$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft File: 2CIvXKRzliJE_BNBFXEOvtXjlWA.mft (raw, json) Hash identifier: BrI+LQ6WVmxRcAUzkEUukAbiQzCNbpQOHJEsBzDDbKc= Subject key identifier: 69:9A:D6:B7:34:C5:E9:E1:0F:7F:AA:A2:C5:8E:C8:FC:8D:78:1A:75 Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0CB7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft Manifest number: 0CAE Signing time: Sat 18 Apr 2026 17:45:55 +0000 Manifest this update: Sat 18 Apr 2026 17:45:54 +0000 Manifest next update: Sat 25 Apr 2026 17:45:54 +0000 Files and hashes: 1: 2CIvXKRzliJE_BNBFXEOvtXjlWA.crl (hash: zIx8CWm0g+iQEACjGmwNzLpD8NV5JvSsxeyzfX5fIqY=) 2: A4049C06213E11EAAA89A95DC4F9AE02.roa (hash: UbwOi9U9kZof7b43F/HRMpxGF4fX5ioRAi/qvaW/Bgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3255 (0xcb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624, serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Validity Not Before: Apr 18 17:45:54 2026 GMT Not After : Apr 25 17:45:54 2026 GMT Subject: CN=69e3c353-92f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e6:6e:a8:ce:d8:7c:15:c5:ed:00:b1:a8:c5: 88:63:c6:92:be:5e:2d:a8:97:db:53:50:b6:8f:7e: c7:79:b7:73:d4:62:95:5b:ec:3e:b4:81:ea:4e:ba: 04:be:e9:6e:92:8a:2b:e7:46:05:41:c3:cd:7b:bb: cd:e5:ef:c4:75:9f:a6:28:b4:e8:6c:ea:39:0b:d9: ba:74:a5:22:f8:cb:13:bf:86:d3:a7:54:bc:41:c0: b8:0c:6a:76:10:31:b2:5c:16:7d:af:c9:ea:64:8b: 40:68:5f:ac:d0:94:b4:44:b3:41:45:48:14:1a:2a: 78:1e:93:19:7d:27:98:da:6e:17:89:3e:48:5f:a9: c2:5f:97:33:85:aa:5e:59:5b:6d:bb:f3:d2:d1:b8: e4:8f:8a:1e:22:2c:d9:43:12:c4:30:76:1d:de:4e: 8c:b4:33:75:ac:b4:fc:d8:1b:93:86:39:ce:08:e3: 34:2e:65:e3:b0:86:62:ab:79:34:ee:9f:17:f3:63: 64:3e:ab:10:b0:d8:d5:ef:3a:72:9c:c0:e9:f2:33: e7:06:8b:ff:d2:16:10:dd:89:9e:27:c8:bc:43:bb: 97:47:1e:fc:c2:9d:a5:84:e5:2b:4c:ec:2e:0d:4c: f9:77:b8:74:c8:65:53:fb:64:d9:2a:15:84:62:af: ed:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:9A:D6:B7:34:C5:E9:E1:0F:7F:AA:A2:C5:8E:C8:FC:8D:78:1A:75 X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:8c:4b:02:46:42:64:ae:96:3c:af:ac:9b:84:01:ff:d5:59: 28:76:5a:b7:b7:03:57:5a:f2:06:bd:4c:30:30:86:8a:ce:49: c5:04:db:8f:47:18:80:db:60:f8:21:98:d8:32:4f:9b:03:64: 38:46:1c:91:f8:bd:f6:3b:44:d9:51:60:a7:18:c1:06:d0:6d: 4c:30:7f:a9:0d:81:c5:69:33:e1:a8:8a:48:5d:19:03:25:05: 1f:0a:98:2e:b7:81:8f:ba:b8:82:b3:b6:5e:68:1b:ca:3d:29: 7d:9c:78:f5:7d:dc:ca:e0:7e:34:6a:7e:75:7e:2b:73:0a:51: d2:58:6f:45:b8:cf:9c:41:12:60:74:f6:d1:40:f9:84:4d:74: 52:f3:4a:63:fa:d5:1a:0b:12:e2:a5:3e:f0:fe:2e:8b:6a:e3: 90:1a:c8:ac:fb:b7:b0:5a:3f:cf:84:ab:14:45:cc:00:09:5c: bf:9c:91:bb:13:de:c6:69:37:ac:ca:02:2d:eb:28:80:85:05: 6d:60:9a:23:5c:85:15:1a:21:4e:02:45:00:0c:0f:d0:50:2c: 3b:6e:1d:88:46:35:a7:86:98:c9:aa:11:95:d5:34:93:bb:8b: 2d:19:11:cb:e4:9f:59:de:5e:34:7c:8b:43:9e:1b:79:d7:2f: b3:43:67:44 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjYwNDE4MTc0NTU0WhcNMjYwNDI1MTc0NTU0WjAYMRYwFAYD VQQDEw02OWUzYzM1My05MmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOZuqM7YfBXF7QCxqMWIY8aSvl4tqJfbU1C2j37Hebdz1GKVW+w+tIHqTroE vulukoor50YFQcPNe7vN5e/EdZ+mKLTobOo5C9m6dKUi+MsTv4bTp1S8QcC4DGp2 EDGyXBZ9r8nqZItAaF+s0JS0RLNBRUgUGip4HpMZfSeY2m4XiT5IX6nCX5czhape WVttu/PS0bjkj4oeIizZQxLEMHYd3k6MtDN1rLT82BuThjnOCOM0LmXjsIZiq3k0 7p8X82NkPqsQsNjV7zpynMDp8jPnBov/0hYQ3YmeJ8i8Q7uXRx78wp2lhOUrTOwu DUz5d7h0yGVT+2TZKhWEYq/t4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGma1rc0 xenhD3+qosWOyPyNeBp1MB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC9DNjk0ODIzNjEwRTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxp SkVfQk5CRlhFT3Z0WGpsV0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ4xLAkZCZK6WPK+sm4QB/9VZKHZat7cDV1ryBr1MMDCGis5JxQTbj0cYgNtg +CGY2DJPmwNkOEYckfi99jtE2VFgpxjBBtBtTDB/qQ2BxWkz4aiKSF0ZAyUFHwqY LreBj7q4grO2Xmgbyj0pfZx49X3cyuB+NGp+dX4rcwpR0lhvRbjPnEESYHT20UD5 hE10UvNKY/rVGgsS4qU+8P4ui2rjkBrIrPu3sFo/z4SrFEXMAAlcv5yRuxPexmk3 rMoCLesogIUFbWCaI1yFFRohTgJFAAwP0FAsO24diEY1p4aYyaoRldU0k7uLLRkR y+SfWd5eNHyLQ54bedcvs0NnRA== -----END CERTIFICATE-----Generated at Sat Apr 18 22:28:30 2026 by rpki-client