$ rpki-client -vvf rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft File: C2HEdIlppE_IPIiCoCV50NWSO2E.mft (raw, json) Hash identifier: 9DTcnoLlZYzIoGta5C90dTNNQAfm7+J1C9a0GCp5yMQ= Subject key identifier: E6:6E:57:66:BB:85:4B:25:76:24:4A:64:43:B0:6B:4E:76:6E:07:FD Authority key identifier: 0B:61:C4:74:89:69:A4:4F:C8:3C:88:82:A0:25:79:D0:D5:92:3B:61 Certificate issuer: /CN=A917B092/serialNumber=0B61C4748969A44FC83C8882A02579D0D5923B61 Certificate serial: 025E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft Manifest number: 024A Signing time: Tue 21 Apr 2026 02:28:07 +0000 Manifest this update: Tue 21 Apr 2026 02:28:06 +0000 Manifest next update: Tue 28 Apr 2026 02:28:06 +0000 Files and hashes: 1: C2HEdIlppE_IPIiCoCV50NWSO2E.crl (hash: qmaKYyXlzBZK8kHzbCmQGfs2uY0alLevIBC+akF8ef8=) 2: 9816AE202ED111EF9B668069C4F9AE02.roa (hash: BOi87rNifD1/nHT0sM2/8BPI6PFs410I1xgHG7rnuhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.crl rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 02:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 606 (0x25e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B092, serialNumber=0B61C4748969A44FC83C8882A02579D0D5923B61 Validity Not Before: Apr 21 02:28:06 2026 GMT Not After : Apr 28 02:28:06 2026 GMT Subject: CN=69e6e0b7-b159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5e:3e:e3:52:9c:07:a2:31:21:22:49:e4:4a: f9:2e:97:e1:c9:6e:07:f5:9e:ed:c2:12:fc:3b:4a: 7b:de:7e:8d:9a:e6:1e:b0:eb:13:df:6d:8e:d8:c9: 9e:9a:64:1b:3c:5b:81:63:27:34:06:51:cf:3b:d0: dd:fc:c4:b9:95:4e:b0:2a:74:b8:90:7a:56:e9:35: 30:02:42:30:f6:13:13:cd:04:b7:9b:69:4c:5b:24: 32:13:87:7d:bc:77:a0:2d:00:c8:d9:e3:15:d1:6a: fc:69:e7:94:26:69:07:b9:5d:b2:fd:da:35:6c:86: 72:ef:7c:81:50:ef:85:0e:68:d1:49:dd:d3:43:10: 2d:b1:a7:4e:84:8f:dc:e7:f1:f4:d5:68:63:73:ea: 54:c8:4b:83:97:d5:a1:b4:79:fe:ec:be:b5:7f:c0: 00:16:9c:1b:b4:f3:08:d1:54:35:8b:cf:33:de:cd: f2:6b:97:73:83:f3:b2:3f:72:de:8f:d9:38:9c:c4: 69:75:2e:f0:f1:27:28:e6:2c:e9:ee:17:f6:9f:b3: bb:95:c9:6a:30:e4:a2:57:7e:39:5a:46:ea:c7:1e: 03:59:ed:bc:28:f5:5b:8a:b3:e4:d2:3f:cb:c7:e0: bc:6b:ea:bf:67:65:28:11:bc:a6:f0:f2:a0:47:5c: 70:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:6E:57:66:BB:85:4B:25:76:24:4A:64:43:B0:6B:4E:76:6E:07:FD X509v3 Authority Key Identifier: keyid:0B:61:C4:74:89:69:A4:4F:C8:3C:88:82:A0:25:79:D0:D5:92:3B:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:de:9d:ea:9b:b7:e2:e3:b2:9b:3f:5a:13:0f:db:2a:e3:5b: 