$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: Efb+7dwhfN4cGlfajOgbXIDvrKB14eBGFXiE45zRaI4= Subject key identifier: B3:74:FA:59:B4:11:82:B0:10:CB:B1:98:22:5E:69:FB:B4:30:57:36 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0D82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0D58 Signing time: Thu 16 Apr 2026 17:58:00 +0000 Manifest this update: Thu 16 Apr 2026 17:57:59 +0000 Manifest next update: Thu 23 Apr 2026 17:57:59 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: lbBwSlwB/wWR8QaO8Sdsi7pwJAZlnzDvfbENL4qYXT8=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: 2j8ZEZZDC+v0AsplIrNRFX86JLUI1D1lZouNpF7eL1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:57:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3458 (0xd82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Apr 16 17:57:59 2026 GMT Not After : Apr 23 17:57:59 2026 GMT Subject: CN=69e12328-a348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:fc:9e:38:3f:fa:a4:71:40:cb:cf:1a:57:a0: 2a:26:c4:c6:09:2f:b8:86:a1:fe:07:6a:df:24:b5: e5:1f:16:8d:31:39:ba:13:d2:2b:4d:19:89:0d:a4: 60:6f:c4:37:66:a8:b1:75:83:f6:f6:d1:45:96:2e: 57:8c:b5:6a:27:0d:8f:74:6b:c8:e7:79:e4:7b:a8: ef:a7:28:5b:a1:37:52:45:00:38:e0:87:82:be:03: 1d:8f:db:d6:12:1f:b2:b5:49:14:93:46:59:b2:be: f3:a1:7e:07:71:55:07:c8:b0:71:61:76:45:0e:40: 9e:0c:67:f0:37:d0:0e:99:ec:ef:94:f3:85:bd:0c: bb:3b:7a:4f:51:0c:41:f3:b5:dc:4a:3a:25:55:3e: c9:1a:f8:0c:80:3f:56:0d:e7:d6:9e:f8:a8:0b:eb: 94:28:4a:f0:d1:70:c6:c8:80:9d:8a:7c:5d:ca:9c: ee:e5:22:40:dd:bc:d3:37:bd:dd:c4:09:1e:f8:ff: 1e:17:16:45:e1:fa:44:f5:38:19:2d:a1:2e:df:03: 22:a7:4a:c5:67:e1:cc:de:1a:03:46:2b:57:7e:a7: c3:71:64:af:93:1d:6a:ee:14:ff:69:9f:42:ed:1f: 47:0b:11:f8:f4:e9:43:bd:c2:40:87:9c:fc:b0:d3: f3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:74:FA:59:B4:11:82:B0:10:CB:B1:98:22:5E:69:FB:B4:30:57:36 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:8a:18:c1:a1:ca:bc:00:10:5c:1c:d1:13:39:68:71:ec:b6: d6:ec:3e:6d:40:4f:7d:ab:30:8c:80:73:5b:10:fe:c3:48:a8: 62:78:d4:71:dd:3a:b1:69:82:72:e9:ee:35:d7:3d:e4:51:49: 82:4c:f4:0f:ef:8e:f6:77:7e:12:60:eb:72:0e:a9:82:b7:a1: f8:61:47:c1:85:d7:a1:4f:7d:25:38:ec:ab:c6:c5:f5:99:4f: 61:66:46:08:3b:23:29:f8:8f:00:96:bd:bd:a7:ec:ba:76:b7: ed:12:61:c6:19:60:32:01:5a:e1:62:86:91:41:0b:c4:de:b1: 08:68:7f:f0:3a:27:19:8c:cb:db:bc:4b:18:78:5e:e0:b1:c9: 8a:c0:cb:92:c3:2b:d6:28:ee:56:cc:22:e1:66:19:cd:13:fa: 02:9f:1f:d8:ae:ad:8d:71:59:49:fd:10:89:49:ed:f4:32:7a: 06:38:c1:f5:a4:58:4e:a0:2e:f8:99:5e:53:b0:ac:0c:27:57: fd:15:e4:75:a3:d5:e3:88:78:ed:da:72:ac:f5:f0:c8:21:8b: 3a:dc:82:85:d6:19:12:05:f6:89:c3:f3:22:ed:fc:bf:12:9f: 36:6f:c0:ef:c4:40:ce:e5:4a:47:57:b0:78:2c:a9:ac:06:c5: 30:77:87:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjYwNDE2MTc1NzU5WhcNMjYwNDIzMTc1NzU5WjAYMRYwFAYD VQQDEw02OWUxMjMyOC1hMzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnPyeOD/6pHFAy88aV6AqJsTGCS+4hqH+B2rfJLXlHxaNMTm6E9IrTRmJDaRg b8Q3ZqixdYP29tFFli5XjLVqJw2PdGvI53nke6jvpyhboTdSRQA44IeCvgMdj9vW Eh+ytUkUk0ZZsr7zoX4HcVUHyLBxYXZFDkCeDGfwN9AOmezvlPOFvQy7O3pPUQxB 87XcSjolVT7JGvgMgD9WDefWnvioC+uUKErw0XDGyICdinxdypzu5SJA3bzTN73d xAke+P8eFxZF4fpE9TgZLaEu3wMip0rFZ+HM3hoDRitXfqfDcWSvkx1q7hT/aZ9C 7R9HCxH49OlDvcJAh5z8sNPzLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLN0+lm0 EYKwEMuxmCJeafu0MFc2MB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH4oYwaHKvAAQXBzREzlocey21uw+bUBPfaswjIBzWxD+w0ioYnjUcd06sWmC cunuNdc95FFJgkz0D++O9nd+EmDrcg6pgreh+GFHwYXXoU99JTjsq8bF9ZlPYWZG CDsjKfiPAJa9vafsuna37RJhxhlgMgFa4WKGkUELxN6xCGh/8DonGYzL27xLGHhe 4LHJisDLksMr1ijuVswi4WYZzRP6Ap8f2K6tjXFZSf0QiUnt9DJ6BjjB9aRYTqAu +JleU7CsDCdX/RXkdaPV44h47dpyrPXwyCGLOtyChdYZEgX2icPzIu38vxKfNm/A 78RAzuVKR1eweCyprAbFMHeHpg== -----END CERTIFICATE-----Generated at Fri Apr 17 18:24:12 2026 by rpki-client