$ rpki-client -vvf rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft File: N2EhKhZwpXGatx-iA7kuxobyEXc.mft (raw, json) Hash identifier: C28Vqxw1Cdm/3ef8KJElHLp24XlHEe+GfEOG+2RbiBg= Subject key identifier: 64:27:FB:76:2A:F0:41:7C:04:35:4C:CC:4D:F8:DC:43:26:65:2A:B9 Authority key identifier: 37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 Certificate issuer: /CN=A9142037/serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Certificate serial: ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft Manifest number: DD Signing time: Sun 05 Apr 2026 05:59:37 +0000 Manifest this update: Sun 05 Apr 2026 05:59:37 +0000 Manifest next update: Sun 12 Apr 2026 05:59:37 +0000 Files and hashes: 1: N2EhKhZwpXGatx-iA7kuxobyEXc.crl (hash: m3AnMt8mn/yBeEfO6bUc6dOkpHGH3hkRzyX08xok2p0=) 2: 191B6DA2E41811EF8E3F233AC4F9AE02.roa (hash: UMPqKlbNgq/NCSI3t3UTm/r8MXA+qd0WY7ZlbRUGxiU=) 3: FAEA8E38E41911EFA96DA35FC4F9AE02.roa (hash: 7q1pfdm13OOPKdMhFRZESc6pMqjQGZzOaS0jydIIjHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142037, serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Validity Not Before: Apr 5 05:59:37 2026 GMT Not After : Apr 12 05:59:37 2026 GMT Subject: CN=69d1fa49-66f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c7:d9:6a:b0:b2:4a:02:00:11:fb:25:4d:69: 1d:68:6c:e8:43:15:2e:a6:82:c9:ad:04:92:99:66: e4:6a:8f:e7:22:70:22:e1:76:7c:e1:a8:58:25:11: ef:2d:3c:95:b4:df:ec:a4:e3:89:5b:75:2b:09:aa: 5e:d2:c9:43:53:cf:c4:55:a8:ac:ab:e0:0d:8c:e9: 6d:be:4c:6a:cb:3a:ec:bd:b2:e7:13:0c:04:ec:52: 18:15:ba:d2:27:c9:07:e6:83:ac:44:13:5c:36:be: 61:ac:cc:a8:03:2d:2a:40:83:11:4c:50:82:bc:74: 97:83:7e:44:2b:53:d4:ab:44:3d:a1:47:5e:85:7f: bc:0c:5a:ab:16:0e:d5:20:9d:b4:1f:c4:0b:a5:ed: 0e:34:e9:74:fc:ec:ba:33:01:ac:b6:b9:50:d4:c1: eb:8f:e8:65:1b:b3:41:8a:a7:d7:37:77:b2:09:9b: c3:56:8a:26:de:0a:2b:34:29:39:84:25:d2:57:7f: 30:da:c0:6f:77:aa:c0:3b:7b:c4:4f:5d:d8:c3:42: 1f:f4:85:bb:c0:9d:5b:7d:d8:73:50:f2:32:9f:c3: 61:83:87:cc:b9:15:a2:08:a9:17:c3:61:1b:11:72: ac:ba:58:9e:05:d0:b3:ab:a6:87:72:ee:50:8d:db: b0:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:27:FB:76:2A:F0:41:7C:04:35:4C:CC:4D:F8:DC:43:26:65:2A:B9 X509v3 Authority Key Identifier: keyid:37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:1c:10:8b:5a:f5:eb:9e:5e:2a:b9:3d:a1:9c:1c:a3:f8:9a: 