$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft File: 2H4ClpVGrcVaesygjK2yh5vGmck.mft (raw, json) Hash identifier: ZTVzRhoqDfevb4Dkf5w21jwGPVazS1p+1vt7FXnVBMw= Subject key identifier: 29:CC:91:4C:B4:1C:6C:BF:7A:E4:12:6E:BF:FC:3F:97:9E:86:1A:72 Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: 0227 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft Manifest number: 0222 Signing time: Sun 05 Apr 2026 02:19:20 +0000 Manifest this update: Sun 05 Apr 2026 02:19:20 +0000 Manifest next update: Sun 12 Apr 2026 02:19:20 +0000 Files and hashes: 1: 2H4ClpVGrcVaesygjK2yh5vGmck.crl (hash: vw3ysl9RdPFAU9ugfYq6dSPyb488nMOVepbj9fl8kvU=) 2: A4B0D326F0A311ED99A1471CC4F9AE02.roa (hash: h10z21e5Oy2p6gz6NvjFEykQ6dDt++dpQhjiOqNwnqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:19:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 551 (0x227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F, serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Validity Not Before: Apr 5 02:19:20 2026 GMT Not After : Apr 12 02:19:20 2026 GMT Subject: CN=69d1c6a8-defa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:09:b2:ad:de:95:37:25:18:2e:93:23:dc:e1: 94:f4:3e:40:7c:e9:4a:9e:2b:f8:73:93:08:0d:4b: a5:65:c8:fd:4c:81:2e:91:ad:75:28:51:9a:b4:de: 0e:e5:8c:a2:7e:2e:fa:94:56:fe:17:a5:b1:87:43: d6:e2:30:fb:ef:fa:8b:15:7d:3c:49:36:6a:26:f9: 5b:5b:14:7d:9f:aa:fd:21:34:db:35:71:e0:f8:f8: 9e:5b:5e:19:28:d4:1f:05:15:2a:60:97:97:6a:1f: 25:ea:31:81:1f:89:f2:ee:7c:03:87:b0:2a:bf:87: 33:14:6c:89:4d:a2:1d:b8:d0:2e:b1:6f:e4:e1:f6: c4:b4:dd:55:4d:fa:e5:12:2f:3d:d4:40:49:d5:02: 61:f4:dc:4f:7e:08:de:d9:04:99:94:12:4a:cb:81: a0:6d:3b:46:79:13:cd:ea:b6:4d:ea:0d:6c:6f:16: b3:5e:8e:eb:45:c9:9d:48:e7:29:c6:fa:20:23:bd: 0c:a9:3d:32:9c:fa:b8:05:c9:27:b2:39:b3:6d:80: b2:10:e4:52:1f:39:f1:ed:03:ec:7d:9d:de:01:12: 0a:b4:8e:c9:eb:5c:bd:df:b6:83:d2:97:a8:6d:ad: 88:ce:81:e2:8e:e2:f7:84:77:41:8d:13:03:e7:c3: 00:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:CC:91:4C:B4:1C:6C:BF:7A:E4:12:6E:BF:FC:3F:97:9E:86:1A:72 X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:79:1b:e5:8c:f5:a6:a1:f6:c9:83:8c:1b:ea:4d:04:78:04: f6:d5:47:f5:cb:80:8d:e5:87:9d:fb:9f:27:a7:8e:3c:1c:b9: 42:b3:a2:2e:04:13:cf:4f:0b:16:59:8f:aa:d4:7a:8f:1b:5b: 15:e8:27:9e:3c:96:cd:e7:6d:f5:b0:4a:a6:8d:1d:60:5c:1d: f8:13:be:09:40:e6:a1:ca:56:e9:0a:a8:7b:01:65:c4:15:b4: 93:57:60:9f:e9:17:37:e6:97:a5:bf:52:58:1e:61:ed:80:e6: 40:10:1e:22:a0:5c:4c:2e:95:1e:8c:bf:a9:70:e8:cf:e0:b7: 00:61:7c:24:18:28:3c:88:1b:e5:f4:12:37:05:07:59:e7:fd: ea:d1:3c:b1:d8:7b:ee:ea:21:da:4a:b4:61:f7:4c:71:0c:a1: 4d:8e:c0:c8:75:e9:7e:db:c6:1d:c7:f0:13:2f:f3:96:e3:cc: e1:eb:e5:5f:c7:c1:0a:50:f0:73:3a:8e:06:c8:8c:f5:7d:7a: d5:39:d9:a3:f4:3b:fc:36:ab:6b:a9:bd:8a:d2:3c:7d:4e:cf: 3d:55:43:a0:4a:d8:ed:33:85:70:38:5c:62:38:3f:11:c7:45: 87:07:e2:1f:78:3f:da:4c:d5:0e:3d:a2:22:fe:06:42:39:e5: bc:b4:1f:fd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3 OUJDNjk5QzkwHhcNMjYwNDA1MDIxOTIwWhcNMjYwNDEyMDIxOTIwWjAYMRYwFAYD VQQDEw02OWQxYzZhOC1kZWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgmyrd6VNyUYLpMj3OGU9D5AfOlKniv4c5MIDUulZcj9TIEuka11KFGatN4O 5Yyifi76lFb+F6Wxh0PW4jD77/qLFX08STZqJvlbWxR9n6r9ITTbNXHg+PieW14Z KNQfBRUqYJeXah8l6jGBH4ny7nwDh7Aqv4czFGyJTaIduNAusW/k4fbEtN1VTfrl Ei891EBJ1QJh9NxPfgje2QSZlBJKy4GgbTtGeRPN6rZN6g1sbxazXo7rRcmdSOcp xvogI70MqT0ynPq4BcknsjmzbYCyEORSHznx7QPsfZ3eARIKtI7J61y937aD0peo ba2IzoHijuL3hHdBjRMD58MATQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCnMkUy0 HGy/euQSbr/8P5eehhpyMB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI1Ri84RTQxODAyMEYwOUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3Jj VmFlc3lnaksyeWg1dkdtY2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaHkb5Yz1pqH2yYOMG+pNBHgE9tVH9cuAjeWHnfufJ6eOPBy5QrOiLgQTz08L FlmPqtR6jxtbFegnnjyWzedt9bBKpo0dYFwd+BO+CUDmocpW6QqoewFlxBW0k1dg n+kXN+aXpb9SWB5h7YDmQBAeIqBcTC6VHoy/qXDoz+C3AGF8JBgoPIgb5fQSNwUH Wef96tE8sdh77uoh2kq0YfdMcQyhTY7AyHXpftvGHcfwEy/zluPM4evlX8fBClDw czqOBsiM9X161TnZo/Q7/Dara6m9itI8fU7PPVVDoErY7TOFcDhcYjg/EcdFhwfi H3g/2kzVDj2iIv4GQjnlvLQf/Q== -----END CERTIFICATE-----Generated at Mon Apr 6 11:20:59 2026 by rpki-client