$ rpki-client -vvf rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft File: 2dCjxqTde6e0VN6uAa9nryxUxDM.mft (raw, json) Hash identifier: OaxX7WzqrNV7YZV6nvxgbeTiKxalf9rZUGLirxH9me0= Subject key identifier: 62:21:87:31:4E:09:79:9E:1C:05:78:4D:CE:16:10:A9:38:04:34:9E Authority key identifier: D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 Certificate issuer: /CN=A915C9B7/serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Certificate serial: 0888 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft Manifest number: 087B Signing time: Tue 24 Mar 2026 20:22:57 +0000 Manifest this update: Tue 24 Mar 2026 20:22:56 +0000 Manifest next update: Tue 31 Mar 2026 20:22:56 +0000 Files and hashes: 1: 2dCjxqTde6e0VN6uAa9nryxUxDM.crl (hash: judlCVniGxLRj09DZUUx+dUK+xq7XEnzLS/8839nXMc=) 2: 12A47D4E9CDB11EF857FB626C4F9AE02.roa (hash: 1GModq8GVTp3VBZ+WmjSYkW1Bqq/2XyaBR4joVrXKaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2184 (0x888) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C9B7, serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Validity Not Before: Mar 24 20:22:56 2026 GMT Not After : Mar 31 20:22:56 2026 GMT Subject: CN=69c2f2a1-c8a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9f:d9:91:5d:93:65:70:19:fc:ea:5c:2a:e1: 41:4c:db:0f:1b:0c:71:95:81:a9:2e:9c:8f:31:e5: ec:41:52:d3:cb:56:7a:1f:aa:71:74:a7:1b:f0:a2: 1b:d2:0c:52:db:e5:0c:e9:e1:99:a6:d9:c7:54:a8: 86:87:b3:57:7b:73:29:77:5d:54:c0:2f:b2:a2:0c: e0:32:6a:5a:95:4c:be:ae:1e:f7:ba:7f:cf:e4:08: 4c:51:58:f3:ad:dd:79:24:b1:82:bd:65:f6:29:c8: 9e:f5:b8:87:e3:6d:ca:b4:30:cf:32:af:f7:99:25: ad:db:20:42:76:7b:e6:79:c1:21:29:36:ce:0f:e4: 06:cd:ee:cf:1a:c3:85:03:06:f3:e8:2b:44:07:a5: 2a:95:e2:86:0f:91:15:92:68:c1:6d:e6:88:06:29: 22:78:b0:d0:cd:ca:35:97:7b:90:ab:2e:47:08:9f: e0:97:41:52:e2:b6:4b:66:55:a0:de:cf:16:f8:37: ef:fd:fe:bd:cf:5b:27:96:2d:a9:49:f7:8e:23:b9: 1e:93:90:7f:1b:2f:e6:40:bd:ed:55:1a:13:b9:9b: 86:34:39:4b:dc:a8:98:a2:92:9e:f9:25:f7:ec:01: d0:03:fa:e1:e7:71:f8:85:7c:6b:e6:8d:6d:48:a2: 5f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:21:87:31:4E:09:79:9E:1C:05:78:4D:CE:16:10:A9:38:04:34:9E X509v3 Authority Key Identifier: keyid:D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:f2:a3:f9:75:2b:c8:f8:d0:0d:47:4f:5c:26:84:ad:8f:3b: 04:46:31:62:11:27:9b:1c:9f:60:0a:d0:6d:af:02:04:4f:1e: e1:8f:42:3f:46:44:ea:2e:43:11:b1:bd:7a:c2:77:4c:33:23: fb:04:2d:7e:42:57:bb:2c:63:ec:5c:5e:30:e9:78:bb:20:8b: 2f:58:1e:4d:2b:4e:54:50:cd:5f:f5:85:be:51:dd:a4:3c:03: f0:aa:c4:a8:be:e8:97:a6:2d:10:1f:d5:1e:03:81:02:e7:0b: 10:d5:01:8b:ca:e5:b3:c8:95:da:e1:b7:ef:17:ed:06:91:ca: a2:b6:c8:e3:ac:e2:ca:01:f5:74:5c:5c:2b:8b:d7:d6:40:b1: a4:ee:0b:9f:d1:35:7f:e3:f1:0c:a4:0e:e9:7a:b5:88:2d:56: 47:b1:52:ac:21:93:85:31:25:4e:94:52:20:48:18:9e:91:01: d5:4d:cb:62:ee:57:fc:b3:4c:0a:e7:f1:95:c4:3e:66:e8:7e: 3c:9c:f8:ad:da:07:12:43:02:00:9b:7d:ad:ee:33:d7:39:bc: 8a:24:08:21:d9:5e:09:a2:4d:90:7a:ec:17:42:a3:2b:6a:8a: c3:68:9c:4c:49:7b:a2:fd:4e:2f:12:ea:a4:35:69:38:9f:e7: ed:eb:bc:2a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM5QjcxMTAvBgNVBAUTKEQ5RDBBM0M2QTRERDdCQTdCNDU0REVBRTAxQUY2N0FG MkM1NEM0MzMwHhcNMjYwMzI0MjAyMjU2WhcNMjYwMzMxMjAyMjU2WjAYMRYwFAYD VQQDEw02OWMyZjJhMS1jOGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtp/ZkV2TZXAZ/OpcKuFBTNsPGwxxlYGpLpyPMeXsQVLTy1Z6H6pxdKcb8KIb 0gxS2+UM6eGZptnHVKiGh7NXe3Mpd11UwC+yogzgMmpalUy+rh73un/P5AhMUVjz rd15JLGCvWX2Kcie9biH423KtDDPMq/3mSWt2yBCdnvmecEhKTbOD+QGze7PGsOF Awbz6CtEB6UqleKGD5EVkmjBbeaIBikieLDQzco1l3uQqy5HCJ/gl0FS4rZLZlWg 3s8W+Dfv/f69z1snli2pSfeOI7kek5B/Gy/mQL3tVRoTuZuGNDlL3KiYopKe+SX3 7AHQA/rh53H4hXxr5o1tSKJfhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGIhhzFO CXmeHAV4Tc4WEKk4BDSeMB8GA1UdIwQYMBaAFNnQo8ak3XuntFTergGvZ68sVMQz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzlCNy84QzI2NEZEMkVF NUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2ZTBWTjZ1QWE5bnJ5eFV4 RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkQ2p4cVRkZTZlMFZONnVBYTlucnl4VXhETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzlCNy84QzI2NEZEMkVFNUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2 ZTBWTjZ1QWE5bnJ5eFV4RE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAV/Kj+XUryPjQDUdPXCaErY87BEYxYhEnmxyfYArQba8CBE8e4Y9CP0ZE6i5D EbG9esJ3TDMj+wQtfkJXuyxj7FxeMOl4uyCLL1geTStOVFDNX/WFvlHdpDwD8KrE qL7ol6YtEB/VHgOBAucLENUBi8rls8iV2uG37xftBpHKorbI46ziygH1dFxcK4vX 1kCxpO4Ln9E1f+PxDKQO6Xq1iC1WR7FSrCGThTElTpRSIEgYnpEB1U3LYu5X/LNM CufxlcQ+Zuh+PJz4rdoHEkMCAJt9re4z1zm8iiQIIdleCaJNkHrsF0KjK2qKw2ic TEl7ov1OLxLqpDVpOJ/n7eu8Kg== -----END CERTIFICATE-----Generated at Thu Mar 26 07:16:07 2026 by rpki-client