$ rpki-client -vvf rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft File: 2kObzwPK_LW-ftCuezKPafiMGys.mft (raw, json) Hash identifier: 1NrWpdh+piiLrO3U+y2N77nTlTHQul9NzDFqbKhCZY8= Subject key identifier: 3A:FB:2D:5E:06:90:30:19:AA:53:16:11:A2:A0:35:21:29:53:AD:72 Authority key identifier: DA:43:9B:CF:03:CA:FC:B5:BE:7E:D0:AE:7B:32:8F:69:F8:8C:1B:2B Certificate issuer: /CN=A9188EB6/serialNumber=DA439BCF03CAFCB5BE7ED0AE7B328F69F88C1B2B Certificate serial: 0534 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft Manifest number: 052C Signing time: Thu 16 Apr 2026 23:27:08 +0000 Manifest this update: Thu 16 Apr 2026 23:27:07 +0000 Manifest next update: Thu 23 Apr 2026 23:27:07 +0000 Files and hashes: 1: 2kObzwPK_LW-ftCuezKPafiMGys.crl (hash: 37D3Rgxmg3+2ZYeDhNB42Q8BJ0zyRMSZ5zoQe9sLG6E=) 2: E9E440F2411511ECBC2FB20BC4F9AE02.roa (hash: 1+kyZfwlYYLpY6rDzV9OldQ7LOSPDOBQp0/0LVGDmAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.crl rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1332 (0x534) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188EB6, serialNumber=DA439BCF03CAFCB5BE7ED0AE7B328F69F88C1B2B Validity Not Before: Apr 16 23:27:07 2026 GMT Not After : Apr 23 23:27:07 2026 GMT Subject: CN=69e1704b-2b8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d3:03:5f:3c:4c:53:e2:54:f9:50:1c:f3:8b: 33:9f:35:69:56:41:e6:43:2d:06:48:96:5c:34:25: 13:6e:ba:fb:a2:b5:33:6f:cb:2e:8a:1e:79:65:ca: 66:46:d8:bf:a9:8a:71:91:fa:95:70:c1:f3:91:e4: 7c:c9:86:bd:cf:b3:1b:61:5d:9f:8b:89:dc:f5:a1: 7c:b7:7f:b0:5e:19:9f:41:42:b9:2f:4d:54:f4:53: 87:31:1c:b9:f9:e3:65:68:6d:d9:51:4c:88:9a:85: 52:cf:6c:18:39:b8:bf:53:33:56:9f:29:39:f6:ee: 84:11:fe:1e:0a:cc:87:d6:61:72:42:e3:b5:21:e7: 54:d0:bc:f3:3a:32:dc:11:08:a3:1a:ae:2f:41:e8: b1:4e:36:44:5a:b2:66:1b:17:08:f8:b6:a4:38:d3: e5:f7:7b:54:17:9f:52:62:31:be:20:0d:bb:98:50: 1f:38:1e:7d:44:84:3a:d5:8e:21:a8:c8:1d:b7:59: 1c:57:eb:48:61:ca:5f:45:0f:fb:24:e2:37:cb:77: 57:0e:11:35:29:bd:4c:58:cf:b7:31:51:14:5c:b3: 3c:ab:b7:1f:37:c1:b4:ec:55:71:34:88:02:a3:15: 5b:6f:64:15:f4:3c:ca:32:73:53:01:6f:ad:dc:3b: af:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:FB:2D:5E:06:90:30:19:AA:53:16:11:A2:A0:35:21:29:53:AD:72 X509v3 Authority Key Identifier: keyid:DA:43:9B:CF:03:CA:FC:B5:BE:7E:D0:AE:7B:32:8F:69:F8:8C:1B:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:fa:da:ef:40:48:f0:d1:21:90:be:d8:86:29:9f:48:6a:51: 