$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft File: 2CIvXKRzliJE_BNBFXEOvtXjlWA.mft (raw, json) Hash identifier: LtSKhuwl8IclFFwGmxRAwCqyrL2Mp6P1CRnjkrmS3nQ= Subject key identifier: 21:CC:92:54:3E:0D:59:3D:15:20:DF:E5:BF:8F:B3:58:94:71:9A:39 Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0CC3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft Manifest number: 0CBA Signing time: Tue 12 May 2026 17:52:38 +0000 Manifest this update: Tue 12 May 2026 17:52:38 +0000 Manifest next update: Tue 19 May 2026 17:52:38 +0000 Files and hashes: 1: 2CIvXKRzliJE_BNBFXEOvtXjlWA.crl (hash: QvRpVVOeC3y9ir1gzPYN358OWH9cM7pvMeWK5jTXeBA=) 2: A4049C06213E11EAAA89A95DC4F9AE02.roa (hash: UbwOi9U9kZof7b43F/HRMpxGF4fX5ioRAi/qvaW/Bgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3267 (0xcc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624, serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Validity Not Before: May 12 17:52:38 2026 GMT Not After : May 19 17:52:38 2026 GMT Subject: CN=6a0368e6-740d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:48:7a:e8:ac:e0:ac:10:69:4f:13:14:37:1e: fd:47:0a:f2:fc:5a:28:a8:20:6a:68:d8:2a:0b:b5: 19:4a:6d:c8:f1:53:16:65:df:7d:40:38:96:9d:e1: 4c:3b:bd:de:5f:84:3f:55:14:e2:a4:dd:c2:48:0a: 73:2e:26:7a:5e:aa:94:95:9e:17:25:1c:1e:fa:f0: a6:98:fd:11:28:0e:99:ce:69:cf:9e:3c:8f:c0:e3: 44:40:96:a7:fb:ee:e8:9e:c8:fe:b7:74:46:11:8e: 28:29:85:91:9a:14:2e:56:2a:38:47:e3:5d:4b:6a: 17:c1:0a:97:a0:c6:38:9d:0a:93:e9:68:ce:2d:dd: f6:f8:b6:d0:08:3a:7f:0b:d0:07:f2:c5:e3:87:d9: 1a:fe:0e:f8:c6:26:ed:95:3f:6b:14:bb:af:4d:a7: c2:4d:97:42:4d:5c:80:a1:20:f3:34:7f:b5:09:24: 53:3a:05:2d:8a:94:66:b3:44:62:7a:fb:2c:6e:b7: 0c:78:25:a0:b6:ed:b8:28:ab:72:1b:3a:4e:b3:23: 6e:80:14:55:8c:3c:f6:35:0e:ff:4f:34:c4:ff:27: a7:0d:45:e9:71:2f:65:bb:3f:31:ba:77:ad:8b:ad: 54:a0:2a:88:2b:c6:21:d6:8d:42:c1:3e:29:02:86: 8b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:CC:92:54:3E:0D:59:3D:15:20:DF:E5:BF:8F:B3:58:94:71:9A:39 X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:2c:40:83:15:08:72:26:d7:25:8b:da:de:2a:8c:f9:98:77: 6d:7a:dc:1f:6e:51:cd:6a:4c:e0:45:ec:c7:d4:cf:f6:56:06: 0a:95:9d:e2:b2:b6:f6:18:03:84:60:71:f9:af:f3:5c:fa:54: 8c:84:46:70:a9:25:7d:6b:10:0e:73:b4:e5:38:6e:29:a8:f4: c9:c9:e3:35:32:65:90:29:96:dc:11:03:9a:ec:d3:4b:93:a2: 9c:9c:10:3f:8c:61:fd:b5:54:73:1a:3d:64:df:89:94:4c:9f: 15:f7:93:bf:4b:89:69:0b:3a:bf:60:78:3e:0a:33:07:33:a1: c2:c6:b5:57:59:eb:2c:d8:82:f9:04:96:43:05:17:b0:a0:79: 5d:ae:60:07:06:41:ee:8d:10:bd:b4:7e:69:db:df:11:9f:4e: 9e:d0:e2:93:ca:57:7b:44:61:9f:b6:f6:e0:36:14:e3:c4:d3: b6:1b:b3:ca:e1:8c:08:63:6c:74:b9:56:45:c4:17:08:36:0f: bc:3d:8a:d4:0c:b7:ec:95:2f:2c:52:d2:0e:6a:30:72:68:9b: c1:ca:9b:d2:bf:36:bc:37:1f:77:20:e7:ed:37:7f:be:4a:c7: ec:89:1a:87:af:6f:fd:1f:d3:13:f7:42:8a:63:8a:82:00:32: ba:c3:ba:ed -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjYwNTEyMTc1MjM4WhcNMjYwNTE5MTc1MjM4WjAYMRYwFAYD VQQDEw02YTAzNjhlNi03NDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEh66KzgrBBpTxMUNx79Rwry/FooqCBqaNgqC7UZSm3I8VMWZd99QDiWneFM O73eX4Q/VRTipN3CSApzLiZ6XqqUlZ4XJRwe+vCmmP0RKA6ZzmnPnjyPwONEQJan ++7onsj+t3RGEY4oKYWRmhQuVio4R+NdS2oXwQqXoMY4nQqT6WjOLd32+LbQCDp/ C9AH8sXjh9ka/g74xibtlT9rFLuvTafCTZdCTVyAoSDzNH+1CSRTOgUtipRms0Ri evssbrcMeCWgtu24KKtyGzpOsyNugBRVjDz2NQ7/TzTE/yenDUXpcS9luz8xunet i61UoCqIK8Yh1o1CwT4pAoaL1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCHMklQ+ DVk9FSDf5b+Ps1iUcZo5MB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC9DNjk0ODIzNjEwRTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxp SkVfQk5CRlhFT3Z0WGpsV0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQCxAgxUIcibXJYva3iqM+Zh3bXrcH25RzWpM4EXsx9TP9lYGCpWd4rK29hgD hGBx+a/zXPpUjIRGcKklfWsQDnO05ThuKaj0ycnjNTJlkCmW3BEDmuzTS5OinJwQ P4xh/bVUcxo9ZN+JlEyfFfeTv0uJaQs6v2B4PgozBzOhwsa1V1nrLNiC+QSWQwUX sKB5Xa5gBwZB7o0QvbR+advfEZ9OntDik8pXe0Rhn7b24DYU48TTthuzyuGMCGNs dLlWRcQXCDYPvD2K1Ay37JUvLFLSDmowcmibwcqb0r82vDcfdyDn7Td/vkrH7Ika h69v/R/TE/dCimOKggAyusO67Q== -----END CERTIFICATE-----Generated at Wed May 13 14:41:52 2026 by rpki-client