$ rpki-client -vvf rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft File: 2nNptJciuhObe2DznIi0m9uzXz0.mft (raw, json) Hash identifier: uXgEBVsLbHmvjxrEBv53hjZy0qyqjcZ2KbcJGfU6KzM= Subject key identifier: 88:89:73:A8:D3:5A:65:9C:D3:71:5E:80:8C:45:64:AB:BD:6D:08:42 Authority key identifier: DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D Certificate issuer: /CN=A917E623/serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Certificate serial: 0202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft Manifest number: 01EE Signing time: Wed 25 Mar 2026 02:47:56 +0000 Manifest this update: Wed 25 Mar 2026 02:47:55 +0000 Manifest next update: Wed 01 Apr 2026 02:47:55 +0000 Files and hashes: 1: 2nNptJciuhObe2DznIi0m9uzXz0.crl (hash: Nyjc2JuvNXFrqmi11OfpFMUqBcvIIxCzH637t63ns/g=) 2: BBBEDEF46C8211EE866F5A78C4F9AE02.roa (hash: yN9o2rrsZJddQeoKflSWXEmDgLtMFJiSuAQ+s2rn58I=) 3: C12ACE6AC17E11EE95D6821CC4F9AE02.roa (hash: M4JLOJ0KBDUs8GKGl3QSSzCZeqstWHcvqiMr77NsytE=) 4: 585745526BC111EEA163E774C4F9AE02.roa (hash: RCbI/69LSKrQE3x05u/abOOobnm77I9syhgwGg/3j4Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E623, serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Validity Not Before: Mar 25 02:47:55 2026 GMT Not After : Apr 1 02:47:55 2026 GMT Subject: CN=69c34cdc-cc95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:41:4c:bc:24:1c:46:ea:ef:59:44:6a:80:72: 6b:4e:cb:5a:be:08:6d:b0:87:ab:6a:a2:85:62:5a: 12:a1:3a:62:7f:f1:9f:24:ad:24:cb:23:16:79:82: cb:25:a2:be:ce:5d:27:d4:ae:0b:da:51:ee:2a:f9: 36:cf:d0:db:bd:76:1b:eb:8b:5b:ed:64:be:ee:2e: 24:40:50:0b:fd:bb:f0:b0:cf:a1:3a:b0:dc:ee:3a: 6f:29:df:da:42:46:2c:42:fb:73:e8:23:25:2d:7b: 17:83:b1:02:8d:4c:94:b0:11:98:8f:74:3f:93:ef: 53:ed:50:63:e0:9a:99:5a:71:ec:eb:e5:8b:d2:17: eb:0e:c8:46:a9:6b:95:af:48:eb:a6:90:da:10:0b: 1d:dc:a5:92:fe:e2:b3:30:ed:ba:d5:aa:0c:e3:ca: 2d:43:43:f4:a0:68:ed:f8:f2:ed:78:f5:0c:f8:32: dc:25:15:69:58:d6:8d:81:99:1e:4f:cc:5b:7f:6a: 6b:83:06:fc:88:96:41:01:a8:f7:ef:42:b2:02:9c: 0f:18:6a:5c:da:c0:bc:8a:40:2d:a2:58:0b:15:1a: 85:26:a9:d7:cf:d2:a7:7f:ee:08:1d:b0:0f:ba:48: 2c:61:5c:78:d9:4c:74:1c:4d:3b:01:9a:7c:9a:31: 62:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:89:73:A8:D3:5A:65:9C:D3:71:5E:80:8C:45:64:AB:BD:6D:08:42 X509v3 Authority Key Identifier: keyid:DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:47:98:35:64:e1:23:c4:85:1e:55:21:29:fd:16:bf:0e:81: 