$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft File: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft (raw, json) Hash identifier: d4ererUCwt+UWl+Es168CJWcWnovHAlwFYkaTTBohq0= Subject key identifier: 1A:03:8E:1A:84:8D:28:2B:21:07:3B:46:7E:3E:D1:A7:9A:0E:6D:5D Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 0286 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft Manifest number: 0280 Signing time: Tue 21 Apr 2026 00:19:06 +0000 Manifest this update: Tue 21 Apr 2026 00:19:05 +0000 Manifest next update: Tue 28 Apr 2026 00:19:05 +0000 Files and hashes: 1: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl (hash: 48KVpPH9j0HWIuKE5E3HUlRQ6z1OSi+ZXMAAYV9zNno=) 2: F060FF0E720D11EDA84BE02EC4F9AE02.roa (hash: bBLigJeGoxjmDkmt5bCcINVBCGyLUX4lsMZpAacSwXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 00:19:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 646 (0x286) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: Apr 21 00:19:05 2026 GMT Not After : Apr 28 00:19:05 2026 GMT Subject: CN=69e6c27a-f010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d8:b0:00:3e:14:ae:16:83:fc:2c:5f:73:99: 86:7f:b2:4a:18:93:10:2f:4b:f7:f7:05:b0:5a:d6: f8:5c:da:a4:d1:99:cf:10:df:76:71:64:1b:2b:1a: ed:aa:4d:1a:7b:03:5a:31:8b:95:5a:77:99:16:5d: 1e:7e:69:34:21:4c:32:5a:f7:86:d5:dd:4b:d6:eb: 80:9d:54:78:b8:35:db:96:ae:f0:a0:6a:88:37:c9: 34:c8:1e:b6:0b:dd:39:d5:6b:97:fb:66:9f:5e:9c: aa:df:4a:68:66:4a:a4:6f:e8:0b:dc:01:5d:78:23: c9:7e:27:ba:b5:36:f3:9b:bf:98:25:48:70:8d:60: e8:b7:65:aa:be:72:35:51:f6:07:05:f3:8d:8d:0f: 41:2a:0e:2b:2b:71:94:8a:1a:3c:52:5a:f2:fd:44: 48:1f:b4:ae:b3:63:86:34:0c:7a:d3:e5:35:62:fb: 7a:86:1b:50:ec:13:66:b8:52:86:0f:1d:4b:c8:c6: b0:20:54:78:19:2c:89:c9:aa:d1:b5:00:3c:9f:b8: 38:a6:10:5c:06:72:f4:b6:ba:c1:82:73:92:e1:66: 38:a3:0d:c1:d1:29:12:1a:31:e6:b7:e1:1a:6c:c5: 3a:97:58:64:58:28:6e:0b:b5:a2:65:98:34:da:3c: 61:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:03:8E:1A:84:8D:28:2B:21:07:3B:46:7E:3E:D1:A7:9A:0E:6D:5D X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:68:d6:b6:61:d2:08:97:97:27:10:50:ea:f6:1b:c7:9d:e2: 64:82:67:63:c3:05:37:01:8c:be:5a:ee:31:6b:8c:d2:c4:b7: f3:0c:4e:5e:06:dc:f1:ba:f8:2d:1e:b6:d3:d1:7c:5f:79:a5: d8:2d:f8:9d:6d:08:db:1a:5f:a5:d0:36:f8:2a:a6:54:e3:b8: d4:57:01:66:32:6a:58:27:22:24:57:bf:35:d0:b7:64:81:55: e7:9b:5a:38:a9:00:91:58:da:a7:70:a2:2f:d4:0d:65:63:cd: c2:6d:91:b6:7f:b0:27:3d:df:5a:56:9d:7b:c4:1f:46:53:d4: c1:fd:39:86:d4:58:6a:88:af:13:54:28:89:2f:8a:0f:86:ec: 8e:71:25:41:69:07:ab:c5:da:ba:91:b8:a9:19:2b:27:6e:60: 88:f5:92:a7:29:b9:0a:67:0f:ce:2d:9e:ab:35:bb:31:ec:33: c2:43:e5:70:4a:91:fa:e1:20:69:4f:c4:e4:77:f1:15:6e:a9: 21:bf:15:39:80:7f:e9:90:0c:cb:9c:2b:6d:1e:c6:7f:4b:39: aa:a3:d8:1b:37:11:8b:05:e4:40:14:14:c7:3e:a1:2c:50:36: ed:e8:42:7f:94:5e:54:21:35:41:c6:20:bf:ed:d7:98:f3:2f: f3:db:a0:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjYwNDIxMDAxOTA1WhcNMjYwNDI4MDAxOTA1WjAYMRYwFAYD VQQDEw02OWU2YzI3YS1mMDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9iwAD4UrhaD/Cxfc5mGf7JKGJMQL0v39wWwWtb4XNqk0ZnPEN92cWQbKxrt qk0aewNaMYuVWneZFl0efmk0IUwyWveG1d1L1uuAnVR4uDXblq7woGqIN8k0yB62 C9051WuX+2afXpyq30poZkqkb+gL3AFdeCPJfie6tTbzm7+YJUhwjWDot2WqvnI1 UfYHBfONjQ9BKg4rK3GUiho8Ulry/URIH7Sus2OGNAx60+U1Yvt6hhtQ7BNmuFKG Dx1LyMawIFR4GSyJyarRtQA8n7g4phBcBnL0trrBgnOS4WY4ow3B0SkSGjHmt+Ea bMU6l1hkWChuC7WiZZg02jxh3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBoDjhqE jSgrIQc7Rn4+0aeaDm1dMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC83NTk4NDQ0NDcyMEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5Nlhk N1R0ejFnVXU0RkZzQWt4UE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAemjWtmHSCJeXJxBQ6vYbx53iZIJnY8MFNwGMvlruMWuM0sS38wxOXgbc8br4 LR6209F8X3ml2C34nW0I2xpfpdA2+CqmVOO41FcBZjJqWCciJFe/NdC3ZIFV55ta OKkAkVjap3CiL9QNZWPNwm2Rtn+wJz3fWlade8QfRlPUwf05htRYaoivE1QoiS+K D4bsjnElQWkHq8XaupG4qRkrJ25giPWSpym5CmcPzi2eqzW7MewzwkPlcEqR+uEg aU/E5HfxFW6pIb8VOYB/6ZAMy5wrbR7Gf0s5qqPYGzcRiwXkQBQUxz6hLFA27ehC f5ReVCE1QcYgv+3XmPMv89ug7w== -----END CERTIFICATE-----Generated at Wed Apr 22 05:21:55 2026 by rpki-client