$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft File: R2lFsh8liffnEnUf50f6IUOlI1s.mft (raw, json) Hash identifier: Qulp+XFsfTv/dGkjYlNXsVtxgNudaaNSStupc6w6QWI= Subject key identifier: 24:C2:58:DF:D0:C2:A0:05:3F:79:44:48:ED:83:E3:58:3C:64:0C:01 Authority key identifier: 47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B Certificate issuer: /CN=A9132B1D/serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Certificate serial: 0308 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft Manifest number: 0301 Signing time: Sun 05 Apr 2026 01:01:00 +0000 Manifest this update: Sun 05 Apr 2026 01:00:59 +0000 Manifest next update: Sun 12 Apr 2026 01:00:59 +0000 Files and hashes: 1: R2lFsh8liffnEnUf50f6IUOlI1s.crl (hash: CBZPK1tdaDewUjurE4X5AZEX6f6q6eZ0F0sv0FzZrps=) 2: A917D87217A711ED8D17FC7CC4F9AE02.roa (hash: CHlJpAmUO3HeXSZX7Pc0z854lGAon91AqOY8MRP1VAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 776 (0x308) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1D, serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Validity Not Before: Apr 5 01:00:59 2026 GMT Not After : Apr 12 01:00:59 2026 GMT Subject: CN=69d1b44c-c82b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8b:d0:8a:c1:dc:b2:dc:9f:a6:1c:3a:1f:fa: ab:fe:23:7c:99:d4:06:3a:01:ca:77:9b:aa:49:6b: 63:05:c1:50:ca:28:0e:b1:de:69:ef:34:82:9a:7e: 3c:53:9c:30:97:63:09:21:be:36:42:0c:98:8c:67: 76:bb:15:14:c6:7b:d5:68:60:cf:78:34:77:87:f8: 94:62:82:3d:f0:c7:08:a3:6e:1c:c2:c4:0f:1e:3e: 22:ce:69:73:ae:8b:01:bc:31:20:99:53:c3:ac:bb: 73:71:0d:d9:12:43:ef:b6:68:61:c1:7f:43:75:10: 79:45:52:f3:d5:a0:e3:96:ab:a7:a8:da:c9:cc:5b: 6e:3e:ab:be:85:a2:7d:28:7e:47:82:15:3e:f7:dd: 06:02:8d:e9:17:f5:1c:59:dd:b7:da:c1:93:17:6a: 7d:05:ea:dd:c4:ec:c5:12:f8:d9:cf:03:4b:6c:13: 0e:83:7e:98:6a:ce:5e:38:a3:29:df:7f:a9:32:32: fa:66:25:5c:fa:ee:43:0b:d8:2b:b2:39:78:fd:3a: 92:7c:af:12:90:71:3f:66:ed:34:7c:52:27:ea:69: 04:ff:fc:82:6a:41:0a:af:cc:47:49:9f:80:23:ae: b8:ef:51:db:72:73:fa:33:14:00:77:ec:8d:ce:74: 54:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:C2:58:DF:D0:C2:A0:05:3F:79:44:48:ED:83:E3:58:3C:64:0C:01 X509v3 Authority Key Identifier: keyid:47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:1c:f5:e6:3a:b0:02:06:bc:f2:9f:3c:86:47:c8:88:1e:f7: 81:47:17:d8:ee:e5:af:63:71:9c:00:5c:32:43:fe:e7:be:e5: ce:f6:cb:ff:fb:96:6e:97:bb:5f:8d:8f:54:ee:8d:e6:cc:99: 85:27:ab:5e:45:07:03:2c:f0:a9:b4:ae:e5:f8:a1:49:ae:13: ae:60:fa:4a:35:64:65:9a:ed:61:ff:12:b0:13:cf:73:16:36: 2c:30:24:98:db:39:49:cc:0a:30:46:e7:4e:11:8f:08:91:d5: 22:7c:10:38:3c:1f:57:f1:8a:bf:03:0e:43:ca:e3:30:86:5b: 4a:6c:ae:66:f5:8a:84:2c:0b:29:6f:b6:a7:d4:b3:aa:e6:5a: f6:65:25:d0:ff:74:1b:27:c5:27:97:a4:6e:f6:c2:d1:ab:ed: 67:13:42:2b:4a:45:1c:4b:4c:28:c0:2a:73:5b:c4:0a:1c:40: 28:1d:88:26:1a:fa:c2:10:a7:0e:10:21:3b:2b:de:99:d0:46: 92:dc:91:0b:89:38:7d:0e:ff:fc:78:37:7d:a1:47:4e:ab:81: 01:b5:0b:39:22:bf:0b:e0:ce:e4:00:63:1b:15:c3:ab:76:9d: 44:f0:fe:53:c4:b8:00:db:8c:61:e9:ee:4f:fa:69:2d:81:5e: f3:cc:4f:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUQxMTAvBgNVBAUTKDQ3Njk0NUIyMUYyNTg5RjdFNzEyNzUxRkU3NDdGQTIx NDNBNTIzNUIwHhcNMjYwNDA1MDEwMDU5WhcNMjYwNDEyMDEwMDU5WjAYMRYwFAYD VQQDEw02OWQxYjQ0Yy1jODJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIvQisHcstyfphw6H/qr/iN8mdQGOgHKd5uqSWtjBcFQyigOsd5p7zSCmn48 U5wwl2MJIb42QgyYjGd2uxUUxnvVaGDPeDR3h/iUYoI98McIo24cwsQPHj4izmlz rosBvDEgmVPDrLtzcQ3ZEkPvtmhhwX9DdRB5RVLz1aDjlqunqNrJzFtuPqu+haJ9 KH5HghU+990GAo3pF/UcWd232sGTF2p9BerdxOzFEvjZzwNLbBMOg36Yas5eOKMp 33+pMjL6ZiVc+u5DC9grsjl4/TqSfK8SkHE/Zu00fFIn6mkE//yCakEKr8xHSZ+A I66471HbcnP6MxQAd+yNznRUMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCTCWN/Q wqAFP3lESO2D41g8ZAwBMB8GA1UdIwQYMBaAFEdpRbIfJYn35xJ1H+dH+iFDpSNb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRC8zMDIwM0VEMDE3 QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlmZm5FblVmNTBmNklVT2xJ MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IybEZzaDhsaWZmbkVuVWY1MGY2SVVPbEkxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkIxRC8zMDIwM0VEMDE3QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlm Zm5FblVmNTBmNklVT2xJMXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALhz15jqwAga88p88hkfIiB73gUcX2O7lr2NxnABcMkP+577lzvbL//uWbpe7 X42PVO6N5syZhSerXkUHAyzwqbSu5fihSa4TrmD6SjVkZZrtYf8SsBPPcxY2LDAk mNs5ScwKMEbnThGPCJHVInwQODwfV/GKvwMOQ8rjMIZbSmyuZvWKhCwLKW+2p9Sz quZa9mUl0P90GyfFJ5ekbvbC0avtZxNCK0pFHEtMKMAqc1vEChxAKB2IJhr6whCn DhAhOyvemdBGktyRC4k4fQ7//Hg3faFHTquBAbULOSK/C+DO5ABjGxXDq3adRPD+ U8S4ANuMYenuT/ppLYFe88xPsg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:16 2026 by rpki-client