$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: gUEOPukfhtk5svvDKbYAjWp3Nnu7Sfch29Th5ltWBM0= Subject key identifier: 48:67:81:CD:65:85:BB:EF:66:96:E8:77:3D:FC:65:5F:83:A3:A7:C9 Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 01D9 Signing time: Wed 13 May 2026 03:38:26 +0000 Manifest this update: Wed 13 May 2026 03:38:25 +0000 Manifest next update: Wed 20 May 2026 03:38:25 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: xHxhu6EMWRQ13CCQIPU+DvzqKvKmha/eZD1/mg5lF5M=) 2: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: /6x7x4b9csD2TYsiLEKnpfZB3jGbE1YGP0AsFpZrdN4=) 3: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: hGkqzz2eI5dLw6JFvYyWs5D2WcjZP64M8Kf1cT/imEo=) 4: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: hKdbTMFjBDS3XXfZuB0+hdt0c8qX6Q+dGMG1HACFMQ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: May 13 03:38:25 2026 GMT Not After : May 20 03:38:25 2026 GMT Subject: CN=6a03f232-f5ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0a:b6:e1:0f:f7:8b:a9:7e:b5:be:55:a3:2c: 98:cc:18:05:d4:e4:ac:22:e4:f2:0d:8f:1f:41:06: c7:2f:fa:3c:b1:9a:4e:e9:bd:3b:79:f9:5d:1b:66: 3a:a2:74:17:db:63:77:31:84:80:aa:bb:bc:e3:a0: a3:98:b4:5b:d8:95:9d:db:c5:02:6b:30:79:c6:95: 10:cf:33:4e:3d:37:79:40:ee:c7:0c:75:86:b9:97: 10:fc:b7:b8:47:4b:79:b2:c3:2b:b3:60:1f:4e:ed: 96:db:94:6f:49:cc:f4:c7:5d:d2:37:3c:03:15:aa: 9e:b0:e4:2e:00:36:3c:7a:21:1a:44:19:5e:00:a6: ea:8b:05:28:73:1f:72:5f:04:27:08:73:39:0a:b6: 93:2d:12:41:ed:b6:ba:01:d5:24:16:3b:11:73:6a: 36:66:ab:88:80:a7:38:fe:bf:06:95:57:5c:f6:0f: 85:4a:73:3e:42:26:81:a0:e8:f8:0a:48:32:35:55: 21:97:0a:64:11:ec:42:67:ad:cb:e3:1b:b6:5b:b2: 54:01:ca:9f:9d:95:18:d7:08:68:cb:df:cd:37:8e: 41:bd:e0:2d:90:b6:e5:a3:72:6e:44:09:02:00:d3: 25:0c:5d:9a:6e:0f:5b:ec:54:c1:cf:7d:f5:18:a5: 95:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:67:81:CD:65:85:BB:EF:66:96:E8:77:3D:FC:65:5F:83:A3:A7:C9 X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:f6:b1:ab:da:29:e1:a6:79:4d:66:bf:fb:e9:9b:14:f8:c9: 4d:9a:d1:ca:ad:bf:de:ad:d2:42:c3:05:d4:27:e2:06:6d:fc: 9f:46:bf:13:8d:9e:b8:7d:64:74:e9:59:c7:6e:39:ff:99:c1: d4:6e:0b:49:4c:4f:85:50:c7:29:69:bf:4f:33:f6:c5:e3:57: 34:6f:fd:c0:46:67:38:ee:0a:80:d2:bd:12:b7:b7:6f:c3:ca: 21:56:50:2d:02:08:03:e5:f6:3c:54:80:4b:52:8a:4b:32:ce: c2:a2:1d:32:a4:9e:fe:9a:ec:c2:45:4a:57:f5:ba:a4:fb:fc: f0:2c:78:1c:2d:b6:25:17:dd:39:18:10:76:d7:59:e6:b7:50: 2a:56:ad:8b:e8:8b:e4:ea:a0:4b:68:95:36:78:6d:df:28:17: 47:e7:53:3c:b6:ed:c4:59:8e:f4:43:da:ae:5d:f5:63:8e:99: 54:d4:cf:db:b6:fd:b6:c9:4e:3b:4c:95:5c:39:86:ea:7d:58: 7a:9a:14:e4:94:9a:ec:1f:fe:9b:28:af:63:65:e0:ab:ba:a9: 55:a5:47:2e:68:ed:4c:b7:c2:f1:44:76:e3:72:a7:87:1f:49: 51:4f:dc:9c:1e:b5:3c:9f:fc:21:d3:82:24:08:1a:db:3a:31: 22:bd:05:f3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjYwNTEzMDMzODI1WhcNMjYwNTIwMDMzODI1WjAYMRYwFAYD VQQDEw02YTAzZjIzMi1mNWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgq24Q/3i6l+tb5VoyyYzBgF1OSsIuTyDY8fQQbHL/o8sZpO6b07efldG2Y6 onQX22N3MYSAqru846CjmLRb2JWd28UCazB5xpUQzzNOPTd5QO7HDHWGuZcQ/Le4 R0t5ssMrs2AfTu2W25RvScz0x13SNzwDFaqesOQuADY8eiEaRBleAKbqiwUocx9y XwQnCHM5CraTLRJB7ba6AdUkFjsRc2o2ZquIgKc4/r8GlVdc9g+FSnM+QiaBoOj4 CkgyNVUhlwpkEexCZ63L4xu2W7JUAcqfnZUY1whoy9/NN45BveAtkLblo3JuRAkC ANMlDF2abg9b7FTBz331GKWViwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEhngc1l hbvvZpbodz38ZV+Do6fJMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVPaxq9op4aZ5TWa/++mbFPjJTZrRyq2/3q3SQsMF1CfiBm38n0a/E42euH1k dOlZx245/5nB1G4LSUxPhVDHKWm/TzP2xeNXNG/9wEZnOO4KgNK9Ere3b8PKIVZQ LQIIA+X2PFSAS1KKSzLOwqIdMqSe/prswkVKV/W6pPv88Cx4HC22JRfdORgQdtdZ 5rdQKlati+iL5OqgS2iVNnht3ygXR+dTPLbtxFmO9EParl31Y46ZVNTP27b9tslO O0yVXDmG6n1YepoU5JSa7B/+myivY2Xgq7qpVaVHLmjtTLfC8UR243Knhx9JUU/c nB61PJ/8IdOCJAga2zoxIr0F8w== -----END CERTIFICATE-----Generated at Wed May 13 05:39:54 2026 by rpki-client