4c:d8:65:18:43:6d:e9:71:e5:35:4e:08:2f:34:c9:08:05:0a: 1b:aa:f9:f9:b8:0e:2e:fe:b3:22:88:44:c5:6a:6d:52:10:1e: 69:ad:43:ac:e6:50:a0:fb:27:1b:04:eb:bb:c7:0e:18:d8:71: 28:33:62:df:a5:13:99:4a:58:64:93:2b:7c:28:50:6b:7b:f2: e4:55:d4:3d:e9:1d:95:f2:6b:ea:ad:64:65:39:8f:76:f2:8c: 74:8d:48:6f:e8:0a:70:b5:a8:e9:39:06:a0:a0:35:61:0f:88: 2a:f3:8f:c3:46:86:26:30:0a:d7:26:bb:7d:c7:c9:91:42:31: 71:03:a5:82:0e:99:dd:d2:c0:38:03:97:80:89:1a:d1:a2:7e: b4:af:8b:bb:c8:08:f9:7a:47:8c:71:de:2e:71:9e:64:76:d8: b7:20:2a:60:fb:7f:96:60:ff:1a:fc:ad:5e:d1:0f:46:0c:37: 24:18:27:7a:6f:e2:85:d3:4c:55:36:8f:16:3b:aa:e2:49:8e: 1d:76:10:fc:6d:15:32:db:82:d1:6f:09:0e:ce:67:50:ee:69: 86:b9:46:77:1f:84:4e:23:67:07:09:33:92:9b:7c:a0:12:aa: a6:7d:69:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIwMzcxMTAvBgNVBAUTKDM3NjEyMTJBMTY3MEE1NzE5QUI3MUZBMjAzQjkyRUM2 ODZGMjExNzcwHhcNMjYwNDA1MDU1OTM3WhcNMjYwNDEyMDU1OTM3WjAYMRYwFAYD VQQDEw02OWQxZmE0OS02NmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8fZarCySgIAEfslTWkdaGzoQxUupoLJrQSSmWbkao/nInAi4XZ84ahYJRHv LTyVtN/spOOJW3UrCape0slDU8/EVaisq+ANjOltvkxqyzrsvbLnEwwE7FIYFbrS J8kH5oOsRBNcNr5hrMyoAy0qQIMRTFCCvHSXg35EK1PUq0Q9oUdehX+8DFqrFg7V IJ20H8QLpe0ONOl0/Oy6MwGstrlQ1MHrj+hlG7NBiqfXN3eyCZvDVoom3gorNCk5 hCXSV38w2sBvd6rAO3vET13Yw0If9IW7wJ1bfdhzUPIyn8Nhg4fMuRWiCKkXw2Eb EXKsulieBdCzq6aHcu5QjduwLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGQn+3Yq 8EF8BDVMzE343EMmZSq5MB8GA1UdIwQYMBaAFDdhISoWcKVxmrcfogO5LsaG8hF3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjAzNy81QzA1QzBDOEU0 MTcxMUVGOTZFMkZGMzhDNEY5QUUwMi9OMkVoS2had3BYR2F0eC1pQTdrdXhvYnlF WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04yRWhLaFp3cFhHYXR4LWlBN2t1eG9ieUVYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjAzNy81QzA1QzBDOEU0MTcxMUVGOTZFMkZGMzhDNEY5QUUwMi9OMkVoS2had3BY R2F0eC1pQTdrdXhvYnlFWGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFBwQi1r1655eKrk9oZwco/iaTNhlGENt6XHlNU4ILzTJCAUKG6r5+bgOLv6z IohExWptUhAeaa1DrOZQoPsnGwTru8cOGNhxKDNi36UTmUpYZJMrfChQa3vy5FXU PekdlfJr6q1kZTmPdvKMdI1Ib+gKcLWo6TkGoKA1YQ+IKvOPw0aGJjAK1ya7fcfJ kUIxcQOlgg6Z3dLAOAOXgIka0aJ+tK+Lu8gI+XpHjHHeLnGeZHbYtyAqYPt/lmD/ GvytXtEPRgw3JBgnem/ihdNMVTaPFjuq4kmOHXYQ/G0VMtuC0W8JDs5nUO5phrlG dx+ETiNnBwkzkpt8oBKqpn1pQw== -----END CERTIFICATE-----Generated at Sun Apr 5 20:58:49 2026 by rpki-client