$ rpki-client -vvf rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft File: 2-bH-ZCQRq41ohWw4hVErlIjfoo.mft (raw, json) Hash identifier: EXWkFn47IzTxdUU8rrlcBZGCYQRdh0qem8tKjIo3tas= Subject key identifier: 91:C4:69:F3:B3:92:CD:F0:0C:81:58:79:16:1C:04:86:64:0F:0E:46 Authority key identifier: DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A Certificate issuer: /CN=A914F697/serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Certificate serial: 071B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft Manifest number: 0846 Signing time: Tue 24 Mar 2026 20:20:55 +0000 Manifest this update: Tue 24 Mar 2026 20:20:54 +0000 Manifest next update: Tue 31 Mar 2026 20:20:54 +0000 Files and hashes: 1: 2-bH-ZCQRq41ohWw4hVErlIjfoo.crl (hash: fqRhVEDkwxquHt7GU3fVNfqFa/zgSiwfNq1dRODybfQ=) 2: 1AA7504A92DD11EB9B9E993FC4F9AE02.roa (hash: uPVVKDs8FXCGXCVQqQJZYdG3JPqyWcieyoiy4+qFczg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1819 (0x71b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F697, serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Validity Not Before: Mar 24 20:20:54 2026 GMT Not After : Mar 31 20:20:54 2026 GMT Subject: CN=69c2f226-799d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e0:7e:e7:08:11:04:b3:31:c8:59:64:27:f2: 64:d6:22:66:6b:de:f1:06:ef:76:c9:48:2e:66:c6: a3:d1:91:1a:ad:8a:14:cf:75:ae:de:97:9c:8f:2a: db:6d:f7:55:36:60:45:df:6b:21:29:3b:e9:55:4b: bb:a2:e7:8d:3b:9e:62:86:be:21:fc:10:dd:c1:0a: 3e:f2:7a:a6:36:a3:55:11:61:58:73:1b:d2:f7:81: a9:fc:90:af:d3:3a:5c:23:9c:ed:c1:e9:ed:9e:9a: 3f:ec:71:29:aa:32:ac:3e:2a:96:1e:0d:1e:d3:8c: 90:a4:0d:5f:3f:f2:00:9b:68:4a:77:fb:ed:b0:08: 71:31:20:6f:94:62:01:1c:17:22:a0:a8:e3:1b:24: 54:63:9b:15:b4:3d:24:d5:97:e2:2f:7c:55:c0:7b: 4b:cf:1b:d2:ba:ee:3f:e9:7d:81:4d:f4:a2:32:15: a8:49:f0:52:73:98:39:75:19:08:86:e4:a7:72:60: e0:1f:87:50:40:6b:65:b7:4d:76:11:d9:23:35:fa: e8:cc:37:07:e7:f7:1e:77:9a:90:2f:3c:50:d6:a3: bb:44:d2:b2:93:0e:e9:54:0b:fd:f6:94:31:21:49: 1d:1a:8d:ee:c9:d6:8f:8b:7c:da:58:68:89:84:18: 28:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:C4:69:F3:B3:92:CD:F0:0C:81:58:79:16:1C:04:86:64:0F:0E:46 X509v3 Authority Key Identifier: keyid:DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:04:8e:c6:30:5f:14:dc:1c:a1:dc:94:9a:3d:d3:ae:63:95: df:dc:cf:5d:60:ea:1b:48:4c:c7:9f:10:39:5f:ab:11:49:6b: b4:9d:9d:bb:96:15:75:f6:77:e0:59:d9:d6:8c:99:91:62:8e: 06:58:fe:99:b8:92:f4:fb:8e:e3:f8:0a:72:ae:c3:81:51:87: 7e:36:fa:e9:5e:6c:87:87:d1:07:e6:42:51:af:44:33:b2:c1: 56:fc:0c:66:64:40:bd:f6:75:7c:fe:05:97:ab:2e:51:e7:1d: c9:01:df:98:ec:cd:2e:08:fb:5c:c5:05:d9:1a:24:d0:e4:91: 44:fd:91:f9:24:6d:63:82:61:df:d0:56:4f:ff:71:1d:d4:07: d1:53:32:f0:1f:55:7c:9b:84:79:cc:34:fd:38:76:7f:9a:b3: b3:23:55:0d:ee:2b:2a:60:46:b9:87:91:a5:17:f4:90:0a:07: f8:25:0f:57:0f:ea:2f:b3:49:9b:68:94:7f:76:35:ce:19:f5: ea:7f:7d:65:6e:a9:fb:0f:4b:1f:32:86:e8:ec:69:29:a4:d8: 55:d3:70:09:99:86:d0:71:c0:df:86:01:e3:8c:7e:02:ae:1c: a7:e3:e1:31:96:8d:51:fe:da:0e:de:f1:6d:c0:a1:1e:03:a7: 07:61:c7:f3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2OTcxMTAvBgNVBAUTKERCRTZDN0Y5OTA5MDQ2QUUzNUEyMTVCMEUyMTU0NEFF NTIyMzdFOEEwHhcNMjYwMzI0MjAyMDU0WhcNMjYwMzMxMjAyMDU0WjAYMRYwFAYD VQQDEw02OWMyZjIyNi03OTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+B+5wgRBLMxyFlkJ/Jk1iJma97xBu92yUguZsaj0ZEarYoUz3Wu3pecjyrb bfdVNmBF32shKTvpVUu7oueNO55ihr4h/BDdwQo+8nqmNqNVEWFYcxvS94Gp/JCv 0zpcI5ztwentnpo/7HEpqjKsPiqWHg0e04yQpA1fP/IAm2hKd/vtsAhxMSBvlGIB HBcioKjjGyRUY5sVtD0k1ZfiL3xVwHtLzxvSuu4/6X2BTfSiMhWoSfBSc5g5dRkI huSncmDgH4dQQGtlt012EdkjNfrozDcH5/ced5qQLzxQ1qO7RNKykw7pVAv99pQx IUkdGo3uydaPi3zaWGiJhBgoWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJHEafOz ks3wDIFYeRYcBIZkDw5GMB8GA1UdIwQYMBaAFNvmx/mQkEauNaIVsOIVRK5SI36K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjY5Ny83NTIxREZDMEU4 NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJxNDFvaFd3NGhWRXJsSWpm b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItYkgtWkNRUnE0MW9oV3c0aFZFcmxJamZvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjY5Ny83NTIxREZDMEU4NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJx NDFvaFd3NGhWRXJsSWpmb28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIgSOxjBfFNwcodyUmj3TrmOV39zPXWDqG0hMx58QOV+rEUlrtJ2du5YVdfZ3 4FnZ1oyZkWKOBlj+mbiS9PuO4/gKcq7DgVGHfjb66V5sh4fRB+ZCUa9EM7LBVvwM ZmRAvfZ1fP4Fl6suUecdyQHfmOzNLgj7XMUF2Rok0OSRRP2R+SRtY4Jh39BWT/9x HdQH0VMy8B9VfJuEecw0/Th2f5qzsyNVDe4rKmBGuYeRpRf0kAoH+CUPVw/qL7NJ m2iUf3Y1zhn16n99ZW6p+w9LHzKG6OxpKaTYVdNwCZmG0HHA34YB44x+Aq4cp+Ph MZaNUf7aDt7xbcChHgOnB2HH8w== -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:43 2026 by rpki-client