$ rpki-client -vvf rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft File: 1qn8yzagJxy8XxErtyBaV7n0hPc.mft (raw, json) Hash identifier: v+ug4c0EIplo7AUszBaPAU59zDr/4dAo1l2/VpkEYkc= Subject key identifier: 48:AC:97:71:DB:6C:05:C8:BE:14:7C:48:05:57:71:CD:9D:3C:0C:3D Authority key identifier: D6:A9:FC:CB:36:A0:27:1C:BC:5F:11:2B:B7:20:5A:57:B9:F4:84:F7 Certificate issuer: /CN=A9168126/serialNumber=D6A9FCCB36A0271CBC5F112BB7205A57B9F484F7 Certificate serial: 04AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft Manifest number: 0497 Signing time: Sat 04 Apr 2026 23:49:10 +0000 Manifest this update: Sat 04 Apr 2026 23:49:10 +0000 Manifest next update: Sat 11 Apr 2026 23:49:10 +0000 Files and hashes: 1: 1qn8yzagJxy8XxErtyBaV7n0hPc.crl (hash: y1Dc0GZ5g56+rqObreIVNPdiJZCG0ERsgaGGclIyqbU=) 2: 819150603F3411EF85BAC749C4F9AE02.roa (hash: fmRvDrlAVUP4IPzjCxKSFO/W9oPKrGtnnlxwGGwestk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.crl rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1196 (0x4ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168126, serialNumber=D6A9FCCB36A0271CBC5F112BB7205A57B9F484F7 Validity Not Before: Apr 4 23:49:10 2026 GMT Not After : Apr 11 23:49:10 2026 GMT Subject: CN=69d1a376-bce4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e7:04:ee:29:0a:bc:c6:2d:4b:7a:15:9c:1c: a8:40:1c:76:29:7a:e7:5c:ec:95:33:7e:39:6c:46: 9f:c1:20:f4:d7:a6:ba:93:be:c1:27:35:fc:46:8e: fd:c2:01:ef:2f:81:a1:0e:89:ef:88:b0:26:0a:bd: 98:f6:b0:9c:48:38:f5:82:2a:0a:0f:7b:1f:7e:b1: ef:68:28:16:01:26:27:8b:ad:69:16:08:b9:07:b1: 64:fa:a7:d4:3d:6d:1a:23:77:bd:91:88:cd:09:67: 04:83:c7:ed:fb:c3:70:cd:5e:d1:5a:ea:11:d7:05: a0:96:10:e1:ce:f0:7e:b1:62:c3:55:50:0a:ef:35: e6:04:85:df:f4:41:69:39:38:82:86:a6:59:f6:68: 6d:38:cc:c7:e9:6f:9f:ec:0a:35:0d:cf:30:8a:db: ed:0f:6f:97:30:1d:c2:2a:9f:51:2b:d6:c5:d7:c8: c9:10:52:33:fa:6f:eb:34:8f:66:5a:e6:da:e6:2e: 10:cc:fe:c3:d6:01:2d:d6:c8:5e:bc:26:b7:25:b0: 46:08:77:14:57:50:2f:6f:27:a2:8c:42:5a:35:bf: 99:64:b7:c7:a6:06:99:fa:b3:8d:72:1a:6a:92:af: 89:df:a8:67:b2:a7:5e:02:1e:d8:66:33:34:d6:5e: 74:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:AC:97:71:DB:6C:05:C8:BE:14:7C:48:05:57:71:CD:9D:3C:0C:3D X509v3 Authority Key Identifier: keyid:D6:A9:FC:CB:36:A0:27:1C:BC:5F:11:2B:B7:20:5A:57:B9:F4:84:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:13:13:bc:55:ad:75:59:0f:17:c5:ed:52:11:33:38:8a:d9: