$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: aTOVUp5cs/RSlgTNhgH80VmiVzNlnOqcnq3sy1SyeCs= Subject key identifier: AD:70:D3:83:0D:5A:EB:3F:1D:AF:84:02:C8:75:EC:D5:FD:7B:EC:5A Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 023A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 0230 Signing time: Fri 17 Apr 2026 02:24:16 +0000 Manifest this update: Fri 17 Apr 2026 02:24:16 +0000 Manifest next update: Fri 24 Apr 2026 02:24:16 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: BkYwf2DEiJCx4gaELyiB+WxXrAw7tSF9Y8WTy91//co=) 2: 7DA38A8E727011F08682A20EC4F9AE02.roa (hash: X373raxuE2iLwtaK4YO98Y1yBAk9TK8MxVlU8+CTPKI=) 3: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: 3weaQ4o+eQXlXxL8Agh4qybWMOK+rrtdU5IbG/vM6oo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Apr 17 02:24:16 2026 GMT Not After : Apr 24 02:24:16 2026 GMT Subject: CN=69e199d0-e3a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:47:b1:6b:e8:b3:8c:63:27:03:41:84:b9:56: eb:cb:b5:26:8a:00:31:55:0b:4b:fd:9f:e2:3d:b8: 10:2c:c9:8b:49:cf:e1:31:61:b3:23:4c:8a:fa:d7: e8:d3:98:59:2c:bc:22:69:cb:9e:15:4f:f3:47:66: c2:21:f6:74:2d:24:b8:20:81:3a:25:56:1b:a2:5b: 22:2d:05:d9:de:04:05:d9:52:1c:cb:69:4e:07:1d: bb:c4:2d:4f:28:b4:47:ee:22:17:a4:6d:91:d9:2b: d2:0f:a3:39:9f:b9:8c:d3:e8:04:10:20:74:3b:f8: f1:31:6e:77:00:ce:85:9c:2c:80:9c:a6:fb:8c:78: 07:5b:24:cc:75:c1:5c:28:5a:b3:29:2d:5e:4e:22: 08:a6:46:ac:98:3c:2f:28:40:61:65:ab:77:fd:bd: 1b:cd:ab:6f:8e:5e:1d:b2:de:28:3b:36:ff:06:f6: b7:af:76:4b:fe:2f:7a:02:30:33:37:82:ff:10:c7: 37:84:d4:b4:c1:92:57:43:32:b1:35:9b:0a:be:42: b5:fc:dd:b8:2e:bc:f2:61:95:b7:20:34:ee:c7:12: c8:39:50:d8:a9:c0:b8:5a:72:ec:dc:37:e7:e8:d7: 1d:45:f9:cb:f9:27:a7:1e:9d:30:2b:91:74:42:ba: c2:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:70:D3:83:0D:5A:EB:3F:1D:AF:84:02:C8:75:EC:D5:FD:7B:EC:5A X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:af:3d:53:3f:f9:41:17:b6:b6:f0:a4:f8:43:9d:a0:e8:c5: 50:f8:de:3d:ae:8b:f9:89:84:77:cc:15:ac:1a:b2:90:75:0e: 9b:74:8b:94:da:34:fe:58:0e:d8:77:f2:d0:57:0c:2e:b4:80: 15:68:e7:97:ea:a1:33:32:6c:f5:db:5e:74:b9:24:c3:65:83: 12:8f:11:88:d0:0b:fa:68:45:dd:cd:06:58:b1:0d:80:b7:f1: eb:c5:63:a6:7b:f5:28:4e:e3:f3:9b:09:0c:8b:3c:ad:4c:c1: 7e:4b:05:e3:7b:e0:c6:f6:22:3f:95:59:49:11:17:86:76:91: 9f:57:9a:ee:d0:bb:df:1f:86:75:00:9c:52:99:80:be:53:fa: 41:f5:33:cf:8e:6d:e4:80:2e:58:75:ae:08:7a:d2:03:3c:e6: 3a:b3:a3:89:e6:15:17:1a:b4:8b:45:2c:2b:ac:3f:e8:d1:ef: c1:bc:bb:d5:22:67:f6:09:d2:0a:fb:54:73:fe:e7:11:38:7f: 51:55:63:fd:1d:44:7f:98:b7:d1:72:f6:7f:39:be:63:a3:a4: 29:ec:c8:99:cb:4d:5c:96:73:f4:80:c7:72:7b:38:ba:4a:2e: 63:5c:4a:69:5b:e3:f9:e2:19:77:82:7d:31:04:61:b1:4f:01: 22:cb:9f:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjYwNDE3MDIyNDE2WhcNMjYwNDI0MDIyNDE2WjAYMRYwFAYD VQQDEw02OWUxOTlkMC1lM2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0exa+izjGMnA0GEuVbry7UmigAxVQtL/Z/iPbgQLMmLSc/hMWGzI0yK+tfo 05hZLLwiacueFU/zR2bCIfZ0LSS4IIE6JVYbolsiLQXZ3gQF2VIcy2lOBx27xC1P KLRH7iIXpG2R2SvSD6M5n7mM0+gEECB0O/jxMW53AM6FnCyAnKb7jHgHWyTMdcFc KFqzKS1eTiIIpkasmDwvKEBhZat3/b0bzatvjl4dst4oOzb/Bva3r3ZL/i96AjAz N4L/EMc3hNS0wZJXQzKxNZsKvkK1/N24LrzyYZW3IDTuxxLIOVDYqcC4WnLs3Dfn 6NcdRfnL+SenHp0wK5F0QrrCvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK1w04MN Wus/Ha+EAsh17NX9e+xaMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaq89Uz/5QRe2tvCk+EOdoOjFUPjePa6L+YmEd8wVrBqykHUOm3SLlNo0/lgO 2Hfy0FcMLrSAFWjnl+qhMzJs9dtedLkkw2WDEo8RiNAL+mhF3c0GWLENgLfx68Vj pnv1KE7j85sJDIs8rUzBfksF43vgxvYiP5VZSREXhnaRn1ea7tC73x+GdQCcUpmA vlP6QfUzz45t5IAuWHWuCHrSAzzmOrOjieYVFxq0i0UsK6w/6NHvwby71SJn9gnS CvtUc/7nETh/UVVj/R1Ef5i30XL2fzm+Y6OkKezImctNXJZz9IDHcns4ukouY1xK aVvj+eIZd4J9MQRhsU8BIsuf5g== -----END CERTIFICATE-----Generated at Fri Apr 17 13:44:52 2026 by rpki-client