$ rpki-client -vvf rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft File: 2zfNKCxsfbw6kLEDt6I53NFY_2A.mft (raw, json) Hash identifier: x5aHLV449izK6kzRdZRSiqLlcBiNvf6+x+wvlkQzkOg= Subject key identifier: 02:F7:9C:8E:49:C1:A8:4B:B7:5E:37:64:D9:D9:01:1C:ED:62:BE:A6 Authority key identifier: DB:37:CD:28:2C:6C:7D:BC:3A:90:B1:03:B7:A2:39:DC:D1:58:FF:60 Certificate issuer: /CN=A913E652/serialNumber=DB37CD282C6C7DBC3A90B103B7A239DCD158FF60 Certificate serial: 0979 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft Manifest number: 0970 Signing time: Thu 16 Apr 2026 19:59:25 +0000 Manifest this update: Thu 16 Apr 2026 19:59:24 +0000 Manifest next update: Thu 23 Apr 2026 19:59:24 +0000 Files and hashes: 1: 2zfNKCxsfbw6kLEDt6I53NFY_2A.crl (hash: kVBQNxb/GSjJYD3F7yfo6vlGjQX7uWJ0y50mpGvOhjs=) 2: 6154A3B0B2B611EAA5884016C4F9AE02.roa (hash: mcK4qQYqmr139GB74M+RvHkP1qDPO4dE/sdLHTuRilw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.crl rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:59:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2425 (0x979) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E652, serialNumber=DB37CD282C6C7DBC3A90B103B7A239DCD158FF60 Validity Not Before: Apr 16 19:59:24 2026 GMT Not After : Apr 23 19:59:24 2026 GMT Subject: CN=69e13f9d-51b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:29:38:9b:9d:dc:c2:1c:6a:20:d1:6b:3f:3b: 34:e6:f9:78:c8:19:ba:1b:ac:2c:f9:14:4f:38:14: 64:1e:83:90:e7:b3:22:1c:40:3b:a9:f1:5e:4e:36: b2:28:00:c0:9d:84:c8:09:93:6e:f0:31:16:d9:5e: 02:c8:04:1d:d2:19:01:74:61:1d:7a:72:a6:cb:0a: cb:1b:59:a2:68:86:48:5b:89:3f:4c:3c:24:4d:e6: 35:bd:fd:b4:c0:5d:6f:4f:de:63:80:7e:31:d9:4b: bf:4e:48:42:e0:c0:13:6b:a1:12:8a:51:35:b3:93: e0:e5:0b:52:12:81:da:f6:35:49:32:ae:7b:93:0e: ce:f8:1d:67:cb:a1:0b:f9:88:57:83:1b:7a:b0:9f: 49:7a:b5:aa:85:ef:1e:7f:6d:9f:35:e5:8a:27:3d: c8:e1:dd:ce:07:71:d2:bb:ec:77:6c:9d:c6:2f:90: a3:34:a7:20:7c:de:22:88:5f:e5:79:c3:a3:e7:f7: 24:03:0d:a1:70:28:dc:7e:3b:20:96:32:da:17:ec: 33:da:f9:1e:72:0c:bb:c7:81:b7:ea:2d:c5:f8:ac: 7c:17:52:31:10:9e:f4:cc:28:4d:32:5b:fe:94:22: 23:8e:33:86:c4:b8:51:ad:dd:ef:08:d8:5e:20:b2: 56:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:F7:9C:8E:49:C1:A8:4B:B7:5E:37:64:D9:D9:01:1C:ED:62:BE:A6 X509v3 Authority Key Identifier: keyid:DB:37:CD:28:2C:6C:7D:BC:3A:90:B1:03:B7:A2:39:DC:D1:58:FF:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:37:f9:36:98:c3:14:af:0f:25:57:0e:04:4a:e6:da:e2:3f: 