$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft File: 2CIvXKRzliJE_BNBFXEOvtXjlWA.mft (raw, json) Hash identifier: ZLz5rrnpIGb5IgfP+wZ1walw037L/Za411oec+7SnPc= Subject key identifier: B6:AE:8D:6C:9B:A8:AA:E1:87:A2:BE:B6:3C:EC:68:12:44:28:EF:77 Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0CAA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft Manifest number: 0CA1 Signing time: Tue 24 Mar 2026 17:43:57 +0000 Manifest this update: Tue 24 Mar 2026 17:43:56 +0000 Manifest next update: Tue 31 Mar 2026 17:43:56 +0000 Files and hashes: 1: 2CIvXKRzliJE_BNBFXEOvtXjlWA.crl (hash: PPMjtfkLLkln2Xls1gW76qDINfT9powikIVcgHPlRqw=) 2: A4049C06213E11EAAA89A95DC4F9AE02.roa (hash: UbwOi9U9kZof7b43F/HRMpxGF4fX5ioRAi/qvaW/Bgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3242 (0xcaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624, serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Validity Not Before: Mar 24 17:43:56 2026 GMT Not After : Mar 31 17:43:56 2026 GMT Subject: CN=69c2cd5c-33bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:05:ef:ee:3e:4b:28:eb:a1:71:b7:84:0b:ae: 7d:6e:9b:5b:48:35:26:13:4d:8e:ab:69:3b:20:57: 5b:b4:a6:73:fc:61:08:4a:02:c5:a7:0e:99:17:a2: ef:de:c4:08:4c:e5:d8:a4:ca:c4:43:ee:d6:f2:eb: de:8b:85:d1:18:21:fc:06:5f:84:0c:27:ab:75:7e: 32:7b:17:ab:a9:23:20:7e:13:09:b9:19:cc:cd:41: ab:19:a7:a4:42:9c:72:5c:c3:17:e9:0d:b1:c2:2b: 66:9f:d2:41:a8:57:a3:6b:dc:e5:ba:42:70:af:c3: d4:f5:3f:6a:9b:c8:b1:b1:49:14:4f:38:50:f4:9e: 4d:47:53:25:a8:2c:2d:05:85:cb:b3:4e:4b:53:e6: 6d:34:fe:0e:50:3f:e0:dd:a9:dc:24:d6:1e:f0:5e: c6:dd:1c:47:9e:37:62:c2:d0:8a:ed:ae:15:75:73: 9e:3d:c8:ff:52:ae:ad:36:b2:c8:f2:e2:c1:f8:da: b0:93:1c:ca:c0:37:f2:ae:d8:7d:f9:c0:8f:1e:6e: 6e:28:3a:b6:90:c4:8d:86:fb:ed:cd:d4:f3:b8:cf: fd:4e:ed:5e:a9:96:04:6e:5e:70:e2:45:4b:a6:6a: 53:21:94:57:e6:78:e3:27:24:f7:11:e4:ad:65:75: 24:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:AE:8D:6C:9B:A8:AA:E1:87:A2:BE:B6:3C:EC:68:12:44:28:EF:77 X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:af:0d:37:81:ec:40:f9:98:a3:9e:d1:38:22:1f:b9:ab:79: 26:f5:45:fe:69:a8:be:48:75:d8:65:e1:a5:9f:8e:da:0f:cc: 25:43:fe:88:33:9d:6c:e8:07:73:db:1f:07:e1:cf:a9:3a:f2: f4:aa:da:5a:1a:d1:0b:27:9f:19:a2:49:60:88:44:c8:df:0e: 56:06:2a:32:e7:56:af:eb:03:64:fc:cf:43:86:23:4c:ba:bd: 2b:cb:0b:a5:d5:96:29:ad:4f:f5:cd:27:18:af:b6:32:ad:8d: f0:d1:65:2a:d6:12:94:b7:f6:f4:a2:8e:f9:3c:d9:14:14:05: 7d:5e:75:06:9c:bd:17:3b:46:29:0a:52:f4:27:d8:ef:b1:c6: c8:66:dd:96:7e:a9:82:75:5d:11:68:3e:4e:83:e2:7a:7c:5b: 96:33:90:4f:06:60:6d:62:3b:73:f4:2a:6d:13:ac:f1:d3:f6: ad:d7:37:9a:15:ea:ca:14:50:f4:92:22:e4:e6:fa:f9:e1:6a: 1c:43:48:58:97:08:e1:73:4a:3f:94:ae:0d:1a:93:3f:00:4b: b8:dd:8c:49:56:5b:90:0e:92:0b:88:22:ed:5d:b2:8b:53:ea: 6c:c8:8b:3d:b4:43:cd:89:26:c7:19:81:5b:f4:05:57:cd:de: 81:34:c8:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjYwMzI0MTc0MzU2WhcNMjYwMzMxMTc0MzU2WjAYMRYwFAYD VQQDEw02OWMyY2Q1Yy0zM2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAXv7j5LKOuhcbeEC659bptbSDUmE02Oq2k7IFdbtKZz/GEISgLFpw6ZF6Lv 3sQITOXYpMrEQ+7W8uvei4XRGCH8Bl+EDCerdX4yexerqSMgfhMJuRnMzUGrGaek QpxyXMMX6Q2xwitmn9JBqFeja9zlukJwr8PU9T9qm8ixsUkUTzhQ9J5NR1MlqCwt BYXLs05LU+ZtNP4OUD/g3ancJNYe8F7G3RxHnjdiwtCK7a4VdXOePcj/Uq6tNrLI 8uLB+NqwkxzKwDfyrth9+cCPHm5uKDq2kMSNhvvtzdTzuM/9Tu1eqZYEbl5w4kVL pmpTIZRX5njjJyT3EeStZXUkfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLaujWyb qKrhh6K+tjzsaBJEKO93MB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC9DNjk0ODIzNjEwRTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxp SkVfQk5CRlhFT3Z0WGpsV0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOK8NN4HsQPmYo57ROCIfuat5JvVF/mmovkh12GXhpZ+O2g/MJUP+iDOdbOgH c9sfB+HPqTry9KraWhrRCyefGaJJYIhEyN8OVgYqMudWr+sDZPzPQ4YjTLq9K8sL pdWWKa1P9c0nGK+2Mq2N8NFlKtYSlLf29KKO+TzZFBQFfV51Bpy9FztGKQpS9CfY 77HGyGbdln6pgnVdEWg+ToPienxbljOQTwZgbWI7c/QqbROs8dP2rdc3mhXqyhRQ 9JIi5Ob6+eFqHENIWJcI4XNKP5SuDRqTPwBLuN2MSVZbkA6SC4gi7V2yi1PqbMiL PbRDzYkmxxmBW/QFV83egTTIgA== -----END CERTIFICATE-----Generated at Thu Mar 26 19:48:50 2026 by rpki-client