$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft File: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft (raw, json) Hash identifier: bTIfJyG5Of634x2vpK/ETn5IbKL1qst4uPWf99aI9t0= Subject key identifier: 2D:11:14:75:03:85:B8:81:35:A3:21:AE:0C:F3:D2:C3:89:4E:6A:8A Authority key identifier: DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF Certificate issuer: /CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Certificate serial: 0D0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft Manifest number: 0D01 Signing time: Tue 24 Mar 2026 17:58:20 +0000 Manifest this update: Tue 24 Mar 2026 17:58:19 +0000 Manifest next update: Tue 31 Mar 2026 17:58:19 +0000 Files and hashes: 1: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl (hash: R09QMrZhaiHKVEhCZJ/1rB4nG8p7uOXKYZwPpKGlvE8=) 2: C21D3A065B7E11F0A8B76B2EC4F9AE02.roa (hash: ev3YW2NLkO0rjwyR3qqZhC4fRgKa7uqRJcOoJlN/Fyo=) 3: 44FEC394589711F0B981A181C4F9AE02.roa (hash: XgVbFRUMdQn7YMgDUvllzDbhgw5VgTScVk8o1raBf8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3341 (0xd0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E66, serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Validity Not Before: Mar 24 17:58:19 2026 GMT Not After : Mar 31 17:58:19 2026 GMT Subject: CN=69c2d0bb-6b80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:68:f5:5d:bc:a1:84:eb:5c:b0:60:9b:d6:c5: 22:8f:fc:65:f9:64:f7:b2:dd:ea:db:1e:d1:78:13: 9c:c0:e5:e3:bc:87:82:24:3a:e0:63:17:03:d8:ee: 26:be:6e:69:50:27:33:d3:5d:f9:e4:8c:4d:2e:5f: 75:0b:2e:a3:77:03:92:ec:19:f4:7f:a1:59:58:85: c8:30:27:f2:1d:30:b6:66:b9:7c:4b:67:3d:9a:56: 3b:3f:6f:03:73:e0:02:c7:78:a4:54:68:1c:ab:9f: 99:e7:57:ca:cb:b1:ae:c6:76:f8:67:9c:43:cc:7c: e0:d7:b7:60:d5:78:f6:14:7f:63:10:83:16:c7:51: 03:31:5f:e3:84:2a:dc:36:a7:e9:0d:70:e9:bf:f8: c3:65:05:dc:00:b6:8e:7c:dd:80:c3:82:98:71:bc: 70:37:4f:1e:64:63:7e:f1:ea:0c:ac:61:3c:2b:c8: 75:5d:84:56:74:96:35:4e:dc:ac:30:88:d3:04:c1: f2:76:12:ab:2f:d3:ff:09:a0:d3:2f:b5:20:cc:b9: ea:96:23:4f:ef:59:fe:27:0c:7f:18:a2:93:97:87: 0a:6d:3b:f8:71:a1:05:5a:85:45:96:5a:1e:92:0a: 60:1d:ba:bd:25:dc:80:3a:23:f1:e6:6c:51:f1:36: 2e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:11:14:75:03:85:B8:81:35:A3:21:AE:0C:F3:D2:C3:89:4E:6A:8A X509v3 Authority Key Identifier: keyid:DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:ff:3c:e4:20:fa:72:c3:26:8c:42:81:6d:eb:2c:a2:8d:b2: 3e:8e:39:26:67:f5:da:4d:4f:80:06:c9:7a:9e:f6:e4:e9:f2: e7:b2:68:29:6d:59:b2:5a:1d:2c:ab:8e:56:16:63:c6:11:3c: 50:02:82:b0:84:14:fa:13:e7:05:a2:8f:2a:e2:f0:65:c5:e4: 1b:6b:86:ef:5a:95:d4:5b:bf:46:92:65:e4:7f:1a:19:25:c9: 67:84:e7:7b:14:a1:e0:03:0e:05:da:a5:37:93:b7:c9:51:fe: 8d:a7:38:1e:9d:95:37:e9:c4:ab:e7:bb:8c:70:cc:3b:12:f9: 69:e3:68:68:76:2c:13:3f:29:f8:ec:bd:0e:20:60:30:c2:81: 13:cd:ec:c7:09:16:12:b3:a7:74:39:57:c0:2d:51:d6:f6:68: a7:e4:08:f8:c7:00:96:fc:91:02:8c:f2:7a:51:95:26:68:50: b0:89:ce:f8:0b:37:3b:82:17:5b:aa:e2:de:38:0e:1e:e0:42: 13:78:0a:81:9a:ad:3e:0d:6a:db:4a:8d:fe:e2:f2:4b:cf:e1: a8:49:c4:d5:a7:68:b5:17:03:2f:f1:c8:d4:66:f0:63:74:bb: 3a:d2:01:9e:95:db:3b:98:b1:81:ec:b7:06:a7:05:84:78:87: 34:cf:e3:e2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNjYxMTAvBgNVBAUTKERBNTQ3RUQ2OTI4QUFEMUVDRkI2ODQ3QTFCMDc0MzJC RDg3QjE5RUYwHhcNMjYwMzI0MTc1ODE5WhcNMjYwMzMxMTc1ODE5WjAYMRYwFAYD VQQDEw02OWMyZDBiYi02YjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2j1XbyhhOtcsGCb1sUij/xl+WT3st3q2x7ReBOcwOXjvIeCJDrgYxcD2O4m vm5pUCcz01355IxNLl91Cy6jdwOS7Bn0f6FZWIXIMCfyHTC2Zrl8S2c9mlY7P28D c+ACx3ikVGgcq5+Z51fKy7Guxnb4Z5xDzHzg17dg1Xj2FH9jEIMWx1EDMV/jhCrc NqfpDXDpv/jDZQXcALaOfN2Aw4KYcbxwN08eZGN+8eoMrGE8K8h1XYRWdJY1Ttys MIjTBMHydhKrL9P/CaDTL7UgzLnqliNP71n+Jwx/GKKTl4cKbTv4caEFWoVFlloe kgpgHbq9JdyAOiPx5mxR8TYuqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC0RFHUD hbiBNaMhrgzz0sOJTmqKMB8GA1UdIwQYMBaAFNpUftaSiq0ez7aEehsHQyvYexnv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU2Ni83MDYzOUVGQ0ZG NkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JSN1B0b1I2R3dkREs5aDdH ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsUi0xcEtLclI3UHRvUjZHd2RESzloN0dlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU2Ni83MDYzOUVGQ0ZGNkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JS N1B0b1I2R3dkREs5aDdHZTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEf885CD6csMmjEKBbessoo2yPo45Jmf12k1PgAbJep725Ony57JoKW1Zslod LKuOVhZjxhE8UAKCsIQU+hPnBaKPKuLwZcXkG2uG71qV1Fu/RpJl5H8aGSXJZ4Tn exSh4AMOBdqlN5O3yVH+jac4Hp2VN+nEq+e7jHDMOxL5aeNoaHYsEz8p+Oy9DiBg MMKBE83sxwkWErOndDlXwC1R1vZop+QI+McAlvyRAozyelGVJmhQsInO+As3O4IX W6ri3jgOHuBCE3gKgZqtPg1q20qN/uLyS8/hqEnE1adotRcDL/HI1GbwY3S7OtIB npXbO5ixgey3BqcFhHiHNM/j4g== -----END CERTIFICATE-----Generated at Thu Mar 26 17:00:32 2026 by rpki-client