$ rpki-client -vvf rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft File: NQgZehD-pGpxhGMxT-upOUS2JIs.mft (raw, json) Hash identifier: Aom19SXK8UiYaUoIzpqLjvPzpuJ62ipyctnEMMC5ZbI= Subject key identifier: 31:CA:D7:90:2B:DC:1B:D9:A2:20:3A:E5:2E:27:AE:99:4A:D6:C9:43 Authority key identifier: 35:08:19:7A:10:FE:A4:6A:71:84:63:31:4F:EB:A9:39:44:B6:24:8B Certificate issuer: /CN=A912B666/serialNumber=3508197A10FEA46A718463314FEBA93944B6248B Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft Manifest number: 52 Signing time: Fri 17 Apr 2026 07:59:21 +0000 Manifest this update: Fri 17 Apr 2026 07:59:20 +0000 Manifest next update: Fri 24 Apr 2026 07:59:20 +0000 Files and hashes: 1: NQgZehD-pGpxhGMxT-upOUS2JIs.crl (hash: mHwjFZ2Y5GriujgtniaXjYxMOtdmtsGXEKpt33h8mIw=) 2: F084D9AADF1B11F0BDFBE1B1616F56BC.roa (hash: CpQzWFpl+Gw/RBNLdgsUn2ZniQcwnVLZoguxqXTYKyI=) 3: 86227722C92A11F0872AB883C4F9AE02.roa (hash: OntMkkZwdIbl5SrNRK1u5UfChSdJYJCs+EVkHCslByQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.crl rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B666, serialNumber=3508197A10FEA46A718463314FEBA93944B6248B Validity Not Before: Apr 17 07:59:20 2026 GMT Not After : Apr 24 07:59:20 2026 GMT Subject: CN=69e1e858-b01c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:ef:25:b1:47:e3:1d:6c:85:1f:5f:b6:c7:ad: d9:ac:ea:07:84:6d:15:80:1f:a5:81:ad:30:52:05: 6d:f1:17:d7:af:de:1e:da:f9:5c:cc:a6:60:bd:4b: 66:9a:ae:94:a1:f9:ca:c5:2e:30:ee:ca:71:57:64: 20:2d:24:f5:ef:a5:94:d2:15:de:80:33:e0:2f:e7: 1a:c0:3b:2b:1e:91:b3:c2:46:38:32:96:97:a3:53: ec:cd:99:a3:3e:d9:63:19:ee:91:9d:2c:e6:39:b0: 03:b9:f7:16:2e:51:bc:99:03:79:b5:88:bf:66:53: b2:b3:0f:ae:34:35:26:97:a6:ad:cb:61:ba:a6:7b: 97:47:f8:13:e0:24:1a:5b:bd:38:51:fa:20:be:b0: 1f:f2:d3:57:85:ea:8f:3a:40:40:44:39:7d:38:48: f5:9e:bb:a7:f7:5b:05:2f:41:02:94:c2:f1:f6:f1: 21:22:b9:e3:ff:8e:c5:98:0f:20:91:41:c9:9f:54: 70:fd:b6:2a:cb:8b:18:81:36:0f:d9:20:ca:08:e7: 9f:66:85:28:7f:2a:2b:77:59:80:25:6e:5d:48:ab: 32:44:8e:36:87:4e:ba:f6:06:95:69:d5:cf:15:85: f3:04:16:f7:c6:d7:62:f0:98:4f:8a:45:37:bc:9f: c4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:CA:D7:90:2B:DC:1B:D9:A2:20:3A:E5:2E:27:AE:99:4A:D6:C9:43 X509v3 Authority Key Identifier: keyid:35:08:19:7A:10:FE:A4:6A:71:84:63:31:4F:EB:A9:39:44:B6:24:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:d8:6c:b8:fd:95:a0:f4:3a:52:7e:8d:00:5f:be:6b:78:1d: 