$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft File: 2UW2DwCc3xVcQp1Aha62z-BrzgA.mft (raw, json) Hash identifier: +GRsQT9ej2+gVZGXKlX8lbnRKKKhOzg109vhcspM7ng= Subject key identifier: CF:CF:38:E6:71:BF:AE:2A:AC:35:BE:D7:05:8A:82:09:33:04:90:58 Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 0566 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft Manifest number: 0558 Signing time: Sat 04 Apr 2026 23:10:12 +0000 Manifest this update: Sat 04 Apr 2026 23:10:12 +0000 Manifest next update: Sat 11 Apr 2026 23:10:12 +0000 Files and hashes: 1: 2UW2DwCc3xVcQp1Aha62z-BrzgA.crl (hash: mfDC8c5gfw6A3RVC2ho1BcVFJdcpqnDuw4pCpoB4AjY=) 2: AFAC764C2C1711EC817C5912C4F9AE02.roa (hash: KV+oymiCQ8SI81Nw8YLk5LKF58JCB1ujUEL9Z05HDyg=) 3: AF22E83C2C1711EC817C5912C4F9AE02.roa (hash: 5f9ml2EUZAGAD2c6U/Z9/PW0M3VyIhaGC3vHQZLyq8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1382 (0x566) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF, serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: Apr 4 23:10:12 2026 GMT Not After : Apr 11 23:10:12 2026 GMT Subject: CN=69d19a54-e059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f3:85:21:d8:6d:b2:68:21:71:9a:09:5d:01: 06:37:81:ab:37:a5:8d:ca:2b:52:8f:b1:3e:ac:8e: b7:e4:fc:f4:9a:82:0a:af:1a:d8:12:82:49:b1:6a: 54:5b:a8:f5:9a:24:b1:fb:b3:8d:09:3c:5d:5e:81: 26:9b:9b:d5:6c:c6:b1:f8:4a:4a:7f:59:84:9b:fd: 1e:0d:ec:7a:1c:0d:83:db:a0:86:83:f1:ab:eb:43: 85:04:17:9e:d3:cb:5b:a7:28:1a:19:e3:10:80:33: 0c:84:bf:d6:61:02:5a:0d:98:3e:db:a9:12:f8:38: 5f:9e:bd:b1:33:cf:28:4a:91:f2:be:b9:c8:d2:98: 33:61:b0:1f:29:2c:6b:10:0c:19:6d:3c:f6:c5:98: 43:d2:8d:b6:69:4e:5a:7e:18:40:9b:fb:d9:29:83: 2e:7c:fc:d8:bd:b3:42:20:c2:a0:39:40:07:24:f3: 4b:4c:bf:ba:18:74:cd:ac:d6:c9:53:06:93:35:b2: f5:3e:1b:46:4e:93:ef:23:ea:d1:96:8a:bb:f6:d9: 6c:55:b9:b8:8f:81:71:6c:dd:9e:f3:34:87:2c:84: 60:b8:e4:08:cc:87:05:31:23:b0:26:c0:5f:d2:81: fa:dc:6c:7e:a9:a6:65:2e:67:b2:f1:a5:24:9f:5b: c1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:CF:38:E6:71:BF:AE:2A:AC:35:BE:D7:05:8A:82:09:33:04:90:58 X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:9a:29:5e:8d:53:78:c4:00:91:6f:19:02:48:f7:73:b7:2a: e9:9d:c5:db:b4:e9:e9:61:1a:f0:96:7c:44:3c:27:88:c1:80: 48:93:f8:d0:15:3d:db:2f:26:ed:f3:e5:e1:34:61:19:ba:79: 11:57:bb:27:69:26:6c:9f:0a:80:f8:36:56:77:76:1e:e2:72: aa:6d:a7:da:01:a3:7f:6c:8c:9c:c9:6f:3a:c1:5c:06:90:e2: 7a:2d:d9:85:a0:49:57:07:13:fa:3e:a9:98:5a:2e:0b:31:2a: 93:da:1e:7b:60:89:5a:e8:28:2d:d4:20:be:dd:cc:a8:da:94: 37:4c:aa:df:dd:d9:ad:45:4b:c9:37:81:3c:5b:fb:18:3f:be: 5b:b2:c6:23:a0:17:8b:dc:7c:4d:41:36:8a:74:3e:50:4c:ce: 8c:98:d0:fa:4a:ff:44:c3:1d:1c:a8:80:1e:1e:c2:56:c7:42: b4:0e:81:b3:5e:9b:0e:fe:0c:40:f7:07:4b:ae:41:da:95:15: 5c:54:3e:84:f7:1b:e5:1f:14:00:8c:d3:15:2f:26:5c:6e:f4: 15:97:84:c3:e8:d4:6c:f5:d8:7f:0a:33:79:71:31:88:de:2b: 6f:37:67:28:77:9a:92:5a:b0:5c:72:cb:6c:70:50:fe:0c:cb: 03:e9:3a:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjYwNDA0MjMxMDEyWhcNMjYwNDExMjMxMDEyWjAYMRYwFAYD VQQDEw02OWQxOWE1NC1lMDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmfOFIdhtsmghcZoJXQEGN4GrN6WNyitSj7E+rI635Pz0moIKrxrYEoJJsWpU W6j1miSx+7ONCTxdXoEmm5vVbMax+EpKf1mEm/0eDex6HA2D26CGg/Gr60OFBBee 08tbpygaGeMQgDMMhL/WYQJaDZg+26kS+Dhfnr2xM88oSpHyvrnI0pgzYbAfKSxr EAwZbTz2xZhD0o22aU5afhhAm/vZKYMufPzYvbNCIMKgOUAHJPNLTL+6GHTNrNbJ UwaTNbL1PhtGTpPvI+rRloq79tlsVbm4j4FxbN2e8zSHLIRguOQIzIcFMSOwJsBf 0oH63Gx+qaZlLmey8aUkn1vBwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM/POOZx v64qrDW+1wWKggkzBJBYMB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUNFRi9DNDAxOUQyNDJDMTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4 VmNRcDFBaGE2MnotQnJ6Z0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFJopXo1TeMQAkW8ZAkj3c7cq6Z3F27Tp6WEa8JZ8RDwniMGASJP40BU92y8m 7fPl4TRhGbp5EVe7J2kmbJ8KgPg2Vnd2HuJyqm2n2gGjf2yMnMlvOsFcBpDiei3Z haBJVwcT+j6pmFouCzEqk9oee2CJWugoLdQgvt3MqNqUN0yq393ZrUVLyTeBPFv7 GD++W7LGI6AXi9x8TUE2inQ+UEzOjJjQ+kr/RMMdHKiAHh7CVsdCtA6Bs16bDv4M QPcHS65B2pUVXFQ+hPcb5R8UAIzTFS8mXG70FZeEw+jUbPXYfwozeXExiN4rbzdn KHeaklqwXHLLbHBQ/gzLA+k6ag== -----END CERTIFICATE-----Generated at Mon Apr 6 08:51:48 2026 by rpki-client