$ rpki-client -vvf rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft File: Q2NMcBuh8e_Oj1aqatHbKUWh258.mft (raw, json) Hash identifier: 2YmDtHHdn2WAMSP9DjsQr5dFcQN/w7R9DVYN3B0Ff/c= Subject key identifier: 22:2F:9B:7A:D0:ED:95:8C:3D:38:92:5C:2F:DD:16:72:FA:AD:3C:61 Authority key identifier: 43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F Certificate issuer: /CN=A918549C/serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft Manifest number: 0143 Signing time: Sun 05 Apr 2026 04:45:38 +0000 Manifest this update: Sun 05 Apr 2026 04:45:37 +0000 Manifest next update: Sun 12 Apr 2026 04:45:37 +0000 Files and hashes: 1: Q2NMcBuh8e_Oj1aqatHbKUWh258.crl (hash: dU76wN3nTWX88za67m0b3T8TKcQ+4Tp8vPHWJTeSgqc=) 2: 9C6F77784A3211EFBDBCEB2FC4F9AE02.roa (hash: POI2gtWNO02fmkeuPIBgEnMpIQB9HpbIZTb9ltFjGKA=) 3: ABA45B1A740611F0B304387CC4F9AE02.roa (hash: NoRAYMKDz7ruenjU4EI/k6TTzNlrpDAvnAEzcechXd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918549C, serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F Validity Not Before: Apr 5 04:45:37 2026 GMT Not After : Apr 12 04:45:37 2026 GMT Subject: CN=69d1e8f1-1e4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:85:09:53:0d:67:14:63:3f:79:e3:6a:fe:a4: 34:5b:26:47:52:65:9c:de:e4:20:ee:d3:42:f1:d3: f1:0d:f4:84:7d:ac:36:36:19:ef:8a:78:4d:9c:9c: be:a2:8a:ce:ef:d3:db:3f:fb:85:2f:02:44:6d:77: 37:ce:e9:72:39:c6:24:5b:19:c7:3c:a0:31:81:51: 61:a3:63:47:a7:68:52:23:70:1a:ee:f8:f4:5a:09: 4d:29:0d:5a:94:32:38:98:9c:a4:1d:6f:0e:78:aa: 5a:6e:4b:3b:ab:ea:ab:29:4d:2c:6f:c2:43:37:2f: 11:8f:86:4d:96:c2:67:d0:3e:f4:9a:cf:75:3b:5d: 3d:72:52:d2:31:ff:41:99:94:04:c5:b9:92:96:6c: 19:ae:bd:9d:7c:c8:ec:2b:9f:ea:10:d9:43:fa:65: 85:1d:02:33:1c:08:b2:52:bc:01:93:4c:e1:40:49: 7a:30:11:3c:63:1c:10:61:fc:67:95:63:9f:15:3e: d4:52:02:42:9f:6b:cc:8a:96:7c:b1:23:f2:eb:ff: 66:9f:11:ad:a6:0d:b3:dc:91:5e:64:eb:74:e1:57: 5a:2c:2b:fc:88:08:da:47:20:92:23:78:86:9d:a7: 9f:3e:9d:bf:23:ea:bf:33:d8:91:ae:ec:b5:6d:2d: 93:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:2F:9B:7A:D0:ED:95:8C:3D:38:92:5C:2F:DD:16:72:FA:AD:3C:61 X509v3 Authority Key Identifier: keyid:43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:be:66:90:f3:49:00:2b:7a:57:cf:3c:db:5d:10:48:62:a8: 27:9f:c3:6b:a5:bb:5e:fb:55:0b:2d:33:cd:35:40:f1:89:61: 