$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json) Hash identifier: uoevtSdlwOaw9nZy+Nlgbemom1ySctIvaM914KVzBBs= Subject key identifier: 71:C5:01:51:BC:25:C7:A5:AB:15:6E:26:52:DA:8B:40:4B:1F:65:00 Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft Manifest number: 0153 Signing time: Thu 16 Apr 2026 22:59:42 +0000 Manifest this update: Thu 16 Apr 2026 22:59:41 +0000 Manifest next update: Thu 23 Apr 2026 22:59:41 +0000 Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: NKe+Ci+5LdAIDwgQimPtwmFcZ4Ad3Gz58VTyYFgctNs=) 2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: 2/r4oR0iCi4LexUGtmPzKzEWeEmDyv6SAtyEMBATvFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: Apr 16 22:59:41 2026 GMT Not After : Apr 23 22:59:41 2026 GMT Subject: CN=69e169dd-b480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d3:c2:9f:e0:2b:44:9a:9f:e4:26:a9:e3:a7: b9:4c:ed:f0:e5:32:1d:c5:a2:95:0e:91:0a:3d:6f: aa:a2:71:ce:26:ac:66:c4:44:80:bd:16:4a:1f:af: cb:69:69:9f:01:bb:92:d3:61:56:ac:a6:75:98:1e: 69:01:ca:bf:6c:21:e2:02:e6:c6:2e:48:52:c6:b8: c6:5f:89:5a:42:09:e5:b0:52:b1:0d:9c:d9:f3:75: 3e:8c:1e:16:99:50:f6:77:9e:c4:ea:c5:4e:8c:7b: bb:b9:56:1a:85:0b:8c:a3:89:cf:e2:21:28:c4:c7: 3b:d6:13:b6:1d:42:c2:f0:77:73:f8:da:9c:13:9c: 19:57:90:2a:89:8f:95:8a:4c:fd:06:c3:13:26:90: f2:45:58:22:58:2d:52:69:47:8f:e2:99:88:cd:f4: 7b:5b:27:b3:4f:57:5f:18:79:fb:63:d7:d7:53:dc: 35:70:5f:98:88:2f:5e:7a:d3:e0:16:88:52:f6:87: 1d:0a:40:8a:ea:68:ca:9a:0f:de:44:76:43:73:82: b5:54:f1:66:86:06:33:02:37:d3:2e:ef:fd:52:f0: 86:7a:31:22:58:81:e8:db:5b:f7:dc:c2:53:47:44: 55:ce:ff:4f:72:80:7c:5f:d8:7d:c2:2e:d0:13:23: bf:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:C5:01:51:BC:25:C7:A5:AB:15:6E:26:52:DA:8B:40:4B:1F:65:00 X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:d2:73:55:50:8b:f9:12:30:8a:4b:f3:dd:a4:64:51:0e:3d: 1e:b0:aa:91:61:12:1d:a7:e9:b7:b3:d3:b2:46:76:c9:58:fa: 81:a6:5d:ad:d8:15:32:d8:05:a1:a7:06:52:e5:01:ee:82:ad: 49:80:df:2e:84:0b:de:92:40:91:1c:27:53:8b:04:b0:f5:72: e0:e9:6f:c7:0a:ea:65:dd:8e:a5:5e:1d:89:ce:4e:65:3b:41: 7f:63:92:f1:c5:1b:1a:2a:53:eb:02:dc:e0:bb:81:32:84:b8: a1:89:e1:9e:7f:9a:fe:98:60:75:8e:b5:ae:43:51:ca:25:ce: 1b:6f:a9:92:fb:c1:91:9b:6f:6f:8b:99:ed:05:f3:ce:96:dd: 81:e5:b7:4f:02:33:79:4f:cf:52:28:89:e5:c1:f9:c1:ef:1b: 1c:79:b7:69:8e:e5:29:50:cf:9a:42:29:41:79:12:3a:d3:c5: 1e:42:a3:a1:9c:55:aa:ef:17:7c:22:21:bf:96:e8:fd:a7:2c: 3e:b3:2f:19:1b:3b:85:24:2b:b5:b3:0d:ff:0f:46:3f:40:bd: 63:db:52:26:94:a2:be:3b:fb:3d:63:7b:39:34:88:2a:d9:46: eb:d0:37:80:7d:aa:fe:f5:02:65:f7:69:20:f6:2a:16:12:fb: 33:35:f9:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjYwNDE2MjI1OTQxWhcNMjYwNDIzMjI1OTQxWjAYMRYwFAYD VQQDEw02OWUxNjlkZC1iNDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtPCn+ArRJqf5Cap46e5TO3w5TIdxaKVDpEKPW+qonHOJqxmxESAvRZKH6/L aWmfAbuS02FWrKZ1mB5pAcq/bCHiAubGLkhSxrjGX4laQgnlsFKxDZzZ83U+jB4W mVD2d57E6sVOjHu7uVYahQuMo4nP4iEoxMc71hO2HULC8Hdz+NqcE5wZV5AqiY+V ikz9BsMTJpDyRVgiWC1SaUeP4pmIzfR7WyezT1dfGHn7Y9fXU9w1cF+YiC9eetPg FohS9ocdCkCK6mjKmg/eRHZDc4K1VPFmhgYzAjfTLu/9UvCGejEiWIHo21v33MJT R0RVzv9PcoB8X9h9wi7QEyO/gwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHHFAVG8 JcelqxVuJlLai0BLH2UAMB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC9FRjYzODNFMjNEOUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01B cTFPejVJY1BMMFFmQnNnU1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYtJzVVCL+RIwikvz3aRkUQ49HrCqkWESHafpt7PTskZ2yVj6gaZdrdgVMtgF oacGUuUB7oKtSYDfLoQL3pJAkRwnU4sEsPVy4OlvxwrqZd2OpV4dic5OZTtBf2OS 8cUbGipT6wLc4LuBMoS4oYnhnn+a/phgdY61rkNRyiXOG2+pkvvBkZtvb4uZ7QXz zpbdgeW3TwIzeU/PUiiJ5cH5we8bHHm3aY7lKVDPmkIpQXkSOtPFHkKjoZxVqu8X fCIhv5bo/acsPrMvGRs7hSQrtbMN/w9GP0C9Y9tSJpSivjv7PWN7OTSIKtlG69A3 gH2q/vUCZfdpIPYqFhL7MzX5hQ== -----END CERTIFICATE-----Generated at Fri Apr 17 11:49:49 2026 by rpki-client