$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: ixVU24XaEY22uqcOlHEb0zW3rDg4KOWW2ZGMdmctOEM= Subject key identifier: 88:33:E3:D9:4A:8C:7C:E8:45:0C:CE:2E:E9:31:23:FF:DD:DA:CA:92 Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 01C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: 019E Signing time: Wed 25 Mar 2026 03:32:18 +0000 Manifest this update: Wed 25 Mar 2026 03:32:17 +0000 Manifest next update: Wed 01 Apr 2026 03:32:17 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: rXgr/98kLfy811wQjh3sHcaLwiNsShmxIZQFQ+kvISA=) 2: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: dah/3/ypf+hEWNUOIDeyyUD/b92XWbsj2RzQqTtYlqg=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: KgiFn2JDnQbMiTSP1itjG4XdcrHVh1Ue7B/XnPt0zdY=) 4: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: NmZuwfe+5iCEAPBHvUzD6sfa6o4YMsY1q8dOeYPy2vQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:32:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Mar 25 03:32:17 2026 GMT Not After : Apr 1 03:32:17 2026 GMT Subject: CN=69c35741-220d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:51:59:90:68:fe:38:e0:2a:1c:07:c3:cd:b5: 3c:5e:b0:dc:b6:96:90:9e:df:14:f9:8e:b0:09:62: 8b:78:4e:88:9c:22:a7:80:5f:1b:c1:01:2e:94:c1: 9f:18:37:7b:14:ad:04:1f:c1:f2:55:3c:c5:2a:39: 03:2b:62:8f:1b:2a:6f:2b:98:1d:af:7b:63:c9:6d: a6:8d:b1:4d:77:e2:df:61:24:77:4c:9e:6d:97:66: 79:43:0d:49:2a:4a:58:3f:25:1c:b5:aa:93:46:ca: 06:0d:d8:88:8d:d9:18:b2:21:38:a7:22:66:31:fa: b5:87:fe:67:6d:72:7d:b8:e8:79:d3:65:72:7c:98: 28:5f:4a:c2:43:4b:a8:f3:f3:ee:d1:3d:4b:77:f2: 7d:a8:d5:7d:29:cf:2d:e2:86:3c:32:58:59:c1:f9: 96:4a:e0:ce:51:a5:a5:2e:8c:3e:93:ae:47:93:a5: cd:94:39:4c:55:c9:3b:2d:12:b6:38:2d:f5:5f:d2: 05:89:38:86:a3:f1:25:d4:3a:c7:fe:af:2f:64:70: 39:81:6e:21:96:b9:d6:7c:c9:9e:d7:6d:6f:3a:aa: 5f:94:f5:e7:01:74:7d:9b:b3:d0:36:fa:7c:4f:61: f5:9e:91:86:18:f6:3e:49:07:51:e1:2c:21:ae:25: ca:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:33:E3:D9:4A:8C:7C:E8:45:0C:CE:2E:E9:31:23:FF:DD:DA:CA:92 X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:6e:27:b8:b3:ac:ac:4c:14:f1:86:d7:9f:4d:9f:4e:3a:85: 07:44:f7:10:d8:c1:3e:6f:36:93:2b:22:fa:66:f8:a3:50:dc: eb:c1:8a:39:4b:56:4c:b6:d3:eb:53:88:78:04:2d:3f:3c:52: b7:fc:f2:62:c0:f8:1d:d7:b1:40:91:3f:a4:47:bd:2a:50:a9: 38:a6:3a:f4:6d:e4:1d:ca:6d:f5:16:cc:08:fa:08:eb:b2:01: 12:4b:33:11:7b:36:94:ff:09:f6:ad:7e:5f:30:25:7b:21:6d: 46:cf:b8:32:c7:fe:8e:a5:eb:69:07:2d:c5:b5:9b:36:19:c4: 31:7d:0a:04:c7:7e:72:3e:94:13:fa:88:57:23:fe:be:33:c0: 44:fd:4a:42:e9:43:90:42:58:fe:cc:7c:60:16:8a:0b:b8:c6: f4:ec:fa:fc:66:1d:79:4b:f5:bb:cd:94:b4:dc:94:0b:b7:26: bf:23:12:83:b3:75:d4:ab:fc:53:79:ee:4b:75:1c:47:49:c3: db:0e:8b:e3:33:f3:6c:df:b8:92:86:0a:df:87:10:8b:03:8f: d2:25:a2:83:b2:56:6d:d1:82:1c:bc:08:aa:8f:fd:e0:10:84: e6:1d:e3:62:1b:da:dc:db:c0:8f:4e:03:69:d8:a6:0e:3d:62: 61:1c:56:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjYwMzI1MDMzMjE3WhcNMjYwNDAxMDMzMjE3WjAYMRYwFAYD VQQDEw02OWMzNTc0MS0yMjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFFZkGj+OOAqHAfDzbU8XrDctpaQnt8U+Y6wCWKLeE6InCKngF8bwQEulMGf GDd7FK0EH8HyVTzFKjkDK2KPGypvK5gdr3tjyW2mjbFNd+LfYSR3TJ5tl2Z5Qw1J KkpYPyUctaqTRsoGDdiIjdkYsiE4pyJmMfq1h/5nbXJ9uOh502VyfJgoX0rCQ0uo 8/Pu0T1Ld/J9qNV9Kc8t4oY8MlhZwfmWSuDOUaWlLow+k65Hk6XNlDlMVck7LRK2 OC31X9IFiTiGo/El1DrH/q8vZHA5gW4hlrnWfMme121vOqpflPXnAXR9m7PQNvp8 T2H1npGGGPY+SQdR4SwhriXKrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIgz49lK jHzoRQzOLukxI//d2sqSMB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAym4nuLOsrEwU8YbXn02fTjqFB0T3ENjBPm82kysi+mb4o1Dc68GKOUtWTLbT 61OIeAQtPzxSt/zyYsD4HdexQJE/pEe9KlCpOKY69G3kHcpt9RbMCPoI67IBEksz EXs2lP8J9q1+XzAleyFtRs+4Msf+jqXraQctxbWbNhnEMX0KBMd+cj6UE/qIVyP+ vjPARP1KQulDkEJY/sx8YBaKC7jG9Oz6/GYdeUv1u82UtNyUC7cmvyMSg7N11Kv8 U3nuS3UcR0nD2w6L4zPzbN+4koYK34cQiwOP0iWig7JWbdGCHLwIqo/94BCE5h3j Yhva3NvAj04DadimDj1iYRxW6w== -----END CERTIFICATE-----Generated at Thu Mar 26 12:24:05 2026 by rpki-client