25:4a:ce:b6:eb:e5:e6:04:dc:62:e2:8f:86:87:8e:05:3c:03: 28:79:d9:04:a6:69:77:83:39:c8:e9:20:e9:c6:37:07:1e:63: be:91:16:fd:1e:8e:23:85:b5:fc:ed:6f:af:42:d4:20:b2:d3: a1:8f:2b:9f:e5:53:da:60:7c:f5:87:af:c6:27:84:91:08:65: 64:bf:a8:f8:cc:19:34:67:1f:30:3e:72:bd:5c:bb:17:5d:a2: 62:d5:4e:4b:b7:4a:eb:c9:e5:f0:3f:b0:ed:7e:71:ad:9d:c1: 2a:44:fa:86:7a:fb:9a:58:1e:9b:ce:d1:ad:b6:cc:01:a0:a2: ed:63:62:de:6e:17:75:cf:a3:68:00:4f:51:98:9f:22:d7:e1: 94:af:69:a2:e3:72:15:21:7d:65:a5:4e:e8:eb:10:ef:c4:88: aa:4b:a6:35:8e:f1:c7:cf:54:8b:c7:83:39:c2:08:c6:bf:45: af:45:ba:16:e4:24:32:83:c8:e4:8f:14:f7:b8:6c:fd:c5:02: aa:cc:d7:e3:d3:47:45:94:7b:44:c4:36:79:4c:e3:ca:d3:9d: b2:5c:2f:1b:53:e4:6a:7e:1b:d2:e5:7e:f6:38:ae:e2:43:72: 6a:6f:59:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhFQjYxMTAvBgNVBAUTKERBNDM5QkNGMDNDQUZDQjVCRTdFRDBBRTdCMzI4RjY5 Rjg4QzFCMkIwHhcNMjYwNDE2MjMyNzA3WhcNMjYwNDIzMjMyNzA3WjAYMRYwFAYD VQQDEw02OWUxNzA0Yi0yYjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9MDXzxMU+JU+VAc84sznzVpVkHmQy0GSJZcNCUTbrr7orUzb8suih55Zcpm Rti/qYpxkfqVcMHzkeR8yYa9z7MbYV2fi4nc9aF8t3+wXhmfQUK5L01U9FOHMRy5 +eNlaG3ZUUyImoVSz2wYObi/UzNWnyk59u6EEf4eCsyH1mFyQuO1IedU0LzzOjLc EQijGq4vQeixTjZEWrJmGxcI+LakONPl93tUF59SYjG+IA27mFAfOB59RIQ61Y4h qMgdt1kcV+tIYcpfRQ/7JOI3y3dXDhE1Kb1MWM+3MVEUXLM8q7cfN8G07FVxNIgC oxVbb2QV9DzKMnNTAW+t3DuvkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDr7LV4G kDAZqlMWEaKgNSEpU61yMB8GA1UdIwQYMBaAFNpDm88Dyvy1vn7Qrnsyj2n4jBsr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEVCNi8zRUJGNDc5QTQx MTQxMUVDOEVBOTZEMEJDNEY5QUUwMi8ya09iendQS19MVy1mdEN1ZXpLUGFmaU1H eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrT2J6d1BLX0xXLWZ0Q3VlektQYWZpTUd5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEVCNi8zRUJGNDc5QTQxMTQxMUVDOEVBOTZEMEJDNEY5QUUwMi8ya09iendQS19M Vy1mdEN1ZXpLUGFmaU1HeXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsPra70BI8NEhkL7YhimfSGpRJUrOtuvl5gTcYuKPhoeOBTwDKHnZBKZpd4M5 yOkg6cY3Bx5jvpEW/R6OI4W1/O1vr0LUILLToY8rn+VT2mB89YevxieEkQhlZL+o +MwZNGcfMD5yvVy7F12iYtVOS7dK68nl8D+w7X5xrZ3BKkT6hnr7mlgem87RrbbM AaCi7WNi3m4Xdc+jaABPUZifItfhlK9pouNyFSF9ZaVO6OsQ78SIqkumNY7xx89U i8eDOcIIxr9Fr0W6FuQkMoPI5I8U97hs/cUCqszX49NHRZR7RMQ2eUzjytOdslwv G1Pkan4b0uV+9jiu4kNyam9ZHA== -----END CERTIFICATE-----Generated at Sat Apr 18 04:39:42 2026 by rpki-client