$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: fSagkzn3ITS96afgExkRoTn724/reLo8KpUgP+ZyAq4= Subject key identifier: 5E:C4:DF:A9:CF:7B:67:EC:50:9B:5D:C0:39:93:F7:43:EA:0E:FF:A8 Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 01D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 01C6 Signing time: Sun 05 Apr 2026 03:16:31 +0000 Manifest this update: Sun 05 Apr 2026 03:16:30 +0000 Manifest next update: Sun 12 Apr 2026 03:16:30 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: 1ax1egCa4Wm4S6/I3ExEAa1fmoC7cQksQ2QCwTKOwWA=) 2: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: /6x7x4b9csD2TYsiLEKnpfZB3jGbE1YGP0AsFpZrdN4=) 3: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: hKdbTMFjBDS3XXfZuB0+hdt0c8qX6Q+dGMG1HACFMQ0=) 4: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: hGkqzz2eI5dLw6JFvYyWs5D2WcjZP64M8Kf1cT/imEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: Apr 5 03:16:30 2026 GMT Not After : Apr 12 03:16:30 2026 GMT Subject: CN=69d1d40e-bbe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9d:5f:d0:1a:d2:5c:01:af:e1:d7:b3:43:91: 59:0a:43:2a:e1:0e:d1:d3:a1:d1:da:6b:d2:aa:31: 35:b2:5f:4d:f8:b1:be:25:18:bc:d0:f6:dc:0d:dc: 52:d3:35:29:9c:9d:0d:dc:1b:47:f0:3e:5f:7b:ea: 9e:86:d5:a8:b8:34:de:7a:aa:c6:5a:e5:c5:42:b1: ac:86:00:8d:db:a7:06:5b:fe:85:04:2f:50:0f:af: da:62:ba:fc:f1:79:f4:30:4c:86:8d:ee:78:b6:41: 8c:c5:24:74:8b:7e:3e:ef:cc:84:e3:08:f5:09:9b: 5f:65:37:8f:82:f6:c5:0d:a8:f4:3e:d4:93:06:1b: db:09:e8:5f:ee:d0:86:08:8b:85:30:6c:30:5a:6f: 7a:50:46:09:8a:21:79:e0:d2:2d:50:c7:c2:e1:24: b1:0c:51:51:bf:5e:18:e3:44:b8:12:d2:41:ec:e8: dc:71:ae:9e:60:61:12:9d:1d:d3:e2:7a:1f:1e:97: a9:80:ae:78:fc:f9:e6:ee:71:00:0f:be:e9:94:e0: 80:0a:cd:96:1b:53:89:71:01:eb:88:9d:03:0e:b0: 68:02:96:8b:6f:c2:de:25:83:86:8a:77:21:56:03: ff:00:9c:6d:fd:27:de:d7:73:c8:a1:11:0b:5b:f9: b1:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C4:DF:A9:CF:7B:67:EC:50:9B:5D:C0:39:93:F7:43:EA:0E:FF:A8 X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:49:e9:3e:ba:89:ad:fe:9a:5c:02:65:fc:b5:b7:98:95:d5: 87:68:5b:d7:98:23:58:01:fd:00:4e:30:d3:f9:cb:d4:04:e9: 48:e3:f8:37:9c:12:b5:16:f6:77:f5:9a:7a:df:11:a8:98:65: 32:e6:da:ba:f4:8e:80:0b:11:fb:d0:75:70:af:1e:01:a3:35: 72:05:73:a5:fa:34:a7:b5:7d:e4:d5:87:f7:e8:42:6c:73:56: 96:43:d6:37:ca:25:96:dd:e0:d0:e0:fc:e9:6d:04:8a:57:0a: 7d:c6:ad:1c:be:23:04:63:c0:76:ab:bd:22:7b:0b:7a:5f:5a: 47:0e:2a:24:a3:15:fb:13:08:04:73:37:85:76:5f:32:94:3d: ab:b5:c9:d7:e8:72:50:dc:fa:69:41:c7:dc:bf:79:92:3f:eb: 6b:c3:8a:3d:1f:ea:2b:13:6b:f4:1a:d6:9e:0e:e8:14:f1:e5: 76:7d:c3:22:4b:10:ef:99:c6:6c:48:08:79:07:5c:ee:99:bd: 86:56:98:4c:a1:a2:50:e9:74:cc:de:18:93:7a:60:28:2e:2f: 50:59:b9:ec:e7:6f:9e:7c:74:19:48:6b:96:70:2a:3b:01:3a: 8c:69:2f:96:fb:cc:f1:31:1c:4a:a8:56:ce:b3:47:6b:a7:99: ac:d1:f7:74 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjYwNDA1MDMxNjMwWhcNMjYwNDEyMDMxNjMwWjAYMRYwFAYD VQQDEw02OWQxZDQwZS1iYmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZ1f0BrSXAGv4dezQ5FZCkMq4Q7R06HR2mvSqjE1sl9N+LG+JRi80PbcDdxS 0zUpnJ0N3BtH8D5fe+qehtWouDTeeqrGWuXFQrGshgCN26cGW/6FBC9QD6/aYrr8 8Xn0MEyGje54tkGMxSR0i34+78yE4wj1CZtfZTePgvbFDaj0PtSTBhvbCehf7tCG CIuFMGwwWm96UEYJiiF54NItUMfC4SSxDFFRv14Y40S4EtJB7Ojcca6eYGESnR3T 4nofHpepgK54/Pnm7nEAD77plOCACs2WG1OJcQHriJ0DDrBoApaLb8LeJYOGinch VgP/AJxt/Sfe13PIoRELW/mxPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF7E36nP e2fsUJtdwDmT90PqDv+oMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoUnpPrqJrf6aXAJl/LW3mJXVh2hb15gjWAH9AE4w0/nL1ATpSOP4N5wStRb2 d/Waet8RqJhlMubauvSOgAsR+9B1cK8eAaM1cgVzpfo0p7V95NWH9+hCbHNWlkPW N8ollt3g0OD86W0EilcKfcatHL4jBGPAdqu9InsLel9aRw4qJKMV+xMIBHM3hXZf MpQ9q7XJ1+hyUNz6aUHH3L95kj/ra8OKPR/qKxNr9BrWng7oFPHldn3DIksQ75nG bEgIeQdc7pm9hlaYTKGiUOl0zN4Yk3pgKC4vUFm57Odvnnx0GUhrlnAqOwE6jGkv lvvM8TEcSqhWzrNHa6eZrNH3dA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:31:04 2026 by rpki-client