$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: PMzJU7BDFcVCV+q5eg2HLKp6PBgv337caf0n504jXWs= Subject key identifier: 9D:DD:68:0D:75:9B:85:CD:B4:F1:F4:A9:E0:1A:86:1B:EF:00:7A:54 Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 0346 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 033C Signing time: Sun 05 Apr 2026 00:47:34 +0000 Manifest this update: Sun 05 Apr 2026 00:47:34 +0000 Manifest next update: Sun 12 Apr 2026 00:47:34 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: jNIii3yzRZ5uWAjuxOQvGebBmD08jUymEZJDKNiA4nI=) 2: E9A9531644D611F0ABB89277C4F9AE02.roa (hash: LjrdfU8qKAjg1tNh6QbLgwWJcFgbeivFBKT0rfsVVGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 838 (0x346) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: Apr 5 00:47:34 2026 GMT Not After : Apr 12 00:47:34 2026 GMT Subject: CN=69d1b126-8692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:99:92:45:ad:21:30:75:d4:ac:6b:84:cb:48: 40:f1:5e:73:41:db:dd:b7:f5:66:07:aa:18:ad:79: 1b:f0:33:f6:71:81:5b:fd:0e:96:03:f1:0d:f9:3e: b0:d3:22:d1:a0:a1:d3:21:9a:53:22:6c:36:f7:b5: 92:d8:8d:34:01:88:a3:8c:a9:15:fc:25:06:40:f1: c7:16:b0:40:f8:d9:9e:13:5c:23:ab:67:be:6b:53: 45:3f:1c:0b:42:ed:1d:69:45:e4:1f:c9:58:06:4e: 03:9d:d3:34:7a:63:02:2e:08:b9:d2:75:c6:9d:7a: dd:91:d5:68:94:fb:27:87:7c:e9:9b:b3:18:df:86: e1:14:27:ee:56:f2:35:d8:8b:2a:d2:53:1c:24:cd: 98:69:d3:0f:30:d9:42:2c:5c:4c:a2:d5:a0:ca:76: 25:76:38:f5:14:16:8f:b1:4f:30:c8:f0:a2:2b:4a: 9f:fb:77:cc:d1:75:31:32:7f:5a:ba:a6:83:99:c9: 8a:c4:cc:56:e2:68:c2:d3:eb:21:5e:7e:0e:2e:bf: b7:df:81:bd:55:7c:9c:27:d7:64:9b:14:43:ef:0a: bf:3b:83:68:5f:2c:c2:c5:01:66:80:da:0f:be:c0: c4:b1:51:25:65:c8:0e:7f:0d:9b:a3:18:81:f5:4a: 02:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:DD:68:0D:75:9B:85:CD:B4:F1:F4:A9:E0:1A:86:1B:EF:00:7A:54 X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:7d:53:8d:3e:b2:f7:dd:ed:40:3e:e2:cc:85:3f:38:2e:76: a3:cf:e0:fd:dd:4c:89:73:75:b6:05:55:32:31:20:17:6f:72: f2:9c:f3:04:de:59:75:3f:12:55:d2:6a:6c:06:ab:91:ba:c6: 8d:96:04:78:34:c9:3f:c8:b4:e9:14:b7:46:fe:ee:cc:87:93: bb:f2:ee:77:4d:ca:91:a7:57:16:2e:3e:ad:b5:f3:6d:b9:5c: b7:ba:8c:4b:ee:d6:eb:30:80:56:37:a3:62:61:c4:ea:da:d6: 5b:59:63:84:3e:e3:17:3b:fa:fb:50:6d:74:62:6c:f1:ed:8f: 2f:94:30:fc:11:9f:32:48:67:ca:00:cb:12:71:b3:36:a0:16: c1:c4:d0:4a:ee:52:10:18:54:c5:eb:40:e6:54:1f:9e:2d:f8: 99:bb:25:f7:18:f9:0a:31:37:38:d4:1c:60:f1:88:15:4d:79: c7:05:f8:40:78:7c:c3:1f:76:1c:e2:c7:7a:32:ef:84:1c:07: dd:84:e2:9f:fb:a9:03:23:5e:48:88:bf:58:7a:f9:21:1f:09: 90:83:ff:3e:2b:ff:74:7a:f5:a3:ca:36:05:03:1c:be:02:40: d8:56:67:38:16:a2:39:e1:5e:25:e9:34:a8:f0:22:b5:12:d3: 6c:c7:ac:32 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjYwNDA1MDA0NzM0WhcNMjYwNDEyMDA0NzM0WjAYMRYwFAYD VQQDEw02OWQxYjEyNi04NjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpmSRa0hMHXUrGuEy0hA8V5zQdvdt/VmB6oYrXkb8DP2cYFb/Q6WA/EN+T6w 0yLRoKHTIZpTImw297WS2I00AYijjKkV/CUGQPHHFrBA+NmeE1wjq2e+a1NFPxwL Qu0daUXkH8lYBk4DndM0emMCLgi50nXGnXrdkdVolPsnh3zpm7MY34bhFCfuVvI1 2Isq0lMcJM2YadMPMNlCLFxMotWgynYldjj1FBaPsU8wyPCiK0qf+3fM0XUxMn9a uqaDmcmKxMxW4mjC0+shXn4OLr+334G9VXycJ9dkmxRD7wq/O4NoXyzCxQFmgNoP vsDEsVElZcgOfw2boxiB9UoCYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ3daA11 m4XNtPH0qeAahhvvAHpUMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJX1TjT6y993tQD7izIU/OC52o8/g/d1MiXN1tgVVMjEgF29y8pzzBN5ZdT8S VdJqbAarkbrGjZYEeDTJP8i06RS3Rv7uzIeTu/Lud03KkadXFi4+rbXzbblct7qM S+7W6zCAVjejYmHE6trWW1ljhD7jFzv6+1BtdGJs8e2PL5Qw/BGfMkhnygDLEnGz NqAWwcTQSu5SEBhUxetA5lQfni34mbsl9xj5CjE3ONQcYPGIFU15xwX4QHh8wx92 HOLHejLvhBwH3YTin/upAyNeSIi/WHr5IR8JkIP/Piv/dHr1o8o2BQMcvgJA2FZn OBaiOeFeJek0qPAitRLTbMesMg== -----END CERTIFICATE-----Generated at Sun Apr 5 21:07:56 2026 by rpki-client