9e:95:24:f7:5f:45:dc:2b:56:c2:7b:84:1d:fa:3a:49:79:5a: 3e:1a:71:45:f2:e5:a2:4d:80:04:b0:d3:16:1a:0f:3b:8f:54: d6:10:19:29:80:e1:d7:f7:75:8f:d4:87:c7:ce:33:c9:e4:2f: bd:bd:2f:cb:a9:84:25:20:ac:c1:58:4f:0f:24:6b:1e:65:f2: 38:33:35:c7:a4:49:75:7a:4c:c1:61:b5:93:db:11:5f:55:96: 2a:28:ed:91:74:6a:cf:88:c8:df:f1:9f:4f:09:12:71:ab:e3: 3a:2c:59:bb:dd:0e:16:76:dd:78:50:7e:60:9e:af:7a:4b:66: a7:32:f3:cd:ae:3a:98:1e:71:70:63:79:f7:5b:2e:3a:fc:7d: 81:f3:08:5f:a4:4c:55:d3:fb:36:78:cb:a4:23:89:f0:11:5d: 0a:f4:7a:2c:8b:7d:bc:31:f5:40:6c:49:ee:d8:4a:e2:6a:76: 46:3a:b7:42:b4:2b:7c:28:a1:e1:bf:a9:d6:4c:cf:6b:bf:96: f8:ba:02:c9:e2:e5:67:6a:ac:53:02:aa:fa:ea:c5:87:65:8f: 9d:3a:8d:04:41:3c:04:76:9b:1c:54:03:e6:e8:a9:80:d4:31: c7:a3:bd:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2MjMxMTAvBgNVBAUTKERBNzM2OUI0OTcyMkJBMTM5QjdCNjBGMzlDODhCNDlC REJCMzVGM0QwHhcNMjYwMzI1MDI0NzU1WhcNMjYwNDAxMDI0NzU1WjAYMRYwFAYD VQQDEw02OWMzNGNkYy1jYzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoEFMvCQcRurvWURqgHJrTstavghtsIeraqKFYloSoTpif/GfJK0kyyMWeYLL JaK+zl0n1K4L2lHuKvk2z9DbvXYb64tb7WS+7i4kQFAL/bvwsM+hOrDc7jpvKd/a QkYsQvtz6CMlLXsXg7ECjUyUsBGYj3Q/k+9T7VBj4JqZWnHs6+WL0hfrDshGqWuV r0jrppDaEAsd3KWS/uKzMO261aoM48otQ0P0oGjt+PLtePUM+DLcJRVpWNaNgZke T8xbf2prgwb8iJZBAaj370KyApwPGGpc2sC8ikAtolgLFRqFJqnXz9Knf+4IHbAP ukgsYVx42Ux0HE07AZp8mjFiqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIiJc6jT WmWc03FegIxFZKu9bQhCMB8GA1UdIwQYMBaAFNpzabSXIroTm3tg85yItJvbs189 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTYyMy9BMjVENDg5RTUw NDcxMUVFQjY3NzM2NURDNEY5QUUwMi8ybk5wdEpjaXVoT2JlMkR6bklpMG05dXpY ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuTnB0SmNpdWhPYmUyRHpuSWkwbTl1elh6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTYyMy9BMjVENDg5RTUwNDcxMUVFQjY3NzM2NURDNEY5QUUwMi8ybk5wdEpjaXVo T2JlMkR6bklpMG05dXpYejAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM0eYNWThI8SFHlUhKf0Wvw6BnpUk919F3CtWwnuEHfo6SXlaPhpxRfLlok2A BLDTFhoPO49U1hAZKYDh1/d1j9SHx84zyeQvvb0vy6mEJSCswVhPDyRrHmXyODM1 x6RJdXpMwWG1k9sRX1WWKijtkXRqz4jI3/GfTwkScavjOixZu90OFnbdeFB+YJ6v ektmpzLzza46mB5xcGN591suOvx9gfMIX6RMVdP7NnjLpCOJ8BFdCvR6LIt9vDH1 QGxJ7thK4mp2Rjq3QrQrfCih4b+p1kzPa7+W+LoCyeLlZ2qsUwKq+urFh2WPnTqN BEE8BHabHFQD5uipgNQxx6O97g== -----END CERTIFICATE-----Generated at Thu Mar 26 00:56:55 2026 by rpki-client