$ rpki-client -vvf rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.mft File: eqxn28Hrko4pUTYuC8asdnfi3Hs.mft (raw, json) Hash identifier: Dj6ujLkPiPqUWj5VpzRC1kgxDZi8FRZSYH9PoE5FRi0= Subject key identifier: E1:56:88:81:B6:CB:CD:B9:F8:DA:65:D1:1E:2B:1B:D2:BF:0A:01:8A Authority key identifier: 7A:AC:67:DB:C1:EB:92:8E:29:51:36:2E:0B:C6:AC:76:77:E2:DC:7B Certificate issuer: /CN=A919E9A5/serialNumber=7AAC67DBC1EB928E2951362E0BC6AC7677E2DC7B Certificate serial: 3598 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.mft Manifest number: 3561 Signing time: Thu 16 Apr 2026 14:31:38 +0000 Manifest this update: Thu 16 Apr 2026 14:31:37 +0000 Manifest next update: Thu 23 Apr 2026 14:31:37 +0000 Files and hashes: 1: eqxn28Hrko4pUTYuC8asdnfi3Hs.crl (hash: Xjjt1cK0mxdHFhCVZ2ouCvaanZMdosfOBiYn0bNhRzg=) 2: 3BC5B9F8B53311EE9D8D774EC4F9AE02.roa (hash: j0xY/53uVqFVDJMak2vPu5OYYbqCNOEfNhjOkMcxhA4=) 3: 9E129FFC5F2611EF8DAAA57FC4F9AE02.roa (hash: l+7Eu+xg0ulQzOgrjZeAHIZGKSy3zhWEJs8xcq7aCFk=) 4: 7D62DD7E840D11EFB275D662C4F9AE02.roa (hash: NHO8KDV0QFvuFED/5Jw/RLRu+225FkgTd21HwEd+FsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.crl rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13720 (0x3598) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E9A5, serialNumber=7AAC67DBC1EB928E2951362E0BC6AC7677E2DC7B Validity Not Before: Apr 16 14:31:37 2026 GMT Not After : Apr 23 14:31:37 2026 GMT Subject: CN=69e0f2ca-859d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6a:e2:ec:95:22:45:b3:02:ae:9e:cc:a5:2c: 76:36:0d:30:bd:09:26:ea:77:06:da:2e:28:90:6b: 3a:f0:bd:6b:1f:03:d1:14:73:5a:89:69:59:af:e6: 96:43:13:b6:f3:fa:be:82:85:a4:fb:c1:ce:b4:67: 4d:66:52:62:06:4d:da:4e:8e:1b:bc:a2:2e:67:97: a0:80:a3:66:79:24:71:d6:51:51:e0:1d:20:e8:c5: aa:74:d5:c4:9a:1f:0b:c8:6f:d1:9a:20:52:39:98: c1:d9:be:83:71:eb:7c:e7:58:a7:05:0f:6d:a1:cc: ce:81:b1:21:a8:3d:23:35:81:23:05:4f:7a:b8:b8: 21:22:b8:10:49:e9:65:5f:0b:db:d8:32:d4:03:a8: d6:be:6d:2c:3f:e3:25:13:8c:f1:c9:9e:67:dd:62: 80:3e:a7:b4:20:f3:b3:ec:67:82:c8:17:24:cb:bc: 53:a1:86:a9:40:2d:4f:30:28:40:bb:36:ec:48:0f: 0f:58:93:ad:ec:13:42:c7:82:87:0a:1a:6a:07:37: f0:ca:f1:e9:cd:9b:4d:0a:b4:1e:4d:49:cd:f0:5b: 4e:b9:f5:02:1b:95:1e:09:47:9b:b6:ed:91:a2:d4: 62:e3:1d:b8:e0:77:31:f8:41:35:5a:f7:44:14:44: 6c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:56:88:81:B6:CB:CD:B9:F8:DA:65:D1:1E:2B:1B:D2:BF:0A:01:8A X509v3 Authority Key Identifier: