$ rpki-client -vvf rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft File: sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft (raw, json) Hash identifier: e/mabOYqe/sX5IKhbHKQfah9usSeW+rcCBqdEeyCCDw= Subject key identifier: 05:20:23:C8:0E:6A:9C:5B:05:66:0C:1B:6D:0B:4D:01:8A:73:10:D3 Authority key identifier: B2:AD:50:F3:57:1B:DA:1E:EC:07:CC:48:DA:01:D3:F3:75:45:8D:24 Certificate issuer: /CN=A917E7C7/serialNumber=B2AD50F3571BDA1EEC07CC48DA01D3F375458D24 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft Manifest number: 016C Signing time: Fri 17 Apr 2026 04:31:31 +0000 Manifest this update: Fri 17 Apr 2026 04:31:30 +0000 Manifest next update: Fri 24 Apr 2026 04:31:30 +0000 Files and hashes: 1: sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl (hash: mmk7tqVYMJjwNjebYC+VK88tFuRyqqzR+TBNDSrWFvI=) 2: 031A090A5C2C11F0A1180E20C4F9AE02.roa (hash: xUoZT7vuFUFMxxXgURJ7tl9II1Hg1jXwleAc2UHXW1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E7C7, serialNumber=B2AD50F3571BDA1EEC07CC48DA01D3F375458D24 Validity Not Before: Apr 17 04:31:30 2026 GMT Not After : Apr 24 04:31:30 2026 GMT Subject: CN=69e1b7a3-db48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f0:22:ed:7c:ce:7a:e9:c8:06:60:03:9a:14: 6e:25:ab:fa:9c:86:8e:f4:95:18:62:6a:74:03:2e: 58:ea:6e:5d:1e:30:07:30:df:b6:4f:07:e7:66:71: 6a:23:e3:3c:e9:e9:c3:3d:9f:ac:26:6b:12:ee:d9: a8:d9:e9:bc:7f:5f:0d:c2:95:c3:5f:4d:67:81:1e: 6b:a1:a5:79:21:d2:c8:01:43:96:f8:00:d3:e5:6b: 41:cd:73:4f:c0:1e:76:64:5a:71:a3:cb:2a:19:54: ae:c6:81:33:00:ad:70:a6:aa:52:2f:01:2f:cf:5c: 1f:13:1b:4f:b9:d9:41:a1:0e:6e:33:c8:01:ad:23: df:c9:4a:24:92:21:10:48:cc:ba:c3:6b:f7:d4:e8: fb:a6:cf:86:f3:0e:c2:9e:a0:53:e4:c7:b9:59:2b: a8:1e:8c:7a:dd:70:29:a5:18:5f:4a:85:34:01:2c: 2d:0a:99:c8:fa:7f:ee:c0:38:3d:7a:f1:dc:e7:28: b1:e5:04:2f:9e:53:7e:91:a8:b4:6c:79:ed:8e:ad: 4a:b9:01:75:9b:d9:37:35:8f:51:e8:30:ca:ab:f1: 93:78:6f:65:5c:3e:f7:82:73:29:49:d7:aa:2e:3d: be:13:0d:09:9d:90:6b:57:ea:c6:b3:56:f1:55:d4: 3d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:20:23:C8:0E:6A:9C:5B:05:66:0C:1B:6D:0B:4D:01:8A:73:10:D3 X509v3 Authority Key Identifier: keyid:B2:AD:50:F3:57:1B:DA:1E:EC:07:CC:48:DA:01:D3:F3:75:45:8D:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:64:f6:59:7d:10:3b:0b:0d:a1:02:82:57:74:17:3a:68:78: