$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: /NsgPeW7iAljkSbCP5AYXtLpXiwoUYtTcd8NEpinFBE= Subject key identifier: EE:42:46:B1:AA:86:10:E9:72:9B:30:CD:E5:FE:A9:22:AE:48:30:14 Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 01CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 01C0 Signing time: Wed 25 Mar 2026 03:08:39 +0000 Manifest this update: Wed 25 Mar 2026 03:08:38 +0000 Manifest next update: Wed 01 Apr 2026 03:08:38 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: XuzkUeVw2uI/rucOjR2/X/s99q7GMsG285dM0aXa6Bw=) 2: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: /6x7x4b9csD2TYsiLEKnpfZB3jGbE1YGP0AsFpZrdN4=) 3: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: hKdbTMFjBDS3XXfZuB0+hdt0c8qX6Q+dGMG1HACFMQ0=) 4: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: hGkqzz2eI5dLw6JFvYyWs5D2WcjZP64M8Kf1cT/imEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:08:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 461 (0x1cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: Mar 25 03:08:38 2026 GMT Not After : Apr 1 03:08:38 2026 GMT Subject: CN=69c351b7-d06c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8f:0f:1e:12:b4:59:cf:a2:8a:9f:a9:dc:9e: c3:ba:57:4a:40:c0:79:bc:e5:b5:d0:b3:79:7d:af: 99:a6:78:19:c7:63:90:b1:df:3c:2b:d7:c8:1f:6a: b8:81:9e:a7:f8:73:8f:4d:42:be:fc:5c:21:e5:8a: 71:cc:74:b6:20:25:02:f4:5a:d9:a1:9b:e7:2d:2f: 75:7e:48:89:e3:83:47:e8:35:ae:d6:1c:62:cb:bc: 54:59:07:4f:d9:dd:7c:50:47:36:3f:e2:c2:51:2c: f2:e6:83:d6:a4:5e:48:17:9c:c8:f9:85:da:41:0a: 8e:b5:10:9e:15:82:a6:76:3b:89:74:8a:60:d8:3a: 75:18:2e:6f:ee:a3:43:be:3b:56:ec:22:29:6e:69: dc:40:41:ee:9d:4b:70:7b:3e:c9:f9:e0:21:94:ea: f6:04:14:52:2e:c9:1b:38:5a:be:9e:61:6e:9e:d6: bd:90:24:85:6e:be:86:63:1a:d3:35:44:36:e2:86: c5:cd:c8:23:7e:5b:98:37:d6:98:3b:76:2d:74:0d: d8:1f:e3:5f:cf:ec:c6:bf:49:90:92:52:10:85:f5: 2e:b1:00:05:32:56:3d:dc:af:b6:46:66:8e:9e:70: 7b:84:ba:65:c7:3a:fb:42:cb:f8:ca:c6:9a:a1:0a: 5e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:42:46:B1:AA:86:10:E9:72:9B:30:CD:E5:FE:A9:22:AE:48:30:14 X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:33:10:15:1c:fb:58:fa:3b:fd:e9:a0:55:2b:9f:02:0d:19: f8:53:67:7f:89:f4:55:b5:b2:d9:4e:e6:f3:91:49:19:b9:10: ce:76:9b:f2:21:44:23:b2:8a:6e:f0:63:01:e9:9b:c4:ba:7f: 1c:0c:37:64:b6:1a:03:75:d7:d1:59:3c:0f:83:91:b1:ee:58: c9:e6:42:07:dc:0b:9d:fe:19:b6:5c:a9:43:6b:f4:28:5e:53: 5c:31:fe:92:95:71:0a:9f:4d:14:40:42:1a:b7:fa:d3:3f:07: 7c:6b:f4:84:f3:56:b3:91:ed:40:69:99:98:99:ef:1c:ee:dd: 14:4f:29:bf:13:e3:8f:5e:9d:1e:95:82:fe:00:f6:a6:9a:ab: 8f:38:f4:bf:01:4e:af:6f:15:81:8d:98:f0:8a:33:1d:90:d1: 3d:10:40:3d:bd:72:86:55:4d:14:5a:fb:22:df:a4:b2:0d:71: f5:20:cf:9d:39:69:71:4e:1f:09:71:3b:69:56:c5:cd:9b:e7: 95:d1:11:a6:e3:a0:29:9f:2a:f3:1b:c2:87:6f:46:c1:17:d4: da:0f:ae:38:b6:08:11:e0:23:9f:23:25:a2:2a:99:f9:1d:0b: 08:2c:90:fb:9e:e5:9f:ef:19:0f:2a:83:39:c0:f4:d4:90:c2: 1e:3d:b4:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjYwMzI1MDMwODM4WhcNMjYwNDAxMDMwODM4WjAYMRYwFAYD VQQDEw02OWMzNTFiNy1kMDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6o8PHhK0Wc+iip+p3J7DuldKQMB5vOW10LN5fa+ZpngZx2OQsd88K9fIH2q4 gZ6n+HOPTUK+/Fwh5YpxzHS2ICUC9FrZoZvnLS91fkiJ44NH6DWu1hxiy7xUWQdP 2d18UEc2P+LCUSzy5oPWpF5IF5zI+YXaQQqOtRCeFYKmdjuJdIpg2Dp1GC5v7qND vjtW7CIpbmncQEHunUtwez7J+eAhlOr2BBRSLskbOFq+nmFunta9kCSFbr6GYxrT NUQ24obFzcgjfluYN9aYO3YtdA3YH+Nfz+zGv0mQklIQhfUusQAFMlY93K+2RmaO nnB7hLplxzr7Qsv4ysaaoQpeEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO5CRrGq hhDpcpswzeX+qSKuSDAUMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVjMQFRz7WPo7/emgVSufAg0Z+FNnf4n0VbWy2U7m85FJGbkQznab8iFEI7KK bvBjAembxLp/HAw3ZLYaA3XX0Vk8D4ORse5YyeZCB9wLnf4ZtlypQ2v0KF5TXDH+ kpVxCp9NFEBCGrf60z8HfGv0hPNWs5HtQGmZmJnvHO7dFE8pvxPjj16dHpWC/gD2 ppqrjzj0vwFOr28VgY2Y8IozHZDRPRBAPb1yhlVNFFr7It+ksg1x9SDPnTlpcU4f CXE7aVbFzZvnldERpuOgKZ8q8xvCh29GwRfU2g+uOLYIEeAjnyMloiqZ+R0LCCyQ +57ln+8ZDyqDOcD01JDCHj207g== -----END CERTIFICATE-----Generated at Thu Mar 26 02:37:57 2026 by rpki-client