19:b3:27:90:5a:fe:62:47:44:58:7b:34:2b:93:0a:31:7d:83: d1:af:58:f6:8a:9b:1e:79:a2:69:4f:10:d8:7f:73:db:6a:c3: 73:e3:70:7b:3c:9c:72:ba:10:1f:8e:aa:db:0c:74:90:58:51: 3b:4a:97:ba:18:b9:37:6e:84:2b:a7:4f:db:da:db:a3:a2:e5: 51:d4:c9:67:49:65:68:42:ef:80:d4:9e:e3:3a:cf:54:c5:4b: 07:3c:97:af:9b:30:98:bf:a7:78:14:05:f0:d4:b2:41:d9:c0: f5:21:d2:b5:d8:1c:7e:3c:8e:9c:9e:a9:a0:29:9f:d8:49:fa: e9:f3:0b:bc:dd:b2:cb:7f:9a:27:9e:c7:4a:92:af:85:eb:0d: c3:0b:5b:1b:49:4f:4b:07:b7:45:0f:99:93:9a:5a:e2:9e:69: 3b:ac:71:44:1c:bd:8c:ba:e3:22:5e:c3:fb:d9:d0:55:3d:4e: 16:95:cb:91:9e:9b:fd:58:2d:c9:39:bf:ad:97:f2:63:c8:4c: 5b:91:f1:5f:49:e6:d4:b4:fa:45:6e:0a:ab:a5:0a:21:1e:fc: 33:25:dd:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0OUMxMTAvBgNVBAUTKDQzNjM0QzcwMUJBMUYxRUZDRThGNTZBQTZBRDFEQjI5 NDVBMURCOUYwHhcNMjYwNDA1MDQ0NTM3WhcNMjYwNDEyMDQ0NTM3WjAYMRYwFAYD VQQDEw02OWQxZThmMS0xZTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoUJUw1nFGM/eeNq/qQ0WyZHUmWc3uQg7tNC8dPxDfSEfaw2NhnvinhNnJy+ oorO79PbP/uFLwJEbXc3zulyOcYkWxnHPKAxgVFho2NHp2hSI3Aa7vj0WglNKQ1a lDI4mJykHW8OeKpabks7q+qrKU0sb8JDNy8Rj4ZNlsJn0D70ms91O109clLSMf9B mZQExbmSlmwZrr2dfMjsK5/qENlD+mWFHQIzHAiyUrwBk0zhQEl6MBE8YxwQYfxn lWOfFT7UUgJCn2vMipZ8sSPy6/9mnxGtpg2z3JFeZOt04VdaLCv8iAjaRyCSI3iG naefPp2/I+q/M9iRruy1bS2TywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCIvm3rQ 7ZWMPTiSXC/dFnL6rTxhMB8GA1UdIwQYMBaAFENjTHAbofHvzo9WqmrR2ylFoduf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQ5Qy9ERTg3MThDNDRB MzExMUVGQjdCQkQ1MUNDNEY5QUUwMi9RMk5NY0J1aDhlX09qMWFxYXRIYktVV2gy NTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1EyTk1jQnVoOGVfT2oxYXFhdEhiS1VXaDI1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTQ5Qy9ERTg3MThDNDRBMzExMUVGQjdCQkQ1MUNDNEY5QUUwMi9RMk5NY0J1aDhl X09qMWFxYXRIYktVV2gyNTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOb5mkPNJACt6V888210QSGKoJ5/Da6W7XvtVCy0zzTVA8YlhGbMnkFr+YkdE WHs0K5MKMX2D0a9Y9oqbHnmiaU8Q2H9z22rDc+NwezyccroQH46q2wx0kFhRO0qX uhi5N26EK6dP29rbo6LlUdTJZ0llaELvgNSe4zrPVMVLBzyXr5swmL+neBQF8NSy QdnA9SHStdgcfjyOnJ6poCmf2En66fMLvN2yy3+aJ57HSpKvhesNwwtbG0lPSwe3 RQ+Zk5pa4p5pO6xxRBy9jLrjIl7D+9nQVT1OFpXLkZ6b/VgtyTm/rZfyY8hMW5Hx X0nm1LT6RW4Kq6UKIR78MyXdAg== -----END CERTIFICATE-----Generated at Mon Apr 6 03:38:36 2026 by rpki-client