$ rpki-client -vvf rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft File: X2mHOU7ukmatexkjRBv29RNP-VA.mft (raw, json) Hash identifier: +aDLyPnuLPu+FNMwdr8AyJ1gH94q9gi8JFsDRHp2x94= Subject key identifier: A1:69:C0:6C:4E:2E:2F:50:7A:39:14:BC:D7:71:64:82:B9:95:C9:1E Authority key identifier: 5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 Certificate issuer: /CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Certificate serial: 0893 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft Manifest number: 0888 Signing time: Sat 04 Apr 2026 20:23:34 +0000 Manifest this update: Sat 04 Apr 2026 20:23:33 +0000 Manifest next update: Sat 11 Apr 2026 20:23:33 +0000 Files and hashes: 1: X2mHOU7ukmatexkjRBv29RNP-VA.crl (hash: Kh8EQ/ZhOyW+keOd74RBogqAzuI2MW0VHk5yFCBe2Ls=) 2: F69648C2ECF211EABBFDDD24C4F9AE02.roa (hash: cf4yHcoutqovI1dQvoBzonoaRmnFgyfFyjHSp2dFK4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2195 (0x893) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147241, serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Validity Not Before: Apr 4 20:23:33 2026 GMT Not After : Apr 11 20:23:33 2026 GMT Subject: CN=69d17346-4884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4d:2c:43:3c:b7:a1:41:7a:7c:29:be:22:b9: 63:95:a0:2b:65:aa:58:08:07:4d:99:fa:41:17:af: 96:4e:90:32:83:64:3c:58:ce:09:89:b0:81:4f:5f: 73:bd:12:4b:ad:c2:12:f5:67:27:95:49:99:ea:9c: 7c:9a:6f:af:c2:87:c5:63:c1:3d:a7:7a:fd:45:15: de:cd:59:ae:ca:7c:07:c6:42:3f:00:7c:65:90:f7: f6:9f:8e:6e:2c:d0:b1:31:fe:65:2b:b8:07:56:ff: 72:69:c7:ca:b2:bd:31:25:19:a8:c8:04:21:91:75: 81:e3:64:b7:96:d2:30:5d:60:a9:79:73:19:37:d7: 91:23:20:14:2e:16:f8:a2:cd:8e:95:87:8f:94:c3: 22:b4:21:ea:5b:ca:35:e7:93:e1:79:fd:9b:c5:26: 8a:97:fc:79:c9:9c:d8:be:28:8a:5f:60:27:73:3f: d3:f4:f1:2f:82:b1:85:1f:80:2b:4d:05:46:7a:5e: 1a:26:61:f3:55:eb:f6:5a:32:32:0a:41:e7:28:35: 19:e8:09:00:ec:31:be:b3:6c:89:e0:36:54:e2:54: 36:6d:50:77:52:99:8d:9c:dc:91:03:53:fd:d6:5a: 8a:eb:c4:a4:bf:4f:44:8f:aa:0f:ce:cf:22:4d:77: 13:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:69:C0:6C:4E:2E:2F:50:7A:39:14:BC:D7:71:64:82:B9:95:C9:1E X509v3 Authority Key Identifier: keyid:5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:42:5a:b4:29:b4:6b:30:f7:04:23:06:dc:a4:cd:66:a8:2c: d2:d4:65:cf:fe:1c:79:6d:0f:5a:a5:ea:89:6c:75:10:49:39: f3:e7:6c:02:87:d3:41:a2:82:e9:bb:de:3c:83:98:06:2a:ef: 59:96:06:70:83:67:e6:08:42:44:3e:aa:dd:82:cf:d6:d8:3c: 72:12:df:df:74:03:f5:60:3b:a9:98:bc:ab:44:2e:d3:ad:7f: 48:6d:5e:f6:33:5b:82:15:08:57:47:b7:60:c8:07:13:1a:01: 78:36:f3:a4:21:27:b9:f7:61:e3:10:7a:a3:d3:9c:f8:4a:32: 3f:2c:e6:b9:39:12:fa:29:65:9e:c6:6a:df:a9:bc:2d:ce:ae: b1:66:0d:af:d1:ee:d1:35:ea:e2:19:25:57:b9:a3:d4:10:81: cf:86:bf:27:58:42:a3:00:08:ae:b9:55:2d:a7:ee:ed:72:c9: 41:4b:0f:f3:b0:c6:ac:ce:e5:02:43:65:b7:fe:fe:f3:c7:29: 73:b9:2b:94:c1:36:6e:17:63:ed:d9:5e:b7:c6:78:e0:33:b5: 9b:84:33:56:21:e4:4c:b6:70:eb:e2:e0:9d:56:30:70:8e:84: e6:a2:15:56:6d:e9:3b:bf:d9:5f:f7:9c:45:90:03:4f:78:0c: 21:15:22:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyNDExMTAvBgNVBAUTKDVGNjk4NzM5NEVFRTkyNjZBRDdCMTkyMzQ0MUJGNkY1 MTM0RkY5NTAwHhcNMjYwNDA0MjAyMzMzWhcNMjYwNDExMjAyMzMzWjAYMRYwFAYD VQQDEw02OWQxNzM0Ni00ODg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1U0sQzy3oUF6fCm+IrljlaArZapYCAdNmfpBF6+WTpAyg2Q8WM4JibCBT19z vRJLrcIS9WcnlUmZ6px8mm+vwofFY8E9p3r9RRXezVmuynwHxkI/AHxlkPf2n45u LNCxMf5lK7gHVv9yacfKsr0xJRmoyAQhkXWB42S3ltIwXWCpeXMZN9eRIyAULhb4 os2OlYePlMMitCHqW8o155Phef2bxSaKl/x5yZzYviiKX2Ancz/T9PEvgrGFH4Ar TQVGel4aJmHzVev2WjIyCkHnKDUZ6AkA7DG+s2yJ4DZU4lQ2bVB3UpmNnNyRA1P9 1lqK68Skv09Ej6oPzs8iTXcTtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKFpwGxO Li9QejkUvNdxZIK5lckeMB8GA1UdIwQYMBaAFF9phzlO7pJmrXsZI0Qb9vUTT/lQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzI0MS82MkJCNUM3NEVD RjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWttYXRleGtqUkJ2MjlSTlAt VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybUhPVTd1a21hdGV4a2pSQnYyOVJOUC1WQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzI0MS82MkJCNUM3NEVDRjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWtt YXRleGtqUkJ2MjlSTlAtVkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAE0JatCm0azD3BCMG3KTNZqgs0tRlz/4ceW0PWqXqiWx1EEk58+dsAofTQaKC 6bvePIOYBirvWZYGcINn5ghCRD6q3YLP1tg8chLf33QD9WA7qZi8q0Qu061/SG1e 9jNbghUIV0e3YMgHExoBeDbzpCEnufdh4xB6o9Oc+EoyPyzmuTkS+illnsZq36m8 Lc6usWYNr9Hu0TXq4hklV7mj1BCBz4a/J1hCowAIrrlVLafu7XLJQUsP87DGrM7l AkNlt/7+88cpc7krlME2bhdj7dlet8Z44DO1m4QzViHkTLZw6+LgnVYwcI6E5qIV Vm3pO7/ZX/ecRZADT3gMIRUidQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:54:28 2026 by rpki-client