$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: iZerZhRLnzYpS8crIAH7pXMiS/awjMItCeRj5xaShvE= Subject key identifier: 4E:2B:8F:EE:17:9A:19:7C:80:B8:CB:BD:9F:89:B5:F2:BA:F9:D8:02 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 0465 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 045E Signing time: Sat 04 Apr 2026 23:55:54 +0000 Manifest this update: Sat 04 Apr 2026 23:55:54 +0000 Manifest next update: Sat 11 Apr 2026 23:55:54 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: lXT84N0sWKNG/jIbnyPQZeuX79no5hU4YT+C8oJGhyo=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: gXnStk1MwegllJpHCk0mKvppBMmur0BRxsppyW6UBsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:55:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1125 (0x465) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950, serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: Apr 4 23:55:54 2026 GMT Not After : Apr 11 23:55:54 2026 GMT Subject: CN=69d1a50a-d22d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ac:92:55:18:44:0f:69:78:1c:0c:c4:c3:dd: d1:ee:27:8c:34:7d:32:a4:93:a6:4b:bc:6c:d5:99: f8:5a:a7:db:26:dd:39:0c:09:2f:9d:91:68:a5:34: b6:d5:2b:dd:a0:98:a7:eb:62:08:be:72:e8:de:7f: b0:2e:ad:55:64:78:8b:ea:9e:73:7a:ce:41:ad:39: c1:bc:29:c2:f8:aa:3f:15:33:0b:84:ae:8a:87:9f: a7:47:e3:ba:78:a3:00:1e:b9:19:eb:81:04:fc:93: 7c:b8:ac:86:b7:df:b6:aa:62:72:44:9d:c7:f3:bf: a4:d3:05:d8:74:4b:5e:42:51:9c:5c:81:20:42:2c: 4a:62:44:fe:0c:a8:36:f7:90:16:64:95:2d:70:bb: 2f:9b:cb:39:9a:06:00:ce:81:14:f7:8a:f5:10:70: c1:93:05:2e:4f:98:21:50:48:ff:c5:7b:1f:f3:40: ca:c8:b7:4c:e6:ce:d5:3c:56:f4:1d:7c:79:83:dc: 61:cf:99:89:a1:a6:1d:e3:cf:5b:ad:f8:74:bf:63: 8b:9e:84:60:92:fb:51:a2:09:42:77:68:5a:fc:41: 5d:9a:7b:40:22:e3:b8:db:0b:ee:f3:de:62:ba:b8: 84:38:c5:a4:68:92:5d:d0:ca:49:a7:58:6b:66:c4: f5:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2B:8F:EE:17:9A:19:7C:80:B8:CB:BD:9F:89:B5:F2:BA:F9:D8:02 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:4d:50:de:ea:d0:b6:10:ce:8c:c3:5b:c3:72:e2:2a:b8:74: 4e:67:73:54:ee:7c:45:f6:c3:ba:3c:9d:44:7c:d6:ff:f3:8e: fb:f7:0c:fe:23:68:b2:1f:a7:ce:0b:8f:60:c2:cc:4e:a5:c4: 70:f2:5d:bb:99:b2:6a:75:d1:ac:03:1e:44:c5:80:25:d4:a9: 99:d0:33:59:07:72:c8:78:e5:0f:87:eb:f8:5d:96:ad:0b:83: eb:ac:73:68:c9:eb:15:65:c0:0c:16:80:b7:43:5d:b5:29:56: 74:00:56:2d:b2:ea:ec:27:a1:9c:b9:d6:eb:60:96:96:e6:ac: 23:48:38:36:be:40:aa:e7:a5:50:e1:8d:6a:8a:08:9c:b2:d6: 9a:3a:ca:eb:ff:da:cd:6e:92:41:d8:27:07:6d:b5:90:42:c1: d9:c9:d4:5c:74:5f:d5:cc:3c:db:25:9b:07:0b:dc:54:59:91: 47:17:ea:cd:5d:ce:1b:de:df:ec:c3:a1:59:33:19:a4:f0:ce: f1:2c:82:02:aa:2c:ae:d1:d7:23:8c:ef:0a:87:2c:83:78:40: 1c:6a:a9:15:e1:4e:50:20:3e:b1:d3:1e:4c:bb:c7:96:68:2e: 99:e6:18:64:6a:f1:77:8d:b4:60:be:f2:a9:6b:92:3b:52:1f: a1:9f:d5:de -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjYwNDA0MjM1NTU0WhcNMjYwNDExMjM1NTU0WjAYMRYwFAYD VQQDEw02OWQxYTUwYS1kMjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KySVRhED2l4HAzEw93R7ieMNH0ypJOmS7xs1Zn4WqfbJt05DAkvnZFopTS2 1SvdoJin62IIvnLo3n+wLq1VZHiL6p5zes5BrTnBvCnC+Ko/FTMLhK6Kh5+nR+O6 eKMAHrkZ64EE/JN8uKyGt9+2qmJyRJ3H87+k0wXYdEteQlGcXIEgQixKYkT+DKg2 95AWZJUtcLsvm8s5mgYAzoEU94r1EHDBkwUuT5ghUEj/xXsf80DKyLdM5s7VPFb0 HXx5g9xhz5mJoaYd489brfh0v2OLnoRgkvtRoglCd2ha/EFdmntAIuO42wvu895i uriEOMWkaJJd0MpJp1hrZsT1qQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE4rj+4X mhl8gLjLvZ+JtfK6+dgCMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAa01Q3urQthDOjMNbw3LiKrh0TmdzVO58RfbDujydRHzW//OO+/cM/iNosh+n zguPYMLMTqXEcPJdu5myanXRrAMeRMWAJdSpmdAzWQdyyHjlD4fr+F2WrQuD66xz aMnrFWXADBaAt0NdtSlWdABWLbLq7CehnLnW62CWluasI0g4Nr5AquelUOGNaooI nLLWmjrK6//azW6SQdgnB221kELB2cnUXHRf1cw82yWbBwvcVFmRRxfqzV3OG97f 7MOhWTMZpPDO8SyCAqosrtHXI4zvCocsg3hAHGqpFeFOUCA+sdMeTLvHlmgumeYY ZGrxd420YL7yqWuSO1IfoZ/V3g== -----END CERTIFICATE-----Generated at Mon Apr 6 08:48:09 2026 by rpki-client