$ rpki-client -vvf rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft File: 2zfNKCxsfbw6kLEDt6I53NFY_2A.mft (raw, json) Hash identifier: 5wEAZ32EdkPxlfYx+m7QUPTi4MPHOHA6aNq1l26vau8= Subject key identifier: 80:0D:33:B6:F4:2F:01:B5:A8:90:76:40:52:BF:F1:5A:23:58:46:5E Authority key identifier: DB:37:CD:28:2C:6C:7D:BC:3A:90:B1:03:B7:A2:39:DC:D1:58:FF:60 Certificate issuer: /CN=A913E652/serialNumber=DB37CD282C6C7DBC3A90B103B7A239DCD158FF60 Certificate serial: 0973 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft Manifest number: 096A Signing time: Sat 04 Apr 2026 19:53:30 +0000 Manifest this update: Sat 04 Apr 2026 19:53:29 +0000 Manifest next update: Sat 11 Apr 2026 19:53:29 +0000 Files and hashes: 1: 2zfNKCxsfbw6kLEDt6I53NFY_2A.crl (hash: Ihr8dq/enpjZf4Xt55t2h3OsObL+opPXLp8lqxCW3Cg=) 2: 6154A3B0B2B611EAA5884016C4F9AE02.roa (hash: mcK4qQYqmr139GB74M+RvHkP1qDPO4dE/sdLHTuRilw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.crl rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:53:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2419 (0x973) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E652, serialNumber=DB37CD282C6C7DBC3A90B103B7A239DCD158FF60 Validity Not Before: Apr 4 19:53:29 2026 GMT Not After : Apr 11 19:53:29 2026 GMT Subject: CN=69d16c3a-ab7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:50:2e:f2:d5:46:d8:7a:6c:98:23:88:44:16: f1:95:67:a2:b5:92:09:22:27:02:a8:db:38:63:40: da:00:2f:93:eb:33:0e:28:eb:5b:3a:a4:76:2b:13: 2e:66:c6:2e:a1:ff:62:ee:3c:40:88:45:b2:48:ac: 86:d8:5d:56:f5:34:b6:34:78:67:16:20:60:4f:52: ad:f0:c2:7f:2d:60:93:32:a1:66:32:d6:47:30:3e: e2:a9:b6:08:5c:2a:e5:80:9c:fd:57:ad:18:a4:30: d1:44:d7:53:6e:c3:11:e9:8c:19:e4:eb:c3:07:1b: 4c:d2:19:fd:08:37:32:ac:28:99:25:5b:ae:32:57: 40:16:25:56:c7:47:be:c9:86:b8:13:10:68:d3:c4: 4d:3a:cc:11:ab:eb:b5:1c:d4:bb:d4:bf:d8:9f:e5: 8a:57:ad:ed:83:b5:f8:8d:10:e8:63:fa:ec:1f:29: da:84:ac:bf:dc:1b:cc:f5:30:f0:28:37:8a:16:0d: eb:c9:c4:9b:b8:73:75:ee:49:21:9f:2e:0d:e8:82: cc:b7:c5:43:c6:f6:43:5e:35:06:a3:76:60:b0:38: f0:c5:fc:c9:68:f9:07:16:45:93:d3:25:eb:6e:0b: 6f:64:94:ed:b8:9a:89:1d:7b:67:4b:5c:fe:8e:ab: 98:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:0D:33:B6:F4:2F:01:B5:A8:90:76:40:52:BF:F1:5A:23:58:46:5E X509v3 Authority Key Identifier: keyid:DB:37:CD:28:2C:6C:7D:BC:3A:90:B1:03:B7:A2:39:DC:D1:58:FF:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:22:18:7a:1b:d9:3d:32:9d:9a:8c:7c:9c:06:0e:23:17:e1: 