$ rpki-client -vvf rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft File: 2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft (raw, json) Hash identifier: 7PA9AIMXWi+L45VlycogekpwYOEdU9hdCCtba++LWOo= Subject key identifier: 40:41:79:7F:A0:3E:D8:D3:E4:80:98:EE:BB:F4:11:B7:11:43:76:B2 Authority key identifier: D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C Certificate issuer: /CN=A913664F/serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Certificate serial: 024B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft Manifest number: 0238 Signing time: Fri 17 Apr 2026 02:21:23 +0000 Manifest this update: Fri 17 Apr 2026 02:21:23 +0000 Manifest next update: Fri 24 Apr 2026 02:21:23 +0000 Files and hashes: 1: 2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl (hash: SWjYji34+RN2fP/806PyqR12aOznXcSBrhETnFd7x4Q=) 2: D1DDFDECDD9811EDB2BBBA09C4F9AE02.roa (hash: DS+0KFmcBE9DXzoqd+clX1iffNG/TJDheFzOy8o3k5w=) 3: B1E75D08DD7F11ED815F9B4DC4F9AE02.roa (hash: jCFeHTOEaf/tAa5ix+hQ/UsUVIVpLzQ1m9SstZe2Zt0=) 4: D2677928DD9811EDB2BBBA09C4F9AE02.roa (hash: hCwx0DM5AZe2LmvT1nwHBj2xXRoQx2u9h5+OYamek6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:21:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 587 (0x24b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913664F, serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Validity Not Before: Apr 17 02:21:23 2026 GMT Not After : Apr 24 02:21:23 2026 GMT Subject: CN=69e19923-b79d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:af:cb:fd:d8:a3:22:c5:76:2d:15:49:71:95: b3:c8:e9:64:76:b0:75:27:94:3f:55:8d:fc:51:65: 4f:4b:8d:e5:42:ff:51:bf:f7:7f:ae:f2:28:94:69: bf:29:00:e6:d8:ba:8a:05:20:1a:66:2a:e6:55:f9: 2d:6d:12:1c:ab:f6:77:34:8a:e9:b9:75:5d:1c:a5: 61:64:8d:75:14:ad:fc:c3:4a:13:fb:9e:77:de:db: ab:22:8d:a6:d8:01:b9:b3:75:0e:3e:06:97:1c:09: 44:ea:3e:aa:5b:02:d0:1f:0f:3e:7a:15:4f:1a:26: a8:94:71:de:82:37:70:66:e7:de:6f:ea:18:ec:67: ed:f8:52:97:53:e6:fa:ee:1f:4c:b9:f2:0b:f8:9e: 0c:d1:1a:b2:7a:15:c4:f8:e1:8b:46:27:1e:88:13: 50:a7:66:77:b2:6f:8c:8d:c6:0b:91:74:b3:1f:41: 1f:4f:2d:66:6e:7e:e5:d4:b0:c8:b2:4d:4e:16:fb: 56:44:7e:ed:43:e9:bd:3f:e1:39:d5:4d:c3:ce:35: 69:1d:84:9c:2c:33:8e:2a:f3:3b:6c:64:b6:ef:bb: 7f:8f:5f:76:5f:0c:5d:ac:ba:bf:fa:5a:57:1e:6b: b6:34:7b:dc:f1:16:4f:fc:61:4e:87:65:d1:b4:43: ff:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:41:79:7F:A0:3E:D8:D3:E4:80:98:EE:BB:F4:11:B7:11:43:76:B2 X509v3 Authority Key