$ rpki-client -vvf rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft File: x2h2G8gatP5_1EAVSCYcuocge-o.mft (raw, json) Hash identifier: XCjbKnYTWljjGt4ggpwNL+xcvO3yxi/5ymQs2lx3JA8= Subject key identifier: 00:99:0D:4D:03:FB:29:CC:4B:1F:C0:7E:BA:86:90:54:23:6C:A7:BD Authority key identifier: C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA Certificate issuer: /CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Certificate serial: 0EE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft Manifest number: 0EB2 Signing time: Sun 26 Apr 2026 17:37:23 +0000 Manifest this update: Sun 26 Apr 2026 17:37:23 +0000 Manifest next update: Sun 03 May 2026 17:37:23 +0000 Files and hashes: 1: x2h2G8gatP5_1EAVSCYcuocge-o.crl (hash: 8P8ZTQrAWLrC7f+9AlHctrqMi9uVVF4NKh574ivNdcY=) 2: 127D33EC027011EB98FEC44BC4F9AE02.roa (hash: xo+tt5lov3udnd3XAOiK90QcwkAcxMUW1iuUC+4M+z8=) 3: 1D93B82C21D911EB85DAFE71C4F9AE02.roa (hash: E+4UeHlGnBHL9IRmWm+TexcyHwom9b/OOAx0STjQIo0=) 4: 1609CE067A4A11EB99C11F5FC4F9AE02.roa (hash: jPTrigcWq4coxSH4UL7oP5hGP5jZz/yTxLEnnmOBFlo=) 5: 1BBE249C21D911EB85DAFE71C4F9AE02.roa (hash: IJy6vq3u18sfK/PaqQ4HkbGHvtQ0+WpPPGjw18M6VWY=) 6: 1C99C7E021D911EB85DAFE71C4F9AE02.roa (hash: bKvSPuftAoTubmq1z1G2lBaSXWyaRfT8vN+YYMv11yI=) 7: 670DF186232111EB9896B783C4F9AE02.roa (hash: JDnnr+gXElLZfFNqxroiEtHe91q0ZicgMHi1XY427Ss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 17:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3814 (0xee6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118022, serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Validity Not Before: Apr 26 17:37:23 2026 GMT Not After : May 3 17:37:23 2026 GMT Subject: CN=69ee4d53-b12f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:54:d3:ec:18:bb:7d:45:5d:3d:de:4c:13:c7: 83:2c:2d:8b:80:3b:53:90:d8:69:ab:91:ec:a4:5f: 35:74:bd:b2:eb:3f:7d:1b:9b:36:86:42:64:7c:3f: 68:ca:00:b8:7e:b6:4d:71:ba:7e:66:f7:1a:0b:59: 48:fe:20:cd:fd:63:e5:71:ce:ab:ff:b2:15:6e:3e: 8a:f2:37:ca:bd:e3:aa:af:fb:50:4b:a1:3a:08:c0: 27:37:97:7d:13:b7:0d:c8:4b:68:68:ae:9c:4b:b0: 72:be:74:74:49:de:7c:ca:9f:9d:8f:4f:04:1d:ed: d6:ec:11:a5:af:75:c0:d8:8e:53:5a:a7:21:82:4b: d1:bd:9e:e4:11:a3:ea:f5:2a:7a:50:ca:74:c3:c1: f2:a0:9b:2c:19:00:5d:9d:60:5a:d8:68:9f:7c:69: e3:ef:36:90:35:82:a2:cd:3b:25:93:03:ed:d5:85: 0f:60:40:0a:7b:58:80:73:26:d2:7c:ba:33:79:c2: 17:40:d5:a2:ad:b4:79:71:34:42:41:37:a4:8d:73: f7:4c:2d:c5:a3:96:fb:6a:36:f1:32:be:79:68:a3: 01:da:60:23:5e:33:78:32:cb:00:9e:ba:a9:86:6a: 7f:fa:c4:b7:cd:de:8f:35:f8:dc:ef:56:24:39:f6: 50:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:99:0D:4D:03:FB:29:CC:4B:1F:C0:7E:BA:86:90:54:23:6C:A7:BD X509v3 Authority Key Identifier: keyid:C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:1c:e7:fa:55:c6:40:d3:87:fe:58:37:b3:01:f8:d4:d8:da: 1d:a1:16:19:8b:30:4c:1a:dd:72:f1:1e:9e:53:37:08:67:23: db:33:75:8f:6e:ca:09:e5:50:14:ae:5d:cf:80:e4:6f:5b:ac: e9:ea:bf:f2:ab:17:af:5d:97:4d:16:a5:50:94:9a:5f:f4:95: 74:4a:ba:c4:a9:df:ea:98:aa:b6:19:f0:65:91:12:49:81:e6: 8d:80:ef:0e:10:c1:58:66:88:fc:80:7e:7c:41:8d:30:ec:b2: f8:71:37:9a:84:ea:e3:9c:a8:7b:58:e7:c3:11:0e:d3:39:61: 53:60:a3:fe:17:27:2e:f9:7e:45:f3:a2:d0:f7:19:9c:4b:62: 01:8f:13:cf:52:b5:af:9a:0d:37:45:1c:c1:23:c8:23:7e:43: 46:e5:49:90:3a:4c:a8:90:08:2d:3d:95:4d:60:2f:c9:87:70: 9d:b0:05:d6:b6:31:73:24:57:a1:36:e1:db:0a:64:47:44:d9: c6:fe:17:a9:9f:ed:6c:e6:53:d2:17:f4:52:e8:23:4d:6e:17: ee:39:5d:02:e5:e7:28:60:8e:f6:8f:99:8a:3d:b0:d2:9a:65: 49:9f:11:f8:dc:be:fb:e0:f0:8f:72:06:71:30:ee:8d:1f:57: 38:e5:54:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMjIxMTAvBgNVBAUTKEM3Njg3NjFCQzgxQUI0RkU3RkQ0NDAxNTQ4MjYxQ0JB ODcyMDdCRUEwHhcNMjYwNDI2MTczNzIzWhcNMjYwNTAzMTczNzIzWjAYMRYwFAYD VQQDEw02OWVlNGQ1My1iMTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9FTT7Bi7fUVdPd5ME8eDLC2LgDtTkNhpq5HspF81dL2y6z99G5s2hkJkfD9o ygC4frZNcbp+ZvcaC1lI/iDN/WPlcc6r/7IVbj6K8jfKveOqr/tQS6E6CMAnN5d9 E7cNyEtoaK6cS7ByvnR0Sd58yp+dj08EHe3W7BGlr3XA2I5TWqchgkvRvZ7kEaPq 9Sp6UMp0w8HyoJssGQBdnWBa2GiffGnj7zaQNYKizTslkwPt1YUPYEAKe1iAcybS fLozecIXQNWirbR5cTRCQTekjXP3TC3Fo5b7ajbxMr55aKMB2mAjXjN4MssAnrqp hmp/+sS3zd6PNfjc71YkOfZQAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFACZDU0D +ynMSx/AfrqGkFQjbKe9MB8GA1UdIwQYMBaAFMdodhvIGrT+f9RAFUgmHLqHIHvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAyMi9DNjFDMjU2QUFE Q0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQNV8xRUFWU0NZY3VvY2dl LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gyaDJHOGdhdFA1XzFFQVZTQ1ljdW9jZ2Utby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAyMi9DNjFDMjU2QUFEQ0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQ NV8xRUFWU0NZY3VvY2dlLW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAihzn+lXGQNOH/lg3swH41NjaHaEWGYswTBrdcvEenlM3CGcj2zN1j27KCeVQ FK5dz4Dkb1us6eq/8qsXr12XTRalUJSaX/SVdEq6xKnf6piqthnwZZESSYHmjYDv DhDBWGaI/IB+fEGNMOyy+HE3moTq45yoe1jnwxEO0zlhU2Cj/hcnLvl+RfOi0PcZ nEtiAY8Tz1K1r5oNN0UcwSPII35DRuVJkDpMqJAILT2VTWAvyYdwnbAF1rYxcyRX oTbh2wpkR0TZxv4XqZ/tbOZT0hf0UugjTW4X7jldAuXnKGCO9o+Zij2w0pplSZ8R +Ny+++Dwj3IGcTDujR9XOOVUzg== -----END CERTIFICATE-----Generated at Mon Apr 27 09:16:14 2026 by rpki-client