$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: LOdL87JARIrb8ckPDeP95ZSwSUtlCaCYJZgbqrPAeVI= Subject key identifier: 78:67:04:66:67:12:11:74:0F:CE:2E:22:EF:6C:6E:9C:B0:A2:20:DB Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 3541 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 3536 Signing time: Thu 16 Apr 2026 14:57:42 +0000 Manifest this update: Thu 16 Apr 2026 14:57:41 +0000 Manifest next update: Thu 23 Apr 2026 14:57:41 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: KXa8wzAmlD4ZfbqIpm147iFPhRhrrr7PvPlVrHlwD5s=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: WIHf/g57A92kBt+M1v/6HUGwLpZi39D8KAuOlAkvShg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13633 (0x3541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC, serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: Apr 16 14:57:41 2026 GMT Not After : Apr 23 14:57:41 2026 GMT Subject: CN=69e0f8e5-8755 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:72:6b:92:38:1c:86:92:f1:7f:fa:4f:26:6c: 8c:b3:fe:2e:84:d6:1d:85:95:81:b2:61:b8:08:00: 59:d5:3f:d4:39:ec:c5:4d:40:46:72:f3:34:2d:b6: 49:a1:b7:d8:d3:77:79:3c:7d:74:1f:57:b6:10:d5: 15:1a:fa:0a:09:4a:7a:2e:98:37:f1:fa:e6:ea:0b: 73:09:44:51:bc:c9:f7:2c:44:94:42:01:16:35:a0: ab:95:a7:de:13:f4:8b:5a:d2:48:06:9a:f2:e5:d5: 7b:42:22:19:7d:c1:b8:74:bd:bd:61:8f:b7:bb:c9: 3d:cc:57:03:0e:08:69:4f:cc:e4:4a:39:f0:40:e7: d1:54:ca:e3:f0:52:0a:3d:11:9b:cd:45:19:4a:e4: fe:83:6b:8e:e0:07:c0:d8:34:07:b2:03:88:d3:bc: 51:6a:1a:83:6e:c9:6c:e9:6a:11:eb:ea:f0:83:f6: 9c:28:0c:ff:67:33:7d:7b:61:43:25:0d:9d:2a:96: bc:de:89:9c:23:43:25:5b:7a:0f:40:3c:d8:a6:97: 2a:ac:7d:5b:be:cd:8f:0b:a4:3f:71:c3:7a:37:8e: fa:87:a0:45:62:20:73:88:ad:cb:4a:28:94:7e:00: 37:e7:46:b4:26:c8:28:7f:ab:1a:ed:d6:b7:da:10: a6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:67:04:66:67:12:11:74:0F:CE:2E:22:EF:6C:6E:9C:B0:A2:20:DB X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:1c:3e:67:ae:97:20:9f:f4:2d:f2:a6:11:77:71:00:60:9b: b1:a7:46:7f:dd:47:c6:68:13:6f:da:75:d8:46:69:27:78:f9: d4:de:3d:1b:ac:28:1b:c7:65:aa:e7:e1:25:b5:ec:e1:20:44: ec:cc:66:fe:b8:f2:ba:3a:a4:25:f9:0c:e6:73:34:80:70:b0: 3d:40:d4:47:3c:34:aa:ce:0a:6b:79:4a:7f:b5:a9:5e:a4:2b: e1:c0:f1:6c:61:5b:9e:00:01:8b:36:af:37:73:f3:63:94:d3: 69:89:2a:64:0e:e7:3e:1a:69:1e:84:c8:02:f9:6e:e1:60:a6: 02:98:e4:55:f5:3d:1e:d9:e7:7a:7c:b0:73:81:a6:c9:0b:62: 6d:45:d5:44:18:dd:ad:78:63:c4:db:15:ef:1e:28:80:28:e2: 39:d7:8f:bd:8f:28:b9:62:34:6f:b7:22:1f:55:15:48:3b:0b: f3:c6:8f:c3:bd:7a:6a:34:a3:9b:73:31:24:22:11:f5:d3:c1: 50:d5:fe:70:63:4c:41:db:5d:2f:58:13:66:bf:95:c4:69:b0: d4:cd:69:e4:91:73:de:22:7a:0e:ed:0a:ba:23:74:12:e0:4e: b5:32:df:6b:7e:de:84:89:95:2e:03:f0:82:75:e4:c4:bf:87: 54:91:1e:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjYwNDE2MTQ1NzQxWhcNMjYwNDIzMTQ1NzQxWjAYMRYwFAYD VQQDEw02OWUwZjhlNS04NzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAonJrkjgchpLxf/pPJmyMs/4uhNYdhZWBsmG4CABZ1T/UOezFTUBGcvM0LbZJ obfY03d5PH10H1e2ENUVGvoKCUp6Lpg38frm6gtzCURRvMn3LESUQgEWNaCrlafe E/SLWtJIBpry5dV7QiIZfcG4dL29YY+3u8k9zFcDDghpT8zkSjnwQOfRVMrj8FIK PRGbzUUZSuT+g2uO4AfA2DQHsgOI07xRahqDbsls6WoR6+rwg/acKAz/ZzN9e2FD JQ2dKpa83omcI0MlW3oPQDzYppcqrH1bvs2PC6Q/ccN6N476h6BFYiBziK3LSiiU fgA350a0Jsgof6sa7da32hCmvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHhnBGZn EhF0D84uIu9sbpywoiDbMB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARhw+Z66XIJ/0LfKmEXdxAGCbsadGf91HxmgTb9p12EZpJ3j51N49G6woG8dl qufhJbXs4SBE7Mxm/rjyujqkJfkM5nM0gHCwPUDURzw0qs4Ka3lKf7WpXqQr4cDx bGFbngABizavN3PzY5TTaYkqZA7nPhppHoTIAvlu4WCmApjkVfU9Htnnenywc4Gm yQtibUXVRBjdrXhjxNsV7x4ogCjiOdePvY8ouWI0b7ciH1UVSDsL88aPw716ajSj m3MxJCIR9dPBUNX+cGNMQdtdL1gTZr+VxGmw1M1p5JFz3iJ6Du0KuiN0EuBOtTLf a37ehImVLgPwgnXkxL+HVJEe7w== -----END CERTIFICATE-----Generated at Fri Apr 17 09:55:06 2026 by rpki-client