$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: Hq8u3WnnV1OSlHlr5EqwPr8vR1TQfm1nvm3Z1BdIsLI= Subject key identifier: 9E:68:11:36:D6:70:EC:34:76:4C:B0:34:FD:03:29:04:AC:31:9E:3E Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 0387 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 036E Signing time: Fri 17 Apr 2026 00:49:12 +0000 Manifest this update: Fri 17 Apr 2026 00:49:12 +0000 Manifest next update: Fri 24 Apr 2026 00:49:12 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: uP6I6PGC/r7Sc9k4TwHWAYiIdMbcMXspeRqeG3KI+eI=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: fkyJKn8Oh+03JayycchiXNnOyFPcVFyNkr5e5TiQlCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:49:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 903 (0x387) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: Apr 17 00:49:12 2026 GMT Not After : Apr 24 00:49:12 2026 GMT Subject: CN=69e18388-8184 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:5b:6f:8b:e1:da:90:e0:b1:32:07:1d:42:bb: 74:71:63:f4:03:a2:81:83:a6:f2:dc:2a:46:4e:8c: 5a:89:01:c6:78:59:02:4f:9c:34:27:ad:9c:fd:a8: f6:fd:d0:0a:50:87:cc:89:a2:93:1e:c5:5b:99:b4: 7f:77:ff:d1:18:35:3a:36:6f:db:2d:8a:a9:7d:11: c4:95:e3:55:4c:8c:44:f3:b4:9e:84:fa:5b:ab:05: ac:b2:23:8b:08:c4:3f:3a:c0:41:89:ba:f8:af:d7: 8e:fe:48:38:77:50:5c:e7:db:db:6b:0b:69:ca:0f: 66:23:09:c1:ef:ce:68:9c:53:df:07:14:13:90:d8: b4:0c:c5:7e:fb:01:eb:c3:12:b2:34:9d:ec:c6:91: bb:bc:2d:ec:a9:6b:87:74:ba:5e:9f:75:ec:36:56: 76:dd:df:d3:8e:8f:0f:39:9c:a2:44:e7:82:38:6e: 7d:ad:1b:79:95:57:c9:bb:95:de:ba:1d:a1:b4:33: 63:fa:e4:ee:24:4f:ef:24:7d:22:8d:fd:7f:5e:5e: e8:d7:d4:b7:50:4f:63:ab:d4:51:e1:a8:0d:05:5a: 6a:1c:01:86:c0:eb:25:5c:ac:3f:3a:ec:77:a8:fe: cc:c7:b1:e5:f3:1e:4b:f8:d6:c4:d5:7e:59:86:42: 57:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:68:11:36:D6:70:EC:34:76:4C:B0:34:FD:03:29:04:AC:31:9E:3E X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:6d:1d:1e:72:3e:49:71:f8:c4:7b:92:8f:d1:a6:19:64:3f: 87:ae:df:99:1c:07:c2:5b:21:2d:ee:3f:b7:2c:db:7f:c3:00: 31:fd:1c:fe:e9:89:ca:10:d5:0c:0e:cf:b4:91:3f:23:ac:bc: 7c:67:9d:a7:57:7a:b4:70:13:b9:cf:e5:99:2f:38:dd:c8:b9: b8:8a:9f:ff:30:ee:a4:44:2b:08:37:9f:21:be:a1:fc:b6:80: 2e:3c:e8:9f:5a:7a:d4:11:5a:b0:40:27:08:b5:dd:fd:79:ba: f2:32:96:ff:93:66:0c:01:fc:0e:09:ce:3a:20:9a:45:15:bb: d8:fa:bb:4f:44:8e:70:2b:47:16:65:dc:91:84:43:70:34:75: f2:51:80:7a:95:b0:9f:ae:f6:3f:27:5e:e2:42:27:0c:3c:15: 11:2f:9d:e7:78:a5:5a:95:98:e6:e5:15:52:7a:34:03:62:6e: 7b:93:a5:f3:87:08:8b:11:39:cb:bc:6a:13:cd:76:cb:6d:ff: 6a:50:6e:77:c2:f9:2e:a1:33:e6:8a:a3:90:c8:6c:a9:77:82: 7d:2e:d6:bd:ca:0b:56:4c:54:76:7f:ba:fd:87:55:86:74:6a: d1:09:a1:a1:60:54:27:cd:3b:7f:9a:d9:f6:6d:6a:24:19:70: c0:73:95:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjYwNDE3MDA0OTEyWhcNMjYwNDI0MDA0OTEyWjAYMRYwFAYD VQQDEw02OWUxODM4OC04MTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnltvi+HakOCxMgcdQrt0cWP0A6KBg6by3CpGToxaiQHGeFkCT5w0J62c/aj2 /dAKUIfMiaKTHsVbmbR/d//RGDU6Nm/bLYqpfRHEleNVTIxE87SehPpbqwWssiOL CMQ/OsBBibr4r9eO/kg4d1Bc59vbawtpyg9mIwnB785onFPfBxQTkNi0DMV++wHr wxKyNJ3sxpG7vC3sqWuHdLpen3XsNlZ23d/Tjo8POZyiROeCOG59rRt5lVfJu5Xe uh2htDNj+uTuJE/vJH0ijf1/Xl7o19S3UE9jq9RR4agNBVpqHAGGwOslXKw/Oux3 qP7Mx7Hl8x5L+NbE1X5ZhkJXLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ5oETbW cOw0dkywNP0DKQSsMZ4+MB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdm0dHnI+SXH4xHuSj9GmGWQ/h67fmRwHwlshLe4/tyzbf8MAMf0c/umJyhDV DA7PtJE/I6y8fGedp1d6tHATuc/lmS843ci5uIqf/zDupEQrCDefIb6h/LaALjzo n1p61BFasEAnCLXd/Xm68jKW/5NmDAH8DgnOOiCaRRW72Pq7T0SOcCtHFmXckYRD cDR18lGAepWwn672Pyde4kInDDwVES+d53ilWpWY5uUVUno0A2Jue5Ol84cIixE5 y7xqE812y23/alBud8L5LqEz5oqjkMhsqXeCfS7WvcoLVkxUdn+6/YdVhnRq0Qmh oWBUJ807f5rZ9m1qJBlwwHOViQ== -----END CERTIFICATE-----Generated at Fri Apr 17 06:14:41 2026 by rpki-client