$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft File: 2H4ClpVGrcVaesygjK2yh5vGmck.mft (raw, json) Hash identifier: /+yfANZcvUHKvBS7M62+czDTIJhzrjNzHXw4wxzIovk= Subject key identifier: D4:02:9C:B7:D4:9F:72:41:24:FB:AC:22:2E:6F:25:58:46:36:2D:A5 Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft Manifest number: 021C Signing time: Wed 25 Mar 2026 02:11:47 +0000 Manifest this update: Wed 25 Mar 2026 02:11:47 +0000 Manifest next update: Wed 01 Apr 2026 02:11:47 +0000 Files and hashes: 1: 2H4ClpVGrcVaesygjK2yh5vGmck.crl (hash: eX+VKGHd+jU06XFbMjAsTKDTnF0bGDGmsYpdZ73E21g=) 2: A4B0D326F0A311ED99A1471CC4F9AE02.roa (hash: h10z21e5Oy2p6gz6NvjFEykQ6dDt++dpQhjiOqNwnqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:11:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F, serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Validity Not Before: Mar 25 02:11:47 2026 GMT Not After : Apr 1 02:11:47 2026 GMT Subject: CN=69c34463-601c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b1:3f:49:5c:a9:1d:60:de:66:5d:bc:02:40: 37:ee:ba:60:a1:3e:3c:ef:b7:75:b0:ff:c4:dd:80: d4:63:ba:b5:48:08:3d:8c:b2:a5:a6:32:d4:72:e9: dd:7d:4c:0f:9d:b2:f9:1a:8e:b0:70:eb:db:a8:24: 72:a2:06:65:e3:f9:31:36:10:77:c5:49:61:08:f1: 80:bc:40:bb:3d:af:cf:53:b6:84:bd:d7:62:11:2f: 4a:c6:9c:8c:d1:64:e6:fb:a6:68:82:c6:99:4d:d2: 1b:75:ee:af:7e:51:c9:e4:bc:86:bf:e8:a2:d6:66: e7:5f:5e:bc:ed:d4:00:d7:98:89:69:99:50:bb:b2: 0a:92:a1:21:51:6a:ff:24:0e:a1:c0:8e:84:ca:0f: 09:81:cb:9d:0f:74:13:97:c4:3b:77:b2:ba:fa:6d: f1:0f:0a:9c:7e:ed:41:a4:ff:7d:85:10:21:7d:97: 8e:bd:a8:98:64:87:cf:a4:8d:ef:91:52:2b:16:c5: 5a:25:0a:40:88:4a:fc:0e:7b:f8:ef:fc:f8:61:33: e5:ff:04:d2:0e:4c:67:78:44:62:bc:01:35:aa:ae: 4f:48:80:ce:fb:d7:9f:d2:d2:5f:3d:a9:25:18:09: 7f:25:91:0c:70:af:b6:07:12:5b:f9:c1:1e:88:36: 44:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:02:9C:B7:D4:9F:72:41:24:FB:AC:22:2E:6F:25:58:46:36:2D:A5 X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:26:c0:17:f1:c9:80:7d:da:cd:35:df:09:42:01:ea:c1:21: bc:a8:98:b6:a9:3e:e3:ac:d1:95:fa:83:6e:4d:b3:f4:4c:21: 03:4b:70:a5:86:90:7a:e4:7d:3a:c4:2e:49:fd:a6:49:a6:47: 57:d2:6c:ef:54:97:a5:b1:10:9d:b5:57:85:c1:1d:35:da:f9: 7e:de:72:69:30:c7:08:39:74:84:07:50:f9:c6:b4:a3:97:04: f4:49:f3:df:a0:ad:75:03:0d:36:22:0d:47:06:2f:4e:47:71: 43:67:ba:45:da:2a:5c:9e:5a:84:cc:18:b1:13:17:a8:c5:75: 1e:04:f3:f2:e0:98:aa:a2:1e:43:68:2f:98:8e:40:cb:16:05: 32:2e:cb:90:89:0b:12:d1:6b:25:26:9e:b4:bc:fe:a4:cf:35: a3:7d:ec:4b:00:cf:09:49:52:c1:b9:46:7e:45:0a:c0:69:e7: 83:65:73:19:bb:f0:fa:7b:dd:06:d5:51:00:7c:5a:ce:cf:a1: ab:c0:b5:68:d2:e6:c3:4f:a0:50:4a:d2:88:ad:ac:db:98:5f: 93:12:8f:c9:bd:d8:7b:2e:fc:83:36:8a:2c:cd:5d:a6:f4:ca: 43:ad:4a:41:a2:1b:13:37:d8:2f:71:82:c5:48:c1:e8:9c:1e: 57:0b:e3:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3 OUJDNjk5QzkwHhcNMjYwMzI1MDIxMTQ3WhcNMjYwNDAxMDIxMTQ3WjAYMRYwFAYD VQQDEw02OWMzNDQ2My02MDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7E/SVypHWDeZl28AkA37rpgoT4877d1sP/E3YDUY7q1SAg9jLKlpjLUcund fUwPnbL5Go6wcOvbqCRyogZl4/kxNhB3xUlhCPGAvEC7Pa/PU7aEvddiES9KxpyM 0WTm+6ZogsaZTdIbde6vflHJ5LyGv+ii1mbnX1687dQA15iJaZlQu7IKkqEhUWr/ JA6hwI6Eyg8JgcudD3QTl8Q7d7K6+m3xDwqcfu1BpP99hRAhfZeOvaiYZIfPpI3v kVIrFsVaJQpAiEr8Dnv47/z4YTPl/wTSDkxneERivAE1qq5PSIDO+9ef0tJfPakl GAl/JZEMcK+2BxJb+cEeiDZEpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNQCnLfU n3JBJPusIi5vJVhGNi2lMB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI1Ri84RTQxODAyMEYwOUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3Jj VmFlc3lnaksyeWg1dkdtY2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVSbAF/HJgH3azTXfCUIB6sEhvKiYtqk+46zRlfqDbk2z9EwhA0twpYaQeuR9 OsQuSf2mSaZHV9Js71SXpbEQnbVXhcEdNdr5ft5yaTDHCDl0hAdQ+ca0o5cE9Enz 36CtdQMNNiINRwYvTkdxQ2e6RdoqXJ5ahMwYsRMXqMV1HgTz8uCYqqIeQ2gvmI5A yxYFMi7LkIkLEtFrJSaetLz+pM81o33sSwDPCUlSwblGfkUKwGnng2VzGbvw+nvd BtVRAHxazs+hq8C1aNLmw0+gUErSiK2s25hfkxKPyb3Yey78gzaKLM1dpvTKQ61K QaIbEzfYL3GCxUjB6JweVwvjvg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:35:54 2026 by rpki-client