$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft File: KQX7MhK9YWRvt69jPqGiV7w6Pew.mft (raw, json) Hash identifier: XlfuPxocK1N1yoY6l2o9K3f9poGNtFJpKZ53JR4dFe0= Subject key identifier: 94:0C:E9:EF:85:5E:43:FD:40:55:3F:85:18:10:EB:74:F9:19:75:AE Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 353A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft Manifest number: 3532 Signing time: Thu 16 Apr 2026 14:43:57 +0000 Manifest this update: Thu 16 Apr 2026 14:43:57 +0000 Manifest next update: Thu 23 Apr 2026 14:43:57 +0000 Files and hashes: 1: KQX7MhK9YWRvt69jPqGiV7w6Pew.crl (hash: n8phjbB7NO+vtvONLj6NA4RsIHovoxokDb+kOH9kP24=) 2: 4AF78A4AFEC611EF86B4765BC4F9AE02.roa (hash: H75vp8KnVCyEkBU2ciSVAYWnVqr6J6YZvmHhlQG4SNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:43:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13626 (0x353a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971, serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: Apr 16 14:43:57 2026 GMT Not After : Apr 23 14:43:57 2026 GMT Subject: CN=69e0f5ad-d405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:d1:87:31:4b:a6:5f:11:50:74:fa:8b:6a:a5: 9a:cc:d2:a3:10:80:e3:11:79:87:5d:43:58:14:45: 24:6a:f3:c4:e7:cc:e3:42:5a:18:d4:a7:86:4e:b0: 7f:e7:e9:ee:41:2f:78:77:54:ce:f1:a5:16:f6:47: 1e:92:ce:64:90:4d:33:3e:ff:ef:d9:e9:09:c2:72: 81:3d:bb:32:2b:be:3c:4b:db:84:7b:91:72:f4:e2: bd:54:98:fd:d0:ee:6e:81:57:37:e9:db:3d:5d:66: d9:99:a4:a1:9c:bd:84:78:d0:bc:91:82:c3:fc:df: 0b:44:32:00:3b:36:f2:59:f0:6e:ab:2c:3d:c6:4a: fd:ea:3b:3d:15:ba:91:5c:20:8e:a3:23:ed:c7:2c: 72:86:ac:9b:af:5b:89:b1:35:85:d5:26:77:ed:c0: 8b:f3:6f:51:f3:c1:18:f0:d9:8e:44:87:58:d8:35: e9:d1:b6:33:bd:52:44:6d:a3:b5:de:df:e3:88:18: 48:00:67:b3:0f:7c:24:cb:d3:3c:00:e6:a2:8b:64: 21:33:80:ce:12:38:31:8a:6e:7b:2f:ce:a0:10:80: 56:69:f7:86:6a:96:6b:54:fb:53:14:57:cc:28:fd: b3:28:b0:86:7f:bc:fa:77:ab:91:61:41:96:6a:7e: 28:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:0C:E9:EF:85:5E:43:FD:40:55:3F:85:18:10:EB:74:F9:19:75:AE X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:72:00:24:14:bc:41:7b:06:69:e2:02:a8:b3:21:fd:02:dd: db:50:12:47:b2:d9:bd:4f:cd:c4:fc:ae:10:c0:f3:1b:85:fe: 24:a2:1b:0d:14:e5:da:d8:81:d9:3b:4d:6a:f3:79:2a:eb:9a: ed:92:32:19:04:bc:d0:02:51:00:d9:9e:a2:f9:25:77:51:90: 7c:7c:bb:1b:c1:a9:b6:a5:68:5d:78:47:0d:a5:7f:76:3a:5c: d6:f1:01:c4:f3:e0:bd:e1:86:f1:dc:17:fc:a0:31:ed:e9:10: 49:56:bf:ac:78:9f:c0:f0:08:e8:e5:c0:51:31:1b:5a:0b:6e: c2:75:55:37:bf:a0:9d:9d:d4:fc:6c:53:49:7b:7f:63:62:9b: f3:5b:74:3d:b4:a2:13:2e:8b:3e:aa:3e:ad:74:4c:6f:1b:26: 6d:56:fd:1d:2e:91:02:68:c6:8a:d7:3e:f4:4c:80:06:4b:c9: 44:dc:03:26:6a:2f:ad:fc:5d:9e:19:61:61:10:db:41:11:6b: 13:e8:7d:1a:d1:f8:15:20:2f:53:1f:d2:04:8e:7c:3e:75:00: 08:0e:e1:7d:60:00:e5:65:ce:0f:6f:3e:2f:5f:62:73:0d:15: b4:6b:ce:f8:df:6d:14:0e:83:52:51:17:90:e8:c1:c1:4c:a8: ce:69:ff:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjYwNDE2MTQ0MzU3WhcNMjYwNDIzMTQ0MzU3WjAYMRYwFAYD VQQDEw02OWUwZjVhZC1kNDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8tGHMUumXxFQdPqLaqWazNKjEIDjEXmHXUNYFEUkavPE58zjQloY1KeGTrB/ 5+nuQS94d1TO8aUW9kceks5kkE0zPv/v2ekJwnKBPbsyK748S9uEe5Fy9OK9VJj9 0O5ugVc36ds9XWbZmaShnL2EeNC8kYLD/N8LRDIAOzbyWfBuqyw9xkr96js9FbqR XCCOoyPtxyxyhqybr1uJsTWF1SZ37cCL829R88EY8NmORIdY2DXp0bYzvVJEbaO1 3t/jiBhIAGezD3wky9M8AOaii2QhM4DOEjgxim57L86gEIBWafeGapZrVPtTFFfM KP2zKLCGf7z6d6uRYUGWan4oLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJQM6e+F XkP9QFU/hRgQ63T5GXWuMB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njk3MS80OEMyMjE4NjFEOTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlX UnZ0NjlqUHFHaVY3dzZQZXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALXIAJBS8QXsGaeICqLMh/QLd21ASR7LZvU/NxPyuEMDzG4X+JKIbDRTl2tiB 2TtNavN5Kuua7ZIyGQS80AJRANmeovkld1GQfHy7G8GptqVoXXhHDaV/djpc1vEB xPPgveGG8dwX/KAx7ekQSVa/rHifwPAI6OXAUTEbWgtuwnVVN7+gnZ3U/GxTSXt/ Y2Kb81t0PbSiEy6LPqo+rXRMbxsmbVb9HS6RAmjGitc+9EyABkvJRNwDJmovrfxd nhlhYRDbQRFrE+h9GtH4FSAvUx/SBI58PnUACA7hfWAA5WXOD28+L19icw0VtGvO +N9tFA6DUlEXkOjBwUyozmn/Hg== -----END CERTIFICATE-----Generated at Fri Apr 17 13:23:05 2026 by rpki-client