$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: YK6Gu4J114jhNZdXWU4gGtQ8E7Zg662IwfrHYw79vw0= Subject key identifier: CE:44:8D:9C:E6:92:08:12:31:4E:BA:2B:44:49:BA:B4:99:3B:75:26 Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 06D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 06B6 Signing time: Thu 16 Apr 2026 22:29:27 +0000 Manifest this update: Thu 16 Apr 2026 22:29:26 +0000 Manifest next update: Thu 23 Apr 2026 22:29:26 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: UgVSjtYgWW6lJbyhMlIt3WnLU+NfBGstX9QWVyQPXjQ=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: ODIX3oDpfnNWOwtgKPini7l1bVtlb/9n+o+dXisnTbg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:29:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1747 (0x6d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: Apr 16 22:29:26 2026 GMT Not After : Apr 23 22:29:26 2026 GMT Subject: CN=69e162c7-45d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:72:4f:40:e2:8d:2b:72:b3:83:7c:64:d6:25: 57:53:12:7c:82:c5:89:28:b4:fa:ac:8d:d0:31:b9: 36:82:fa:73:9c:68:0a:47:24:6e:7d:be:1d:62:0b: f0:8d:24:29:ed:8b:07:c1:60:de:1d:4e:89:2e:bb: 66:3b:af:36:0b:e9:f0:de:0c:61:25:c1:92:3c:e8: a3:6c:57:10:0a:4b:02:4c:cf:9e:b9:30:b1:1b:ff: c1:c8:6c:3a:f7:aa:86:1d:e3:ac:c0:3a:0a:03:0c: 5b:8f:4a:a6:09:97:77:3b:02:f0:55:84:66:58:e6: 88:47:ed:59:59:7b:0d:20:d3:f8:2b:66:ad:fc:30: 1e:f6:b7:4d:a8:43:3f:98:34:58:d6:c9:bf:58:aa: 33:80:8c:5f:6e:64:74:ea:f3:f9:92:f4:50:8a:1e: 4f:97:67:71:b7:69:90:78:e4:36:38:2e:08:c2:f2: 59:cc:12:36:b2:3c:bd:75:7e:ae:4b:34:7e:70:ee: f4:4e:2b:c4:e9:62:9c:95:f9:f4:40:ad:cd:e0:2b: 8d:00:07:74:88:b9:52:b6:d8:48:18:8d:85:fe:83: 30:ff:22:ba:cb:a4:c6:cf:08:2a:0a:4e:2b:93:e1: 53:cb:ca:80:f8:fe:46:c3:67:94:91:33:bd:63:a1: 11:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:44:8D:9C:E6:92:08:12:31:4E:BA:2B:44:49:BA:B4:99:3B:75:26 X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b5:73:07:7e:eb:d2:0f:a1:2d:c6:fe:63:26:0a:04:f3:62: d0:b8:ce:d0:4a:9b:33:b6:45:69:10:29:10:ce:b1:be:b7:bf: 69:c3:e3:a6:96:43:85:0e:8f:27:e8:5e:f0:ca:2f:53:a5:88: d5:70:80:01:a3:10:61:90:76:59:00:76:4e:dc:ca:b5:67:b6: e3:d4:b5:bb:67:ba:86:ec:a3:2a:59:b3:83:d1:36:76:f3:8e: ec:7f:fd:39:5d:8b:a0:13:31:9c:fb:6c:1f:01:4b:18:fa:67: 7f:ac:ba:c9:73:da:7d:75:44:c6:57:ce:1b:e9:d0:ae:55:fc: 77:e9:34:cd:0a:e0:a4:fc:e0:a9:da:67:82:27:d0:c5:bb:46: 28:66:d9:95:49:9f:09:9c:05:95:de:8c:b8:71:ee:c7:23:a5: c5:90:fb:de:38:52:c3:42:23:0d:b0:7b:19:4e:9f:50:d0:54: 9e:b4:d8:4e:b4:08:56:f1:d3:4b:5d:fc:4b:6a:31:ef:cc:e5: f1:b1:4a:b8:3e:18:7d:4c:42:a3:10:88:c7:a3:a9:f5:8e:a9: f4:85:29:26:76:4c:5a:1f:ff:69:13:48:19:34:de:40:fc:f5: 7a:2d:7d:ba:3c:f0:39:ce:f4:3c:87:76:83:5f:cc:d2:9b:5e: 79:8c:a1:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjYwNDE2MjIyOTI2WhcNMjYwNDIzMjIyOTI2WjAYMRYwFAYD VQQDEw02OWUxNjJjNy00NWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHJPQOKNK3Kzg3xk1iVXUxJ8gsWJKLT6rI3QMbk2gvpznGgKRyRufb4dYgvw jSQp7YsHwWDeHU6JLrtmO682C+nw3gxhJcGSPOijbFcQCksCTM+euTCxG//ByGw6 96qGHeOswDoKAwxbj0qmCZd3OwLwVYRmWOaIR+1ZWXsNINP4K2at/DAe9rdNqEM/ mDRY1sm/WKozgIxfbmR06vP5kvRQih5Pl2dxt2mQeOQ2OC4IwvJZzBI2sjy9dX6u SzR+cO70TivE6WKclfn0QK3N4CuNAAd0iLlStthIGI2F/oMw/yK6y6TGzwgqCk4r k+FTy8qA+P5Gw2eUkTO9Y6ER1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM5EjZzm kggSMU66K0RJurSZO3UmMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIrVzB37r0g+hLcb+YyYKBPNi0LjO0EqbM7ZFaRApEM6xvre/acPjppZDhQ6P J+he8MovU6WI1XCAAaMQYZB2WQB2TtzKtWe249S1u2e6huyjKlmzg9E2dvOO7H/9 OV2LoBMxnPtsHwFLGPpnf6y6yXPafXVExlfOG+nQrlX8d+k0zQrgpPzgqdpngifQ xbtGKGbZlUmfCZwFld6MuHHuxyOlxZD73jhSw0IjDbB7GU6fUNBUnrTYTrQIVvHT S138S2ox78zl8bFKuD4YfUxCoxCIx6Op9Y6p9IUpJnZMWh//aRNIGTTeQPz1ei19 ujzwOc70PId2g1/M0pteeYyhhQ== -----END CERTIFICATE-----Generated at Fri Apr 17 19:04:28 2026 by rpki-client