$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft File: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft (raw, json) Hash identifier: GcAnCvy/YEmQNT8iQVs+rm2grFZ4pxrA4rtBiWskmv4= Subject key identifier: 87:41:3E:7C:67:C6:AE:AA:37:CD:A6:3E:54:2F:40:63:C6:6B:C4:5A Authority key identifier: DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF Certificate issuer: /CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Certificate serial: 0D19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft Manifest number: 0D0D Signing time: Thu 16 Apr 2026 18:02:02 +0000 Manifest this update: Thu 16 Apr 2026 18:02:02 +0000 Manifest next update: Thu 23 Apr 2026 18:02:02 +0000 Files and hashes: 1: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl (hash: 3knFYe7DGcs/GN+Vrn78hWc6Une5mSmKoNcoHgvpFjk=) 2: C21D3A065B7E11F0A8B76B2EC4F9AE02.roa (hash: ev3YW2NLkO0rjwyR3qqZhC4fRgKa7uqRJcOoJlN/Fyo=) 3: 44FEC394589711F0B981A181C4F9AE02.roa (hash: XgVbFRUMdQn7YMgDUvllzDbhgw5VgTScVk8o1raBf8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3353 (0xd19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E66, serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Validity Not Before: Apr 16 18:02:02 2026 GMT Not After : Apr 23 18:02:02 2026 GMT Subject: CN=69e1241a-e5ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:47:40:fb:40:c6:a2:42:f7:85:d0:2e:90:b5: 12:98:77:1f:96:ba:41:31:50:75:85:e1:ca:4f:ee: 6a:fa:f5:f4:fe:55:73:5f:24:19:55:7e:fe:fe:f9: 2d:85:60:06:aa:b4:fd:56:00:40:8c:5c:73:8d:10: d6:fa:24:12:1c:51:a5:99:a3:4c:f0:d0:a9:ca:30: 5f:f5:55:48:d6:6c:35:f1:75:79:bb:99:ac:95:76: 79:5a:b1:a4:06:fb:0a:16:8c:c2:e3:62:07:4d:52: fa:ae:45:01:b8:a2:bb:ed:e7:9a:81:13:cf:e1:33: 0f:dc:39:ff:d9:1f:05:16:98:35:6f:b8:55:55:06: 87:6e:b6:c8:df:74:d5:5d:0d:e4:78:d5:cf:9f:a3: aa:ed:1d:5c:6e:bd:bd:81:b6:8d:3c:33:56:66:0a: 0a:c8:02:50:03:42:be:da:fd:4a:3a:84:df:6a:37: c4:1e:59:cd:f6:52:49:06:b5:93:9b:03:e8:b8:4f: a7:fc:c0:c9:51:68:26:bf:99:88:0f:ea:45:83:d2: bd:71:f0:21:16:96:36:7e:74:ea:03:4a:d9:09:c1: 9f:89:fb:3f:ca:60:3d:7f:fb:b1:ae:1f:87:2a:7c: 4b:e6:15:00:d9:26:dd:4e:e0:bb:4f:e5:e0:05:69: 29:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:41:3E:7C:67:C6:AE:AA:37:CD:A6:3E:54:2F:40:63:C6:6B:C4:5A X509v3 Authority Key Identifier: keyid:DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:28:26:ee:96:68:c1:99:d6:64:5f:44:f1:f4:c7:f4:4a:50: 06:28:e7:f4:e2:18:40:fc:18:15:05:19:40:46:0b:54:61:0f: 7d:07:8a:5d:90:8d:74:ff:b4:8a:9e:2f:5c:c1:a9:05:e8:27: cf:d9:46:60:27:90:5c:45:1e:7b:07:bd:a4:73:ba:4a:ca:10: 86:2a:7d:de:e2:c4:c3:c6:25:90:4f:13:53:9e:d8:03:6a:6d: 78:dc:68:fe:2c:f3:3a:64:58:72:fd:51:d0:69:e5:88:68:96: bd:ae:c4:6e:01:72:5e:26:87:cf:2f:b0:da:d7:8c:f0:e9:24: 7e:68:a2:f0:a7:ea:df:0a:86:43:34:ae:ca:33:76:44:c8:34: 63:e9:70:07:e6:29:12:4e:e6:33:f6:a0:6c:cf:9c:0a:a9:1e: 66:47:6d:4b:0e:14:48:2c:a1:80:58:ca:bb:01:44:79:c8:33: df:bf:08:f0:85:d2:c4:d9:7f:f9:a7:c1:e0:ec:64:1f:05:eb: 1c:08:e5:f7:04:9f:b4:62:63:27:21:99:59:26:ac:79:48:ea: ef:84:84:67:bd:92:13:61:53:79:03:b0:98:61:48:cb:e9:72: f1:0f:a4:14:39:82:e7:7e:0d:8a:91:37:fa:ab:91:1c:4f:74: c4:28:b0:c0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNjYxMTAvBgNVBAUTKERBNTQ3RUQ2OTI4QUFEMUVDRkI2ODQ3QTFCMDc0MzJC RDg3QjE5RUYwHhcNMjYwNDE2MTgwMjAyWhcNMjYwNDIzMTgwMjAyWjAYMRYwFAYD VQQDEw02OWUxMjQxYS1lNWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnUdA+0DGokL3hdAukLUSmHcflrpBMVB1heHKT+5q+vX0/lVzXyQZVX7+/vkt hWAGqrT9VgBAjFxzjRDW+iQSHFGlmaNM8NCpyjBf9VVI1mw18XV5u5mslXZ5WrGk BvsKFozC42IHTVL6rkUBuKK77eeagRPP4TMP3Dn/2R8FFpg1b7hVVQaHbrbI33TV XQ3keNXPn6Oq7R1cbr29gbaNPDNWZgoKyAJQA0K+2v1KOoTfajfEHlnN9lJJBrWT mwPouE+n/MDJUWgmv5mID+pFg9K9cfAhFpY2fnTqA0rZCcGfifs/ymA9f/uxrh+H KnxL5hUA2SbdTuC7T+XgBWkpgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIdBPnxn xq6qN82mPlQvQGPGa8RaMB8GA1UdIwQYMBaAFNpUftaSiq0ez7aEehsHQyvYexnv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU2Ni83MDYzOUVGQ0ZG NkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JSN1B0b1I2R3dkREs5aDdH ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsUi0xcEtLclI3UHRvUjZHd2RESzloN0dlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU2Ni83MDYzOUVGQ0ZGNkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JS N1B0b1I2R3dkREs5aDdHZTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALigm7pZowZnWZF9E8fTH9EpQBijn9OIYQPwYFQUZQEYLVGEPfQeKXZCNdP+0 ip4vXMGpBegnz9lGYCeQXEUeewe9pHO6SsoQhip93uLEw8YlkE8TU57YA2pteNxo /izzOmRYcv1R0GnliGiWva7EbgFyXiaHzy+w2teM8Okkfmii8Kfq3wqGQzSuyjN2 RMg0Y+lwB+YpEk7mM/agbM+cCqkeZkdtSw4USCyhgFjKuwFEecgz378I8IXSxNl/ +afB4OxkHwXrHAjl9wSftGJjJyGZWSaseUjq74SEZ72SE2FTeQOwmGFIy+ly8Q+k FDmC534NipE3+quRHE90xCiwwA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:48:02 2026 by rpki-client