$ rpki-client -vvf rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft File: 2lA_lyy8k6jIHflfVKLLKjjxPHc.mft (raw, json) Hash identifier: oufJYtSoPrfi0ancv3qaVDvpUeMZ24tbkO/msmdhNuw= Subject key identifier: FC:AB:A4:46:0A:C1:5E:F2:CE:CD:0A:DB:05:48:10:DD:4A:09:2A:8A Authority key identifier: DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 Certificate issuer: /CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Certificate serial: 0A68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft Manifest number: 0A5F Signing time: Thu 16 Apr 2026 19:33:47 +0000 Manifest this update: Thu 16 Apr 2026 19:33:46 +0000 Manifest next update: Thu 23 Apr 2026 19:33:46 +0000 Files and hashes: 1: 2lA_lyy8k6jIHflfVKLLKjjxPHc.crl (hash: Smt9kr0aoSqE0beoEVRmgN/x8YULJo3unGSNznOu6Yg=) 2: F38DEBFC83E911EA993D9515C4F9AE02.roa (hash: xYf6QNwyh/TfYBwfKMFox0Y2KD6yEqZCCyhoM2C9YaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2664 (0xa68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144717, serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Validity Not Before: Apr 16 19:33:46 2026 GMT Not After : Apr 23 19:33:46 2026 GMT Subject: CN=69e1399a-689a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6d:d0:d2:c3:b3:5e:1a:91:a2:6e:09:1b:99: 10:8e:09:4d:79:70:65:26:0c:88:fa:8c:93:10:0d: e9:76:6c:1a:87:71:97:20:18:1b:6a:03:52:95:b3: 13:26:82:fb:dd:f5:0f:80:ef:25:f8:24:10:f9:66: e1:d2:53:de:8c:7c:0b:d5:21:c7:31:d1:42:f2:82: a0:f6:29:b9:d0:42:ab:00:63:9c:f7:87:0e:29:4c: 63:59:06:d9:91:a2:b6:38:4d:7f:7c:ec:16:a6:9e: 1e:6a:c5:b1:85:18:bf:36:0b:17:31:cd:c4:ac:bc: f0:13:c3:18:fd:d7:41:18:24:86:6b:38:73:5e:5d: c8:0e:72:41:e5:94:fd:7d:44:ee:46:83:44:c3:89: 72:e5:11:43:ad:0c:9b:f5:af:86:0f:fa:f1:3d:ec: 47:c1:40:f9:ea:25:8b:02:41:f6:48:0c:7c:c3:50: 2c:62:0c:bf:c7:e4:71:7e:31:64:76:a3:61:c1:d7: 6b:38:ea:34:8a:9d:c2:d6:8b:09:e9:ea:ce:56:19: e0:9d:0d:da:5f:99:75:3b:ec:21:aa:7b:a4:cd:01: c0:28:1f:dd:56:4a:c6:40:0c:f7:78:6c:b1:d2:c9: 91:27:58:8a:74:59:97:d4:b0:d9:9e:44:36:2d:23: 35:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:AB:A4:46:0A:C1:5E:F2:CE:CD:0A:DB:05:48:10:DD:4A:09:2A:8A X509v3 Authority Key Identifier: keyid:DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:68:80:f1:2e:aa:c1:e3:84:e3:23:6c:41:c2:93:af:70:8d: 85:05:53:84:9b:fe:70:13:8d:0a:49:9a:12:3f:1c:41:9e:37: 37:ba:7d:39:d6:89:2c:9a:04:56:39:f3:94:3f:35:0d:ed:8b: 0a:8e:79:d3:66:00:1c:4c:99:60:e8:13:22:ae:3d:f3:6b:50: 4e:0e:29:6a:29:a4:53:2d:58:d0:96:a1:11:e3:59:88:4c:30: a8:a2:7a:3f:f5:70:c6:db:7a:ba:8e:e9:71:28:c7:fc:2e:30: ac:60:85:48:02:42:19:06:64:10:6b:7b:50:a0:a5:d0:c9:c7: 1d:17:ed:2c:fd:3e:6b:6d:22:24:3b:6a:b7:da:6c:7b:c3:0a: 1d:eb:a9:67:f2:f9:2f:4d:1a:ef:36:71:a2:26:c9:c7:a7:2c: 96:89:76:0b:40:37:68:83:1b:c1:3e:9d:e2:50:62:a9:64:43: 76:cf:c0:49:46:22:07:f3:a0:25:e0:c0:63:f4:bb:47:03:8b: 5b:c4:ab:3d:9d:28:d7:b6:ad:03:80:c6:aa:ea:10:10:7c:f6: b1:04:17:37:96:19:b6:81:cb:20:48:5a:cd:e6:0e:01:05:01: 62:f5:1b:40:9e:b1:75:e3:36:67:26:b5:5a:82:8c:4b:85:b0: 65:09:d4:1d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ3MTcxMTAvBgNVBAUTKERBNTAzRjk3MkNCQzkzQThDODFERjk1RjU0QTJDQjJB MzhGMTNDNzcwHhcNMjYwNDE2MTkzMzQ2WhcNMjYwNDIzMTkzMzQ2WjAYMRYwFAYD VQQDEw02OWUxMzk5YS02ODlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwG3Q0sOzXhqRom4JG5kQjglNeXBlJgyI+oyTEA3pdmwah3GXIBgbagNSlbMT JoL73fUPgO8l+CQQ+Wbh0lPejHwL1SHHMdFC8oKg9im50EKrAGOc94cOKUxjWQbZ kaK2OE1/fOwWpp4easWxhRi/NgsXMc3ErLzwE8MY/ddBGCSGazhzXl3IDnJB5ZT9 fUTuRoNEw4ly5RFDrQyb9a+GD/rxPexHwUD56iWLAkH2SAx8w1AsYgy/x+RxfjFk dqNhwddrOOo0ip3C1osJ6erOVhngnQ3aX5l1O+whqnukzQHAKB/dVkrGQAz3eGyx 0smRJ1iKdFmX1LDZnkQ2LSM1YQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPyrpEYK wV7yzs0K2wVIEN1KCSqKMB8GA1UdIwQYMBaAFNpQP5csvJOoyB35X1Siyyo48Tx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDcxNy8zOTg4OTAwMDgz RTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2aklIZmxmVktMTEtqanhQ SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsQV9seXk4azZqSUhmbGZWS0xMS2pqeFBIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDcxNy8zOTg4OTAwMDgzRTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2 aklIZmxmVktMTEtqanhQSGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmmiA8S6qweOE4yNsQcKTr3CNhQVThJv+cBONCkmaEj8cQZ43N7p9OdaJLJoE VjnzlD81De2LCo5502YAHEyZYOgTIq4982tQTg4paimkUy1Y0JahEeNZiEwwqKJ6 P/Vwxtt6uo7pcSjH/C4wrGCFSAJCGQZkEGt7UKCl0MnHHRftLP0+a20iJDtqt9ps e8MKHeupZ/L5L00a7zZxoibJx6cslol2C0A3aIMbwT6d4lBiqWRDds/ASUYiB/Og JeDAY/S7RwOLW8SrPZ0o17atA4DGquoQEHz2sQQXN5YZtoHLIEhazeYOAQUBYvUb QJ6xdeM2Zya1WoKMS4WwZQnUHQ== -----END CERTIFICATE-----Generated at Fri Apr 17 13:53:06 2026 by rpki-client