$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft File: QNg3fKpabquREz6WLv9-IbURPbk.mft (raw, json) Hash identifier: +igqplxAy1V1I7yJzBnscY6SDdKJ1JPxK2AdlzqDfTU= Subject key identifier: 89:49:60:95:EA:3D:AF:F1:A0:BF:8F:17:C2:72:BC:5D:12:78:FA:CC Authority key identifier: 40:D8:37:7C:AA:5A:6E:AB:91:13:3E:96:2E:FF:7E:21:B5:11:3D:B9 Certificate issuer: /CN=A9145D4C/serialNumber=40D8377CAA5A6EAB91133E962EFF7E21B5113DB9 Certificate serial: 02D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft Manifest number: 02CA Signing time: Fri 17 Apr 2026 01:18:44 +0000 Manifest this update: Fri 17 Apr 2026 01:18:44 +0000 Manifest next update: Fri 24 Apr 2026 01:18:44 +0000 Files and hashes: 1: QNg3fKpabquREz6WLv9-IbURPbk.crl (hash: NvHEcQw08IuwxksWS47cMVRVfoyx6oUbu4kn0FRNTL8=) 2: 5E24BEAADA7C11ED8156D867C4F9AE02.roa (hash: 8pnF8r5Xhn3OD85TXM+iL6QbA+jKGQalG5vIFE6zqm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.crl rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:18:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 725 (0x2d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D4C, serialNumber=40D8377CAA5A6EAB91133E962EFF7E21B5113DB9 Validity Not Before: Apr 17 01:18:44 2026 GMT Not After : Apr 24 01:18:44 2026 GMT Subject: CN=69e18a74-9903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:97:9b:dc:6a:00:a1:3d:eb:55:8d:41:98:5a: 74:e3:54:78:a9:94:04:57:85:36:7f:52:f2:ea:dd: 4b:d6:95:67:cf:54:fb:3a:fa:93:39:97:61:f8:c3: 6e:1c:d1:a4:7a:2a:0e:a7:10:95:da:5e:fe:8d:f4: 99:02:3b:4d:1e:52:e4:d3:18:04:a5:c8:96:5f:1d: 24:c9:b6:50:82:47:74:95:80:c5:63:fe:be:b5:6e: 0b:e5:70:86:e6:1b:e7:bf:53:71:34:2a:2a:7f:58: c4:c1:3e:9d:da:80:34:69:22:91:5c:37:67:b6:04: 67:e1:f7:07:fb:24:29:16:b1:a9:c9:ca:74:61:40: 19:d7:93:a4:2d:25:f1:06:b3:a0:27:00:ef:8f:2e: 80:44:4f:78:dc:ae:f9:6f:d9:53:40:35:a5:87:f2: 26:53:46:6e:4b:b3:2a:ad:e8:5e:dd:9c:5e:36:c2: 76:0b:73:f3:84:d8:fd:26:de:bf:aa:4b:5c:b6:45: cc:d0:83:db:6f:12:4b:7b:3e:bc:f4:2e:73:c1:d7: e6:e2:9a:02:62:89:ec:14:5f:88:69:7f:f7:24:2f: 14:81:d4:67:64:5d:51:25:f7:23:38:fd:66:c7:ec: b3:a9:d0:93:ef:21:06:d9:7f:79:56:01:9c:63:07: 7f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:49:60:95:EA:3D:AF:F1:A0:BF:8F:17:C2:72:BC:5D:12:78:FA:CC X509v3 Authority Key Identifier: keyid:40:D8:37:7C:AA:5A:6E:AB:91:13:3E:96:2E:FF:7E:21:B5:11:3D:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:12:2c:74:c4:c4:82:a6:c4:29:5c:bc:50:07:36:72:1e:e4: 