$ rpki-client -vvf rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft File: 2z39hs6_6u06rxXeruaWUjR0aik.mft (raw, json) Hash identifier: NxJ32/uOzWjChWBPuz6I8A6S/Bz4oKU8VKN01IunUwE= Subject key identifier: 8D:15:F1:2F:88:7B:A8:F3:44:E1:64:6A:1F:22:DC:79:E4:51:60:A9 Authority key identifier: DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 Certificate issuer: /CN=A9171BF0/serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft Manifest number: 0106 Signing time: Sun 05 Apr 2026 05:29:45 +0000 Manifest this update: Sun 05 Apr 2026 05:29:44 +0000 Manifest next update: Sun 12 Apr 2026 05:29:44 +0000 Files and hashes: 1: 2z39hs6_6u06rxXeruaWUjR0aik.crl (hash: YnDduc+I9UpL+PPEkGd6r/gaPAWmmAte2zXWhOP/7kU=) 2: 12004368A41611EFA0D7CD42C4F9AE02.roa (hash: Mbaq1JxQwVcFP87z4eBI+1tbhFSk65AD4tx8mWL3NcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:29:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171BF0, serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Validity Not Before: Apr 5 05:29:44 2026 GMT Not After : Apr 12 05:29:44 2026 GMT Subject: CN=69d1f349-c308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ef:71:0f:ab:b1:d3:b7:2d:fa:df:56:f1:23: df:29:c8:95:99:5d:90:4d:bb:c2:f4:de:53:56:fe: cd:18:14:bc:2c:a2:68:6d:40:c8:ed:ec:84:58:a8: f6:cb:ec:7c:61:75:cb:46:f4:c5:5b:5b:b7:01:1b: 30:13:67:0e:d0:7b:12:89:88:19:cf:47:59:2d:34: f2:23:db:aa:ea:d2:61:03:db:95:c6:15:9d:53:6c: 4a:8f:7a:d3:ae:a1:3e:58:e3:bd:84:ed:be:87:e8: 97:c6:3b:8c:a1:76:8a:05:70:69:df:07:13:6c:90: 48:ee:0e:5c:a0:c6:ac:bb:db:f4:06:b0:a6:6c:1c: 9a:3e:6b:86:7f:c5:be:c0:72:73:b9:5b:17:61:32: 36:b3:dc:27:7f:1e:c8:a8:42:d5:44:92:ec:3a:77: 0c:8c:db:db:af:60:e1:a2:f3:bd:7f:15:c9:6c:5e: 5f:ad:cb:c5:66:6d:15:43:4f:a2:13:00:87:5e:0b: b1:d8:bd:80:3c:e4:16:4b:db:8c:4d:93:72:76:e8: 8a:1a:ed:c2:f2:42:7a:62:a4:c0:f1:06:f7:66:c2: a4:39:cf:8e:48:97:e9:d3:96:93:e4:6b:cd:2b:e9: 61:d4:7b:e5:a5:d6:f6:bb:fe:36:2e:d7:6a:76:52: e7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:15:F1:2F:88:7B:A8:F3:44:E1:64:6A:1F:22:DC:79:E4:51:60:A9 X509v3 Authority Key Identifier: keyid:DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:df:9e:ed:01:21:8c:5b:9f:23:ee:6b:d7:53:80:40:86:21: dc:8b:70:d8:fe:bd:0d:05:48:6f:1a:3a:66:67:54:f8:f1:1c: 08:aa:6c:03:58:15:c8:e6:21:89:4f:21:02:c1:fd:ad:30:f0: 63:03:65:ec:81:02:16:32:82:9d:51:b4:7b:32:bd:3c:fb:bb: ce:62:35:f7:63:fb:17:9b:8f:de:f0:24:cc:0f:2f:82:14:40: 62:52:d9:b6:05:da:da:f3:d7:8b:84:92:20:22:c1:ab:a3:e7: 6c:59:92:90:98:3b:5f:14:ce:16:3d:4c:d8:61:0e:71:b1:9a: 91:14:22:ae:b8:9e:6d:a7:d5:69:cd:1c:02:2e:b4:4f:8a:a2: b1:ab:1e:36:54:88:54:15:f4:15:03:93:43:ee:48:d0:2a:a9: 18:eb:8d:15:76:b8:f7:5a:9e:bd:e7:9d:44:9b:95:7c:b4:2e: 2c:22:6e:c9:86:fb:2b:c8:38:fa:e5:d4:7e:bc:d0:b6:27:da: 28:fd:e2:01:62:b2:d9:39:e3:5d:04:f1:5c:83:f6:e6:3f:6f: 99:8f:82:2d:fc:b2:18:96:40:6e:4f:4e:91:2e:88:0e:70:d1: 7b:46:cf:38:34:b7:e9:dd:f2:75:d3:10:76:d0:6b:97:48:69: df:ed:ea:b9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCRjAxMTAvBgNVBAUTKERCM0RGRDg2Q0VCRkVBRUQzQUFGMTVERUFFRTY5NjUy MzQ3NDZBMjkwHhcNMjYwNDA1MDUyOTQ0WhcNMjYwNDEyMDUyOTQ0WjAYMRYwFAYD VQQDEw02OWQxZjM0OS1jMzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+9xD6ux07ct+t9W8SPfKciVmV2QTbvC9N5TVv7NGBS8LKJobUDI7eyEWKj2 y+x8YXXLRvTFW1u3ARswE2cO0HsSiYgZz0dZLTTyI9uq6tJhA9uVxhWdU2xKj3rT rqE+WOO9hO2+h+iXxjuMoXaKBXBp3wcTbJBI7g5coMasu9v0BrCmbByaPmuGf8W+ wHJzuVsXYTI2s9wnfx7IqELVRJLsOncMjNvbr2DhovO9fxXJbF5frcvFZm0VQ0+i EwCHXgux2L2APOQWS9uMTZNyduiKGu3C8kJ6YqTA8Qb3ZsKkOc+OSJfp05aT5GvN K+lh1Hvlpdb2u/42LtdqdlLnYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI0V8S+I e6jzROFkah8i3HnkUWCpMB8GA1UdIwQYMBaAFNs9/YbOv+rtOq8V3q7mllI0dGop MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUJGMC9BNzhGMUIxMkE0 MTUxMUVGQTE0RkJEM0ZDNEY5QUUwMi8yejM5aHM2XzZ1MDZyeFhlcnVhV1VqUjBh aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6MzloczZfNnUwNnJ4WGVydWFXVWpSMGFpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUJGMC9BNzhGMUIxMkE0MTUxMUVGQTE0RkJEM0ZDNEY5QUUwMi8yejM5aHM2XzZ1 MDZyeFhlcnVhV1VqUjBhaWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIN+e7QEhjFufI+5r11OAQIYh3Itw2P69DQVIbxo6ZmdU+PEcCKpsA1gVyOYh iU8hAsH9rTDwYwNl7IECFjKCnVG0ezK9PPu7zmI192P7F5uP3vAkzA8vghRAYlLZ tgXa2vPXi4SSICLBq6PnbFmSkJg7XxTOFj1M2GEOcbGakRQirriebafVac0cAi60 T4qisaseNlSIVBX0FQOTQ+5I0CqpGOuNFXa491qeveedRJuVfLQuLCJuyYb7K8g4 +uXUfrzQtifaKP3iAWKy2TnjXQTxXIP25j9vmY+CLfyyGJZAbk9OkS6IDnDRe0bP ODS36d3yddMQdtBrl0hp3+3quQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:23 2026 by rpki-client