a2:b0:3d:7b:ca:1c:cd:8a:71:48:fd:be:05:96:68:50:8b:6d: 06:aa:78:f4:0a:a8:45:8e:93:33:15:a5:79:97:48:f5:7b:81: 24:ab:a4:df:a5:62:41:94:c2:75:32:7c:83:31:3e:c5:a1:48: 9b:55:1e:1b:ae:85:72:69:6f:17:ce:47:88:82:95:38:1c:a9: 24:6e:8a:50:f6:64:6e:ec:8f:ae:0f:58:f6:d4:1f:ce:3d:99: 3c:82:72:08:9d:d4:fd:fc:8d:19:9a:57:7a:eb:4c:4c:f9:92: 98:99:86:7d:7a:3c:dc:b5:59:02:06:1a:f9:be:9b:5e:4c:21: 63:ee:11:e8:f1:f1:f9:2f:82:09:26:9e:9c:27:8c:90:c3:67: 02:48:c5:26:a9:34:21:28:9a:57:71:33:e7:30:e1:60:ff:af: 47:40:b3:02:45:1d:c9:c5:12:f4:5f:37:9e:86:52:0b:32:d0: a3:f0:19:1b:25:c7:da:57:e5:ff:c3:bf:f8:fe:a7:d5:5a:00: 1d:17:54:13:7e:59:37:43:bc:28:fd:ab:96:44:e4:c1:7b:97: 5d:b8:92:4e:b8:e3:9d:42:0f:5a:19:ae:91:09:f7:72:4a:66: 55:3c:5c:2a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxMjYxMTAvBgNVBAUTKEQ2QTlGQ0NCMzZBMDI3MUNCQzVGMTEyQkI3MjA1QTU3 QjlGNDg0RjcwHhcNMjYwNDA0MjM0OTEwWhcNMjYwNDExMjM0OTEwWjAYMRYwFAYD VQQDEw02OWQxYTM3Ni1iY2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuucE7ikKvMYtS3oVnByoQBx2KXrnXOyVM345bEafwSD016a6k77BJzX8Ro79 wgHvL4GhDonviLAmCr2Y9rCcSDj1gioKD3sffrHvaCgWASYni61pFgi5B7Fk+qfU PW0aI3e9kYjNCWcEg8ft+8NwzV7RWuoR1wWglhDhzvB+sWLDVVAK7zXmBIXf9EFp OTiChqZZ9mhtOMzH6W+f7Ao1Dc8witvtD2+XMB3CKp9RK9bF18jJEFIz+m/rNI9m Wuba5i4QzP7D1gEt1shevCa3JbBGCHcUV1AvbyeijEJaNb+ZZLfHpgaZ+rONchpq kq+J36hnsqdeAh7YZjM01l501QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEisl3Hb bAXIvhR8SAVXcc2dPAw9MB8GA1UdIwQYMBaAFNap/Ms2oCccvF8RK7cgWle59IT3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODEyNi8xNTdGNjZFQTgw MDYxMUVDQjAzQTBFNjFDNEY5QUUwMi8xcW44eXphZ0p4eThYeEVydHlCYVY3bjBo UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFxbjh5emFnSnh5OFh4RXJ0eUJhVjduMGhQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODEyNi8xNTdGNjZFQTgwMDYxMUVDQjAzQTBFNjFDNEY5QUUwMi8xcW44eXphZ0p4 eThYeEVydHlCYVY3bjBoUGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhBMTvFWtdVkPF8XtUhEzOIrZorA9e8oczYpxSP2+BZZoUIttBqp49AqoRY6T MxWleZdI9XuBJKuk36ViQZTCdTJ8gzE+xaFIm1UeG66FcmlvF85HiIKVOBypJG6K UPZkbuyPrg9Y9tQfzj2ZPIJyCJ3U/fyNGZpXeutMTPmSmJmGfXo83LVZAgYa+b6b XkwhY+4R6PHx+S+CCSaenCeMkMNnAkjFJqk0ISiaV3Ez5zDhYP+vR0CzAkUdycUS 9F83noZSCzLQo/AZGyXH2lfl/8O/+P6n1VoAHRdUE35ZN0O8KP2rlkTkwXuXXbiS TrjjnUIPWhmukQn3ckpmVTxcKg== -----END CERTIFICATE-----Generated at Sun Apr 5 20:00:17 2026 by rpki-client