$ rpki-client -vvf rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft File: 2nNptJciuhObe2DznIi0m9uzXz0.mft (raw, json) Hash identifier: wd4objpB6jJC7LCSsK6fZd9KDf26h0an/sPJ/7pMZ4s= Subject key identifier: BE:7C:34:57:E5:93:C9:03:11:B5:10:87:BD:2B:49:B7:B5:B4:4A:43 Authority key identifier: DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D Certificate issuer: /CN=A917E623/serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft Manifest number: 01FC Signing time: Fri 17 Apr 2026 03:04:34 +0000 Manifest this update: Fri 17 Apr 2026 03:04:34 +0000 Manifest next update: Fri 24 Apr 2026 03:04:34 +0000 Files and hashes: 1: 2nNptJciuhObe2DznIi0m9uzXz0.crl (hash: OTE/KSQCc1Sd9jvHNxy39g8YMH1YUD46Decmhh5dunM=) 2: BBBEDEF46C8211EE866F5A78C4F9AE02.roa (hash: TcpO2pAwWZUV4OPE5KsxCXepxeEGE8042tINqAbe+zE=) 3: 585745526BC111EEA163E774C4F9AE02.roa (hash: jWFAA3hjLn4/pUtGRdYAlT0inc3UozSJNCSTFiimgaQ=) 4: C12ACE6AC17E11EE95D6821CC4F9AE02.roa (hash: Z/RkFpCizjgmgGwfqkz29wdou2CdOLuqIgY1kgGpNOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:04:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E623, serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Validity Not Before: Apr 17 03:04:34 2026 GMT Not After : Apr 24 03:04:34 2026 GMT Subject: CN=69e1a342-311e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:6d:5a:0e:36:c0:de:34:57:7f:2c:b9:ea:fa: 60:41:de:76:6c:a8:88:72:41:94:bd:d5:d6:7a:3e: bd:fd:90:9e:47:67:46:49:29:3d:8a:89:77:b3:57: 61:17:a4:8e:24:98:a3:ab:93:6b:59:6c:8e:a9:82: 5f:f0:96:b5:18:69:9b:9c:0b:9c:48:a3:e8:43:61: 3b:6e:89:de:4d:bc:0a:97:e8:38:10:b8:e0:dd:e3: bb:21:2e:3c:da:2c:a6:13:de:80:74:7c:23:07:66: d6:8f:1d:0e:3d:14:51:6b:30:8e:20:a3:87:90:7f: eb:bd:da:60:02:94:22:46:b8:0c:7c:6a:d9:63:27: 08:ee:99:80:6e:0e:f6:a8:6a:25:17:a9:0e:f9:3a: 9a:71:c1:2d:c3:1e:90:87:3c:01:32:db:1f:c2:da: c8:a7:e6:89:24:01:8a:79:ae:dd:71:bd:ea:4c:d8: d0:db:39:24:0c:ec:86:c8:36:fc:93:ee:c5:01:fe: 71:ec:ab:cc:5a:a9:9e:03:8a:df:26:3e:73:c2:19: 8d:57:79:a3:b5:c8:86:a3:25:fe:91:0e:62:68:d8: 4e:d7:b8:15:54:eb:be:32:84:9d:31:0f:c9:25:39: c4:de:e0:82:12:b1:1c:45:0a:1c:01:43:03:00:df: 3a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:7C:34:57:E5:93:C9:03:11:B5:10:87:BD:2B:49:B7:B5:B4:4A:43 X509v3 Authority Key Identifier: keyid:DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:aa:24:ce:1c:23:ca:b0:25:5f:25:dd:df:80:c1:37:c5:d5: 