$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: 9v7OlPM1yaLDaQBBzLcy7RdNMs4tE6MtBGLoceA+VD8= Subject key identifier: 39:0C:FE:6A:D4:A9:F9:95:9D:A0:19:2F:2C:AF:0C:B5:58:0F:2F:AE Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 36C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 35D8 Signing time: Thu 16 Apr 2026 14:29:11 +0000 Manifest this update: Thu 16 Apr 2026 14:29:10 +0000 Manifest next update: Thu 23 Apr 2026 14:29:10 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: 9ES+9uppDW3+MJ0F+33oZovm2hyOgTycjNRTMDVjxb4=) 2: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: w/xkPDWtvjzhfQW3Zf8fDbO/CqBdGqSzN3GtrP1PUo8=) 3: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: knSiwSZTuJB5L8civuaUh8rAh8cmbNdU18vutdd1ebk=) 4: D4B25B928C6B11F09545B981C4F9AE02.roa (hash: Vuo+8i5V4Znap+Qs1dOcHdE1nAFejMLQYP5EDIvQcjU=) 5: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: rEfB0wTEVedizbjd1aa4stNP7Lpi5g6RaGy1a4umZiM=) 6: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: HGBUZghw2mrH37viSTYGdL7UxbtP3kpsrCzGnWhLnVU=) 7: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: /QQiHNO+P4zS7clMch+1xG2dmlltL/7vNQJGue0Q24E=) 8: F1F087928C6B11F0B1A50E82C4F9AE02.roa (hash: kuzwCvIHtKelM7oshMzAb2U462l4e0HmxA10PXja6PA=) 9: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: f3qU6tlwehhcmw+j9t9F4SExzXSKSjEABu7b7Oi3kuk=) 10: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: SJVE7ZBsoRSsliTmJf9TKg9PsayamV5jFN7WqlX3xvc=) 11: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: NUP0co51SrQ7MBIOUbm3rcePgeq0Qam5xEhiKSlEwl4=) 12: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: N79DDK5pn6TCAon8GJdsX02x5/pCsRg1kmXulJOa3DU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:29:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14022 (0x36c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Apr 16 14:29:10 2026 GMT Not After : Apr 23 14:29:10 2026 GMT Subject: CN=69e0f237-5f2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:7a:97:a3:5b:c6:16:cb:14:e2:d3:6c:e9:e3: e4:32:b2:2a:ac:78:a5:16:bf:41:6c:db:6f:37:eb: 89:49:7a:ad:8d:b1:99:a0:aa:dc:fb:48:f6:67:ac: 1b:46:2b:13:7f:f7:d4:03:02:4c:bc:10:77:b5:20: 61:91:b3:a1:8e:29:63:e8:7a:b8:0e:c2:07:76:48: e3:3d:1e:8c:6c:cb:c5:07:43:29:64:d4:3c:d6:1b: e6:67:ba:d3:4a:89:3d:2f:7a:34:25:69:c9:df:45: 55:80:39:b9:c0:0e:7e:6c:bb:7c:a4:7a:c1:7e:df: 3e:b1:10:03:42:f4:ab:47:76:a2:18:e6:5d:4d:6d: