$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: J7RuD0Bg0vVCgti/AHnztq1xM9kb55eGmwgg9raze8Y= Subject key identifier: D4:67:58:BC:EE:78:8A:E4:DA:60:70:84:46:CB:C1:E0:AA:95:DC:64 Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 0283 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 0273 Signing time: Sun 05 Apr 2026 01:35:50 +0000 Manifest this update: Sun 05 Apr 2026 01:35:49 +0000 Manifest next update: Sun 12 Apr 2026 01:35:49 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: qJjzRTkJI/f3QHMHW4HnIHsoAojPw4fJkZTRh8QoTI4=) 2: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: MpcjQVs1Jc1cjgEQDQ1xjrNe8yr/lbGI3mI0RqgvaQ8=) 3: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: /sj3JZ3p1665YJRvSUXz4i11ey7ZoPynVcwKSHS8SnQ=) 4: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: GVyHO9aPtU+XPsp7j3IVen2mhZWFCWup91n2kBUjWV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:35:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 643 (0x283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Apr 5 01:35:49 2026 GMT Not After : Apr 12 01:35:49 2026 GMT Subject: CN=69d1bc76-997f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fc:4e:f9:1c:79:9d:03:9e:05:4a:fe:1f:49: 09:f8:86:28:9b:28:1a:fd:99:60:0e:eb:77:b7:78: 14:2e:f0:23:32:0a:38:f2:f1:23:e4:53:65:4f:c6: 7d:22:c9:2f:6e:9b:bb:c8:e0:3e:c2:6d:7b:d6:1b: 9a:47:54:4d:91:6b:fc:0c:d7:15:c5:c8:5b:1f:fc: 47:6d:28:7f:86:f9:ce:43:b8:10:c2:cd:71:6e:e2: d8:e2:f7:f2:f7:47:b8:20:55:bd:e0:33:44:74:a0: bf:ab:f8:cd:fb:1a:f3:6d:0c:de:5e:d4:b7:6e:08: 36:c3:60:49:9f:ee:8f:eb:9f:e7:bb:ce:34:1b:08: 12:53:da:3b:23:e8:e5:e0:bf:d1:09:0b:a0:c2:62: cf:05:64:b9:7f:34:56:38:3e:ea:04:14:26:92:b2: e0:0b:a9:ac:ac:29:65:93:c1:5e:64:94:ed:bc:b0: fe:8e:72:f4:bd:c0:bd:c8:9f:a8:73:f8:c5:2c:d3: d3:2b:9f:d9:08:e4:47:65:a2:0e:6a:ef:5d:9f:5b: 88:3f:87:54:1b:30:b1:8e:55:51:28:0b:cf:de:58: 60:0a:ca:7a:45:0a:52:f8:7b:a9:53:62:cd:81:8e: 46:7a:d2:e8:51:d2:db:06:e4:95:8c:f4:dd:62:df: 7f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:67:58:BC:EE:78:8A:E4:DA:60:70:84:46:CB:C1:E0:AA:95:DC:64 X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:e2:8a:2c:a0:68:a6:97:18:b9:f1:68:8e:a9:a6:0b:64:00: ca:df:89:69:26:72:25:56:6c:91:e9:fb:f7:c0:d6:b2:72:22: f2:9b:73:79:56:f3:21:7e:4f:b0:f7:58:cc:f3:19:d4:7f:45: 4c:f4:8f:19:97:2a:b4:ab:e8:11:b1:a2:d2:cc:95:89:78:b6: 38:a4:b8:72:57:ce:a4:4a:34:bc:d6:29:e0:98:0e:b8:29:b1: c3:e3:88:44:63:57:d1:f4:b7:ba:18:74:7d:9f:0c:14:9c:1b: 6f:00:17:8f:3c:92:ef:7f:79:e3:30:bb:79:65:39:ff:7a:7e: fe:83:f5:f2:75:46:5d:0d:94:57:f0:33:4d:c4:c1:0c:4f:b1: d9:43:5d:56:55:c6:73:83:94:90:e2:87:df:6e:23:68:f6:12: e2:9d:fa:6d:aa:ef:a1:43:32:3b:07:b6:a7:25:5a:7c:07:24: 70:2e:14:7b:87:aa:09:0c:ca:f4:20:3d:7c:c2:e7:ea:c1:11: aa:d0:b5:4e:d0:4a:34:5a:b3:cd:f0:ec:d7:c4:de:1e:2f:5e: 26:21:00:84:dc:d0:ae:e8:ef:58:c2:fb:9d:db:15:ca:2c:68: 3e:34:e8:33:90:8f:40:80:3c:9a:ff:35:b2:ab:b6:f4:dc:85: 20:32:fd:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjYwNDA1MDEzNTQ5WhcNMjYwNDEyMDEzNTQ5WjAYMRYwFAYD VQQDEw02OWQxYmM3Ni05OTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/xO+Rx5nQOeBUr+H0kJ+IYomyga/ZlgDut3t3gULvAjMgo48vEj5FNlT8Z9 Iskvbpu7yOA+wm171huaR1RNkWv8DNcVxchbH/xHbSh/hvnOQ7gQws1xbuLY4vfy 90e4IFW94DNEdKC/q/jN+xrzbQzeXtS3bgg2w2BJn+6P65/nu840GwgSU9o7I+jl 4L/RCQugwmLPBWS5fzRWOD7qBBQmkrLgC6msrCllk8FeZJTtvLD+jnL0vcC9yJ+o c/jFLNPTK5/ZCORHZaIOau9dn1uIP4dUGzCxjlVRKAvP3lhgCsp6RQpS+HupU2LN gY5GetLoUdLbBuSVjPTdYt9/EQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNRnWLzu eIrk2mBwhEbLweCqldxkMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqeKKLKBoppcYufFojqmmC2QAyt+JaSZyJVZsken798DWsnIi8ptzeVbzIX5P sPdYzPMZ1H9FTPSPGZcqtKvoEbGi0syViXi2OKS4clfOpEo0vNYp4JgOuCmxw+OI RGNX0fS3uhh0fZ8MFJwbbwAXjzyS73954zC7eWU5/3p+/oP18nVGXQ2UV/AzTcTB DE+x2UNdVlXGc4OUkOKH324jaPYS4p36barvoUMyOwe2pyVafAckcC4Ue4eqCQzK 9CA9fMLn6sERqtC1TtBKNFqzzfDs18TeHi9eJiEAhNzQrujvWML7ndsVyixoPjTo M5CPQIA8mv81squ29NyFIDL9/A== -----END CERTIFICATE-----Generated at Sun Apr 5 19:43:48 2026 by rpki-client