$ rpki-client -vvf rpki.apnic.net/member_repository/A9189C03/DB691D0A016811F180E38FD3596F56BC/_2UQNIiSuqqxtzMf9wTDQbiaGHY.mft File: _2UQNIiSuqqxtzMf9wTDQbiaGHY.mft (raw, json) Hash identifier: OuOWWPIwnI53e+dPgA9qztCxWIIyNiTYG5y6UZglAb8= Subject key identifier: 1E:0C:D3:31:3B:A0:9E:BC:7D:8F:96:56:B0:64:C4:C6:AE:C6:84:48 Authority key identifier: FF:65:10:34:88:92:BA:AA:B1:B7:33:1F:F7:04:C3:41:B8:9A:18:76 Certificate issuer: /CN=A9189C03/serialNumber=FF6510348892BAAAB1B7331FF704C341B89A1876 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_2UQNIiSuqqxtzMf9wTDQbiaGHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189C03/DB691D0A016811F180E38FD3596F56BC/_2UQNIiSuqqxtzMf9wTDQbiaGHY.mft Manifest number: 2A Signing time: Fri 17 Apr 2026 08:26:43 +0000 Manifest this update: Fri 17 Apr 2026 08:26:42 +0000 Manifest next update: Fri 24 Apr 2026 08:26:42 +0000 Files and hashes: 1: _2UQNIiSuqqxtzMf9wTDQbiaGHY.crl (hash: hrdrXct8B8uChIDoZkmAjSEsvqkOiEQX5XRcI8eurEI=) 2: C0B4841002B011F19551BA913E3D8C67.roa (hash: mlBDMtNCdtUEDeCgXegQmevuYhexij5GGyJcwWWK/bM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189C03/DB691D0A016811F180E38FD3596F56BC/_2UQNIiSuqqxtzMf9wTDQbiaGHY.crl rsync://rpki.apnic.net/member_repository/A9189C03/DB691D0A016811F180E38FD3596F56BC/_2UQNIiSuqqxtzMf9wTDQbiaGHY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_2UQNIiSuqqxtzMf9wTDQbiaGHY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189C03, serialNumber=FF6510348892BAAAB1B7331FF704C341B89A1876 Validity Not Before: Apr 17 08:26:42 2026 GMT Not After : Apr 24 08:26:42 2026 GMT Subject: CN=69e1eec3-189a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c5:24:ee:eb:aa:24:a3:3a:19:70:fb:6b:06: 98:b1:68:27:df:1b:a0:f1:30:55:7b:7f:bb:0b:9c: 6d:88:49:cc:45:dc:7e:c3:77:5b:6d:b4:03:53:15: 24:13:f0:30:0a:0b:90:37:9d:22:a9:03:0c:c5:67: c5:33:e5:aa:67:92:98:6d:eb:70:da:04:a9:43:98: 03:66:59:69:fc:b3:cb:4f:6f:25:0e:84:ad:f6:8a: bf:64:ee:74:06:f2:f8:d2:5c:41:cb:c6:47:eb:f3: 96:64:3f:52:63:0a:46:d1:f7:8b:02:16:55:f3:0e: 39:48:e8:c7:a4:ed:0a:4c:6f:c6:0e:40:2b:77:20: e6:b0:1b:2f:28:5e:6d:97:bb:af:bc:00:ee:81:86: 02:78:24:a7:4b:ba:cb:bd:f4:9f:7e:56:4a:25:c4: 57:39:fc:e5:4c:f4:c5:a5:5c:1a:e7:2e:a0:4f:0e: b4:24:a4:d5:0d:43:f2:ff:96:59:c9:4b:e7:c5:35: 66:fc:cc:c0:51:d5:16:bd:bc:40:a9:26:37:ae:18: f5:3d:95:95:28:f6:82:f1:4e:77:71:87:c3:1f:81: 37:57:7e:5b:59:07:f3:6e:bf:2f:ba:e9:8d:71:fb: 9c:f2:09:ac:19:f6:d7:05:17:f0:d3:18:90:da:fb: da:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:0C:D3:31:3B:A0:9E:BC:7D:8F:96:56:B0:64:C4:C6:AE:C6:84:48 X509v3 Authority Key Identifier: keyid:FF:65:10:34:88:92:BA:AA:B1:B7:33:1F:F7:04:C3:41:B8:9A:18:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189C03/DB691D0A016811F180E38FD3596F56BC/_2UQNIiSuqqxtzMf9wTDQbiaGHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_2UQNIiSuqqxtzMf9wTDQbiaGHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189C03/DB691D0A016811F180E38FD3596F56BC/_2UQNIiSuqqxtzMf9wTDQbiaGHY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:3d:14:bc:90:79:da:c2:2a:a7:53:15:a5:8a:67:63:c2:e1: 1a:aa:45:e7:32:72:ed:07:95:d4:29:7b:a7:26:aa:c7:5a:17: 13:53:e7:b6:88:49:3b:df:4a:ff:55:e6:30:97:5f:c3:f7:78: 3c:d4:da:61:66:76:88:5d:4b:c6:e7:fc:8c:91:38:7d:9c:6d: 32:aa:01:11:4f:8e:c0:b9:cb:1a:f1:ca:5c:f3:f7:cd:00:62: 2c:c1:24:d6:60:88:5a:15:82:57:e1:78:3f:4c:5c:6f:af:98: 03:02:2b:ac:08:8e:d1:72:9e:ab:a1:3d:fb:d2:1c:42:29:07: e6:e5:30:f0:2d:c2:08:a4:1b:c6:22:7d:e4:e6:84:32:a9:f2: da:dd:d1:07:11:a4:6f:9b:3d:3a:b8:57:f9:a4:c8:4a:72:13: b4:7c:a1:25:1d:7f:12:50:91:26:97:2a:54:a1:2a:75:bf:ab: 1c:f9:a0:62:b1:c3:19:07:95:11:6d:02:2c:dc:10:49:ac:67: 82:a9:b1:22:fd:dd:35:56:e7:98:54:8e:a4:0d:17:ba:f9:e8: 08:6b:d9:5b:64:ab:9a:76:94:5d:ed:b6:13:ff:4f:89:1f:9e: ea:aa:dd:32:54:a1:90:20:af:77:cc:a1:9e:43:7c:bf:dd:74: 6e:da:73:ab -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OUMwMzExMC8GA1UEBRMoRkY2NTEwMzQ4ODkyQkFBQUIxQjczMzFGRjcwNEMzNDFC ODlBMTg3NjAeFw0yNjA0MTcwODI2NDJaFw0yNjA0MjQwODI2NDJaMBgxFjAUBgNV BAMTDTY5ZTFlZWMzLTE4OWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSxSTu66okozoZcPtrBpixaCffG6DxMFV7f7sLnG2IScxF3H7Dd1tttANTFSQT 8DAKC5A3nSKpAwzFZ8Uz5apnkpht63DaBKlDmANmWWn8s8tPbyUOhK32ir9k7nQG 8vjSXEHLxkfr85ZkP1JjCkbR94sCFlXzDjlI6Mek7QpMb8YOQCt3IOawGy8oXm2X u6+8AO6BhgJ4JKdLusu99J9+VkolxFc5/OVM9MWlXBrnLqBPDrQkpNUNQ/L/llnJ S+fFNWb8zMBR1Ra9vECpJjeuGPU9lZUo9oLxTndxh8MfgTdXfltZB/Nuvy+66Y1x +5zyCawZ9tcFF/DTGJDa+9oXAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUHgzTMTug nrx9j5ZWsGTExq7GhEgwHwYDVR0jBBgwFoAU/2UQNIiSuqqxtzMf9wTDQbiaGHYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5QzAzL0RCNjkxRDBBMDE2 ODExRjE4MEUzOEZEMzU5NkY1NkJDL18yVVFOSWlTdXFxeHR6TWY5d1REUWJpYUdI WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvXzJVUU5JaVN1cXF4dHpNZjl3VERRYmlhR0hZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5 QzAzL0RCNjkxRDBBMDE2ODExRjE4MEUzOEZEMzU5NkY1NkJDL18yVVFOSWlTdXFx eHR6TWY5d1REUWJpYUdIWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQALPRS8kHnawiqnUxWlimdjwuEaqkXnMnLtB5XUKXunJqrHWhcTU+e2iEk730r/ VeYwl1/D93g81NphZnaIXUvG5/yMkTh9nG0yqgERT47Aucsa8cpc8/fNAGIswSTW YIhaFYJX4Xg/TFxvr5gDAiusCI7Rcp6roT370hxCKQfm5TDwLcIIpBvGIn3k5oQy qfLa3dEHEaRvmz06uFf5pMhKchO0fKElHX8SUJEmlypUoSp1v6sc+aBiscMZB5UR bQIs3BBJrGeCqbEi/d01VueYVI6kDRe6+egIa9lbZKuadpRd7bYT/0+JH57qqt0y VKGQIK93zKGeQ3y/3XRu2nOr -----END CERTIFICATE-----Generated at Fri Apr 17 19:39:50 2026 by rpki-client