7e:e4:63:f4:29:fe:ea:59:4f:29:f4:5e:4d:31:ae:a5:60:99: a3:ac:cb:f9:d8:c8:14:eb:32:17:b8:d7:a6:08:5a:5c:a6:6a: f6:6b:a7:39:da:95:05:fd:8b:d7:67:4e:72:58:8e:c7:bb:6f: 3c:6e:ed:4d:19:e0:a7:fe:d6:bd:8b:69:77:ae:61:f9:bc:93: ab:54:45:a4:9e:bd:3d:77:48:81:00:a5:d1:e1:ba:c7:a2:eb: c0:e0:be:8c:9b:ba:d8:44:0d:00:69:40:ae:3e:ee:81:0f:89: 10:73:ba:6a:d8:08:31:e8:1a:3d:e7:9f:68:cb:87:e9:66:84: 78:66:1c:ce:0e:a8:5e:e9:00:12:81:2f:7c:ac:0d:ca:ce:bd: 52:12:3e:5a:ea:a6:d7:44:ae:9c:60:d9:b7:08:fc:6f:4b:fc: 38:0b:21:85:51:6e:c6:68:85:cd:30:7e:2d:5c:85:4d:d3:85: 08:81:5c:7b:7e:ba:5c:6c:87:60:cf:6d:cf:23:2a:95:3a:0b: bc:4a:8f:54:30:79:50:b9:b2:c2:63:8a:ed:94:c0:2d:cd:ff: 8e:25:d3:82:61:7d:5d:a5:43:de:cc:51:85:67:a3:26:e7:8c: 99:e8:18:d8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IwOTIxMTAvBgNVBAUTKDBCNjFDNDc0ODk2OUE0NEZDODNDODg4MkEwMjU3OUQw RDU5MjNCNjEwHhcNMjYwNDIxMDIyODA2WhcNMjYwNDI4MDIyODA2WjAYMRYwFAYD VQQDEw02OWU2ZTBiNy1iMTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqF4+41KcB6IxISJJ5Er5LpfhyW4H9Z7twhL8O0p73n6NmuYesOsT322O2Mme mmQbPFuBYyc0BlHPO9Dd/MS5lU6wKnS4kHpW6TUwAkIw9hMTzQS3m2lMWyQyE4d9 vHegLQDI2eMV0Wr8aeeUJmkHuV2y/do1bIZy73yBUO+FDmjRSd3TQxAtsadOhI/c 5/H01Whjc+pUyEuDl9WhtHn+7L61f8AAFpwbtPMI0VQ1i88z3s3ya5dzg/OyP3Le j9k4nMRpdS7w8Sco5izp7hf2n7O7lclqMOSiV345Wkbqxx4DWe28KPVbirPk0j/L x+C8a+q/Z2UoEbym8PKgR1xwQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOZuV2a7 hUsldiRKZEOwa052bgf9MB8GA1UdIwQYMBaAFAthxHSJaaRPyDyIgqAledDVkjth MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjA5Mi8yODIzMDk5NkVF MjMxMUVEQkFCRTJBNURDNEY5QUUwMi9DMkhFZElscHBFX0lQSWlDb0NWNTBOV1NP MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MySEVkSWxwcEVfSVBJaUNvQ1Y1ME5XU08yRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjA5Mi8yODIzMDk5NkVFMjMxMUVEQkFCRTJBNURDNEY5QUUwMi9DMkhFZElscHBF X0lQSWlDb0NWNTBOV1NPMkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARd6d6pu34uOymz9aEw/bKuNbfuRj9Cn+6llPKfReTTGupWCZo6zL+djIFOsy F7jXpghaXKZq9munOdqVBf2L12dOcliOx7tvPG7tTRngp/7WvYtpd65h+byTq1RF pJ69PXdIgQCl0eG6x6LrwOC+jJu62EQNAGlArj7ugQ+JEHO6atgIMegaPeefaMuH 6WaEeGYczg6oXukAEoEvfKwNys69UhI+Wuqm10SunGDZtwj8b0v8OAshhVFuxmiF zTB+LVyFTdOFCIFce366XGyHYM9tzyMqlToLvEqPVDB5ULmywmOK7ZTALc3/jiXT gmF9XaVD3sxRhWejJueMmegY2A== -----END CERTIFICATE-----Generated at Tue Apr 21 20:51:18 2026 by rpki-client