c3:e5:1f:a6:cb:a3:2c:92:1c:be:56:d2:4c:ed:4d: 90:70:f8:11:b6:24:00:12:9e:85:e2:a6:2d:d1:7d: 67:98:2f:de:bb:78:b4:fc:54:54:58:1b:5e:b8:e0: dd:94:8e:72:59:a4:89:c2:3e:09:1b:57:04:ea:16: 62:bd:1a:fa:bb:fb:fd:e4:47:05:ac:99:e2:76:13: b9:a2:3d:12:1d:64:62:9f:d3:78:a0:f7:ca:f8:ad: dc:5a:87:ca:d5:1c:ec:8e:42:fd:2e:2a:04:69:d7: 1b:f4:d7:1c:bd:a6:68:59:7e:4d:b5:69:91:31:2a: f2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:0C:FE:6A:D4:A9:F9:95:9D:A0:19:2F:2C:AF:0C:B5:58:0F:2F:AE X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:a0:23:e0:86:0c:14:50:43:e7:16:2d:f1:6c:bf:b3:e3:db: 4a:7b:d7:c2:d8:64:67:e7:07:5b:a3:17:f0:53:ee:3a:67:37: d2:49:e5:4d:b5:5f:d3:82:0f:62:be:8b:a3:07:ab:65:c7:3e: ae:51:ca:03:31:72:23:82:4b:88:f0:d9:3e:f1:d8:a0:a0:16: 99:c4:00:7c:b1:5e:22:27:e2:c4:e4:da:5c:69:f1:94:bf:e1: ae:1b:1e:f4:e2:03:3c:98:7e:c9:c9:ba:7c:d0:47:89:eb:76: 23:06:a3:8c:2f:df:7c:20:27:4e:1f:43:ae:e7:8f:53:4b:b5: 79:d9:2d:75:a6:5b:ab:88:2a:1f:75:60:c9:2a:da:9b:f3:b0: 16:f3:71:db:fb:6f:ec:9c:56:78:da:ca:1b:c3:23:64:52:02: 71:94:37:2d:51:5d:6a:35:31:ef:17:f2:69:c0:1f:7e:8b:71: 64:28:4f:cd:4c:23:fe:26:4c:6f:d1:b3:ae:ac:ff:e2:a0:aa: 91:8d:27:c6:98:49:be:ae:96:b7:32:30:3b:74:4d:bb:c2:ef: 78:af:01:a1:dd:67:30:a2:9c:f4:24:73:c7:38:59:cc:bb:27: c1:fe:97:ec:5d:21:98:7c:d3:5b:93:cb:5a:cb:25:be:16:ae: 5c:fd:a4:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjYwNDE2MTQyOTEwWhcNMjYwNDIzMTQyOTEwWjAYMRYwFAYD VQQDEw02OWUwZjIzNy01ZjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nqXo1vGFssU4tNs6ePkMrIqrHilFr9BbNtvN+uJSXqtjbGZoKrc+0j2Z6wb RisTf/fUAwJMvBB3tSBhkbOhjilj6Hq4DsIHdkjjPR6MbMvFB0MpZNQ81hvmZ7rT Sok9L3o0JWnJ30VVgDm5wA5+bLt8pHrBft8+sRADQvSrR3aiGOZdTW3D5R+my6Ms khy+VtJM7U2QcPgRtiQAEp6F4qYt0X1nmC/eu3i0/FRUWBteuODdlI5yWaSJwj4J G1cE6hZivRr6u/v95EcFrJnidhO5oj0SHWRin9N4oPfK+K3cWofK1RzsjkL9LioE adcb9NccvaZoWX5NtWmRMSryywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDkM/mrU qfmVnaAZLyyvDLVYDy+uMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT6Aj4IYMFFBD5xYt8Wy/s+PbSnvXwthkZ+cHW6MX8FPuOmc30knlTbVf04IP Yr6LowerZcc+rlHKAzFyI4JLiPDZPvHYoKAWmcQAfLFeIifixOTaXGnxlL/hrhse 9OIDPJh+ycm6fNBHiet2IwajjC/ffCAnTh9DruePU0u1edktdaZbq4gqH3VgySra m/OwFvNx2/tv7JxWeNrKG8MjZFICcZQ3LVFdajUx7xfyacAffotxZChPzUwj/iZM b9Gzrqz/4qCqkY0nxphJvq6WtzIwO3RNu8LveK8Bod1nMKKc9CRzxzhZzLsnwf6X 7F0hmHzTW5PLWsslvhauXP2kyQ== -----END CERTIFICATE-----Generated at Fri Apr 17 18:45:08 2026 by rpki-client