$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: A3x9C+ff6crMELWmPAQzQMdg3KneZ3vLPvwEp5Hj8Lk= Subject key identifier: CF:17:18:30:73:5B:82:60:0F:56:08:27:36:AA:DE:1B:17:63:AF:05 Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 098E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 097D Signing time: Sat 04 Apr 2026 19:52:23 +0000 Manifest this update: Sat 04 Apr 2026 19:52:23 +0000 Manifest next update: Sat 11 Apr 2026 19:52:23 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: psLDOlyQf16SpcKuz1cvguXu6wsbKU4pRXh1XeAiWs8=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: DRHD5xTVFWimAXAoILMZ1X9MVVZOC51/xO8I5gnlqy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:52:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2446 (0x98e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Apr 4 19:52:23 2026 GMT Not After : Apr 11 19:52:23 2026 GMT Subject: CN=69d16bf7-3d34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6f:4f:19:1c:0a:68:e7:b5:f1:5b:e8:90:78: 39:83:8f:6f:47:35:53:7b:b3:3f:29:5b:32:1f:4a: 81:54:4d:99:f6:3d:d1:ae:b8:5b:67:35:4b:1d:c4: e0:93:8c:d5:9e:b1:be:b1:00:e6:e4:06:cc:6f:e3: 3c:c5:78:a9:cb:c2:bd:a6:12:ad:04:5f:5f:2a:71: 8c:30:2b:1e:0d:37:e1:75:e3:46:70:9c:7a:2f:ac: 9b:bc:57:c7:01:b4:15:50:23:8d:e2:de:54:cc:9b: 76:4c:ba:fa:e8:ca:44:13:86:df:33:42:94:42:df: 52:89:48:88:e6:f0:0b:27:c0:e3:51:41:7b:d2:20: d6:65:2e:ff:35:75:5e:a0:d9:be:57:74:17:38:bb: 84:cd:c6:f4:d0:3a:4f:bb:73:4d:95:9c:20:97:bb: 63:f7:32:95:2c:aa:d6:71:d2:55:fe:96:b2:63:af: f6:1b:b6:3e:f0:30:9c:31:1c:14:b2:fc:56:d1:88: 91:d8:9b:b9:f1:70:e1:9b:63:f5:37:78:4c:ba:39: a4:4a:d7:5f:f2:b4:23:6c:08:a3:19:1d:35:6e:02: 9c:a8:3c:bc:2c:73:06:9c:4d:d3:90:81:e3:93:39: ff:24:28:25:d4:6a:9b:ce:ae:d4:c9:7b:da:7f:5a: 3c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:17:18:30:73:5B:82:60:0F:56:08:27:36:AA:DE:1B:17:63:AF:05 X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:46:5f:0d:62:68:5a:fe:09:9d:f0:77:88:c2:7e:bd:d1:8d: 23:db:42:d8:3f:ae:92:a9:44:cf:1b:9f:88:7f:89:9c:17:a5: 16:82:e1:69:94:c4:37:2c:a1:07:68:dc:9d:72:d7:74:72:e1: fe:5a:53:01:67:d1:66:b6:9d:61:4d:6d:f9:c1:d7:96:65:cc: 6e:9a:70:1f:e7:11:6c:a0:9b:84:9f:b4:56:66:c5:4f:45:bc: 6c:bc:da:d6:d9:df:13:43:91:45:82:c2:d2:3a:45:30:7a:e7: 7f:24:33:31:58:25:95:15:e4:1f:7d:9d:fc:8f:71:1a:0f:a9: f7:e7:26:4d:b7:a0:dd:90:44:e8:b6:ad:80:53:bb:05:cd:f9: 8d:5d:ae:4e:ff:23:e4:5d:b7:d6:3c:5c:ea:47:3d:b4:5c:d1: 9e:4c:24:37:39:17:ff:05:09:7e:79:9b:41:20:f5:40:77:45: af:5d:a3:4c:ee:80:c1:18:81:0d:88:94:19:34:7c:bc:0d:de: aa:a8:fe:42:45:aa:5b:a8:08:e0:cd:39:61:a3:be:93:85:2a: c8:d7:2a:98:23:d7:75:61:0d:98:d5:be:6e:5a:d3:cc:b3:7c: ca:69:8a:09:ce:f9:15:a3:6c:d5:d9:d9:25:f5:df:af:b7:b9: d9:69:b2:f5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjYwNDA0MTk1MjIzWhcNMjYwNDExMTk1MjIzWjAYMRYwFAYD VQQDEw02OWQxNmJmNy0zZDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAym9PGRwKaOe18VvokHg5g49vRzVTe7M/KVsyH0qBVE2Z9j3RrrhbZzVLHcTg k4zVnrG+sQDm5AbMb+M8xXipy8K9phKtBF9fKnGMMCseDTfhdeNGcJx6L6ybvFfH AbQVUCON4t5UzJt2TLr66MpEE4bfM0KUQt9SiUiI5vALJ8DjUUF70iDWZS7/NXVe oNm+V3QXOLuEzcb00DpPu3NNlZwgl7tj9zKVLKrWcdJV/payY6/2G7Y+8DCcMRwU svxW0YiR2Ju58XDhm2P1N3hMujmkStdf8rQjbAijGR01bgKcqDy8LHMGnE3TkIHj kzn/JCgl1Gqbzq7UyXvaf1o83wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM8XGDBz W4JgD1YIJzaq3hsXY68FMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh0ZfDWJoWv4JnfB3iMJ+vdGNI9tC2D+ukqlEzxufiH+JnBelFoLhaZTENyyh B2jcnXLXdHLh/lpTAWfRZradYU1t+cHXlmXMbppwH+cRbKCbhJ+0VmbFT0W8bLza 1tnfE0ORRYLC0jpFMHrnfyQzMVgllRXkH32d/I9xGg+p9+cmTbeg3ZBE6LatgFO7 Bc35jV2uTv8j5F231jxc6kc9tFzRnkwkNzkX/wUJfnmbQSD1QHdFr12jTO6AwRiB DYiUGTR8vA3eqqj+QkWqW6gI4M05YaO+k4UqyNcqmCPXdWENmNW+blrTzLN8ymmK Cc75FaNs1dnZJfXfr7e52Wmy9Q== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:24 2026 by rpki-client