$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: wpQfkbEIsEBcJjdDrAWt47LS63y8YfCkhB6IyBXwtzk= Subject key identifier: EA:CD:D9:36:19:D7:E4:CD:D1:20:16:5B:03:8A:C4:EA:3D:C4:7A:93 Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 02DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 02D0 Signing time: Sun 19 Apr 2026 01:17:07 +0000 Manifest this update: Sun 19 Apr 2026 01:17:06 +0000 Manifest next update: Sun 26 Apr 2026 01:17:06 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: I4JOAGhs2FmsnFzhstnNtGe3E9Oxl8rQK5Pw1X7c/zE=) 2: C4149072C8FF11F0AC8AE779C4F9AE02.roa (hash: e26HjI6IThHSTcyiS5wewUgNVLH1ZtA87nwKAQOfEN8=) 3: 3A281348C8FF11F0A8BC2876C4F9AE02.roa (hash: qmW4boAu4mPyTeZ/1TM4f4A59PHbYduM7lK03RYvMz8=) 4: C3A9035CC8FF11F0BE76E779C4F9AE02.roa (hash: Qq87SJXaEP4qrP/T3bWQOCeWogcPQnVi06inH60FBfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 01:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 734 (0x2de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Apr 19 01:17:06 2026 GMT Not After : Apr 26 01:17:06 2026 GMT Subject: CN=69e42d13-ca18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:5a:6f:cf:d0:fe:aa:1e:7a:ff:0c:35:dc:4a: a4:31:97:63:09:dc:c6:1b:b7:d1:19:c0:b8:72:05: 52:78:e0:aa:fd:b2:2e:14:b5:7e:10:28:ac:1d:ad: c3:c7:77:b3:98:8e:6a:8f:5d:81:33:cd:5b:93:12: 6c:95:92:ee:a6:0d:5e:76:42:c2:86:f7:2d:b1:35: a3:b2:d7:98:10:19:dc:d3:7b:c5:33:5a:3c:e9:e4: ef:1b:db:bb:7f:cf:aa:e1:a0:00:e8:66:5d:8e:19: d4:da:d7:5d:13:47:34:1b:77:74:b7:af:34:c4:9c: 96:88:7c:1d:f6:f3:2a:30:39:f8:51:ea:a4:92:87: a0:3d:fa:86:44:67:1a:d6:05:f4:95:26:ae:4b:5b: b7:88:1d:5d:70:c8:0e:be:4e:cc:ab:73:00:42:25: f8:4f:99:5b:1c:aa:55:5b:c1:c6:6a:9c:e4:c5:88: 1b:20:66:1f:17:ba:41:2e:5f:88:2f:da:db:8c:ff: c7:cb:7c:a9:1e:04:84:ad:f2:50:3f:a7:85:e8:bb: 8e:77:c1:ea:b1:05:9f:65:ad:c5:0e:7f:3e:5c:1a: 71:3a:11:d3:cd:be:ce:99:d6:90:f1:cb:29:30:6d: ca:cc:f4:5c:72:21:68:78:77:38:3b:b1:a9:b3:05: d1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:CD:D9:36:19:D7:E4:CD:D1:20:16:5B:03:8A:C4:EA:3D:C4:7A:93 X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:e3:f4:6e:10:a3:be:c0:04:fd:30:fa:38:8f:b3:4b:c1:dc: 06:ec:46:78:e1:02:3c:f0:da:c2:4c:f0:15:56:b6:5a:07:b2: b3:fb:48:ef:29:9c:02:06:c5:d3:1d:16:8c:3f:dd:a9:e1:65: 24:0c:ba:b8:8b:d0:94:1c:18:07:17:12:7e:e3:10:b5:b2:e0: 12:6f:fd:53:8c:00:1c:9f:01:dc:7f:e2:cb:76:54:1b:54:ed: 0a:39:d3:77:ad:ca:20:6d:a7:f0:8d:e0:24:d9:ca:ba:2a:d7: 8e:f0:97:b8:c5:3a:8a:50:70:83:96:86:04:fb:0e:a6:3d:d4: 95:a4:67:59:25:4c:fa:67:02:47:10:fb:6b:db:9d:7a:44:a2: 9c:08:46:97:ba:b1:1e:37:af:51:68:ba:0c:23:7e:1e:63:05: c8:69:1c:85:c6:f3:7e:60:88:a4:dc:a8:11:c5:92:8a:3c:bb: 9d:25:a0:1b:0b:c4:8d:35:ef:34:38:17:71:54:0d:6a:25:b7: a8:87:2c:b3:fd:76:c7:4c:ae:be:57:19:4f:53:f0:78:f9:04: 10:21:c5:db:c4:97:88:f8:cd:4a:d2:01:b0:e3:27:f5:cf:94: 62:74:87:1a:1a:72:6b:b3:4b:9f:e6:a5:d5:d9:cd:7c:d7:e0: a7:5e:d0:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjYwNDE5MDExNzA2WhcNMjYwNDI2MDExNzA2WjAYMRYwFAYD VQQDEw02OWU0MmQxMy1jYTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn1pvz9D+qh56/ww13EqkMZdjCdzGG7fRGcC4cgVSeOCq/bIuFLV+ECisHa3D x3ezmI5qj12BM81bkxJslZLupg1edkLChvctsTWjsteYEBnc03vFM1o86eTvG9u7 f8+q4aAA6GZdjhnU2tddE0c0G3d0t680xJyWiHwd9vMqMDn4UeqkkoegPfqGRGca 1gX0lSauS1u3iB1dcMgOvk7Mq3MAQiX4T5lbHKpVW8HGapzkxYgbIGYfF7pBLl+I L9rbjP/Hy3ypHgSErfJQP6eF6LuOd8HqsQWfZa3FDn8+XBpxOhHTzb7OmdaQ8csp MG3KzPRcciFoeHc4O7GpswXRzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOrN2TYZ 1+TN0SAWWwOKxOo9xHqTMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoeP0bhCjvsAE/TD6OI+zS8HcBuxGeOECPPDawkzwFVa2Wgeys/tI7ymcAgbF 0x0WjD/dqeFlJAy6uIvQlBwYBxcSfuMQtbLgEm/9U4wAHJ8B3H/iy3ZUG1TtCjnT d63KIG2n8I3gJNnKuirXjvCXuMU6ilBwg5aGBPsOpj3UlaRnWSVM+mcCRxD7a9ud ekSinAhGl7qxHjevUWi6DCN+HmMFyGkchcbzfmCIpNyoEcWSijy7nSWgGwvEjTXv NDgXcVQNaiW3qIcss/12x0yuvlcZT1PwePkEECHF28SXiPjNStIBsOMn9c+UYnSH Ghpya7NLn+al1dnNfNfgp17QIQ== -----END CERTIFICATE-----Generated at Sun Apr 19 08:52:48 2026 by rpki-client