$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: W9CLxjbMAYl0XgesVKTZqnYahl3BRnhDFGXlPDz8xrM= Subject key identifier: 2F:79:05:7D:18:46:6C:96:5F:76:09:49:42:B7:63:88:CE:E2:4C:8D Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 0234 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 022A Signing time: Sun 05 Apr 2026 02:15:45 +0000 Manifest this update: Sun 05 Apr 2026 02:15:44 +0000 Manifest next update: Sun 12 Apr 2026 02:15:44 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: 6gusvZ/2pd50HrT7ssRWjolD8Cr/rcJfaOe38TCSZ4A=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: 3weaQ4o+eQXlXxL8Agh4qybWMOK+rrtdU5IbG/vM6oo=) 3: 7DA38A8E727011F08682A20EC4F9AE02.roa (hash: X373raxuE2iLwtaK4YO98Y1yBAk9TK8MxVlU8+CTPKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:15:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Apr 5 02:15:44 2026 GMT Not After : Apr 12 02:15:44 2026 GMT Subject: CN=69d1c5d0-5fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:49:c3:a1:23:3d:43:22:d7:5b:38:b4:53:b4: dd:d8:72:a0:2a:2f:10:af:b0:fe:34:6e:71:ba:f5: 84:42:d6:f5:82:6a:92:9b:86:dc:e4:e4:73:f6:b3: 7e:f6:fc:0d:3c:61:b3:6a:95:f4:d1:b2:6a:5c:bd: 9c:af:f6:b7:f5:5f:66:60:08:35:62:bc:a0:92:1f: 77:4b:89:5c:66:44:ae:12:94:10:10:82:64:fb:d6: 92:97:65:0c:1c:e5:33:5a:f5:a2:e6:7b:6a:62:c3: 0a:12:ac:b3:31:b1:f5:12:82:83:0a:e4:1b:1f:0b: da:2b:7c:f8:6b:5b:36:71:4c:0a:fe:32:bf:0e:91: 20:c1:5e:e4:ce:59:6e:7b:58:e6:70:d0:b0:35:cc: f1:85:6f:39:bd:60:26:ec:47:e4:ea:58:2c:c4:26: ab:4e:34:28:ad:58:9b:70:dc:72:8e:90:15:3a:b6: 91:91:cb:e8:c3:0c:68:a6:de:df:de:d6:12:d5:06: 00:de:b2:a7:93:be:5f:ed:69:2f:0d:39:e2:da:60: 9e:d9:04:89:95:40:e8:7c:17:17:73:5d:fe:94:f3: 84:d9:5f:93:e2:70:5b:34:a3:0f:e0:4a:27:64:29: 83:06:ad:c4:9c:59:2e:16:ff:9c:62:f0:7f:ab:b1: 39:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:79:05:7D:18:46:6C:96:5F:76:09:49:42:B7:63:88:CE:E2:4C:8D X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:6c:46:04:71:9c:f7:eb:c3:bd:bc:45:4b:47:5e:9c:3a:11: f6:1d:dd:6a:85:18:05:04:89:95:36:04:9b:9c:d2:7b:35:8e: 5b:b7:84:19:ec:e8:6d:a1:d9:b2:77:ee:0d:3b:9b:35:93:2a: 86:ce:e3:60:91:69:28:a1:8a:22:90:a9:74:87:96:58:9f:d1: 1d:91:fc:bd:7d:7a:56:5d:8b:31:70:d4:cd:00:1e:b7:7e:2e: 28:d0:0b:96:0d:40:9d:93:84:31:20:58:43:6e:1c:cd:e4:cb: f8:0a:5a:9d:61:4a:b5:2d:be:e8:6a:7c:30:43:c1:d3:3b:53: f4:10:3f:b9:71:f2:d6:89:20:33:36:92:cb:f0:5d:59:2f:c2: 32:e2:07:ab:17:c4:23:7d:87:bd:ab:5d:f7:31:c2:1d:ff:0f: f5:65:6f:79:fc:45:d5:4f:af:a7:0b:85:1e:50:56:65:89:bb: ff:7c:b1:d4:3e:67:59:08:f8:0d:45:3c:1c:98:fb:3f:f1:ce: 9a:4a:08:d9:dd:0c:89:45:fb:e0:11:74:28:24:a6:aa:ab:2b: b4:cf:a8:8b:05:00:34:55:00:3e:a5:e3:c6:29:38:d8:c7:87: 28:3e:86:22:75:12:ec:1c:0e:49:a4:fa:0a:c2:7e:10:a9:ed: 05:f5:64:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjYwNDA1MDIxNTQ0WhcNMjYwNDEyMDIxNTQ0WjAYMRYwFAYD VQQDEw02OWQxYzVkMC01ZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmknDoSM9QyLXWzi0U7Td2HKgKi8Qr7D+NG5xuvWEQtb1gmqSm4bc5ORz9rN+ 9vwNPGGzapX00bJqXL2cr/a39V9mYAg1Yrygkh93S4lcZkSuEpQQEIJk+9aSl2UM HOUzWvWi5ntqYsMKEqyzMbH1EoKDCuQbHwvaK3z4a1s2cUwK/jK/DpEgwV7kzllu e1jmcNCwNczxhW85vWAm7Efk6lgsxCarTjQorVibcNxyjpAVOraRkcvowwxopt7f 3tYS1QYA3rKnk75f7WkvDTni2mCe2QSJlUDofBcXc13+lPOE2V+T4nBbNKMP4Eon ZCmDBq3EnFkuFv+cYvB/q7E5twIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC95BX0Y RmyWX3YJSUK3Y4jO4kyNMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKGxGBHGc9+vDvbxFS0denDoR9h3daoUYBQSJlTYEm5zSezWOW7eEGezobaHZ snfuDTubNZMqhs7jYJFpKKGKIpCpdIeWWJ/RHZH8vX16Vl2LMXDUzQAet34uKNAL lg1AnZOEMSBYQ24czeTL+ApanWFKtS2+6Gp8MEPB0ztT9BA/uXHy1okgMzaSy/Bd WS/CMuIHqxfEI32Hvatd9zHCHf8P9WVvefxF1U+vpwuFHlBWZYm7/3yx1D5nWQj4 DUU8HJj7P/HOmkoI2d0MiUX74BF0KCSmqqsrtM+oiwUANFUAPqXjxik42MeHKD6G InUS7BwOSaT6CsJ+EKntBfVk7A== -----END CERTIFICATE-----Generated at Mon Apr 6 08:50:25 2026 by rpki-client