ4ELUa0zosKB6RL+Nfp/daVSA=) 2: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: aAtHrkMecT5oO4nt1NPtMzyuWR2EapTbCzd38PiZviw=) 3: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: O6tGr92XmxFCney2TeehRmwSGnb7+7FigW1Tc3DQGsw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Apr 5 02:16:38 2026 GMT Not After : Apr 12 02:16:38 2026 GMT Subject: CN=69d1c606-a1b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:62:54:ec:79:92:37:b8:7c:d9:d0:c1:de:e4: 26:02:81:b6:b5:3d:10:10:00:7b:ca:e1:39:95:7d: ce:16:9c:1e:bf:a5:29:52:a9:b7:41:e0:fe:96:32: bc:77:2e:4f:1a:e0:aa:39:c1:8e:81:99:ba:2d:4e: ac:f3:26:d6:9d:0f:3b:60:59:c1:0c:38:9d:db:a4: 4e:80:f6:62:3e:f6:c2:5a:d5:10:b1:5e:50:e9:60: 6c:44:06:45:b5:fe:1b:cc:72:77:94:de:3d:cb:8b: db:b0:a8:0c:4b:24:f0:36:91:d8:96:7f:e9:84:98: 48:13:1f:82:72:d2:ca:f4:f5:a0:c4:ac:e7:fa:58: 01:c8:e1:8d:b8:e7:19:fd:c5:c7:f0:11:15:3f:b3: 3f:6c:ac:21:04:f7:cc:0f:c3:79:98:f2:67:f7:75: b3:ce:a1:8b:10:df:00:e8:54:82:ed:20:9e:89:8c: de:db:ce:47:ac:ab:68:7e:ed:ea:d6:fd:19:50:e4: 74:4c:db:22:20:ed:a8:ba:e1:6a:eb:f2:cf:a1:dc: 13:3e:a5:9f:a0:f3:c2:76:a2:fb:a2:37:67:73:3d: b1:fb:cb:e2:fc:b8:16:1d:4e:5c:d6:a9:cd:60:df: 6a:b3:64:51:e2:52:8a:43:54:15:02:36:f5:0a:57: 95:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:1F:BF:B2:19:B9:B2:65:A0:99:42:3F:76:B4:7F:54:D8:BF:FE:A6 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:55:2a:02:48:ba:85:b9:fe:eb:43:87:c5:90:5c:14:c5:9f: 3b:be:35:2b:76:b8:71:e7:61:1a:d8:6c:dc:f4:d7:4e:b9:6f: f7:d5:07:2c:31:5e:c1:1b:f7:a8:c7:d8:dd:e2:3d:0f:8c:7e: da:53:a3:30:1e:96:97:aa:f4:80:2d:28:d7:8b:a5:4e:6a:39: 5e:5b:f1:17:d2:df:89:22:84:ff:d4:73:c6:22:16:0d:b7:61: cd:7e:49:4f:57:c4:1e:ec:e5:41:99:fd:8e:08:78:03:03:da: 0e:ff:e0:27:27:8c:cd:0a:f9:38:f2:c0:c9:8b:14:7a:ac:9c: db:ef:4b:c2:df:17:81:73:ff:ff:47:f3:2e:90:25:92:47:13: 12:6b:65:7c:af:4f:fd:a3:d5:75:a0:03:13:d9:ef:82:4b:5a: fa:d0:12:54:21:c7:78:bd:9d:d4:47:19:81:6b:7a:d1:9e:a5: 08:14:08:3d:5b:ab:93:19:a3:29:68:1b:c6:fa:cb:03:bb:12: 9a:1e:88:e1:a4:8e:13:d4:a2:0e:66:58:ee:d3:86:ea:89:de: bd:6f:4d:07:d7:11:39:8a:34:6f:d4:8c:59:60:cb:5c:26:85: 8a:70:3c:d5:37:50:0b:0f:e6:93:67:7b:2f:4e:5a:d4:4e:30: 71:d0:8d:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjYwNDA1MDIxNjM4WhcNMjYwNDEyMDIxNjM4WjAYMRYwFAYD VQQDEw02OWQxYzYwNi1hMWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWJU7HmSN7h82dDB3uQmAoG2tT0QEAB7yuE5lX3OFpwev6UpUqm3QeD+ljK8 dy5PGuCqOcGOgZm6LU6s8ybWnQ87YFnBDDid26ROgPZiPvbCWtUQsV5Q6WBsRAZF tf4bzHJ3lN49y4vbsKgMSyTwNpHYln/phJhIEx+CctLK9PWgxKzn+lgByOGNuOcZ /cXH8BEVP7M/bKwhBPfMD8N5mPJn93WzzqGLEN8A6FSC7SCeiYze285HrKtofu3q 1v0ZUOR0TNsiIO2ouuFq6/LPodwTPqWfoPPCdqL7ojdncz2x+8vi/LgWHU5c1qnN YN9qs2RR4lKKQ1QVAjb1CleV3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGMfv7IZ ubJloJlCP3a0f1TYv/6mMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACFUqAki6hbn+60OHxZBcFMWfO741K3a4cedhGths3PTXTrlv99UHLDFewRv3 qMfY3eI9D4x+2lOjMB6Wl6r0gC0o14ulTmo5XlvxF9LfiSKE/9RzxiIWDbdhzX5J T1fEHuzlQZn9jgh4AwPaDv/gJyeMzQr5OPLAyYsUeqyc2+9Lwt8XgXP//0fzLpAl kkcTEmtlfK9P/aPVdaADE9nvgkta+tASVCHHeL2d1EcZgWt60Z6lCBQIPVurkxmj KWgbxvrLA7sSmh6I4aSOE9SiDmZY7tOG6onevW9NB9cROYo0b9SMWWDLXCaFinA8 1TdQCw/mk2d7L05a1E4wcdCN0A== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:10 2026 by rpki-client