$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: 3H+U6h++e3yH3kzevsVUmhAvuw4DmYNl+pWQf1vt9W4= Subject key identifier: 35:E1:94:E6:CB:E1:5F:A8:B5:94:75:F7:E4:CF:82:6E:39:DB:B8:11 Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 3538 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 352E Signing time: Sat 04 Apr 2026 15:15:44 +0000 Manifest this update: Sat 04 Apr 2026 15:15:44 +0000 Manifest next update: Sat 11 Apr 2026 15:15:44 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: jnfnSsR9hKQFAj36klFfqwHQPepQz5Pz9Vz8TvPZElg=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: bvmOeL2YXx3nWwBQZ93HrV/AoxQKQL3Er6wwEPR+cds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:15:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13624 (0x3538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754, serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: Apr 4 15:15:44 2026 GMT Not After : Apr 11 15:15:44 2026 GMT Subject: CN=69d12b20-3f75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8c:cb:ba:ef:21:b7:84:52:9b:3c:6c:51:bc: 4b:26:60:f7:01:be:99:98:a9:b0:87:ca:6c:0e:79: 7b:56:d7:05:d1:b4:22:3f:c6:37:48:43:60:22:76: 71:fb:61:08:5d:62:24:13:2a:b2:91:05:cf:4e:48: 81:fb:f3:40:91:bc:db:c0:dd:2d:56:fb:c2:d4:89: 32:be:73:ba:be:c9:ad:d6:f4:06:4d:3b:4d:c0:17: 63:7f:2b:cc:68:15:1c:9a:d9:50:80:56:2c:d8:59: ad:a9:38:ca:be:bf:5b:e1:69:ee:40:b2:00:ca:94: f4:9f:01:e7:68:f1:0e:f4:e5:88:86:6f:44:53:d7: c5:29:12:91:47:bb:8c:79:83:77:f4:c3:e6:8d:95: 30:7a:f9:0e:4b:a3:d6:4f:79:7d:a6:50:fd:bc:46: ac:66:8c:d4:b5:8a:00:26:d8:9d:d0:08:2d:47:7b: fe:52:1c:ae:95:43:0a:05:72:cc:34:35:41:10:5d: df:1f:e2:09:85:16:16:5c:02:7f:c4:7f:19:44:a5: 17:46:9c:da:e2:d7:e4:f0:e6:b1:64:ec:c5:78:b7: 0c:ae:8e:b5:63:2d:21:cf:f4:8e:d2:fa:10:22:9a: 67:91:5b:27:b2:6f:76:15:d8:11:ba:8f:6d:23:30: 31:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:E1:94:E6:CB:E1:5F:A8:B5:94:75:F7:E4:CF:82:6E:39:DB:B8:11 X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:8c:5f:9e:17:74:40:e8:95:6c:27:47:6e:88:86:59:46:26: 5a:76:67:64:a9:c1:65:ed:46:ed:5a:53:78:1b:f3:f0:c7:15: 88:08:51:07:4f:6a:01:ec:53:08:19:3f:81:f2:3b:b9:9b:20: 1b:34:48:47:d7:0f:6d:95:a7:4e:c9:52:c1:6e:85:c4:c7:56: cc:37:f4:40:00:db:dc:6e:27:fa:7e:62:3d:56:cf:96:b8:3c: 96:5f:55:6c:76:e1:22:8b:ee:ac:3f:0e:bf:0f:73:07:65:03: 4c:cc:cf:96:78:e6:32:75:44:05:53:46:94:4e:57:46:19:52: 61:96:3c:bf:c0:01:8b:a1:6b:43:91:93:d3:46:88:07:28:56: 91:e7:2f:67:7e:25:35:72:ec:4d:99:cc:76:49:af:33:89:56: cb:62:96:55:7b:41:d7:75:bc:51:8f:fb:e6:6c:b3:e2:e0:20: 6d:ac:63:77:ff:21:53:5b:03:73:71:21:92:dc:dd:83:58:28: d8:2b:ba:2f:57:e5:b8:1b:0a:27:7d:96:e2:50:5a:c8:4c:73: 90:34:34:ce:07:f5:aa:98:7a:39:9a:05:9a:74:66:9e:f1:54: d4:af:4e:8d:9a:3a:19:73:00:38:8c:b0:fa:90:8e:c7:b1:3c: 66:7f:a7:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjYwNDA0MTUxNTQ0WhcNMjYwNDExMTUxNTQ0WjAYMRYwFAYD VQQDEw02OWQxMmIyMC0zZjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIzLuu8ht4RSmzxsUbxLJmD3Ab6ZmKmwh8psDnl7VtcF0bQiP8Y3SENgInZx +2EIXWIkEyqykQXPTkiB+/NAkbzbwN0tVvvC1IkyvnO6vsmt1vQGTTtNwBdjfyvM aBUcmtlQgFYs2FmtqTjKvr9b4WnuQLIAypT0nwHnaPEO9OWIhm9EU9fFKRKRR7uM eYN39MPmjZUwevkOS6PWT3l9plD9vEasZozUtYoAJtid0AgtR3v+UhyulUMKBXLM NDVBEF3fH+IJhRYWXAJ/xH8ZRKUXRpza4tfk8OaxZOzFeLcMro61Yy0hz/SO0voQ IppnkVsnsm92FdgRuo9tIzAxlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDXhlObL 4V+otZR19+TPgm4527gRMB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJYxfnhd0QOiVbCdHboiGWUYmWnZnZKnBZe1G7VpTeBvz8McViAhRB09qAexT CBk/gfI7uZsgGzRIR9cPbZWnTslSwW6FxMdWzDf0QADb3G4n+n5iPVbPlrg8ll9V bHbhIovurD8Ovw9zB2UDTMzPlnjmMnVEBVNGlE5XRhlSYZY8v8ABi6FrQ5GT00aI ByhWkecvZ34lNXLsTZnMdkmvM4lWy2KWVXtB13W8UY/75myz4uAgbaxjd/8hU1sD c3Ehktzdg1go2Cu6L1fluBsKJ32W4lBayExzkDQ0zgf1qph6OZoFmnRmnvFU1K9O jZo6GXMAOIyw+pCOx7E8Zn+nWw== -----END CERTIFICATE-----Generated at Sun Apr 5 19:42:57 2026 by rpki-client