$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft File: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft (raw, json) Hash identifier: yNvAZo67haJpLuKeRKsPgVtSpCcQFR2XLulIHYCbZi8= Subject key identifier: C8:BF:4A:E6:17:14:B8:3B:4E:73:4B:F4:7E:87:5B:D8:59:A6:4C:9F Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0B83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft Manifest number: 0AC9 Signing time: Thu 16 Apr 2026 19:34:58 +0000 Manifest this update: Thu 16 Apr 2026 19:34:57 +0000 Manifest next update: Thu 23 Apr 2026 19:34:57 +0000 Files and hashes: 1: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl (hash: ffTHR64zvooDnbtyvmVbq6T50J1UYAa4rLHwsLMPqIM=) 2: C3E2252E205F11EE8117111CC4F9AE02.roa (hash: jZ6Iauv/dN/4P0hBUVndivCUUgxGO8TMbCYwzqgk7iI=) 3: 8626FFC65AE511EBA452D33EC4F9AE02.roa (hash: If1p2T4ry814caqPtmeuOiTH0yVCnehjVYiIPxJ8aBs=) 4: 553170245AC511EBA052F663C4F9AE02.roa (hash: 7erTlCvInc3AVRLw7wvtHf/eZ1jEoIGiOeY13F8Zqv8=) 5: DCF88EAE5ED811EBAB677671C4F9AE02.roa (hash: M8kgzZ/qskhWT6RqbwLXgYKBgdTgBhgTCm6VDEfCRyI=) 6: 0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa (hash: zt8ovKN7+n8nwUz7dlHlvLBjh4KwXCc4mYOMPsqbe38=) 7: 0EA44D4E5ADD11EBB9CEE568C4F9AE02.roa (hash: xyMhDnjS1J7j5KhCCxE7FkpfD0zlq+Ub21i1KmDM4ok=) 8: 61EFB2ACAC3611EDA5995F3FC4F9AE02.roa (hash: lxrRVOjIONZ0+sk1QUPdtSqTSIWnhV1Sgp2inbSvE0o=) 9: 84023C06D24611EABDDF5344C4F9AE02.roa (hash: FMzg28ZdQ4F0sdhtK2wuRkllmrqXUEFKB65mg1sG8L4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2947 (0xb83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Apr 16 19:34:57 2026 GMT Not After : Apr 23 19:34:57 2026 GMT Subject: CN=69e139e2-0ca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:67:52:4d:8c:5b:4b:63:96:77:df:fd:85:68: c2:e9:7c:52:21:fb:71:eb:eb:d2:fe:b7:38:dc:51: e5:95:fa:9a:5c:66:be:f8:85:d1:96:49:df:8b:ec: 49:a7:f5:9f:88:4b:ca:14:65:8c:1f:a4:64:4e:5f: 8c:3a:27:18:9a:39:33:45:18:b8:63:64:64:d7:f1: 7e:f5:43:84:ce:89:b7:04:c8:1e:0b:49:8e:c3:08: 8c:7c:d9:c8:39:41:80:05:db:bf:87:9d:cc:72:81: 79:5d:92:d6:57:af:e1:59:88:ad:b9:88:e3:70:56: 08:49:78:9e:a4:99:86:44:82:2c:bb:37:7b:94:9e: 05:e1:0e:81:86:67:ed:5b:bd:64:cd:a5:c8:24:a8: 6d:96:de:8f:69:57:07:15:15:55:0d:b6:7c:41:e6: b5:bf:1c:ea:42:72:37:95:e6:7a:44:0c:04:a4:f3: a6:76:ad:08:99:83:7e:88:6b:ce:76:0e:c3:ce:51: ee:80:61:31:9a:52:ac:2e:c3:54:f5:dc:73:2b:3a: 