keyid:7A:AC:67:DB:C1:EB:92:8E:29:51:36:2E:0B:C6:AC:76:77:E2:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:3c:4d:4b:1c:26:2e:fa:38:cb:aa:00:aa:ba:ba:08:9a:eb: fe:cb:23:ab:37:b9:54:23:f4:c5:66:51:a0:64:6d:f1:51:e2: 1a:74:3d:e7:f9:a4:30:b2:28:d9:e5:86:25:a2:37:c1:98:01: 26:ad:36:fe:9b:68:c5:33:fc:0d:cd:85:5c:a3:2f:70:b1:34: 5a:cb:f0:25:23:2f:58:64:f2:91:30:67:5d:76:37:30:6f:9d: 8b:b1:87:b6:95:f9:02:f2:ca:16:c8:2c:fb:28:47:cf:46:04: 17:7f:04:39:3c:63:a9:7e:69:a7:38:e3:61:b7:81:d9:8c:be: 32:2c:ae:3e:94:95:56:56:35:cc:22:04:fb:c2:6a:6f:27:0b: 49:ab:d2:d6:60:44:e2:b0:c5:43:47:da:66:61:2f:0d:5a:22: 0d:75:78:2e:b0:7e:07:74:aa:04:1b:fd:44:82:e1:bf:0a:04: 4f:85:e7:e8:e7:7d:8c:37:8e:b4:ac:35:c6:b4:5a:b2:88:be: 1f:19:61:ee:e8:d8:cf:9d:db:fd:bf:84:46:da:83:b3:58:de: 0f:2b:44:13:5a:74:23:d0:25:be:c8:bb:9b:9d:38:92:7a:4c: ba:18:76:72:38:88:a5:e1:32:15:98:f7:d5:38:40:70:cf:60: 3e:e3:a5:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU5QTUxMTAvBgNVBAUTKDdBQUM2N0RCQzFFQjkyOEUyOTUxMzYyRTBCQzZBQzc2 NzdFMkRDN0IwHhcNMjYwNDE2MTQzMTM3WhcNMjYwNDIzMTQzMTM3WjAYMRYwFAYD VQQDEw02OWUwZjJjYS04NTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2ri7JUiRbMCrp7MpSx2Ng0wvQkm6ncG2i4okGs68L1rHwPRFHNaiWlZr+aW QxO28/q+goWk+8HOtGdNZlJiBk3aTo4bvKIuZ5eggKNmeSRx1lFR4B0g6MWqdNXE mh8LyG/RmiBSOZjB2b6Dcet851inBQ9toczOgbEhqD0jNYEjBU96uLghIrgQSell Xwvb2DLUA6jWvm0sP+MlE4zxyZ5n3WKAPqe0IPOz7GeCyBcky7xToYapQC1PMChA uzbsSA8PWJOt7BNCx4KHChpqBzfwyvHpzZtNCrQeTUnN8FtOufUCG5UeCUebtu2R otRi4x244Hcx+EE1WvdEFERsewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOFWiIG2 y825+Npl0R4rG9K/CgGKMB8GA1UdIwQYMBaAFHqsZ9vB65KOKVE2LgvGrHZ34tx7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTlBNS9BMzJFRkVCODFE ODkxMUUyOTJFNEZERTIwOEIwMkNEMi9lcXhuMjhIcmtvNHBVVFl1Qzhhc2RuZmkz SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VxeG4yOEhya280cFVUWXVDOGFzZG5maTNIcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTlBNS9BMzJFRkVCODFEODkxMUUyOTJFNEZERTIwOEIwMkNEMi9lcXhuMjhIcmtv NHBVVFl1Qzhhc2RuZmkzSHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQDxNSxwmLvo4y6oAqrq6CJrr/ssjqze5VCP0xWZRoGRt8VHiGnQ95/mkMLIo 2eWGJaI3wZgBJq02/ptoxTP8Dc2FXKMvcLE0WsvwJSMvWGTykTBnXXY3MG+di7GH tpX5AvLKFsgs+yhHz0YEF38EOTxjqX5ppzjjYbeB2Yy+MiyuPpSVVlY1zCIE+8Jq bycLSavS1mBE4rDFQ0faZmEvDVoiDXV4LrB+B3SqBBv9RILhvwoET4Xn6Od9jDeO tKw1xrRasoi+Hxlh7ujYz53b/b+ERtqDs1jeDytEE1p0I9Alvsi7m504knpMuhh2 cjiIpeEyFZj31ThAcM9gPuOlZQ== -----END CERTIFICATE-----Generated at Fri Apr 17 13:26:46 2026 by rpki-client