9b:04:04:19:9e:e3:78:3f:e9:84:d7:3d:de:de:fc:ea:36:23: 87:f3:00:65:35:45:1f:07:f1:bb:34:18:d7:d8:e6:77:d4:da: 6e:9a:44:0d:85:64:29:bf:32:e7:c9:4a:73:36:2c:36:df:bd: 2e:8a:15:0c:d2:03:b5:52:33:19:8c:4f:47:28:ad:02:cb:11: b5:50:6d:3a:23:05:bc:34:77:ca:b3:9d:63:0c:76:9f:22:41: 96:c5:1e:30:e7:65:e9:98:49:58:6e:fb:7e:c8:5a:3e:be:4c: a2:59:97:7a:55:fe:17:b4:bd:eb:7b:ef:8e:c6:a2:bc:b0:88: 4b:fe:61:03:8b:76:78:eb:9e:57:73:af:b2:2b:19:9b:0f:ba: 02:bf:a9:a8:06:7e:6c:ee:eb:00:df:c1:5f:50:15:41:ab:e1: a6:43:ae:fa:23:b1:28:63:da:c3:2f:78:5e:9e:95:f5:99:1b: a5:50:f3:a1:3a:7b:7a:c6:e0:9d:27:53:9c:8b:30:da:69:bc: 0d:7c:2c:d3:ce:c7:22:ea:39:7f:f0:88:7d:27:33:28:86:99: ed:55:f5:2d:e6:e6:a2:a0:a7:ae:d2:cd:b8:70:44:a5:0c:02: fa:2f:44:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U2NTIxMTAvBgNVBAUTKERCMzdDRDI4MkM2QzdEQkMzQTkwQjEwM0I3QTIzOURD RDE1OEZGNjAwHhcNMjYwNDE2MTk1OTI0WhcNMjYwNDIzMTk1OTI0WjAYMRYwFAYD VQQDEw02OWUxM2Y5ZC01MWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCk4m53cwhxqINFrPzs05vl4yBm6G6ws+RRPOBRkHoOQ57MiHEA7qfFeTjay KADAnYTICZNu8DEW2V4CyAQd0hkBdGEdenKmywrLG1miaIZIW4k/TDwkTeY1vf20 wF1vT95jgH4x2Uu/TkhC4MATa6ESilE1s5Pg5QtSEoHa9jVJMq57kw7O+B1ny6EL +YhXgxt6sJ9JerWqhe8ef22fNeWKJz3I4d3OB3HSu+x3bJ3GL5CjNKcgfN4iiF/l ecOj5/ckAw2hcCjcfjsgljLaF+wz2vkecgy7x4G36i3F+Kx8F1IxEJ70zChNMlv+ lCIjjjOGxLhRrd3vCNheILJWVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAL3nI5J wahLt143ZNnZARztYr6mMB8GA1UdIwQYMBaAFNs3zSgsbH28OpCxA7eiOdzRWP9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTY1Mi82MDBBQjQ2NEIy QjUxMUVBOEFEQzQ0MTVDNEY5QUUwMi8yemZOS0N4c2ZidzZrTEVEdDZJNTNORllf MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6Zk5LQ3hzZmJ3NmtMRUR0Nkk1M05GWV8yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTY1Mi82MDBBQjQ2NEIyQjUxMUVBOEFEQzQ0MTVDNEY5QUUwMi8yemZOS0N4c2Zi dzZrTEVEdDZJNTNORllfMkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhjf5NpjDFK8PJVcOBErm2uI/mwQEGZ7jeD/phNc93t786jYjh/MAZTVFHwfx uzQY19jmd9TabppEDYVkKb8y58lKczYsNt+9LooVDNIDtVIzGYxPRyitAssRtVBt OiMFvDR3yrOdYwx2nyJBlsUeMOdl6ZhJWG77fshaPr5MolmXelX+F7S963vvjsai vLCIS/5hA4t2eOueV3OvsisZmw+6Ar+pqAZ+bO7rAN/BX1AVQavhpkOu+iOxKGPa wy94Xp6V9ZkbpVDzoTp7esbgnSdTnIsw2mm8DXws087HIuo5f/CIfSczKIaZ7VX1 LebmoqCnrtLNuHBEpQwC+i9E9w== -----END CERTIFICATE-----Generated at Fri Apr 17 05:34:18 2026 by rpki-client