$ rpki-client -vvf rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft File: 2fpCBt8OmUfNUB39UlsuRmlv1EI.mft (raw, json) Hash identifier: pDFUu5TAV7rButu274DLwAuYizOXLyrIkQ9oBb5yZCc= Subject key identifier: B0:85:C6:63:32:25:29:1C:94:2F:31:51:CE:6E:98:C7:7F:2F:DC:B9 Authority key identifier: D9:FA:42:06:DF:0E:99:47:CD:50:1D:FD:52:5B:2E:46:69:6F:D4:42 Certificate issuer: /CN=A911D40B/serialNumber=D9FA4206DF0E9947CD501DFD525B2E46696FD442 Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft Manifest number: 01C3 Signing time: Sun 05 Apr 2026 03:22:24 +0000 Manifest this update: Sun 05 Apr 2026 03:22:23 +0000 Manifest next update: Sun 12 Apr 2026 03:22:23 +0000 Files and hashes: 1: 2fpCBt8OmUfNUB39UlsuRmlv1EI.crl (hash: +Z/cxCES3gR5dsW2eWKE68Aad9MdNR44V6q2+ESemms=) 2: 91BCF5D08E0811EE91C7BD62C4F9AE02.roa (hash: McXWsXXcIZmHr1+c7MXfi1yOdfqnkuMIhVjsAcxCbA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.crl rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D40B, serialNumber=D9FA4206DF0E9947CD501DFD525B2E46696FD442 Validity Not Before: Apr 5 03:22:23 2026 GMT Not After : Apr 12 03:22:23 2026 GMT Subject: CN=69d1d570-c03c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8c:a7:e6:d5:53:5d:34:d2:15:e5:c7:5a:05: aa:f3:05:6b:86:f9:d6:16:b5:cb:d6:7a:38:42:97: 9c:e1:c9:7d:8e:50:2a:b7:77:0f:70:b3:45:46:2e: 42:a7:10:d0:39:45:7c:29:f3:32:8c:80:f2:cd:19: 1f:de:59:87:81:4a:92:b9:55:64:da:52:20:4c:23: 78:a6:b1:40:27:f9:85:f6:de:e8:cd:46:8f:b9:f9: 17:ba:75:af:fb:0f:b9:7e:a6:1d:6f:0c:e8:76:70: e2:11:37:43:90:4b:86:ef:80:5f:98:e7:fa:23:4c: ea:58:82:49:ff:6d:98:b4:50:92:e9:db:6d:4c:73: a6:42:ca:71:79:07:10:ec:84:09:5f:df:64:c0:26: 69:46:92:ad:d4:c6:b5:c8:af:e7:1b:b2:6a:ff:b9: 14:e5:89:b2:82:a6:e8:b8:ce:87:5f:b0:d2:23:49: 87:e3:76:83:08:8b:c1:c5:00:0a:e2:eb:04:d1:42: 8f:7b:b4:0c:cb:c8:20:8c:3e:2f:f8:c8:49:20:48: 2c:f6:39:b7:9f:10:89:ad:37:f7:47:78:51:78:39: 3f:1a:79:78:f9:a8:c9:12:07:c0:95:11:56:e9:a5: e8:59:d9:97:c5:63:e5:69:fb:44:fc:9b:cf:95:3a: 5f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:85:C6:63:32:25:29:1C:94:2F:31:51:CE:6E:98:C7:7F:2F:DC:B9 X509v3 Authority Key Identifier: keyid:D9:FA:42:06:DF:0E:99:47:CD:50:1D:FD:52:5B:2E:46:69:6F:D4:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:1c:95:4b:45:8f:37:b5:db:1e:5d:09:05:76:56:c0:9c:f5: c7:c9:a0:a5:f1:22:04:bb:ac:be:d0:1b:9a:c1:88:b6:30:a7: 97:dd:5d:96:08:9b:d3:66:7e:6e:06:61:c4:5b:98:f0:19:96: 8f:bd:aa:44:4a:c8:37:ff:31:a8:39:f3:7e:ae:62:da:7d:af: 0c:68:2b:31:d3:63:8c:b1:1f:20:82:cb:90:37:b0:3f:92:ef: c3:e8:11:4a:75:49:cd:43:68:d3:b8:2f:bf:7d:f3:4d:c0:c9: 84:48:88:26:5c:4c:ee:19:e0:c0:33:b9:ac:d2:6a:48:60:b7: 00:a4:48:f9:73:b3:3b:41:27:41:7d:62:fc:f0:62:e6:dd:2d: 32:6d:ae:b3:f4:94:ec:a9:42:29:a6:a5:19:bf:bb:a7:5b:9f: 17:e0:12:0e:c4:6e:3c:9f:8c:e1:27:0f:8c:a4:98:a4:a5:f7: 6e:d9:fe:da:94:7e:7d:f1:f9:ed:e2:ec:3e:ae:95:f5:a7:e9: ae:f1:3b:d3:9f:e7:7f:25:24:dc:24:c5:9a:fd:6f:ff:db:d0: ab:de:aa:4c:7f:a7:77:03:e0:cb:71:12:89:48:08:46:e9:59: 71:ce:dc:77:ca:9c:bd:e4:ff:c4:2b:51:c7:e1:b4:ac:e3:1c: 61:54:63:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ0MEIxMTAvBgNVBAUTKEQ5RkE0MjA2REYwRTk5NDdDRDUwMURGRDUyNUIyRTQ2 Njk2RkQ0NDIwHhcNMjYwNDA1MDMyMjIzWhcNMjYwNDEyMDMyMjIzWjAYMRYwFAYD VQQDEw02OWQxZDU3MC1jMDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIyn5tVTXTTSFeXHWgWq8wVrhvnWFrXL1no4Qpec4cl9jlAqt3cPcLNFRi5C pxDQOUV8KfMyjIDyzRkf3lmHgUqSuVVk2lIgTCN4prFAJ/mF9t7ozUaPufkXunWv +w+5fqYdbwzodnDiETdDkEuG74BfmOf6I0zqWIJJ/22YtFCS6dttTHOmQspxeQcQ 7IQJX99kwCZpRpKt1Ma1yK/nG7Jq/7kU5YmygqbouM6HX7DSI0mH43aDCIvBxQAK 4usE0UKPe7QMy8ggjD4v+MhJIEgs9jm3nxCJrTf3R3hReDk/Gnl4+ajJEgfAlRFW 6aXoWdmXxWPlaftE/JvPlTpfcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLCFxmMy JSkclC8xUc5umMd/L9y5MB8GA1UdIwQYMBaAFNn6QgbfDplHzVAd/VJbLkZpb9RC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDQwQi80NjI2QkIxQThF MDgxMUVFOUM5REU0NjFDNEY5QUUwMi8yZnBDQnQ4T21VZk5VQjM5VWxzdVJtbHYx RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmcENCdDhPbVVmTlVCMzlVbHN1Um1sdjFFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDQwQi80NjI2QkIxQThFMDgxMUVFOUM5REU0NjFDNEY5QUUwMi8yZnBDQnQ4T21V Zk5VQjM5VWxzdVJtbHYxRUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAxyVS0WPN7XbHl0JBXZWwJz1x8mgpfEiBLusvtAbmsGItjCnl91dlgib02Z+ bgZhxFuY8BmWj72qRErIN/8xqDnzfq5i2n2vDGgrMdNjjLEfIILLkDewP5Lvw+gR SnVJzUNo07gvv33zTcDJhEiIJlxM7hngwDO5rNJqSGC3AKRI+XOzO0EnQX1i/PBi 5t0tMm2us/SU7KlCKaalGb+7p1ufF+ASDsRuPJ+M4ScPjKSYpKX3btn+2pR+ffH5 7eLsPq6V9afprvE705/nfyUk3CTFmv1v/9vQq96qTH+ndwPgy3ESiUgIRulZcc7c d8qcveT/xCtRx+G0rOMcYVRjsw== -----END CERTIFICATE-----Generated at Mon Apr 6 09:57:02 2026 by rpki-client