Identifier: keyid:D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:a4:64:b7:ce:79:f1:22:10:19:67:f3:74:37:ee:af:a2:01: 40:55:bd:a7:1d:0b:05:61:ed:18:dc:a3:97:ca:54:05:48:a5: 2b:e7:a7:38:2f:9f:aa:cc:70:59:e5:7b:f4:36:fa:3e:9a:c4: c1:fe:69:7c:68:68:b8:5c:bb:13:47:79:5a:4c:7b:c6:33:ff: 78:da:de:0f:15:1b:cd:99:0b:2a:73:55:8f:b6:9f:ad:80:41: 1a:a0:66:c7:34:ec:c8:df:9d:c0:12:6e:3b:00:71:76:2a:cd: a8:a7:d6:05:3c:b9:09:f1:7f:96:63:bc:01:ac:81:60:e3:94: 7f:0f:f8:76:04:40:75:f6:f8:e8:26:62:7f:f5:d1:a4:f1:5f: d0:af:13:d2:4f:97:4d:b2:4a:ff:62:fd:f6:1e:72:cd:11:fd: fe:14:fd:e3:7b:9a:87:2f:9f:5f:45:e8:e5:8d:f4:0f:e7:4f: 07:90:fd:66:a2:2d:34:10:25:7f:b1:ff:6c:7e:3e:52:f0:48: 65:e3:71:fa:d4:d1:d1:25:ce:4f:b5:f6:6c:38:19:63:83:d8: 34:8e:90:af:8e:21:97:e6:43:2c:62:a2:9d:8a:b0:64:a2:e7: ae:6b:69:1f:44:5d:cf:7e:45:78:7c:48:54:07:b2:a3:cf:96: aa:b0:85:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2NEYxMTAvBgNVBAUTKEQ5OTAyQzRFOTQ3MkM3QUQ1MDgyODEyRkE3RDA3NzE0 NkFCN0NCOUMwHhcNMjYwNDE3MDIyMTIzWhcNMjYwNDI0MDIyMTIzWjAYMRYwFAYD VQQDEw02OWUxOTkyMy1iNzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkq/L/dijIsV2LRVJcZWzyOlkdrB1J5Q/VY38UWVPS43lQv9Rv/d/rvIolGm/ KQDm2LqKBSAaZirmVfktbRIcq/Z3NIrpuXVdHKVhZI11FK38w0oT+5533turIo2m 2AG5s3UOPgaXHAlE6j6qWwLQHw8+ehVPGiaolHHegjdwZufeb+oY7Gft+FKXU+b6 7h9MufIL+J4M0RqyehXE+OGLRiceiBNQp2Z3sm+MjcYLkXSzH0EfTy1mbn7l1LDI sk1OFvtWRH7tQ+m9P+E51U3DzjVpHYScLDOOKvM7bGS277t/j192XwxdrLq/+lpX Hmu2NHvc8RZP/GFOh2XRtEP/MQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEBBeX+g PtjT5ICY7rv0EbcRQ3ayMB8GA1UdIwQYMBaAFNmQLE6UcsetUIKBL6fQdxRqt8uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjY0Ri8xRTA4NTRBRURE N0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2MVFnb0V2cDlCM0ZHcTN5 NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJaQXNUcFJ5eDYxUWdvRXZwOUIzRkdxM3k1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjY0Ri8xRTA4NTRBRUREN0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2 MVFnb0V2cDlCM0ZHcTN5NXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh6Rkt8558SIQGWfzdDfur6IBQFW9px0LBWHtGNyjl8pUBUilK+enOC+fqsxw WeV79Db6PprEwf5pfGhouFy7E0d5Wkx7xjP/eNreDxUbzZkLKnNVj7afrYBBGqBm xzTsyN+dwBJuOwBxdirNqKfWBTy5CfF/lmO8AayBYOOUfw/4dgRAdfb46CZif/XR pPFf0K8T0k+XTbJK/2L99h5yzRH9/hT943uahy+fX0Xo5Y30D+dPB5D9ZqItNBAl f7H/bH4+UvBIZeNx+tTR0SXOT7X2bDgZY4PYNI6Qr44hl+ZDLGKinYqwZKLnrmtp H0Rdz35FeHxIVAeyo8+WqrCFeg== -----END CERTIFICATE-----Generated at Fri Apr 17 16:24:37 2026 by rpki-client