$ rpki-client -vvf rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft File: q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft (raw, json) Hash identifier: faAn6KzxlAJYehNXTjAp9qXIZSjchdFqUByRsQsW5Jo= Subject key identifier: B8:C8:11:57:2F:D9:AC:37:62:EA:68:CC:7C:C4:2B:0F:F3:2E:13:E9 Authority key identifier: AB:69:C7:40:25:48:9A:FD:61:74:7F:F9:33:5B:14:7E:20:BB:25:D4 Certificate issuer: /CN=A9172989/serialNumber=AB69C74025489AFD61747FF9335B147E20BB25D4 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2nHQCVImv1hdH_5M1sUfiC7JdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft Manifest number: 45 Signing time: Sun 19 Apr 2026 07:59:29 +0000 Manifest this update: Sun 19 Apr 2026 07:59:29 +0000 Manifest next update: Sun 26 Apr 2026 07:59:29 +0000 Files and hashes: 1: q2nHQCVImv1hdH_5M1sUfiC7JdQ.crl (hash: wqGzer+OMMZXg/d3++JxCFQzUAT7cgyxhyPyvqRyj60=) 2: 3CBCF5BED6D911F0B064CD5C85D3641D.roa (hash: IXLvInf2Y0MEbEfDAQVICvkTqoIWfV2KIzIJmKaveIA=) 3: 0FB60AEED6D711F085B1D0E884D3641D.roa (hash: zu2J1LZYT0w/3iHjLznZWECGOhdsg6myGC2fCgr+ku8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.crl rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2nHQCVImv1hdH_5M1sUfiC7JdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172989, serialNumber=AB69C74025489AFD61747FF9335B147E20BB25D4 Validity Not Before: Apr 19 07:59:29 2026 GMT Not After : Apr 26 07:59:29 2026 GMT Subject: CN=69e48b61-e2f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:aa:00:3c:4d:06:3b:2e:26:a0:fd:fd:25:83: a0:91:8e:4e:87:5a:4b:17:ca:3f:f7:4e:b5:bb:ce: 4c:49:36:70:d2:b6:9a:10:83:50:8c:17:59:c7:99: 3e:ff:2a:b3:da:f9:a9:01:2a:38:10:5a:c7:e4:96: 91:9e:4e:00:46:90:5f:06:2d:3a:bd:3e:c5:4e:65: 74:f0:7b:e6:2d:87:fb:9b:e5:b2:9f:1d:0f:3f:6a: ef:9f:f9:37:41:04:af:19:54:66:2c:62:4d:3f:b0: 03:8a:d7:64:5f:b2:8e:eb:34:84:fd:eb:7c:1b:ba: 2e:47:89:46:c2:0a:3c:33:78:2c:d8:e2:86:42:99: 57:d2:6b:fe:8f:3b:de:23:22:90:e2:32:da:23:86: 7c:98:05:b7:27:84:1b:d1:78:c9:73:48:07:8a:94: 6d:68:1a:8e:2f:75:69:d0:a3:36:7c:6a:1e:f4:0f: af:24:75:cf:31:8f:d7:fa:aa:d9:e6:01:b0:4c:45: a3:8a:b3:b9:59:d5:0d:08:82:39:3d:1a:cb:d9:1c: d9:5e:b2:1e:fa:21:c0:0d:1a:ac:d5:c9:94:88:04: a2:27:db:d4:ef:28:9f:7a:cd:96:70:3f:90:3d:70: 6d:b8:56:be:45:c3:41:92:e1:e7:fc:84:f5:26:4c: 0a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:C8:11:57:2F:D9:AC:37:62:EA:68:CC:7C:C4:2B:0F:F3:2E:13:E9 X509v3 Authority Key Identifier: keyid:AB:69:C7:40:25:48:9A:FD:61:74:7F:F9:33:5B:14:7E:20:BB:25:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2nHQCVImv1hdH_5M1sUfiC7JdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:87:07:9d:4e:9a:04:34:08:bf:01:73:0d:01:84:55:d2:d3: 25:0c:e5:b2:02:69:45:79:53:d6:e1:a0:52:14:fd:d6:25:89: df:5a:aa:31:fa:06:b9:da:3b:7e:36:a6:f2:fa:a0:bb:e5:2a: 93:7f:14:54:18:a3:2a:e9:3c:21:53:9b:02:50:ed:c4:e6:20: e7:42:9a:6f:2e:fb:79:31:64:26:04:8d:f0:af:63:fd:32:37: 94:56:32:a4:04:71:b5:1a:e5:59:a5:8e:d4:53:b9:ff:57:76: 31:60:8c:76:90:86:58:d7:21:a2:94:dc:0f:d8:2b:e8:8e:b8: b4:6c:9d:d8:55:82:1d:31:8a:04:ca:61:8b:e9:71:ce:5c:2a: 3d:ee:48:30:a6:7c:1b:2f:5a:cc:4b:d3:70:31:98:2e:eb:68: 3b:eb:ba:b2:eb:43:f2:5a:11:60:df:03:62:e4:6e:cf:ed:0f: 86:57:40:71:07:61:c9:70:06:66:b3:ad:17:ae:f2:4c:71:c6: ec:e8:22:2b:be:08:49:83:c3:34:6d:2d:79:22:37:6e:e5:17: fd:db:07:3b:7a:46:bf:4c:e0:7e:1d:eb:53:43:df:4c:a1:ec: 42:a9:52:2f:30:c4:c2:9a:8e:3a:1d:71:65:13:5b:c6:76:2f: 9b:c6:f0:bc -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 Mjk4OTExMC8GA1UEBRMoQUI2OUM3NDAyNTQ4OUFGRDYxNzQ3RkY5MzM1QjE0N0Uy MEJCMjVENDAeFw0yNjA0MTkwNzU5MjlaFw0yNjA0MjYwNzU5MjlaMBgxFjAUBgNV BAMTDTY5ZTQ4YjYxLWUyZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiqgA8TQY7Liag/f0lg6CRjk6HWksXyj/3TrW7zkxJNnDStpoQg1CMF1nHmT7/ KrPa+akBKjgQWsfklpGeTgBGkF8GLTq9PsVOZXTwe+Yth/ub5bKfHQ8/au+f+TdB BK8ZVGYsYk0/sAOK12Rfso7rNIT963wbui5HiUbCCjwzeCzY4oZCmVfSa/6PO94j IpDiMtojhnyYBbcnhBvReMlzSAeKlG1oGo4vdWnQozZ8ah70D68kdc8xj9f6qtnm AbBMRaOKs7lZ1Q0Igjk9GsvZHNlesh76IcANGqzVyZSIBKIn29TvKJ96zZZwP5A9 cG24Vr5Fw0GS4ef8hPUmTAoNAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUuMgRVy/Z rDdi6mjMfMQrD/MuE+kwHwYDVR0jBBgwFoAUq2nHQCVImv1hdH/5M1sUfiC7JdQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyOTg5L0VGRkRENzE0RDZE NTExRjBCMDYzODRCNTgxRDM2NDFEL3EybkhRQ1ZJbXYxaGRIXzVNMXNVZmlDN0pk US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcTJuSFFDVkltdjFoZEhfNU0xc1VmaUM3SmRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy OTg5L0VGRkRENzE0RDZENTExRjBCMDYzODRCNTgxRDM2NDFEL3EybkhRQ1ZJbXYx aGRIXzVNMXNVZmlDN0pkUS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBwhwedTpoENAi/AXMNAYRV0tMlDOWyAmlFeVPW4aBSFP3WJYnfWqox+ga52jt+ Nqby+qC75SqTfxRUGKMq6TwhU5sCUO3E5iDnQppvLvt5MWQmBI3wr2P9MjeUVjKk BHG1GuVZpY7UU7n/V3YxYIx2kIZY1yGilNwP2Cvojri0bJ3YVYIdMYoEymGL6XHO XCo97kgwpnwbL1rMS9NwMZgu62g767qy60PyWhFg3wNi5G7P7Q+GV0BxB2HJcAZm s60XrvJMccbs6CIrvghJg8M0bS15Ijdu5Rf92wc7eka/TOB+HetTQ99MoexCqVIv MMTCmo46HXFlE1vGdi+bxvC8 -----END CERTIFICATE-----Generated at Sun Apr 19 10:15:34 2026 by rpki-client