$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft File: QrsPPBhH5li75BQYSUzonOjjRIg.mft (raw, json) Hash identifier: 3rescKxaAM0VDUIx3jn8h0kfeLEZuqQbbFdw1uQWR2E= Subject key identifier: F9:20:71:A5:1C:8A:78:1F:60:97:88:0E:C7:37:BD:D3:B8:E6:62:2E Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 Certificate issuer: /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft Manifest number: 0130 Signing time: Fri 17 Apr 2026 05:15:45 +0000 Manifest this update: Fri 17 Apr 2026 05:15:44 +0000 Manifest next update: Fri 24 Apr 2026 05:15:44 +0000 Files and hashes: 1: QrsPPBhH5li75BQYSUzonOjjRIg.crl (hash: 16DOmkKtSc8baWm5WRIS46vFp+DCMrYMSjbDzcwMyQE=) 2: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (hash: GxPDZkNh8z2WUss9dJUvSPDera09jYCHZ5i3DQqj99E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172506, serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Validity Not Before: Apr 17 05:15:44 2026 GMT Not After : Apr 24 05:15:44 2026 GMT Subject: CN=69e1c201-a844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3e:f6:80:55:be:5f:3e:27:bf:f3:bb:c7:b4: 63:5a:7d:7a:d1:55:b2:7e:99:15:8a:15:7a:e9:8e: 32:56:f4:0d:b6:81:22:0a:e2:42:9c:19:e0:8a:dc: 64:20:3c:2e:42:8c:af:8d:e0:f7:d7:63:05:d6:3e: d3:91:69:f3:91:fb:e5:18:70:35:e8:4c:d8:e2:65: 75:3e:65:df:6d:ca:73:1c:d7:e7:9b:5b:64:2d:02: 41:07:58:8c:79:d6:8d:16:2b:7e:8a:30:5a:ba:18: 4f:ba:57:89:14:bd:61:8a:66:22:72:b3:28:30:69: 4a:e0:21:b6:b1:44:da:12:4c:24:4f:09:84:84:5b: 5f:fc:d6:e5:21:64:e2:ad:b0:0a:05:aa:a6:67:a3: 0b:1a:89:24:f0:05:e9:ad:8c:3b:20:35:cb:03:1e: 2b:dd:e0:07:86:c8:88:98:be:5b:1b:fa:51:81:b6: 87:d1:0c:66:70:96:41:36:77:ed:ee:69:08:0b:b1: 9f:ec:5f:01:08:db:57:e0:54:be:9b:29:65:97:9e: e3:2d:3d:ba:86:1f:75:b9:52:13:aa:5a:ca:9a:20: 92:35:5b:94:0a:4c:b4:b3:c6:e2:28:d8:e0:89:da: 6e:36:7a:48:58:d8:b1:89:1c:18:45:ca:8a:e0:63: 12:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:20:71:A5:1C:8A:78:1F:60:97:88:0E:C7:37:BD:D3:B8:E6:62:2E X509v3 Authority Key Identifier: keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:e4:05:89:48:d5:ac:02:5d:93:ed:f5:b4:f8:3a:2e:0d:91: bc:87:c2:1b:31:26:d8:01:f0:f6:8b:5e:6a:77:65:81:82:b6: 5f:d1:25:c1:50:a6:d6:03:23:71:39:b9:f3:1f:66:e6:7f:82: 1f:2a:ef:04:ae:28:17:30:09:d5:2f:2d:22:43:23:4a:c4:7d: 7f:a2:4e:04:af:77:ee:30:9d:2d:20:bb:18:30:f9:42:e9:cd: bc:ae:54:35:9e:ad:61:70:8c:46:a2:7f:7b:af:c7:93:12:06: 64:72:00:71:5a:1d:aa:87:8f:33:33:ef:b8:52:87:ca:66:58: 58:d4:d8:13:8f:f4:1f:e9:39:d4:c1:0b:22:1c:6c:1f:d9:23: 5e:d9:ac:f3:c9:43:10:69:05:b4:7f:17:6c:12:6b:a8:88:f9: 39:fa:96:cb:9b:93:a6:a8:14:8b:c4:34:69:79:36:2a:c3:e7: 81:d5:78:14:f7:bd:08:74:dc:91:7a:24:22:85:58:d0:d6:31: 01:64:e2:b8:79:bd:78:d8:70:4c:69:99:25:64:67:1d:ff:4e: 02:c7:41:c4:b7:74:84:d8:49:a5:32:40:93:c7:69:ff:1c:04: fc:b0:b3:de:3d:8d:50:c2:83:bd:ab:60:8d:9c:7b:c8:72:0d: 48:2f:e0:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI1MDYxMTAvBgNVBAUTKDQyQkIwRjNDMTg0N0U2NThCQkU0MTQxODQ5NENFODlD RThFMzQ0ODgwHhcNMjYwNDE3MDUxNTQ0WhcNMjYwNDI0MDUxNTQ0WjAYMRYwFAYD VQQDEw02OWUxYzIwMS1hODQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvz72gFW+Xz4nv/O7x7RjWn160VWyfpkVihV66Y4yVvQNtoEiCuJCnBngitxk IDwuQoyvjeD312MF1j7TkWnzkfvlGHA16EzY4mV1PmXfbcpzHNfnm1tkLQJBB1iM edaNFit+ijBauhhPuleJFL1himYicrMoMGlK4CG2sUTaEkwkTwmEhFtf/NblIWTi rbAKBaqmZ6MLGokk8AXprYw7IDXLAx4r3eAHhsiImL5bG/pRgbaH0QxmcJZBNnft 7mkIC7Gf7F8BCNtX4FS+mylll57jLT26hh91uVITqlrKmiCSNVuUCky0s8biKNjg idpuNnpIWNixiRwYRcqK4GMSOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPkgcaUc ingfYJeIDsc3vdO45mIuMB8GA1UdIwQYMBaAFEK7DzwYR+ZYu+QUGElM6Jzo40SI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjUwNi9CMDQ5MDhDRTZF REUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVsaTc1QlFZU1V6b25PampS SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjUwNi9CMDQ5MDhDRTZFREUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVs aTc1QlFZU1V6b25PampSSWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALOQFiUjVrAJdk+31tPg6Lg2RvIfCGzEm2AHw9oteandlgYK2X9ElwVCm1gMj cTm58x9m5n+CHyrvBK4oFzAJ1S8tIkMjSsR9f6JOBK937jCdLSC7GDD5QunNvK5U NZ6tYXCMRqJ/e6/HkxIGZHIAcVodqoePMzPvuFKHymZYWNTYE4/0H+k51MELIhxs H9kjXtms88lDEGkFtH8XbBJrqIj5OfqWy5uTpqgUi8Q0aXk2KsPngdV4FPe9CHTc kXokIoVY0NYxAWTiuHm9eNhwTGmZJWRnHf9OAsdBxLd0hNhJpTJAk8dp/xwE/LCz 3j2NUMKDvatgjZx7yHINSC/gXQ== -----END CERTIFICATE-----Generated at Fri Apr 17 20:52:43 2026 by rpki-client