f5:bc:74:00:de:e2:32:07:5c:40:5a:79:fa:83:4d:99:18:ce: b7:df:bd:55:57:bc:93:bf:05:fb:e5:7b:01:5e:05:cf:a4:0b: 12:c1:41:a9:fa:80:b0:fc:75:cc:fa:15:f1:11:7a:6a:eb:6b: 78:5f:71:19:cd:ca:e4:62:5c:79:55:6d:bc:cd:ef:f5:0c:db: 4e:11:f5:23:91:af:7e:12:7f:64:31:53:0e:f7:5a:9f:a8:cb: e7:e7:1a:54:8b:80:66:d2:cd:21:0d:b2:7f:5a:8a:60:e6:36: 77:e0:23:ae:5f:00:b6:ac:36:03:cf:41:33:63:6c:7b:ae:3a: 84:8e:52:20:be:1f:0a:fe:40:77:54:d1:76:1f:67:71:68:31: 40:02:b7:17:55:52:ac:16:8e:74:1b:94:1e:de:6e:d2:67:9f: a0:46:fd:94:d0:ff:cf:45:61:cc:7c:c0:b8:14:21:96:d0:04: dc:a4:f6:ac:ba:d7:bc:64:78:07:39:1c:66:dd:b2:01:67:8a: e0:93:4c:46:eb:43:0b:e4:9f:a6:88:d7:d3:e6:d7:9c:40:4a: fd:63:2f:3d:f6:a3:5d:08:cb:e3:42:e4:1a:cb:7b:f6:21:db: e1:fd:0a:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3QzcxMTAvBgNVBAUTKEIyQUQ1MEYzNTcxQkRBMUVFQzA3Q0M0OERBMDFEM0Yz NzU0NThEMjQwHhcNMjYwNDE3MDQzMTMwWhcNMjYwNDI0MDQzMTMwWjAYMRYwFAYD VQQDEw02OWUxYjdhMy1kYjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPAi7XzOeunIBmADmhRuJav6nIaO9JUYYmp0Ay5Y6m5dHjAHMN+2TwfnZnFq I+M86enDPZ+sJmsS7tmo2em8f18NwpXDX01ngR5roaV5IdLIAUOW+ADT5WtBzXNP wB52ZFpxo8sqGVSuxoEzAK1wpqpSLwEvz1wfExtPudlBoQ5uM8gBrSPfyUokkiEQ SMy6w2v31Oj7ps+G8w7CnqBT5Me5WSuoHox63XAppRhfSoU0ASwtCpnI+n/uwDg9 evHc5yix5QQvnlN+kai0bHntjq1KuQF1m9k3NY9R6DDKq/GTeG9lXD73gnMpSdeq Lj2+Ew0JnZBrV+rGs1bxVdQ9xQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAUgI8gO apxbBWYMG20LTQGKcxDTMB8GA1UdIwQYMBaAFLKtUPNXG9oe7AfMSNoB0/N1RY0k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTdDNy8xQTU5Rjc4RTE2 QjMxMUVGODlDRkUzMEVDNEY5QUUwMi9zcTFRODFjYjJoN3NCOHhJMmdIVDgzVkZq U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxMVE4MWNiMmg3c0I4eEkyZ0hUODNWRmpTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTdDNy8xQTU5Rjc4RTE2QjMxMUVGODlDRkUzMEVDNEY5QUUwMi9zcTFRODFjYjJo N3NCOHhJMmdIVDgzVkZqU1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgWT2WX0QOwsNoQKCV3QXOmh49bx0AN7iMgdcQFp5+oNNmRjOt9+9VVe8k78F ++V7AV4Fz6QLEsFBqfqAsPx1zPoV8RF6autreF9xGc3K5GJceVVtvM3v9QzbThH1 I5GvfhJ/ZDFTDvdan6jL5+caVIuAZtLNIQ2yf1qKYOY2d+Ajrl8Atqw2A89BM2Ns e646hI5SIL4fCv5Ad1TRdh9ncWgxQAK3F1VSrBaOdBuUHt5u0mefoEb9lND/z0Vh zHzAuBQhltAE3KT2rLrXvGR4BzkcZt2yAWeK4JNMRutDC+SfpojX0+bXnEBK/WMv PfajXQjL40LkGst79iHb4f0Kdw== -----END CERTIFICATE-----Generated at Fri Apr 17 07:59:22 2026 by rpki-client