$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft File: R2lFsh8liffnEnUf50f6IUOlI1s.mft (raw, json) Hash identifier: HwXtHl3YchAam9DmPgHIj1jvr2fHc6lC/+Mxpk27iys= Subject key identifier: 4F:B7:2C:8C:E8:25:2F:28:10:5C:79:94:93:AF:96:03:01:6B:87:28 Authority key identifier: 47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B Certificate issuer: /CN=A9132B1D/serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Certificate serial: 030E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft Manifest number: 0307 Signing time: Fri 17 Apr 2026 01:08:42 +0000 Manifest this update: Fri 17 Apr 2026 01:08:41 +0000 Manifest next update: Fri 24 Apr 2026 01:08:41 +0000 Files and hashes: 1: R2lFsh8liffnEnUf50f6IUOlI1s.crl (hash: rCI9vRfFnMrU0sV4GKdfLJF3tzYBvYpOxjMX6GUiJ0g=) 2: A917D87217A711ED8D17FC7CC4F9AE02.roa (hash: CHlJpAmUO3HeXSZX7Pc0z854lGAon91AqOY8MRP1VAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:08:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 782 (0x30e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1D, serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Validity Not Before: Apr 17 01:08:41 2026 GMT Not After : Apr 24 01:08:41 2026 GMT Subject: CN=69e1881a-49fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ed:65:37:67:65:e2:ad:a6:42:6a:4e:24:36: 7e:f2:03:c2:f9:ce:58:4f:ee:0f:43:29:6b:8c:c2: 5c:3e:a3:af:7c:c3:79:f7:f9:d0:66:02:73:91:98: 5b:34:af:03:c4:df:37:72:6e:d8:c0:1c:68:7e:40: db:44:c2:25:d0:1f:06:8a:2e:dc:19:ab:12:4b:ec: eb:d1:22:41:58:b6:87:1c:32:3a:49:43:07:26:99: 3f:24:e1:54:48:47:38:80:b5:da:f6:33:e9:cf:98: bf:0e:81:15:e0:d1:3a:32:65:68:d6:9e:81:48:f2: 4b:ee:e9:f9:cd:eb:7b:36:2c:0c:bd:d3:03:80:e8: 9a:c2:67:f9:58:15:23:8d:39:2b:31:4c:4e:10:24: c5:c4:66:0d:f3:d4:41:91:cf:3d:a6:38:72:3e:88: a3:4a:32:6a:8b:d4:eb:95:3e:c1:c8:cb:c7:cc:7b: 98:9e:cf:5a:81:8a:49:48:ed:86:c3:61:46:ff:9f: 31:33:0e:d2:ce:fd:05:3e:01:f4:11:c6:72:ed:4d: ab:93:d5:a3:b9:b8:44:e4:52:7e:80:9e:ad:75:c7: 3d:93:80:f5:4a:3b:f0:21:b3:19:54:e6:33:e6:67: 63:9a:b5:ec:51:b9:25:12:1f:cc:1e:6a:bd:44:58: 05:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B7:2C:8C:E8:25:2F:28:10:5C:79:94:93:AF:96:03:01:6B:87:28 X509v3 Authority Key Identifier: keyid:47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:b4:86:f0:a8:af:e7:6b:1b:ac:6e:f9:b3:81:24:31:75:b3: 7d:6d:29:a7:b7:b7:8b:aa:ae:74:c3:15:ea:c5:ec:a5:be:cc: 20:e1:75:de:de:1f:31:3a:1f:b3:fb:fc:21:5e:be:34:52:65: 41:e1:09:88:bb:28:5d:e9:73:77:1d:4e:31:6a:df:1d:dc:28: dd:7d:ea:c7:d4:15:6c:99:df:51:54:73:fc:1b:76:50:54:e0: 38:c8:8b:c3:6e:8d:d4:b9:5a:81:2d:ed:2f:16:54:9e:19:65: 0a:bc:35:b9:44:d0:51:f4:a6:81:3a:74:63:a7:6c:e3:7f:7e: 9e:41:36:9b:0a:4d:87:1d:2b:97:63:8e:86:1d:42:ed:f0:b0: 00:9e:fb:c7:76:20:29:f3:69:c3:0a:d7:d2:ad:ff:97:1d:87: 99:b3:16:36:0d:b2:02:00:09:97:2a:a6:1b:7f:9e:2e:7c:6f: 84:7d:6c:32:1b:54:41:8f:6e:b9:ec:e1:37:cf:da:e5:60:88: dd:18:7c:6d:e3:03:f2:f3:ea:fc:b9:f9:f5:2a:2e:85:da:d7: ac:b5:c3:62:81:be:3b:09:40:cd:45:1b:95:73:f7:2b:a2:4d: ab:34:f9:f3:12:11:0f:61:7f:97:e9:0f:2d:32:3c:ec:e2:0e: 9c:d9:5b:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUQxMTAvBgNVBAUTKDQ3Njk0NUIyMUYyNTg5RjdFNzEyNzUxRkU3NDdGQTIx NDNBNTIzNUIwHhcNMjYwNDE3MDEwODQxWhcNMjYwNDI0MDEwODQxWjAYMRYwFAYD VQQDEw02OWUxODgxYS00OWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+1lN2dl4q2mQmpOJDZ+8gPC+c5YT+4PQylrjMJcPqOvfMN59/nQZgJzkZhb NK8DxN83cm7YwBxofkDbRMIl0B8Gii7cGasSS+zr0SJBWLaHHDI6SUMHJpk/JOFU SEc4gLXa9jPpz5i/DoEV4NE6MmVo1p6BSPJL7un5zet7NiwMvdMDgOiawmf5WBUj jTkrMUxOECTFxGYN89RBkc89pjhyPoijSjJqi9TrlT7ByMvHzHuYns9agYpJSO2G w2FG/58xMw7Szv0FPgH0EcZy7U2rk9WjubhE5FJ+gJ6tdcc9k4D1SjvwIbMZVOYz 5mdjmrXsUbklEh/MHmq9RFgFRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE+3LIzo JS8oEFx5lJOvlgMBa4coMB8GA1UdIwQYMBaAFEdpRbIfJYn35xJ1H+dH+iFDpSNb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRC8zMDIwM0VEMDE3 QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlmZm5FblVmNTBmNklVT2xJ MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IybEZzaDhsaWZmbkVuVWY1MGY2SVVPbEkxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkIxRC8zMDIwM0VEMDE3QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlm Zm5FblVmNTBmNklVT2xJMXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKrSG8Kiv52sbrG75s4EkMXWzfW0pp7e3i6qudMMV6sXspb7MIOF13t4fMTof s/v8IV6+NFJlQeEJiLsoXelzdx1OMWrfHdwo3X3qx9QVbJnfUVRz/Bt2UFTgOMiL w26N1LlagS3tLxZUnhllCrw1uUTQUfSmgTp0Y6ds439+nkE2mwpNhx0rl2OOhh1C 7fCwAJ77x3YgKfNpwwrX0q3/lx2HmbMWNg2yAgAJlyqmG3+eLnxvhH1sMhtUQY9u uezhN8/a5WCI3Rh8beMD8vPq/Ln59SouhdrXrLXDYoG+OwlAzUUblXP3K6JNqzT5 8xIRD2F/l+kPLTI87OIOnNlbdw== -----END CERTIFICATE-----Generated at Fri Apr 17 19:26:50 2026 by rpki-client