27:36:fe:92:d8:09:c2:a4:fe:a5:ee:7a:31:7c:c6:31:2c:ac: 91:69:d5:85:0d:c3:2c:93:c0:e9:a2:d2:0a:ad:c2:0d:58:7c: 34:49:b8:2e:7f:28:be:48:68:94:d5:e2:e0:7b:bb:58:50:96: 8b:59:23:17:23:0b:61:28:0b:c3:59:b6:bc:85:e1:6c:93:5a: 16:6c:e0:bf:c6:4e:16:c1:0e:f2:3d:da:9e:a4:f2:4a:33:6b: f2:9f:fe:b5:c8:74:a8:b0:b3:11:bc:bb:bc:c9:14:f9:ba:ba: 2e:94:53:9c:6f:90:22:c2:03:55:21:cc:5a:10:05:de:a0:26: a5:10:4b:54:ef:6d:fe:35:e6:2e:f8:d6:28:35:3f:d6:d9:0d: 7a:05:c4:fa:c9:8c:45:c5:01:ae:11:79:db:b9:ea:ce:0f:b2: 47:9c:64:96:0c:ab:5b:b8:e5:d0:1b:cd:c4:17:6d:5e:d4:f9: 66:7b:ae:c7:1f:39:bf:d4:f4:19:b4:20:44:2b:7e:a1:21:aa: 13:a4:e9:b6:4f:60:56:be:b8:2a:b0:66:6f:58:32:72:bc:31: 1c:1c:2c:65:9f:d7:ff:3f:bf:1b:a6:a8:4f:29:c2:e2:cd:76: 8d:77:71:5a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2MjMxMTAvBgNVBAUTKERBNzM2OUI0OTcyMkJBMTM5QjdCNjBGMzlDODhCNDlC REJCMzVGM0QwHhcNMjYwNDE3MDMwNDM0WhcNMjYwNDI0MDMwNDM0WjAYMRYwFAYD VQQDEw02OWUxYTM0Mi0zMTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhW1aDjbA3jRXfyy56vpgQd52bKiIckGUvdXWej69/ZCeR2dGSSk9iol3s1dh F6SOJJijq5NrWWyOqYJf8Ja1GGmbnAucSKPoQ2E7boneTbwKl+g4ELjg3eO7IS48 2iymE96AdHwjB2bWjx0OPRRRazCOIKOHkH/rvdpgApQiRrgMfGrZYycI7pmAbg72 qGolF6kO+TqaccEtwx6QhzwBMtsfwtrIp+aJJAGKea7dcb3qTNjQ2zkkDOyGyDb8 k+7FAf5x7KvMWqmeA4rfJj5zwhmNV3mjtciGoyX+kQ5iaNhO17gVVOu+MoSdMQ/J JTnE3uCCErEcRQocAUMDAN86OQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL58NFfl k8kDEbUQh70rSbe1tEpDMB8GA1UdIwQYMBaAFNpzabSXIroTm3tg85yItJvbs189 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTYyMy9BMjVENDg5RTUw NDcxMUVFQjY3NzM2NURDNEY5QUUwMi8ybk5wdEpjaXVoT2JlMkR6bklpMG05dXpY ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuTnB0SmNpdWhPYmUyRHpuSWkwbTl1elh6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTYyMy9BMjVENDg5RTUwNDcxMUVFQjY3NzM2NURDNEY5QUUwMi8ybk5wdEpjaXVo T2JlMkR6bklpMG05dXpYejAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnKokzhwjyrAlXyXd34DBN8XVJzb+ktgJwqT+pe56MXzGMSyskWnVhQ3DLJPA 6aLSCq3CDVh8NEm4Ln8ovkholNXi4Hu7WFCWi1kjFyMLYSgLw1m2vIXhbJNaFmzg v8ZOFsEO8j3anqTySjNr8p/+tch0qLCzEby7vMkU+bq6LpRTnG+QIsIDVSHMWhAF 3qAmpRBLVO9t/jXmLvjWKDU/1tkNegXE+smMRcUBrhF527nqzg+yR5xklgyrW7jl 0BvNxBdtXtT5Znuuxx85v9T0GbQgRCt+oSGqE6Tptk9gVr64KrBmb1gycrwxHBws ZZ/X/z+/G6aoTynC4s12jXdxWg== -----END CERTIFICATE-----Generated at Sat Apr 18 01:09:20 2026 by rpki-client