$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: Y1vT5A75YaebLUVZjCxfWnhGesE7+KoEaTh6e/CblCM= Subject key identifier: 59:56:3E:3D:F5:E8:08:F5:D2:F0:6F:B2:2A:1C:67:3A:4D:F4:38:E6 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 0460 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 0459 Signing time: Thu 26 Mar 2026 23:56:49 +0000 Manifest this update: Thu 26 Mar 2026 23:56:49 +0000 Manifest next update: Thu 02 Apr 2026 23:56:49 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: fKfOO7WCOBIuUWHSHO5oOr0zZzeDiSfTcNDSHlOuEsY=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: gXnStk1MwegllJpHCk0mKvppBMmur0BRxsppyW6UBsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1120 (0x460) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950, serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: Mar 26 23:56:49 2026 GMT Not After : Apr 2 23:56:49 2026 GMT Subject: CN=69c5c7c1-8891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:41:90:29:c2:1d:d1:d7:46:42:d8:41:03:fb: 60:2c:f6:4e:07:0c:94:fe:b9:9b:ac:28:46:6e:59: 33:7a:4b:d0:fb:aa:15:b3:ef:df:cb:52:b2:f4:70: c1:0c:1f:b6:1b:0f:4a:88:cd:a6:61:88:bc:1e:7e: d8:b5:ab:ca:33:cb:d8:70:aa:79:bf:7e:c1:91:46: fb:07:e9:cd:9d:5b:ad:71:bf:d4:e3:4a:05:88:e5: e7:99:c8:98:23:c8:76:df:8e:b8:68:98:0c:fb:0d: 1a:4d:f5:4a:91:82:34:53:3a:cd:ed:c9:cb:4a:b2: 23:94:e2:2e:51:de:63:1a:20:05:34:ce:b4:92:25: f1:92:bd:04:25:71:82:93:9c:3f:4e:34:94:6c:cb: 86:ac:19:5e:c8:4f:3f:a0:5c:de:7f:a5:b0:03:da: a9:9d:57:3f:ee:b0:f6:f8:26:75:8a:3f:40:f7:a4: 42:3e:ff:0b:b6:b1:73:1e:da:64:0f:3a:65:c1:b4: f6:31:6b:9a:b8:5c:04:88:04:39:a0:ef:b7:e1:7d: d6:ee:a7:3e:d3:05:0e:c1:a8:f1:60:87:3d:0f:04: d8:42:a0:e8:14:93:d4:ec:60:5b:a6:3e:fc:91:18: 6f:6c:63:63:dc:12:c5:2a:14:02:f2:53:57:36:56: db:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:56:3E:3D:F5:E8:08:F5:D2:F0:6F:B2:2A:1C:67:3A:4D:F4:38:E6 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:11:59:dd:24:10:43:75:1a:02:95:5b:78:70:b2:27:ac:e2: 68:ed:49:6d:5e:7b:f3:15:fc:64:d7:6f:bd:5c:09:b8:3f:af: 3b:3f:80:ad:a4:ec:cb:d0:7e:0c:c2:73:93:4f:1b:46:57:d1: 5d:59:c9:65:3e:69:9f:b3:c4:18:23:18:b0:75:7f:5f:bb:79: 30:e5:5e:62:19:5c:fa:07:3d:17:d8:00:cd:05:52:50:05:a5: b3:df:6f:25:91:8f:ac:06:c3:dd:99:4d:30:ab:a2:55:ed:4e: b9:6d:b9:05:bb:dc:1f:72:db:ef:17:2d:68:b5:e9:6a:03:41: a7:f6:51:3c:85:5c:0a:19:b4:f7:1a:9d:98:ca:04:cd:6f:b8: 26:b6:37:73:83:42:f8:e9:ae:aa:10:ca:80:c2:d1:ac:b7:6b: 45:68:5b:94:06:7b:50:55:11:4c:f3:b7:7c:23:ce:ef:ba:8b: 90:cd:33:ed:b4:89:73:9e:f0:ce:34:71:e4:32:d5:0d:27:6e: d3:2a:ec:4e:2a:38:35:ce:07:e5:3c:68:8a:58:ef:40:1e:1f: 97:12:48:58:59:05:52:4d:56:06:8e:2c:82:f1:fa:ed:bd:ba: c9:b6:ed:6c:04:c2:d4:a9:21:1c:86:ac:9b:a6:37:d7:2c:eb: 23:66:40:22 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjYwMzI2MjM1NjQ5WhcNMjYwNDAyMjM1NjQ5WjAYMRYwFAYD VQQDEw02OWM1YzdjMS04ODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkGQKcId0ddGQthBA/tgLPZOBwyU/rmbrChGblkzekvQ+6oVs+/fy1Ky9HDB DB+2Gw9KiM2mYYi8Hn7YtavKM8vYcKp5v37BkUb7B+nNnVutcb/U40oFiOXnmciY I8h23464aJgM+w0aTfVKkYI0UzrN7cnLSrIjlOIuUd5jGiAFNM60kiXxkr0EJXGC k5w/TjSUbMuGrBleyE8/oFzef6WwA9qpnVc/7rD2+CZ1ij9A96RCPv8LtrFzHtpk DzplwbT2MWuauFwEiAQ5oO+34X3W7qc+0wUOwajxYIc9DwTYQqDoFJPU7GBbpj78 kRhvbGNj3BLFKhQC8lNXNlbbywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFlWPj31 6Aj10vBvsiocZzpN9DjmMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATRFZ3SQQQ3UaApVbeHCyJ6ziaO1JbV578xX8ZNdvvVwJuD+vOz+AraTsy9B+ DMJzk08bRlfRXVnJZT5pn7PEGCMYsHV/X7t5MOVeYhlc+gc9F9gAzQVSUAWls99v JZGPrAbD3ZlNMKuiVe1OuW25BbvcH3Lb7xctaLXpagNBp/ZRPIVcChm09xqdmMoE zW+4JrY3c4NC+OmuqhDKgMLRrLdrRWhblAZ7UFURTPO3fCPO77qLkM0z7bSJc57w zjRx5DLVDSdu0yrsTio4Nc4H5TxoiljvQB4flxJIWFkFUk1WBo4sgvH67b26ybbt bATC1KkhHIasm6Y31yzrI2ZAIg== -----END CERTIFICATE-----Generated at Sat Mar 28 12:07:35 2026 by rpki-client