7b:06:1f:6f:1a:7b:8e:88:87:d1:90:88:f4:2a:45:5d:7f:2b: 2b:41:d4:26:05:96:90:b7:16:15:e3:a4:6f:ec:c0:30:6b:26: e2:da:4d:dd:b4:24:ec:b4:42:d8:b6:f7:fd:49:9e:d9:0a:02: 5b:17:76:ed:fb:2b:83:56:35:a8:be:b3:18:8f:35:05:cf:9c: e4:50:bf:4f:9b:63:7b:57:ec:0d:9d:3d:be:6f:05:ef:ba:77: b2:86:e5:be:17:9c:5b:97:b8:f7:ed:d4:9a:f6:ce:92:a6:6e: 85:36:13:66:a9:b3:3d:eb:ec:f0:ca:9c:39:c3:7d:58:ca:58: 9e:96:25:ee:44:63:e2:78:3b:f4:f4:3e:94:d5:5f:8e:23:24: 34:ef:0d:ca:1b:ea:2b:9f:42:10:98:11:01:ce:7c:c4:80:0f: 0d:a4:89:fb:e3:32:a7:22:ee:12:cb:e6:28:8d:53:50:1a:6e: fa:e5:0a:cf:21:d4:e5:5d:d0:d1:9a:a2:9c:f7:76:d2:71:fd: 9b:89:ec:81:ac:68:2a:9b:a2:63:51:c5:5f:fb:8e:e1:62:6e: 9e:e4:cc:b5:9d:04:0c:aa:6e:b7:94:b0:58:02:73:5c:6d:44: ad:83:10:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U2NTIxMTAvBgNVBAUTKERCMzdDRDI4MkM2QzdEQkMzQTkwQjEwM0I3QTIzOURD RDE1OEZGNjAwHhcNMjYwNDA0MTk1MzI5WhcNMjYwNDExMTk1MzI5WjAYMRYwFAYD VQQDEw02OWQxNmMzYS1hYjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFAu8tVG2HpsmCOIRBbxlWeitZIJIicCqNs4Y0DaAC+T6zMOKOtbOqR2KxMu ZsYuof9i7jxAiEWySKyG2F1W9TS2NHhnFiBgT1Kt8MJ/LWCTMqFmMtZHMD7iqbYI XCrlgJz9V60YpDDRRNdTbsMR6YwZ5OvDBxtM0hn9CDcyrCiZJVuuMldAFiVWx0e+ yYa4ExBo08RNOswRq+u1HNS71L/Yn+WKV63tg7X4jRDoY/rsHynahKy/3BvM9TDw KDeKFg3rycSbuHN17kkhny4N6ILMt8VDxvZDXjUGo3ZgsDjwxfzJaPkHFkWT0yXr bgtvZJTtuJqJHXtnS1z+jquYewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIANM7b0 LwG1qJB2QFK/8VojWEZeMB8GA1UdIwQYMBaAFNs3zSgsbH28OpCxA7eiOdzRWP9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTY1Mi82MDBBQjQ2NEIy QjUxMUVBOEFEQzQ0MTVDNEY5QUUwMi8yemZOS0N4c2ZidzZrTEVEdDZJNTNORllf MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6Zk5LQ3hzZmJ3NmtMRUR0Nkk1M05GWV8yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTY1Mi82MDBBQjQ2NEIyQjUxMUVBOEFEQzQ0MTVDNEY5QUUwMi8yemZOS0N4c2Zi dzZrTEVEdDZJNTNORllfMkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIyIYehvZPTKdmox8nAYOIxfhewYfbxp7joiH0ZCI9CpFXX8rK0HUJgWWkLcW FeOkb+zAMGsm4tpN3bQk7LRC2Lb3/Ume2QoCWxd27fsrg1Y1qL6zGI81Bc+c5FC/ T5tje1fsDZ09vm8F77p3soblvhecW5e49+3UmvbOkqZuhTYTZqmzPevs8MqcOcN9 WMpYnpYl7kRj4ng79PQ+lNVfjiMkNO8NyhvqK59CEJgRAc58xIAPDaSJ++MypyLu EsvmKI1TUBpu+uUKzyHU5V3Q0ZqinPd20nH9m4nsgaxoKpuiY1HFX/uO4WJunuTM tZ0EDKput5SwWAJzXG1ErYMQGQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:27:54 2026 by rpki-client