5a:a0:ef:a4:2d:db:93:60:44:d4:a5:b4:6a:46:9c:07:b1:b6: c5:ac:10:2b:9b:f1:e6:8f:dc:3f:b0:1d:27:7b:20:9a:ec:58: df:d8:1d:59:ad:4b:8f:b0:3d:f9:6e:81:2d:eb:bd:f4:de:70: 79:87:ae:d8:5d:4c:1b:ee:1e:14:2d:3e:ba:35:68:ce:dd:71: 76:93:4f:7a:d3:65:57:8a:3d:7a:d1:0e:9e:e8:fe:28:5c:07: dd:b0:fc:ba:2f:84:5b:52:f9:ed:61:a8:0d:5f:03:2d:27:73: 12:ad:8f:ed:e8:d7:4f:58:54:ed:6d:66:2f:87:ce:bd:50:ab: 2c:f2:41:d7:83:02:d9:87:e6:a1:b4:f3:16:f3:a1:99:28:86: 14:50:77:3a:cd:06:57:09:37:1c:fb:37:f6:5a:69:13:12:c9: 70:55:68:0a:4d:fb:f9:c8:29:e4:3e:32:97:cc:6a:53:59:cc: f4:a8:c4:8d:20:28:24:c8:41:33:48:33:17:eb:dd:5f:03:ad: d3:ea:96:d8:82:01:b3:2a:35:1b:b9:e7:12:83:ac:20:cf:83: cc:56:b8:44:cf:d8:8d:5b:67:1d:ae:a0:f2:00:ae:de:40:2e: 89:8d:43:9b -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QjY2NjExMC8GA1UEBRMoMzUwODE5N0ExMEZFQTQ2QTcxODQ2MzMxNEZFQkE5Mzk0 NEI2MjQ4QjAeFw0yNjA0MTcwNzU5MjBaFw0yNjA0MjQwNzU5MjBaMBgxFjAUBgNV BAMTDTY5ZTFlODU4LWIwMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCQ7yWxR+MdbIUfX7bHrdms6geEbRWAH6WBrTBSBW3xF9ev3h7a+VzMpmC9S2aa rpSh+crFLjDuynFXZCAtJPXvpZTSFd6AM+Av5xrAOysekbPCRjgylpejU+zNmaM+ 2WMZ7pGdLOY5sAO59xYuUbyZA3m1iL9mU7KzD640NSaXpq3LYbqme5dH+BPgJBpb vThR+iC+sB/y01eF6o86QEBEOX04SPWeu6f3WwUvQQKUwvH28SEiueP/jsWYDyCR QcmfVHD9tirLixiBNg/ZIMoI559mhSh/Kit3WYAlbl1IqzJEjjaHTrr2BpVp1c8V hfMEFvfG12LwmE+KRTe8n8SxAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUMcrXkCvc G9miIDrlLieumUrWyUMwHwYDVR0jBBgwFoAUNQgZehD+pGpxhGMxT+upOUS2JIsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCNjY2Lzk5MzYxQTdDQzky OTExRjBCMjM4RjI4MUM0RjlBRTAyL05RZ1plaEQtcEdweGhHTXhULXVwT1VTMkpJ cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlFnWmVoRC1wR3B4aEdNeFQtdXBPVVMySklzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJC NjY2Lzk5MzYxQTdDQzkyOTExRjBCMjM4RjI4MUM0RjlBRTAyL05RZ1plaEQtcEdw eGhHTXhULXVwT1VTMkpJcy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCX2Gy4/ZWg9DpSfo0AX75reB1aoO+kLduTYETUpbRqRpwHsbbFrBArm/Hmj9w/ sB0neyCa7Fjf2B1ZrUuPsD35boEt67303nB5h67YXUwb7h4ULT66NWjO3XF2k096 02VXij160Q6e6P4oXAfdsPy6L4RbUvntYagNXwMtJ3MSrY/t6NdPWFTtbWYvh869 UKss8kHXgwLZh+ahtPMW86GZKIYUUHc6zQZXCTcc+zf2WmkTEslwVWgKTfv5yCnk PjKXzGpTWcz0qMSNICgkyEEzSDMX691fA63T6pbYggGzKjUbuecSg6wgz4PMVrhE z9iNW2cdrqDyAK7eQC6JjUOb -----END CERTIFICATE-----Generated at Fri Apr 17 11:50:14 2026 by rpki-client