$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: 8B7xbWnQOXnUiJoX2QjSpE0RGWXfFgXbsqGd/E2M9rw= Subject key identifier: 61:C0:F5:07:AA:E1:CB:43:01:FC:1C:61:C0:1A:3D:FE:D4:5E:89:F6 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 046B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 0464 Signing time: Fri 17 Apr 2026 00:02:27 +0000 Manifest this update: Fri 17 Apr 2026 00:02:26 +0000 Manifest next update: Fri 24 Apr 2026 00:02:26 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: iP1tjcHSllKq0KzLcZe9nMmUmALGF1OOEZ9qz0eWOlI=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: gXnStk1MwegllJpHCk0mKvppBMmur0BRxsppyW6UBsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:02:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1131 (0x46b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950, serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: Apr 17 00:02:26 2026 GMT Not After : Apr 24 00:02:26 2026 GMT Subject: CN=69e17893-9504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:8e:71:ce:39:91:6a:c0:e0:8a:31:88:41:de: a7:80:c7:cd:a1:3d:7c:8c:2f:15:ff:57:85:c9:d4: 6d:72:dd:ff:75:1f:f8:36:6c:ad:ea:8d:4c:2d:26: 1e:ad:16:b2:9a:63:31:b6:1c:76:5b:ee:01:f2:cc: 04:e5:a4:3d:81:9e:54:12:35:29:66:23:41:31:aa: 95:2d:f5:39:7e:2a:8e:93:53:a9:bd:c0:45:c9:75: 96:38:99:dd:f7:6f:25:3b:fa:23:ba:83:38:4b:fd: 0f:02:a6:70:b5:b5:a0:66:57:ee:24:d5:5e:87:e4: 01:51:60:03:a5:f7:0b:a1:f8:84:14:29:70:0b:10: 3b:e3:f8:9c:03:7f:01:44:b8:4d:00:f7:33:7f:65: 0b:21:ec:df:02:8f:c0:d7:32:cc:69:9f:f8:fc:cf: 38:47:dd:88:78:0f:15:96:54:57:ab:eb:a9:ae:c0: 29:78:a6:e2:1e:17:53:20:ab:b2:b2:da:40:ce:7e: 5f:d3:4b:27:cd:dd:53:38:c7:79:cd:0e:77:61:88: 4c:55:eb:6a:e8:3d:3d:5c:94:a7:45:31:dc:4e:3d: 62:8a:12:39:69:de:65:4d:06:02:f9:1d:0e:26:3c: ac:34:e4:26:0e:5a:d7:0d:f8:36:94:9a:71:28:ca: f2:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:C0:F5:07:AA:E1:CB:43:01:FC:1C:61:C0:1A:3D:FE:D4:5E:89:F6 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:f4:98:92:85:f6:41:c1:78:4a:4f:ad:78:7d:28:95:8e:79: 82:f2:a8:4e:a0:3e:26:f8:8d:49:27:aa:68:0f:dd:14:0b:26: 7d:87:49:ba:6a:d3:8f:cf:b9:da:11:0a:6a:99:41:6b:bb:a3: 7a:f4:33:cb:6e:92:fc:ba:6c:d4:e3:31:7e:30:8b:d3:52:74: c2:97:fc:dd:fc:bc:df:94:6b:eb:63:e5:fc:30:b1:76:21:35: 37:03:25:77:67:bc:c5:d9:9a:c6:6b:fd:5d:41:6c:9e:86:0f: 56:28:ba:85:6f:86:e2:62:64:70:fe:58:c6:ae:fb:6a:6f:68: 62:30:a7:0f:f6:65:5e:e8:11:ba:01:3f:49:3f:74:b3:2b:6d: 87:6a:f7:c9:11:c6:db:46:e0:70:13:c2:b5:31:cd:54:ce:2a: 70:d4:8f:cc:0d:bc:d1:7a:75:38:63:1d:dd:07:da:17:9b:26: a6:da:d4:e7:5f:85:4d:fe:83:38:80:e9:62:f7:49:d6:8c:88: e1:be:84:d0:4e:ce:42:bd:ca:38:0f:09:91:31:dd:dc:b6:04: 3a:a7:ad:c6:1a:64:e3:e6:25:f8:5a:89:0f:9b:8f:54:e7:c7: 6c:fa:f7:fb:ee:0c:e9:d1:b8:09:6f:fa:7a:c8:02:2a:17:65: cd:8a:b4:05 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjYwNDE3MDAwMjI2WhcNMjYwNDI0MDAwMjI2WjAYMRYwFAYD VQQDEw02OWUxNzg5My05NTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+o5xzjmRasDgijGIQd6ngMfNoT18jC8V/1eFydRtct3/dR/4Nmyt6o1MLSYe rRaymmMxthx2W+4B8swE5aQ9gZ5UEjUpZiNBMaqVLfU5fiqOk1OpvcBFyXWWOJnd 928lO/ojuoM4S/0PAqZwtbWgZlfuJNVeh+QBUWADpfcLofiEFClwCxA74/icA38B RLhNAPczf2ULIezfAo/A1zLMaZ/4/M84R92IeA8VllRXq+uprsApeKbiHhdTIKuy stpAzn5f00snzd1TOMd5zQ53YYhMVetq6D09XJSnRTHcTj1iihI5ad5lTQYC+R0O JjysNOQmDlrXDfg2lJpxKMrygwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGHA9Qeq 4ctDAfwcYcAaPf7UXon2MB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr/SYkoX2QcF4Sk+teH0olY55gvKoTqA+JviNSSeqaA/dFAsmfYdJumrTj8+5 2hEKaplBa7ujevQzy26S/Lps1OMxfjCL01J0wpf83fy835Rr62Pl/DCxdiE1NwMl d2e8xdmaxmv9XUFsnoYPVii6hW+G4mJkcP5Yxq77am9oYjCnD/ZlXugRugE/ST90 sytth2r3yRHG20bgcBPCtTHNVM4qcNSPzA280Xp1OGMd3QfaF5smptrU51+FTf6D OIDpYvdJ1oyI4b6E0E7OQr3KOA8JkTHd3LYEOqetxhpk4+Yl+FqJD5uPVOfHbPr3 ++4M6dG4CW/6esgCKhdlzYq0BQ== -----END CERTIFICATE-----Generated at Fri Apr 17 09:37:09 2026 by rpki-client