50:9c:d6:ae:f0:6b:17:96:c4:6a:06:6e:9d:7c:aa: e7:6f:81:d2:4e:37:05:c1:d3:eb:49:a2:7b:36:ca: e3:97:94:6b:72:d4:6c:58:e4:bd:f6:fe:7a:a5:b4: ba:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:BF:4A:E6:17:14:B8:3B:4E:73:4B:F4:7E:87:5B:D8:59:A6:4C:9F X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption df:ba:0a:2a:ad:bc:8f:65:3e:b9:89:7a:82:ff:85:9f:da:ac: ea:7d:c0:dd:16:00:08:b2:5d:43:1f:fb:93:4c:15:86:20:ea: a1:1a:18:98:5c:28:ab:fb:26:84:14:c1:46:fe:17:b9:6d:96: 01:57:10:15:57:66:df:f1:fe:d5:30:6a:0b:3e:b8:d8:3a:a1: 1c:16:00:e3:66:a7:52:0d:db:b5:12:c4:6c:d1:31:c6:80:11: f3:53:73:a2:ea:37:3a:e7:5a:40:46:60:33:a9:7e:2e:95:4b: 8f:bc:0a:40:16:e5:19:d7:eb:ac:13:d8:58:d2:df:df:28:d4: dd:7a:29:34:62:ac:5f:34:e6:ef:02:b9:34:ef:3e:22:ab:b4: 12:b8:40:a5:1c:78:be:da:1f:31:bd:76:91:70:e6:4a:7b:e1: a4:8b:89:f5:6f:08:38:17:dc:9f:4c:7d:c9:ea:1a:2f:d7:da: 1d:da:aa:9c:fb:46:11:07:fa:69:81:95:c9:88:97:0b:fb:24: e5:28:42:10:25:3c:15:61:2f:1b:ac:e2:d2:33:3b:e2:5f:73: e4:95:50:ad:a8:50:d1:77:b1:cb:a6:6d:d4:fc:f1:89:2a:67: df:08:34:9d:a5:d5:12:4a:28:73:bb:b5:ae:fa:f6:00:ba:3e: 0f:0c:0a:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjYwNDE2MTkzNDU3WhcNMjYwNDIzMTkzNDU3WjAYMRYwFAYD VQQDEw02OWUxMzllMi0wY2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWdSTYxbS2OWd9/9hWjC6XxSIftx6+vS/rc43FHllfqaXGa++IXRlknfi+xJ p/WfiEvKFGWMH6RkTl+MOicYmjkzRRi4Y2Rk1/F+9UOEzom3BMgeC0mOwwiMfNnI OUGABdu/h53McoF5XZLWV6/hWYituYjjcFYISXiepJmGRIIsuzd7lJ4F4Q6Bhmft W71kzaXIJKhtlt6PaVcHFRVVDbZ8Qea1vxzqQnI3leZ6RAwEpPOmdq0ImYN+iGvO dg7DzlHugGExmlKsLsNU9dxzKzpQnNau8GsXlsRqBm6dfKrnb4HSTjcFwdPrSaJ7 Nsrjl5RrctRsWOS99v56pbS6ZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMi/SuYX FLg7TnNL9H6HW9hZpkyfMB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy80MzdDQzQwNjg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhL ZEJ4cUpKM0FGYWJWUktZcVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA37oKKq28j2U+uYl6gv+Fn9qs6n3A3RYACLJdQx/7k0wVhiDqoRoYmFwoq/sm hBTBRv4XuW2WAVcQFVdm3/H+1TBqCz642DqhHBYA42anUg3btRLEbNExxoAR81Nz ouo3OudaQEZgM6l+LpVLj7wKQBblGdfrrBPYWNLf3yjU3XopNGKsXzTm7wK5NO8+ Iqu0ErhApRx4vtofMb12kXDmSnvhpIuJ9W8IOBfcn0x9yeoaL9faHdqqnPtGEQf6 aYGVyYiXC/sk5ShCECU8FWEvG6zi0jM74l9z5JVQrahQ0Xexy6Zt1PzxiSpn3wg0 naXVEkooc7u1rvr2ALo+DwwKJA== -----END CERTIFICATE-----Generated at Fri Apr 17 11:21:32 2026 by rpki-client