$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft File: 2CIvXKRzliJE_BNBFXEOvtXjlWA.mft (raw, json) Hash identifier: 7cgZZ0kt+Si4QSWplbFd2nhqoc40Kaq3wZe99r3KAAs= Subject key identifier: E6:ED:69:2C:E1:59:F9:75:5F:F2:C3:DF:F0:C3:83:96:91:87:3E:BD Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0CAB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft Manifest number: 0CA2 Signing time: Thu 26 Mar 2026 17:48:34 +0000 Manifest this update: Thu 26 Mar 2026 17:48:33 +0000 Manifest next update: Thu 02 Apr 2026 17:48:33 +0000 Files and hashes: 1: 2CIvXKRzliJE_BNBFXEOvtXjlWA.crl (hash: +fUoWyita92BPBoY7Upi0t/PAxj5q0oyr6wOr22CcKQ=) 2: A4049C06213E11EAAA89A95DC4F9AE02.roa (hash: UbwOi9U9kZof7b43F/HRMpxGF4fX5ioRAi/qvaW/Bgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 17:48:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3243 (0xcab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624, serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Validity Not Before: Mar 26 17:48:33 2026 GMT Not After : Apr 2 17:48:33 2026 GMT Subject: CN=69c57172-f20c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8b:55:d5:5c:f6:ed:f2:65:72:5e:54:5c:46: 70:64:c1:5e:1c:fa:3a:2e:97:f0:ee:47:25:14:6b: 55:55:0f:fc:8f:6f:d3:b7:9c:d7:20:d3:0a:db:28: 32:09:26:49:71:5e:5b:1d:98:b9:d2:f6:94:80:e0: c8:36:0e:c0:62:00:75:26:6f:9b:a9:a9:2d:b2:3e: 86:89:8c:72:54:32:ba:c2:db:1d:c7:1f:a4:57:37: a1:39:26:af:b4:e8:ad:e9:aa:b8:15:2d:ef:2f:92: cf:ed:be:07:fb:26:df:a6:6b:53:ae:90:3b:f3:3d: c0:de:e9:a3:fb:75:d6:03:f0:fc:4e:f6:63:4e:9f: 05:05:6e:28:b1:93:a2:11:d2:08:00:5c:d6:8d:ce: 5c:91:79:d1:fd:68:b9:be:83:d4:dd:63:12:dc:54: 40:f8:fe:c6:61:b9:b8:d0:9f:0d:b7:71:c4:2b:6d: 42:da:e2:54:c0:2a:73:7a:47:e4:8d:a1:ed:13:fb: e7:12:92:ee:d3:03:6e:3a:01:34:f1:13:e6:64:f2: 42:eb:21:e1:07:f9:ed:52:00:ef:71:c3:ce:b3:4e: 3b:b9:65:5c:94:6a:b1:96:01:0b:4b:08:5d:4a:de: cb:98:ec:c6:12:c2:79:66:2a:7a:9e:83:49:2f:67: fb:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:ED:69:2C:E1:59:F9:75:5F:F2:C3:DF:F0:C3:83:96:91:87:3E:BD X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:d8:1e:68:2a:e1:01:23:4d:c5:30:58:53:11:d8:d6:4b:8d: 95:37:f4:eb:cd:01:8c:e0:84:28:e6:2f:2e:2a:07:15:b6:8a: b3:d1:f0:20:45:d2:b2:63:43:00:da:d2:3b:cf:c1:d8:1c:8f: 41:9f:f6:b3:41:2a:3c:40:1d:1e:6e:e6:0e:b9:32:d8:a0:01: 3d:63:dd:11:3d:ed:9d:fd:8d:23:51:72:7a:72:ca:af:6f:ff: b4:ed:6b:d3:14:e2:84:6b:53:a5:29:6f:3a:d3:29:c5:8b:35: 1c:ba:83:a4:d2:7e:d5:32:93:b5:cc:7a:76:09:24:0c:10:ed: 46:8d:39:03:b6:3e:ca:20:a9:ba:d4:31:8a:dd:8d:e3:88:c6: 58:1f:d9:46:41:b0:70:06:60:8a:0f:eb:e9:68:90:7c:07:54: e5:ef:8e:35:10:2e:a9:ac:4b:cd:e9:b3:2c:71:1e:13:63:d4: 96:e5:72:9c:f4:57:52:b0:40:bc:af:1f:d0:c1:e1:0a:86:9c: b8:d5:bd:eb:88:4d:4e:17:c9:9a:70:c1:93:d8:5f:ca:32:40: 3a:a7:5b:05:d0:b0:4b:4c:4f:c5:a2:02:2a:26:3a:88:10:79: dc:17:58:2f:cb:98:11:e6:18:6d:6f:b1:ee:be:9a:09:7c:f8: 5f:1e:89:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjYwMzI2MTc0ODMzWhcNMjYwNDAyMTc0ODMzWjAYMRYwFAYD VQQDEw02OWM1NzE3Mi1mMjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyItV1Vz27fJlcl5UXEZwZMFeHPo6Lpfw7kclFGtVVQ/8j2/Tt5zXINMK2ygy CSZJcV5bHZi50vaUgODINg7AYgB1Jm+bqaktsj6GiYxyVDK6wtsdxx+kVzehOSav tOit6aq4FS3vL5LP7b4H+ybfpmtTrpA78z3A3umj+3XWA/D8TvZjTp8FBW4osZOi EdIIAFzWjc5ckXnR/Wi5voPU3WMS3FRA+P7GYbm40J8Nt3HEK21C2uJUwCpzekfk jaHtE/vnEpLu0wNuOgE08RPmZPJC6yHhB/ntUgDvccPOs047uWVclGqxlgELSwhd St7LmOzGEsJ5Zip6noNJL2f7PQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFObtaSzh Wfl1X/LD3/DDg5aRhz69MB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC9DNjk0ODIzNjEwRTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxp SkVfQk5CRlhFT3Z0WGpsV0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjtgeaCrhASNNxTBYUxHY1kuNlTf0680BjOCEKOYvLioHFbaKs9HwIEXSsmND ANrSO8/B2ByPQZ/2s0EqPEAdHm7mDrky2KABPWPdET3tnf2NI1FyenLKr2//tO1r 0xTihGtTpSlvOtMpxYs1HLqDpNJ+1TKTtcx6dgkkDBDtRo05A7Y+yiCputQxit2N 44jGWB/ZRkGwcAZgig/r6WiQfAdU5e+ONRAuqaxLzemzLHEeE2PUluVynPRXUrBA vK8f0MHhCoacuNW964hNThfJmnDBk9hfyjJAOqdbBdCwS0xPxaICKiY6iBB53BdY L8uYEeYYbW+x7r6aCXz4Xx6Jyw== -----END CERTIFICATE-----Generated at Thu Mar 26 22:13:23 2026 by rpki-client