$ rpki-client -vvf rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft File: 2xy4SFQGnkPKG3JdQuprqbU5gVs.mft (raw, json) Hash identifier: zvv1eINkwu/hcDwwr/NMw6H+kbk4/4RL6wcOGFu/sU4= Subject key identifier: 70:A4:B4:86:C7:13:09:C6:FE:B6:1E:A5:9B:A2:56:0C:48:F1:81:57 Authority key identifier: DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B Certificate issuer: /CN=A918F88D/serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Certificate serial: 0D5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft Manifest number: 0D35 Signing time: Thu 16 Apr 2026 18:03:45 +0000 Manifest this update: Thu 16 Apr 2026 18:03:45 +0000 Manifest next update: Thu 23 Apr 2026 18:03:45 +0000 Files and hashes: 1: 2xy4SFQGnkPKG3JdQuprqbU5gVs.crl (hash: C+aR+CAP/Lylt7AfxjuOiYBkCbDS1Yk9wKc6Ob7+4YI=) 2: 18F7410671F311ECBA5DA710C4F9AE02.roa (hash: 9eVW8q201teZAFGXXlr75mIPBbOGURlsiVyxRbpYboo=) 3: 55903190A67E11F0BBF9853FC4F9AE02.roa (hash: 4LEYJL5AX5PWlCqKTlZUy7qHGLo4uYAp+saoJjmZfVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3421 (0xd5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F88D, serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Validity Not Before: Apr 16 18:03:45 2026 GMT Not After : Apr 23 18:03:45 2026 GMT Subject: CN=69e12481-70cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f1:52:bf:f3:97:bf:c4:08:dd:80:e4:13:eb: dd:1d:f3:f6:c7:60:06:4b:49:08:61:64:e1:f5:14: 55:65:df:b5:f2:71:1e:a6:59:a0:85:f9:ce:3a:71: b6:71:a7:40:e3:7b:88:de:9f:b3:68:25:63:91:b7: a3:e6:77:ae:7d:24:e3:9a:b1:e1:6c:20:24:f6:88: 50:d3:d5:ee:b6:dd:e8:ab:b4:e6:cb:41:0b:84:13: 9f:49:d6:c2:eb:4f:96:be:0d:37:31:21:31:79:d8: 00:e3:1e:cc:ec:e9:b7:53:51:47:b4:73:9a:f7:c4: 28:8d:a7:9f:63:dc:78:b6:ac:b4:8f:44:6d:b0:6b: 75:86:e0:99:f0:a2:f7:de:c5:77:ba:c3:47:f9:09: b0:66:4a:8a:69:d1:6d:8e:39:84:35:c2:69:bc:fa: 12:7f:5d:7a:16:91:9a:0a:c0:35:93:d4:6e:46:1e: 67:d6:97:ce:67:2f:a1:a0:a2:29:69:72:e6:d5:5c: 21:5d:36:05:aa:04:fd:b9:eb:d0:2a:76:36:a6:30: 65:53:3e:92:d4:8a:6c:28:a0:0b:13:aa:b1:2c:f8: 4a:08:19:1a:3c:70:69:35:10:f8:27:61:47:83:24: 6e:d0:70:f3:09:21:83:12:94:32:77:c5:ef:19:50: 37:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A4:B4:86:C7:13:09:C6:FE:B6:1E:A5:9B:A2:56:0C:48:F1:81:57 X509v3 Authority Key Identifier: keyid:DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:6d:6e:bd:07:3c:72:de:c6:f0:e8:ee:66:df:75:e1:51:31: cf:3b:c9:b2:5c:be:74:20:12:64:74:e1:f7:32:d1:72:05:84: a3:40:e6:7f:88:2a:37:a3:d7:c5:0b:04:2c:54:85:2c:c0:82: 4f:b8:16:32:4e:d9:9a:bc:2b:67:10:9b:04:2f:bf:17:b1:ec: 8f:18:ca:8f:06:77:71:2e:c9:9a:4b:cf:0c:93:d0:2c:7a:8c: ba:07:d2:39:ef:3e:85:21:87:41:ac:b8:83:be:0f:51:74:70: 00:80:a4:bb:1d:44:10:1f:d2:89:42:57:5b:23:97:1b:07:85: 65:44:c2:3d:a1:8a:89:c3:48:73:23:c4:a8:4d:fe:45:9b:2f: 66:64:7f:79:3e:f3:20:3b:da:2b:8d:1c:f4:29:7a:9c:76:44: c8:3c:a9:90:85:06:b4:ce:39:6e:b7:3a:13:40:35:55:84:64: fa:d7:5a:27:24:10:07:b0:df:1a:55:56:3b:98:e7:a9:f2:0d: ff:31:11:68:1d:6f:01:0f:b1:1f:8f:e0:39:0c:1c:fa:91:0f: 24:d9:a1:47:ef:f3:45:e6:cb:9e:76:5e:b2:47:57:b3:06:33: 81:d4:26:1e:7f:bd:e5:c8:d1:f5:38:94:fd:16:7b:0f:a6:7a: 16:18:e8:2a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4OEQxMTAvBgNVBAUTKERCMUNCODQ4NTQwNjlFNDNDQTFCNzI1RDQyRUE2QkE5 QjUzOTgxNUIwHhcNMjYwNDE2MTgwMzQ1WhcNMjYwNDIzMTgwMzQ1WjAYMRYwFAYD VQQDEw02OWUxMjQ4MS03MGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3fFSv/OXv8QI3YDkE+vdHfP2x2AGS0kIYWTh9RRVZd+18nEeplmghfnOOnG2 cadA43uI3p+zaCVjkbej5neufSTjmrHhbCAk9ohQ09Xutt3oq7Tmy0ELhBOfSdbC 60+Wvg03MSExedgA4x7M7Om3U1FHtHOa98QojaefY9x4tqy0j0RtsGt1huCZ8KL3 3sV3usNH+QmwZkqKadFtjjmENcJpvPoSf116FpGaCsA1k9RuRh5n1pfOZy+hoKIp aXLm1VwhXTYFqgT9uevQKnY2pjBlUz6S1IpsKKALE6qxLPhKCBkaPHBpNRD4J2FH gyRu0HDzCSGDEpQyd8XvGVA3xQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHCktIbH EwnG/rYepZuiVgxI8YFXMB8GA1UdIwQYMBaAFNscuEhUBp5DyhtyXULqa6m1OYFb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjg4RC8yQTE0QkUwODAw NUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25rUEtHM0pkUXVwcnFiVTVn VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4eTRTRlFHbmtQS0czSmRRdXBycWJVNWdWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjg4RC8yQTE0QkUwODAwNUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25r UEtHM0pkUXVwcnFiVTVnVnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU21uvQc8ct7G8OjuZt914VExzzvJsly+dCASZHTh9zLRcgWEo0Dmf4gqN6PX xQsELFSFLMCCT7gWMk7ZmrwrZxCbBC+/F7HsjxjKjwZ3cS7JmkvPDJPQLHqMugfS Oe8+hSGHQay4g74PUXRwAICkux1EEB/SiUJXWyOXGweFZUTCPaGKicNIcyPEqE3+ RZsvZmR/eT7zIDvaK40c9Cl6nHZEyDypkIUGtM45brc6E0A1VYRk+tdaJyQQB7Df GlVWO5jnqfIN/zERaB1vAQ+xH4/gOQwc+pEPJNmhR+/zRebLnnZeskdXswYzgdQm Hn+95cjR9TiU/RZ7D6Z6FhjoKg== -----END CERTIFICATE-----Generated at Fri Apr 17 18:32:13 2026 by rpki-client