$ rpki-client -vvf rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft File: QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft (raw, json) Hash identifier: FjsXfb+S1DunRhs83GsBTpIQjT/xP4wzJ35/CODc9B0= Subject key identifier: 0E:63:4A:8A:64:0F:F2:8B:90:CF:4A:E2:86:A8:33:48:11:0A:81:30 Authority key identifier: 40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B Certificate issuer: /CN=A9165C64/serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Certificate serial: 0D2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft Manifest number: 0D1A Signing time: Sat 18 Apr 2026 18:01:15 +0000 Manifest this update: Sat 18 Apr 2026 18:01:14 +0000 Manifest next update: Sat 25 Apr 2026 18:01:14 +0000 Files and hashes: 1: QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl (hash: rEPXyMM1oYzPVMrjWLqVFcRlgM5Sf8Oe4bU/1oadGC8=) 2: FD9E07EAAB1111EF89574855C4F9AE02.roa (hash: 3bEt+BEL0/++S5Hn6XyvCpw2hPaq5SjA7QhpJ7kxSWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 18:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3372 (0xd2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165C64, serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Validity Not Before: Apr 18 18:01:14 2026 GMT Not After : Apr 25 18:01:14 2026 GMT Subject: CN=69e3c6eb-b277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:aa:09:88:a4:31:56:6a:52:6e:c1:c8:c4:89: 3a:bd:72:c6:5b:d9:29:20:0f:f0:15:bf:2e:e7:5a: 7d:d6:4e:86:19:32:b1:66:2d:6f:79:e7:f9:b0:d6: a8:50:cc:a5:49:69:2b:2d:5c:85:f4:b1:6d:44:5e: 9d:49:6a:4c:a4:ce:4f:9e:fe:3a:5d:f9:6f:ad:9b: 02:5a:4c:67:23:5c:8a:3e:9c:37:17:76:5f:ba:f8: c4:2c:fb:3b:42:67:7b:9e:14:b9:1d:ca:66:44:50: b1:c2:ad:1c:c5:86:25:4e:98:4b:f4:ce:e1:57:37: 6a:8c:0f:c3:c7:fb:fc:e8:07:21:32:c4:3f:fe:60: 38:6e:48:f7:65:9e:bc:18:00:d3:d4:a7:e3:eb:6c: 42:3a:8c:ea:81:1a:c1:89:f6:d3:30:09:c5:02:e2: 42:37:89:e4:65:0d:27:91:4f:24:52:36:f0:e5:1b: ab:c0:35:1b:7f:e6:43:a4:71:f7:2f:a2:cc:9f:e1: ed:e1:72:9d:f8:72:2b:06:1d:77:09:ad:e4:c6:63: de:8d:3d:fc:25:fa:4d:05:79:db:13:e3:40:da:eb: 14:53:62:a7:f4:0c:c9:21:ab:fd:1f:ff:cf:4f:52: 64:8c:a3:c6:c6:0f:4a:e3:49:10:f0:85:ba:d5:a9: 44:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:63:4A:8A:64:0F:F2:8B:90:CF:4A:E2:86:A8:33:48:11:0A:81:30 X509v3 Authority Key Identifier: keyid:40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:68:8a:13:ef:59:64:7b:b7:81:94:3a:d0:20:2d:6e:55:3f: 43:55:5d:64:a4:ef:4a:31:a5:a8:6e:aa:12:00:10:d2:7a:10: 27:3a:0b:23:fb:25:50:5c:ae:8c:06:2b:cd:6f:cf:c0:78:b6: 7c:28:38:a9:6c:db:b9:ee:07:26:aa:db:25:1e:3e:b9:22:05: 72:de:f9:f5:f7:d4:ac:9c:88:2b:b1:6f:84:97:7c:12:1e:98: bc:30:79:43:ae:6a:29:a9:b5:27:71:c7:b6:43:26:41:33:50: c2:da:e8:6f:2d:66:56:a1:31:c7:3b:54:c9:12:1a:14:a7:06: 47:3d:48:34:97:8f:0d:1d:58:c4:36:97:86:00:21:ac:fa:b4: 0e:2b:b1:c5:2f:11:00:30:65:dc:81:ce:af:e1:f1:8b:c9:b3: f8:8e:20:e8:47:a1:72:f9:7d:d0:22:be:f7:c9:f8:05:eb:c2: 10:cf:5f:53:68:00:24:58:79:c2:e4:5a:64:5e:72:14:ac:33: 04:20:63:c8:61:48:4e:82:a7:d8:1f:04:cc:36:f0:48:18:4a: a7:49:33:be:da:dc:a3:d1:d5:de:d0:0d:91:f1:7c:19:00:c5: 2c:be:dd:fa:db:2b:f6:64:f8:f2:29:21:a8:93:e6:a2:13:9c: 22:45:73:29 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVDNjQxMTAvBgNVBAUTKDQwRUJDMjVBMDhCQTVFNzU0MUNFMTQyRDJCQzI4QUU0 RjgyODhBNEIwHhcNMjYwNDE4MTgwMTE0WhcNMjYwNDI1MTgwMTE0WjAYMRYwFAYD VQQDEw02OWUzYzZlYi1iMjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKoJiKQxVmpSbsHIxIk6vXLGW9kpIA/wFb8u51p91k6GGTKxZi1veef5sNao UMylSWkrLVyF9LFtRF6dSWpMpM5Pnv46XflvrZsCWkxnI1yKPpw3F3ZfuvjELPs7 Qmd7nhS5HcpmRFCxwq0cxYYlTphL9M7hVzdqjA/Dx/v86AchMsQ//mA4bkj3ZZ68 GADT1Kfj62xCOozqgRrBifbTMAnFAuJCN4nkZQ0nkU8kUjbw5RurwDUbf+ZDpHH3 L6LMn+Ht4XKd+HIrBh13Ca3kxmPejT38JfpNBXnbE+NA2usUU2Kn9AzJIav9H//P T1JkjKPGxg9K40kQ8IW61alEAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA5jSopk D/KLkM9K4oaoM0gRCoEwMB8GA1UdIwQYMBaAFEDrwloIul51Qc4ULSvCiuT4KIpL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUM2NC80MjVCNDIzQ0ZG QTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhuVkJ6aFF0SzhLSzVQZ29p a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPdkNXZ2k2WG5WQnpoUXRLOEtLNVBnb2lrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUM2NC80MjVCNDIzQ0ZGQTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhu VkJ6aFF0SzhLSzVQZ29pa3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkmiKE+9ZZHu3gZQ60CAtblU/Q1VdZKTvSjGlqG6qEgAQ0noQJzoLI/slUFyu jAYrzW/PwHi2fCg4qWzbue4HJqrbJR4+uSIFct759ffUrJyIK7FvhJd8Eh6YvDB5 Q65qKam1J3HHtkMmQTNQwtroby1mVqExxztUyRIaFKcGRz1INJePDR1YxDaXhgAh rPq0DiuxxS8RADBl3IHOr+Hxi8mz+I4g6Eehcvl90CK+98n4BevCEM9fU2gAJFh5 wuRaZF5yFKwzBCBjyGFIToKn2B8EzDbwSBhKp0kzvtrco9HV3tANkfF8GQDFLL7d +tsr9mT48ikhqJPmohOcIkVzKQ== -----END CERTIFICATE-----Generated at Sun Apr 19 14:23:25 2026 by rpki-client