$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json) Hash identifier: A5bZB3Wypx8KaMrpiCbzoTnPow90FmdKpmsjDXvn/ts= Subject key identifier: 45:91:EC:D9:F3:D6:FF:59:2D:98:A7:7E:DD:61:F0:0A:AB:5D:6C:4C Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft Manifest number: 0147 Signing time: Tue 24 Mar 2026 22:48:47 +0000 Manifest this update: Tue 24 Mar 2026 22:48:47 +0000 Manifest next update: Tue 31 Mar 2026 22:48:47 +0000 Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: /475u1h5T6Lfu7Lz0BaEivRZyCNKvQftTUG4FvN57QE=) 2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: 2/r4oR0iCi4LexUGtmPzKzEWeEmDyv6SAtyEMBATvFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:48:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: Mar 24 22:48:47 2026 GMT Not After : Mar 31 22:48:47 2026 GMT Subject: CN=69c314cf-5ed6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:25:b2:61:fd:74:ef:b5:cc:eb:9a:8c:f8:94: 51:aa:f3:34:5b:df:8f:d8:1b:18:47:dd:9f:4e:c4: 7c:24:a0:56:c7:45:2f:fd:1a:50:ec:1c:83:36:67: 72:8c:03:0a:2b:1b:2d:95:7f:ba:f4:a6:0a:81:f0: 9e:34:f6:44:33:c8:6a:2d:83:f1:8e:17:1c:03:2b: 5f:dd:fe:55:f6:0c:6f:07:8b:0a:89:15:f8:17:97: 24:75:37:16:43:04:89:29:cb:ee:95:e4:75:30:fe: b2:fa:7b:94:4c:19:a4:4e:08:d1:d7:2b:f7:c4:f5: e7:b1:0a:56:56:b1:ab:7b:cb:7b:d5:52:8a:25:6f: 33:6a:93:7e:cc:06:3a:97:81:d0:0b:d4:05:35:a0: 19:d6:70:73:05:16:c3:6d:38:29:83:20:72:11:ec: 9f:c9:e2:e5:be:13:7e:8d:58:a7:c7:c1:dd:f6:50: dc:f2:cf:d8:e3:6d:19:dc:2f:19:4c:14:d2:a0:e6: 26:3f:01:c8:7c:f0:72:62:31:2f:fe:92:b6:de:73: 7a:4b:e7:17:6e:fc:b6:f9:12:f6:5f:e0:99:89:79: 81:06:4a:27:22:e2:41:22:fa:89:70:d4:79:38:ba: 8e:2f:99:43:e4:aa:59:d6:0b:31:66:a1:88:31:87: a2:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:91:EC:D9:F3:D6:FF:59:2D:98:A7:7E:DD:61:F0:0A:AB:5D:6C:4C X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:fa:26:00:b5:51:85:ff:00:33:27:74:57:63:0b:79:1e:8f: 56:95:52:6e:bb:a2:70:be:59:a9:58:02:2f:b0:1a:fe:b7:02: 6f:df:fc:36:62:1a:65:fc:a7:fc:b1:ee:d4:19:93:2d:ac:44: af:23:f6:b9:64:1a:20:58:24:d9:78:ca:0b:a1:b8:08:2c:da: 38:53:0b:97:d7:8e:16:a3:64:b7:15:7f:99:94:e7:87:4e:bc: 2c:a1:4a:f9:0f:1a:2c:5d:a8:b1:d8:fc:4c:10:30:79:b4:42: 1b:a4:24:87:14:66:7f:b1:ab:90:ca:89:ce:10:eb:79:d6:c8: 47:0f:e3:b9:58:04:f8:1e:bc:e1:69:31:f0:fb:e3:66:c1:09: ef:8e:da:67:c8:08:2d:56:5b:85:87:d7:6d:88:34:14:48:c9: 25:79:87:62:17:bc:e5:d9:4d:3b:42:8e:b0:fe:73:d4:35:33: 56:48:47:db:2f:b3:5d:18:10:d6:6e:d2:f0:bd:bc:84:06:32: 90:89:8f:4f:3b:ef:eb:42:7f:7c:90:9d:11:90:52:a4:05:53: d3:8d:d1:61:96:b7:1a:b4:0e:f6:f1:00:e4:f5:fa:18:18:96: e5:32:3e:9b:fb:b0:d5:41:e7:28:1b:b4:23:5d:71:75:2f:b2: 97:0e:4a:30 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjYwMzI0MjI0ODQ3WhcNMjYwMzMxMjI0ODQ3WjAYMRYwFAYD VQQDEw02OWMzMTRjZi01ZWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiWyYf1077XM65qM+JRRqvM0W9+P2BsYR92fTsR8JKBWx0Uv/RpQ7ByDNmdy jAMKKxstlX+69KYKgfCeNPZEM8hqLYPxjhccAytf3f5V9gxvB4sKiRX4F5ckdTcW QwSJKcvuleR1MP6y+nuUTBmkTgjR1yv3xPXnsQpWVrGre8t71VKKJW8zapN+zAY6 l4HQC9QFNaAZ1nBzBRbDbTgpgyByEeyfyeLlvhN+jVinx8Hd9lDc8s/Y420Z3C8Z TBTSoOYmPwHIfPByYjEv/pK23nN6S+cXbvy2+RL2X+CZiXmBBkonIuJBIvqJcNR5 OLqOL5lD5KpZ1gsxZqGIMYeiWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEWR7Nnz 1v9ZLZinft1h8AqrXWxMMB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC9FRjYzODNFMjNEOUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01B cTFPejVJY1BMMFFmQnNnU1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAq/omALVRhf8AMyd0V2MLeR6PVpVSbruicL5ZqVgCL7Aa/rcCb9/8NmIaZfyn /LHu1BmTLaxEryP2uWQaIFgk2XjKC6G4CCzaOFMLl9eOFqNktxV/mZTnh068LKFK +Q8aLF2osdj8TBAwebRCG6QkhxRmf7GrkMqJzhDredbIRw/juVgE+B684Wkx8Pvj ZsEJ747aZ8gILVZbhYfXbYg0FEjJJXmHYhe85dlNO0KOsP5z1DUzVkhH2y+zXRgQ 1m7S8L28hAYykImPTzvv60J/fJCdEZBSpAVT043RYZa3GrQO9vEA5PX6GBiW5TI+ m/uw1UHnKBu0I11xdS+ylw5KMA== -----END CERTIFICATE-----Generated at Thu Mar 26 19:41:28 2026 by rpki-client