$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: RuBnwHuShz28Z4byEN6wDCK/Qp9L0/KnRegvcPNZ/W4= Subject key identifier: BD:23:3C:E3:A9:7D:3D:48:AA:F6:F3:7F:F0:63:86:3C:77:CE:21:C1 Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 3536 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 352B Signing time: Thu 26 Mar 2026 15:00:33 +0000 Manifest this update: Thu 26 Mar 2026 15:00:32 +0000 Manifest next update: Thu 02 Apr 2026 15:00:32 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: wsR75RTd1FkB3UjWhtsXDpj7xCX1K+/yikbtpbfjXzM=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: WIHf/g57A92kBt+M1v/6HUGwLpZi39D8KAuOlAkvShg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 15:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13622 (0x3536) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC, serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: Mar 26 15:00:32 2026 GMT Not After : Apr 2 15:00:32 2026 GMT Subject: CN=69c54a11-e2f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2f:7f:e8:4c:27:fb:1a:09:94:cd:c4:bd:50: 1b:72:b6:ed:30:7f:a4:32:a5:7e:c5:f6:e3:fe:6e: 08:f5:e1:a1:16:d1:8f:94:c8:af:7e:8c:35:52:9b: 24:b4:0e:63:dc:23:97:28:73:9c:99:ba:a0:2f:bb: 8f:8c:00:dc:46:56:22:0b:2b:bd:1c:6c:19:20:c9: 83:bb:68:96:5f:d8:c1:a1:c0:7d:3e:33:9c:56:2a: 13:04:85:a0:84:6e:ed:d0:b3:6e:e2:bd:e3:14:ed: d2:af:63:08:63:e3:eb:2b:3f:88:44:08:47:b9:9c: 20:69:e5:04:d1:f7:f2:56:e5:16:99:b9:ef:93:33: e8:86:2a:4b:1d:34:a5:51:60:1e:fb:14:a3:99:e6: bc:72:03:cd:81:c1:3d:8d:b9:a6:bb:f2:9e:0b:83: 06:fd:5c:5e:af:29:f4:ce:cb:ec:76:13:80:56:72: 73:1f:b7:8b:95:80:96:92:78:65:1a:79:72:85:09: d1:21:75:48:eb:4a:b6:60:bf:94:89:df:80:c4:64: 05:79:16:a8:3a:e9:a3:e6:7b:d9:4d:90:93:79:1b: 15:d4:b5:b2:f3:ed:f8:09:91:a3:28:31:f4:15:ce: e5:72:e3:92:4a:6a:32:a5:05:2f:3f:85:d0:23:d7: f2:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:23:3C:E3:A9:7D:3D:48:AA:F6:F3:7F:F0:63:86:3C:77:CE:21:C1 X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:8a:cc:7d:c8:05:46:b1:fc:b0:8a:50:9d:b4:fa:91:e5:78: ac:88:c0:5c:9f:ad:7f:38:84:88:73:f9:c0:54:30:35:0e:3d: d8:f6:6d:52:91:ca:72:e3:68:8a:af:6b:53:8f:77:2e:42:b2: fc:72:e2:38:49:d7:f4:48:ad:88:2c:48:74:ff:94:ab:9d:ab: 74:68:5e:10:5e:bf:2c:48:df:a7:94:5c:48:8a:44:1e:b2:29: ad:59:19:a3:fc:15:ee:9a:52:52:30:48:41:39:1c:47:51:6b: 06:80:e8:29:c7:88:56:fc:c9:6e:bd:0d:1d:18:ee:93:c9:05: 4a:ec:a0:17:bd:38:9b:4b:25:b9:ec:d6:ec:d3:87:d4:50:45: 01:67:0d:ba:0d:08:df:9b:a3:56:4f:17:81:41:39:27:8a:66: 83:e1:1b:4f:31:d1:3c:ab:ed:7f:55:22:ac:8b:76:4f:59:7f: d5:10:d1:fe:3c:ef:d4:91:6d:15:37:af:c6:5e:73:6f:88:93: 53:72:83:f6:7e:b6:bf:6e:ef:c2:17:f5:ed:c7:ca:60:0c:87: c0:95:2b:3f:1e:7f:18:2d:a7:a9:f8:82:f3:05:fa:98:b4:a9: 59:13:e9:2f:9e:2c:80:38:0c:f9:a4:fd:bf:80:f8:57:99:97: c5:79:6a:c4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjYwMzI2MTUwMDMyWhcNMjYwNDAyMTUwMDMyWjAYMRYwFAYD VQQDEw02OWM1NGExMS1lMmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAny9/6Ewn+xoJlM3EvVAbcrbtMH+kMqV+xfbj/m4I9eGhFtGPlMivfow1Upsk tA5j3COXKHOcmbqgL7uPjADcRlYiCyu9HGwZIMmDu2iWX9jBocB9PjOcVioTBIWg hG7t0LNu4r3jFO3Sr2MIY+PrKz+IRAhHuZwgaeUE0ffyVuUWmbnvkzPohipLHTSl UWAe+xSjmea8cgPNgcE9jbmmu/KeC4MG/Vxeryn0zsvsdhOAVnJzH7eLlYCWknhl GnlyhQnRIXVI60q2YL+Uid+AxGQFeRaoOumj5nvZTZCTeRsV1LWy8+34CZGjKDH0 Fc7lcuOSSmoypQUvP4XQI9fy7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL0jPOOp fT1Iqvbzf/Bjhjx3ziHBMB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK4rMfcgFRrH8sIpQnbT6keV4rIjAXJ+tfziEiHP5wFQwNQ492PZtUpHKcuNo iq9rU493LkKy/HLiOEnX9EitiCxIdP+Uq52rdGheEF6/LEjfp5RcSIpEHrIprVkZ o/wV7ppSUjBIQTkcR1FrBoDoKceIVvzJbr0NHRjuk8kFSuygF704m0sluezW7NOH 1FBFAWcNug0I35ujVk8XgUE5J4pmg+EbTzHRPKvtf1UirIt2T1l/1RDR/jzv1JFt FTevxl5zb4iTU3KD9n62v27vwhf17cfKYAyHwJUrPx5/GC2nqfiC8wX6mLSpWRPp L54sgDgM+aT9v4D4V5mXxXlqxA== -----END CERTIFICATE-----Generated at Sat Mar 28 12:10:27 2026 by rpki-client