$ rpki-client -vvf rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft File: 2xy4SFQGnkPKG3JdQuprqbU5gVs.mft (raw, json) Hash identifier: UtzNp4B8WR/JiDL3h2XhK4MDWIYUtubgZzlgwD/Wp+E= Subject key identifier: B1:E7:A0:B0:7A:23:0F:56:C7:BF:53:90:CD:A2:7B:D7:0B:9D:86:84 Authority key identifier: DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B Certificate issuer: /CN=A918F88D/serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Certificate serial: 0D3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft Manifest number: 0D18 Signing time: Mon 02 Mar 2026 02:51:12 +0000 Manifest this update: Mon 02 Mar 2026 02:51:09 +0000 Manifest next update: Mon 09 Mar 2026 02:51:09 +0000 Files and hashes: 1: 2xy4SFQGnkPKG3JdQuprqbU5gVs.crl (hash: Y9SCRCwiw85cLBc3IDRx3yNklg+JwHqjZDG6iuFQVBM=) 2: 55903190A67E11F0BBF9853FC4F9AE02.roa (hash: 4LEYJL5AX5PWlCqKTlZUy7qHGLo4uYAp+saoJjmZfVo=) 3: BC36A3E8A67E11F0A35CBF40C4F9AE02.roa (hash: iXhnwf/klA+xcRwxUiw09zRjj/31dDPcCbC/JYSI9HY=) 4: 18F7410671F311ECBA5DA710C4F9AE02.roa (hash: Dr/HYACygZ7h17XgOtesN899+mAiqWiSYucDyi+yqlA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3391 (0xd3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F88D, serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Validity Not Before: Mar 2 02:51:09 2026 GMT Not After : Mar 9 02:51:09 2026 GMT Subject: CN=69a4fb1f-a76b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:25:04:a4:3f:21:2f:32:33:c6:af:18:02:b9: b6:37:ff:71:14:d8:99:39:36:b7:f3:24:10:ab:6e: 35:63:50:b1:fe:6b:10:0f:c8:cd:ce:60:cd:cd:e4: 24:de:1a:c4:86:62:dc:a5:88:bf:e5:f5:c3:eb:77: 15:c8:42:62:79:06:79:e2:33:42:71:54:39:2e:95: 6e:64:86:8a:03:52:15:7c:54:91:0c:b4:25:1a:74: 50:bd:68:c6:90:ad:42:85:15:0f:6d:a5:5e:82:4c: 35:1e:bc:dd:9f:d3:68:9f:74:dc:70:97:1c:77:3c: ae:b9:e6:dc:4d:73:3e:b8:c8:6d:37:d3:70:1f:82: d8:12:a9:89:87:c9:04:81:8b:d4:f5:39:38:20:93: c0:cb:8e:a2:7c:95:fb:61:10:ad:96:a7:65:c3:33: 66:29:9a:c4:b7:64:d0:7c:d8:4a:17:95:e5:9c:26: 46:ff:a0:5e:78:3d:fa:91:2d:e2:67:40:5c:c1:d9: 20:d6:38:86:0f:69:71:bb:42:3c:54:72:3f:a5:38: 79:57:0a:f9:fa:ef:c0:4f:01:99:35:0e:b2:47:03: 85:54:c6:8a:3c:96:f8:a3:fe:a5:13:05:f6:bd:dd: 42:22:61:6d:a7:ef:d4:45:c5:7a:65:90:eb:6b:20: 44:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:E7:A0:B0:7A:23:0F:56:C7:BF:53:90:CD:A2:7B:D7:0B:9D:86:84 X509v3 Authority Key Identifier: keyid:DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:44:61:0d:bb:66:58:20:fe:c4:80:6e:7b:aa:ad:d2:74:6e: 8c:f9:fe:ae:18:90:8b:fb:86:f6:e5:36:2b:15:24:3b:0c:44: 37:27:25:af:8e:ba:9f:63:d6:85:4f:3e:84:e2:2b:f0:f9:aa: 5a:2c:ec:3e:6f:94:2f:3e:fc:9a:16:e5:0e:31:e7:31:1c:7a: 5d:fe:b3:f8:fa:8d:55:7b:f0:1a:56:7e:a2:cf:c5:c9:10:61: f3:00:50:af:be:a7:19:04:22:c3:82:74:cb:6b:81:58:43:d3: 86:0a:ef:89:e1:e8:03:74:fb:27:7d:f3:e2:b6:65:68:2d:a5: 41:f6:d8:96:45:b5:54:a0:41:a1:00:f1:dc:56:38:1f:a1:be: 4b:71:1d:2f:31:ed:cd:1e:ad:73:2f:d6:61:22:d0:74:fa:df: d2:90:c7:76:63:1c:7b:ec:22:28:5c:22:2b:4f:e8:51:34:d1: 12:19:1c:e8:e2:12:b6:03:bc:1c:ca:da:e2:e2:7a:ab:c4:c1: aa:9e:d3:03:35:fb:e4:61:32:ba:af:ad:3e:f3:45:6c:1a:e8: e3:c4:b3:29:77:b5:8e:be:5d:ca:fa:c5:d9:13:68:a8:e5:60: 8b:aa:c1:21:9b:c8:02:a5:2e:86:06:f9:4a:44:b4:e8:24:8e: 3b:60:05:1b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4OEQxMTAvBgNVBAUTKERCMUNCODQ4NTQwNjlFNDNDQTFCNzI1RDQyRUE2QkE5 QjUzOTgxNUIwHhcNMjYwMzAyMDI1MTA5WhcNMjYwMzA5MDI1MTA5WjAYMRYwFAYD VQQDEw02OWE0ZmIxZi1hNzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCUEpD8hLzIzxq8YArm2N/9xFNiZOTa38yQQq241Y1Cx/msQD8jNzmDNzeQk 3hrEhmLcpYi/5fXD63cVyEJieQZ54jNCcVQ5LpVuZIaKA1IVfFSRDLQlGnRQvWjG kK1ChRUPbaVegkw1Hrzdn9Non3TccJccdzyuuebcTXM+uMhtN9NwH4LYEqmJh8kE gYvU9Tk4IJPAy46ifJX7YRCtlqdlwzNmKZrEt2TQfNhKF5XlnCZG/6BeeD36kS3i Z0Bcwdkg1jiGD2lxu0I8VHI/pTh5Vwr5+u/ATwGZNQ6yRwOFVMaKPJb4o/6lEwX2 vd1CImFtp+/URcV6ZZDrayBE7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLHnoLB6 Iw9Wx79TkM2ie9cLnYaEMB8GA1UdIwQYMBaAFNscuEhUBp5DyhtyXULqa6m1OYFb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjg4RC8yQTE0QkUwODAw NUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25rUEtHM0pkUXVwcnFiVTVn VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4eTRTRlFHbmtQS0czSmRRdXBycWJVNWdWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjg4RC8yQTE0QkUwODAwNUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25r UEtHM0pkUXVwcnFiVTVnVnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxkRhDbtmWCD+xIBue6qt0nRujPn+rhiQi/uG9uU2KxUkOwxENyclr466n2PW hU8+hOIr8PmqWizsPm+ULz78mhblDjHnMRx6Xf6z+PqNVXvwGlZ+os/FyRBh8wBQ r76nGQQiw4J0y2uBWEPThgrvieHoA3T7J33z4rZlaC2lQfbYlkW1VKBBoQDx3FY4 H6G+S3EdLzHtzR6tcy/WYSLQdPrf0pDHdmMce+wiKFwiK0/oUTTREhkc6OIStgO8 HMra4uJ6q8TBqp7TAzX75GEyuq+tPvNFbBro48SzKXe1jr5dyvrF2RNoqOVgi6rB IZvIAqUuhgb5SkS06CSOO2AFGw== -----END CERTIFICATE-----Generated at Mon Mar 2 16:31:27 2026 by rpki-client