9f:77:0b:15:60:2a:4c:ba:9f:d0:1c:13:b3:d6:8a:34:85:2e: ea:73:05:d6:7a:67:8b:0c:36:9b:3c:7b:33:10:d7:5f:ff:90: 9a:a2:f2:c8:49:7a:13:2b:29:20:c3:4c:38:1d:17:ec:77:39: ab:c3:6f:32:ba:42:66:5c:7d:f6:07:9f:88:50:be:e0:0c:96: 8a:0d:4c:43:5a:cc:c8:59:f3:67:8e:c4:bb:be:7f:28:e6:38: f6:4d:64:ee:d5:14:53:29:d4:f4:76:37:7b:5c:3f:38:ab:97: 95:32:6c:31:20:04:c8:b2:27:17:b6:4a:52:5d:3f:62:f0:3b: 9f:af:70:9a:db:cf:ff:29:cd:60:db:6b:5b:1d:af:0d:af:69: 1b:9f:a4:5e:f2:1c:f8:ad:cd:e2:b6:83:44:e9:40:f8:a3:73: aa:de:e4:9d:fe:c5:c6:fb:df:df:4a:16:f7:94:9a:45:70:fe: de:7b:3b:60:8d:20:db:5e:3f:17:16:6d:fa:c0:73:f2:31:66: 37:7c:3c:95:9f:8d:de:c4:cd:aa:4b:48:1d:b3:61:1f:72:a6: db:03:cc:86:59:00:36:c7:bd:7b:61:9c:b5:77:41:9b:a4:ac: e3:69:71:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVENEMxMTAvBgNVBAUTKDQwRDgzNzdDQUE1QTZFQUI5MTEzM0U5NjJFRkY3RTIx QjUxMTNEQjkwHhcNMjYwNDE3MDExODQ0WhcNMjYwNDI0MDExODQ0WjAYMRYwFAYD VQQDEw02OWUxOGE3NC05OTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Zeb3GoAoT3rVY1BmFp041R4qZQEV4U2f1Ly6t1L1pVnz1T7OvqTOZdh+MNu HNGkeioOpxCV2l7+jfSZAjtNHlLk0xgEpciWXx0kybZQgkd0lYDFY/6+tW4L5XCG 5hvnv1NxNCoqf1jEwT6d2oA0aSKRXDdntgRn4fcH+yQpFrGpycp0YUAZ15OkLSXx BrOgJwDvjy6ARE943K75b9lTQDWlh/ImU0ZuS7Mqrehe3ZxeNsJ2C3PzhNj9Jt6/ qktctkXM0IPbbxJLez689C5zwdfm4poCYonsFF+IaX/3JC8UgdRnZF1RJfcjOP1m x+yzqdCT7yEG2X95VgGcYwd/0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIlJYJXq Pa/xoL+PF8JyvF0SePrMMB8GA1UdIwQYMBaAFEDYN3yqWm6rkRM+li7/fiG1ET25 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQ0Qy9GNDIyRkQxMjMy NTgxMUVEQkQxNkQ2MjRDNEY5QUUwMi9RTmczZktwYWJxdVJFejZXTHY5LUliVVJQ YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOZzNmS3BhYnF1UkV6NldMdjktSWJVUlBiay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUQ0Qy9GNDIyRkQxMjMyNTgxMUVEQkQxNkQ2MjRDNEY5QUUwMi9RTmczZktwYWJx dVJFejZXTHY5LUliVVJQYmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjBIsdMTEgqbEKVy8UAc2ch7kn3cLFWAqTLqf0BwTs9aKNIUu6nMF1npniww2 mzx7MxDXX/+QmqLyyEl6EyspIMNMOB0X7Hc5q8NvMrpCZlx99gefiFC+4AyWig1M Q1rMyFnzZ47Eu75/KOY49k1k7tUUUynU9HY3e1w/OKuXlTJsMSAEyLInF7ZKUl0/ YvA7n69wmtvP/ynNYNtrWx2vDa9pG5+kXvIc+K3N4raDROlA+KNzqt7knf7Fxvvf 30oW95SaRXD+3ns7YI0g214/FxZt+sBz8jFmN3w8lZ+N3sTNqktIHbNhH3Km2wPM hlkANse9e2GctXdBm6Ss42lx8g== -----END CERTIFICATE-----Generated at Fri Apr 17 12:21:30 2026 by rpki-client