$ rpki-client -vvf rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft File: 2MZzCV6Cqbfn381GWA94MajRiso.mft (raw, json) Hash identifier: LkyBH0gmOnkSzZLPGFHlXj/aZsmUddc9q2na00zLp1w= Subject key identifier: 6E:89:E1:7F:14:3F:A2:99:FE:6F:29:94:1F:CC:05:AB:09:58:92:5B Authority key identifier: D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA Certificate issuer: /CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Certificate serial: 17E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft Manifest number: 17C2 Signing time: Tue 24 Mar 2026 16:29:13 +0000 Manifest this update: Tue 24 Mar 2026 16:29:13 +0000 Manifest next update: Tue 31 Mar 2026 16:29:13 +0000 Files and hashes: 1: 2MZzCV6Cqbfn381GWA94MajRiso.crl (hash: hQKP2OXadnzhYlpWVmjQErdBiBffesqhMEwGv75hAKA=) 2: EE9AC4A2CF3E11F0BD67F029C4F9AE02.roa (hash: 1ifr0yn5rYOREwHuBa/9PEbXr1t4wQIXYEhnH3YZcdI=) 3: 07FF86DACF3F11F0AF94352AC4F9AE02.roa (hash: axL4DxRLdN4w1oidCM91AwY0+Ml6Zzq4wlYIpZ72Alw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:29:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6120 (0x17e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911862D, serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Validity Not Before: Mar 24 16:29:13 2026 GMT Not After : Mar 31 16:29:13 2026 GMT Subject: CN=69c2bbd9-ca3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6a:03:b0:23:4a:cd:35:4d:96:ae:25:c9:00: 6a:92:ce:14:38:06:fd:38:a2:63:a4:9b:f8:fb:65: e2:b6:16:45:7c:1c:95:80:ef:09:40:dd:75:25:63: 89:71:45:6d:83:4b:92:ad:91:6c:f4:5a:e6:46:84: 37:b8:1f:21:ba:3a:e8:99:6c:dc:fc:1f:c8:f5:31: 7a:57:4e:8e:22:e9:f8:ab:88:1c:24:81:0d:b5:8a: 8e:f5:06:19:d1:a8:8a:94:55:5c:f6:14:d9:03:47: 27:24:45:b7:cf:14:1e:83:d8:fe:fd:b1:46:45:86: 67:21:35:07:2c:6b:7d:7d:47:48:0d:fc:f6:a4:5a: 0f:92:f3:9c:f7:a4:3c:dd:5a:32:ea:e1:9c:86:ec: 2a:a8:56:b7:9c:c0:87:36:27:7d:50:58:68:6b:2a: b2:61:34:9f:f9:61:a8:79:f3:89:0a:0e:00:7b:08: 8a:bf:f7:50:41:90:76:83:84:6c:1e:e9:66:52:b0: 55:4b:6d:e6:65:b1:c0:b5:cb:8b:f4:46:b8:cf:85: a8:4e:3a:48:d2:3b:40:b9:42:73:ed:d6:c1:8d:a5: 6f:9d:3b:1f:05:b3:e4:f1:19:da:bf:3e:06:9b:b7: 4e:13:ef:b4:fb:4a:09:59:f7:f1:f8:5b:25:ce:d6: 79:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:89:E1:7F:14:3F:A2:99:FE:6F:29:94:1F:CC:05:AB:09:58:92:5B X509v3 Authority Key Identifier: keyid:D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:87:94:cd:cc:6a:64:7a:7a:2c:de:b9:e2:83:1f:2d:87:b7: d2:c5:9d:8c:e2:6e:4c:ad:81:8e:1a:00:10:99:d8:18:0a:34: f9:97:7d:bb:0e:c2:69:a1:83:ef:96:6c:6d:90:c5:11:76:32: 8d:43:16:bf:f0:44:37:21:7c:69:96:18:da:4e:66:2a:40:30: fc:65:9d:a1:50:42:f8:46:7e:8e:da:4a:4e:47:1e:ba:4b:55: db:c3:ea:3d:b0:c0:e4:22:83:78:f5:7b:5c:51:02:23:3b:52: 89:88:20:82:21:4a:03:d1:63:d4:13:55:96:d1:e5:58:1e:dc: d4:c2:76:72:e3:1e:4c:41:25:1b:19:91:00:13:36:84:df:dd: ed:bd:07:44:79:5f:42:3a:38:09:d9:0c:ed:00:88:3d:20:c9: e8:39:b8:1d:5e:95:81:a3:1d:3f:2b:b7:f7:15:67:e2:4b:fa: 58:1f:1f:a1:cc:c8:64:88:0c:e4:fb:51:4c:4a:99:24:ca:d5: 90:f3:01:33:68:89:3a:09:f6:30:c1:9d:8c:08:ae:69:5e:59: 8c:59:46:dd:2c:c5:1b:a5:12:ea:ad:6c:aa:60:09:38:19:cd: 12:0e:e5:21:bb:d1:fe:e6:cf:73:9d:7b:4d:af:d6:40:03:37: e4:35:58:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICF+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2MkQxMTAvBgNVBAUTKEQ4QzY3MzA5NUU4MkE5QjdFN0RGQ0Q0NjU4MEY3ODMx QThEMThBQ0EwHhcNMjYwMzI0MTYyOTEzWhcNMjYwMzMxMTYyOTEzWjAYMRYwFAYD VQQDEw02OWMyYmJkOS1jYTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGoDsCNKzTVNlq4lyQBqks4UOAb9OKJjpJv4+2XithZFfByVgO8JQN11JWOJ cUVtg0uSrZFs9FrmRoQ3uB8hujromWzc/B/I9TF6V06OIun4q4gcJIENtYqO9QYZ 0aiKlFVc9hTZA0cnJEW3zxQeg9j+/bFGRYZnITUHLGt9fUdIDfz2pFoPkvOc96Q8 3Voy6uGchuwqqFa3nMCHNid9UFhoayqyYTSf+WGoefOJCg4AewiKv/dQQZB2g4Rs HulmUrBVS23mZbHAtcuL9Ea4z4WoTjpI0jtAuUJz7dbBjaVvnTsfBbPk8Rnavz4G m7dOE++0+0oJWffx+FslztZ5ywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG6J4X8U P6KZ/m8plB/MBasJWJJbMB8GA1UdIwQYMBaAFNjGcwlegqm359/NRlgPeDGo0YrK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODYyRC8zMjg3OUQzQUU4 QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3FiZm4zODFHV0E5NE1halJp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJNWnpDVjZDcWJmbjM4MUdXQTk0TWFqUmlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODYyRC8zMjg3OUQzQUU4QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3Fi Zm4zODFHV0E5NE1halJpc28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMIeUzcxqZHp6LN654oMfLYe30sWdjOJuTK2BjhoAEJnYGAo0+Zd9uw7CaaGD 75ZsbZDFEXYyjUMWv/BENyF8aZYY2k5mKkAw/GWdoVBC+EZ+jtpKTkceuktV28Pq PbDA5CKDePV7XFECIztSiYgggiFKA9Fj1BNVltHlWB7c1MJ2cuMeTEElGxmRABM2 hN/d7b0HRHlfQjo4CdkM7QCIPSDJ6Dm4HV6VgaMdPyu39xVn4kv6WB8foczIZIgM 5PtRTEqZJMrVkPMBM2iJOgn2MMGdjAiuaV5ZjFlG3SzFG6US6q1sqmAJOBnNEg7l IbvR/ubPc517Ta/WQAM35DVY6A== -----END CERTIFICATE-----Generated at Thu Mar 26 02:28:14 2026 by rpki-client