$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: TdAx9WstLWxKLyhHE3rYmFjDZNGt/l3dQ4JS/gjjVos= Subject key identifier: C8:45:60:45:1D:55:68:11:59:86:8C:DF:D4:46:19:5E:42:8F:A4:62 Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 01CC Signing time: Fri 17 Apr 2026 03:26:04 +0000 Manifest this update: Fri 17 Apr 2026 03:26:04 +0000 Manifest next update: Fri 24 Apr 2026 03:26:04 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: H2UES10jKohPYkKafRxdQUs/jBoKrq57edMr4NKUweM=) 2: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: /6x7x4b9csD2TYsiLEKnpfZB3jGbE1YGP0AsFpZrdN4=) 3: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: hGkqzz2eI5dLw6JFvYyWs5D2WcjZP64M8Kf1cT/imEo=) 4: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: hKdbTMFjBDS3XXfZuB0+hdt0c8qX6Q+dGMG1HACFMQ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: Apr 17 03:26:04 2026 GMT Not After : Apr 24 03:26:04 2026 GMT Subject: CN=69e1a84c-870d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4f:7c:80:38:35:a7:61:a8:7a:ce:51:6a:ca: d6:3b:59:e5:c7:93:17:aa:18:9f:e0:14:76:6d:eb: 2a:1a:c0:ef:e0:cd:d9:3b:25:84:4f:55:99:df:ce: 03:b8:61:d1:80:17:11:77:50:60:c8:2d:e4:f4:f7: bb:c6:09:92:27:46:9e:53:83:e4:5d:d5:a9:3a:06: c6:1c:d1:75:18:8d:c5:ce:d7:11:00:7a:99:74:3f: ef:26:3d:6d:9c:af:5e:21:1f:07:6a:3d:03:71:fb: bd:e7:04:a3:2d:d2:96:45:6b:e3:83:73:62:e5:51: 4e:ec:60:9b:9d:19:72:17:48:b4:37:10:fe:48:b5: 06:20:31:34:a5:26:d9:91:1f:dd:49:99:2c:c8:94: a5:cf:a9:7c:2d:10:ec:5b:fe:a5:5e:3b:cd:17:fe: 1a:29:60:52:9a:f1:0c:6a:eb:87:92:c8:1e:ba:25: 94:5e:2a:b2:9b:60:d5:d1:84:df:e3:b9:83:56:d3: 8a:0e:6a:52:b8:44:c5:f7:f1:54:87:d9:fe:0a:6d: 4a:da:f1:ff:e0:4b:5c:fe:5d:c1:6d:6e:0a:c8:20: 65:12:7c:05:16:68:c9:62:1c:ed:55:38:14:82:9b: b1:94:11:d2:9f:0f:d4:f0:3b:a2:c2:6e:53:1a:c8: 57:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:45:60:45:1D:55:68:11:59:86:8C:DF:D4:46:19:5E:42:8F:A4:62 X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:6c:82:e6:82:6f:f4:ee:af:72:44:fd:9e:ce:4d:24:87:0a: 69:3c:f1:5f:7b:4e:3f:1a:f9:b7:25:17:20:7e:eb:e5:5a:8b: 5b:82:63:9d:96:db:b1:3c:ca:c0:7b:c7:43:92:9f:d8:6f:18: a3:b0:28:4f:5b:5b:be:c0:3d:99:f0:fc:03:b8:36:0c:f0:4c: c2:76:74:91:85:6d:6e:b0:83:ef:7d:3c:c4:ca:8f:68:0d:fe: 70:26:69:37:76:8d:0a:d5:72:e2:bc:5c:22:13:8d:c3:b5:9b: c3:68:f2:50:10:0a:20:89:54:f1:1a:d4:15:41:74:d5:92:46: c4:57:35:ee:a0:63:20:00:5a:59:ee:04:c2:ad:af:86:eb:7a: 5c:f8:74:17:5f:67:a6:0d:7c:3b:1d:08:bd:40:81:f2:a7:0f: 17:ff:aa:cf:8b:e8:fd:fc:68:28:59:88:7d:58:94:d5:35:ea: 48:ec:02:2e:33:85:48:85:7e:b3:25:1d:a4:b7:2b:63:7f:db: 01:d2:2d:ba:87:ed:5e:d7:17:3e:28:d9:62:16:23:87:89:a3: a0:c2:aa:58:45:b9:fd:43:ab:cb:5f:06:3a:52:0b:32:23:e5: 33:43:07:b5:5a:f8:3e:12:59:e2:c5:39:c5:2a:dc:02:2a:73: 56:83:77:8f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjYwNDE3MDMyNjA0WhcNMjYwNDI0MDMyNjA0WjAYMRYwFAYD VQQDEw02OWUxYTg0Yy04NzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp098gDg1p2Goes5RasrWO1nlx5MXqhif4BR2besqGsDv4M3ZOyWET1WZ384D uGHRgBcRd1BgyC3k9Pe7xgmSJ0aeU4PkXdWpOgbGHNF1GI3FztcRAHqZdD/vJj1t nK9eIR8Haj0Dcfu95wSjLdKWRWvjg3Ni5VFO7GCbnRlyF0i0NxD+SLUGIDE0pSbZ kR/dSZksyJSlz6l8LRDsW/6lXjvNF/4aKWBSmvEMauuHksgeuiWUXiqym2DV0YTf 47mDVtOKDmpSuETF9/FUh9n+Cm1K2vH/4Etc/l3BbW4KyCBlEnwFFmjJYhztVTgU gpuxlBHSnw/U8Duiwm5TGshXRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMhFYEUd VWgRWYaM39RGGV5Cj6RiMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZWyC5oJv9O6vckT9ns5NJIcKaTzxX3tOPxr5tyUXIH7r5VqLW4JjnZbbsTzK wHvHQ5Kf2G8Yo7AoT1tbvsA9mfD8A7g2DPBMwnZ0kYVtbrCD7308xMqPaA3+cCZp N3aNCtVy4rxcIhONw7Wbw2jyUBAKIIlU8RrUFUF01ZJGxFc17qBjIABaWe4Ewq2v hut6XPh0F19npg18Ox0IvUCB8qcPF/+qz4vo/fxoKFmIfViU1TXqSOwCLjOFSIV+ syUdpLcrY3/bAdItuoftXtcXPijZYhYjh4mjoMKqWEW5/UOry18GOlILMiPlM0MH tVr4PhJZ4sU5xSrcAipzVoN3jw== -----END CERTIFICATE-----Generated at Fri Apr 17 13:06:35 2026 by rpki-client