$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft File: qHH05sNy2xC2TfOZX6FR77OfmYs.mft (raw, json) Hash identifier: vfPVeDfrI8OoY0I/mELDwnDDCs5+Z9sOSU5838eaAgA= Subject key identifier: 5D:E9:3F:2A:E7:35:45:D4:DA:02:07:EA:2B:2E:03:B5:CF:4F:E9:D2 Authority key identifier: A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B Certificate issuer: /CN=A9195F49/serialNumber=A871F4E6C372DB10B64DF3995FA151EFB39F998B Certificate serial: 04D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft Manifest number: 04CC Signing time: Sat 04 Apr 2026 23:40:31 +0000 Manifest this update: Sat 04 Apr 2026 23:40:31 +0000 Manifest next update: Sat 11 Apr 2026 23:40:31 +0000 Files and hashes: 1: qHH05sNy2xC2TfOZX6FR77OfmYs.crl (hash: OZWDJIvi4c8SQWcKarMueLBIkHimwdrdC59u3rY9OoU=) 2: 5FC75DCC66A511EC9C199341C4F9AE02.roa (hash: 7aFNsUg1I4C5V9F/LA66NxWgGO8Ce4SasYs9BxONMfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.crl rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:40:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1238 (0x4d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F49, serialNumber=A871F4E6C372DB10B64DF3995FA151EFB39F998B Validity Not Before: Apr 4 23:40:31 2026 GMT Not After : Apr 11 23:40:31 2026 GMT Subject: CN=69d1a16f-11ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f8:fd:12:69:89:16:13:62:81:fe:f1:69:62: 67:0b:0c:fe:fd:34:aa:ca:53:37:89:2e:33:c5:56: 12:51:0a:54:b3:31:4e:6b:78:a7:79:4c:08:6f:8e: 17:3d:23:31:30:11:99:a4:a0:be:fd:7f:2b:51:ba: 37:fb:c3:1d:3c:08:c1:72:95:cb:be:2e:77:e9:a4: e8:54:ee:dc:bd:b5:00:fa:10:b3:56:45:cc:47:c1: 0c:08:31:89:d8:e7:8e:f7:de:5b:72:a0:9f:aa:1e: e3:ec:8a:12:dd:75:e9:e5:33:b4:71:a6:bd:76:95: 1b:5b:ee:9b:ee:f3:9f:ed:56:4b:84:5e:95:28:74: d4:ef:cc:d0:b5:34:c1:09:91:af:23:da:d1:af:fd: fe:db:f3:17:e9:5b:95:fe:c9:e2:5a:31:91:b7:2f: 00:12:46:93:78:79:6a:0f:50:26:18:b2:77:8d:7a: f6:e6:3c:90:ab:2b:ca:69:5f:a5:95:c9:ca:06:55: 5a:0a:b5:98:49:78:be:ab:3c:3b:7b:0d:1a:6f:ce: 6d:f9:48:29:b4:19:77:87:22:5d:28:66:2c:55:e7: 8e:51:1b:eb:a9:f4:a3:d0:f6:7b:03:1d:99:64:e4: 53:bf:93:4f:1e:a0:96:1c:47:87:f5:56:65:b4:5c: 26:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E9:3F:2A:E7:35:45:D4:DA:02:07:EA:2B:2E:03:B5:CF:4F:E9:D2 X509v3 Authority Key Identifier: keyid:A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:4b:8a:d7:93:02:70:d7:15:24:da:fd:8d:98:29:71:f8:62: 7b:ab:fc:25:b7:80:1f:83:56:12:f9:9f:0a:4c:7e:e1:0b:e9: f4:77:ef:cb:10:1a:cd:9a:f9:ac:94:1e:f1:e1:be:3c:30:24: 70:09:7c:ea:83:90:f0:53:c2:02:c4:ae:30:c5:42:b5:70:30: 9c:d7:0c:2e:f2:71:be:3c:fe:81:fb:4f:60:3a:df:c3:86:bb: d8:b2:ac:7b:e5:ab:99:61:37:75:c9:e8:3c:a0:5b:37:14:90: 40:a5:26:91:31:4b:00:12:aa:86:ad:0e:fe:f1:6b:70:a6:4b: 62:ba:b9:52:57:82:ba:26:43:d6:a0:9b:3b:74:13:d2:8c:58: db:af:72:9a:a9:95:5d:4a:fa:50:24:24:ed:fd:4b:e8:71:24: 67:83:3c:fa:02:95:b3:c0:41:01:54:69:65:7e:3d:47:30:65: a9:39:83:3f:d4:35:13:0d:94:05:dd:86:bf:21:f7:f6:fe:aa: 11:05:e9:71:c3:52:f3:ee:7c:ac:aa:0b:f2:32:f0:17:89:8e: 59:82:c6:67:bd:92:62:d5:e0:c1:7c:9d:41:bc:e1:79:e2:fd: df:c6:0b:5e:d8:e3:04:21:aa:5e:5a:32:81:e9:d3:b9:1b:c4: e0:88:bb:10 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGNDkxMTAvBgNVBAUTKEE4NzFGNEU2QzM3MkRCMTBCNjRERjM5OTVGQTE1MUVG QjM5Rjk5OEIwHhcNMjYwNDA0MjM0MDMxWhcNMjYwNDExMjM0MDMxWjAYMRYwFAYD VQQDEw02OWQxYTE2Zi0xMWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfj9EmmJFhNigf7xaWJnCwz+/TSqylM3iS4zxVYSUQpUszFOa3ineUwIb44X PSMxMBGZpKC+/X8rUbo3+8MdPAjBcpXLvi536aToVO7cvbUA+hCzVkXMR8EMCDGJ 2OeO995bcqCfqh7j7IoS3XXp5TO0caa9dpUbW+6b7vOf7VZLhF6VKHTU78zQtTTB CZGvI9rRr/3+2/MX6VuV/sniWjGRty8AEkaTeHlqD1AmGLJ3jXr25jyQqyvKaV+l lcnKBlVaCrWYSXi+qzw7ew0ab85t+UgptBl3hyJdKGYsVeeOURvrqfSj0PZ7Ax2Z ZORTv5NPHqCWHEeH9VZltFwmiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF3pPyrn NUXU2gIH6isuA7XPT+nSMB8GA1UdIwQYMBaAFKhx9ObDctsQtk3zmV+hUe+zn5mL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY0OS85RDNDNzQ5MjY2 QTIxMUVDQkI3QTBBM0NDNEY5QUUwMi9xSEgwNXNOeTJ4QzJUZk9aWDZGUjc3T2Zt WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FISDA1c055MnhDMlRmT1pYNkZSNzdPZm1Zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY0OS85RDNDNzQ5MjY2QTIxMUVDQkI3QTBBM0NDNEY5QUUwMi9xSEgwNXNOeTJ4 QzJUZk9aWDZGUjc3T2ZtWXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEkuK15MCcNcVJNr9jZgpcfhie6v8JbeAH4NWEvmfCkx+4Qvp9HfvyxAazZr5 rJQe8eG+PDAkcAl86oOQ8FPCAsSuMMVCtXAwnNcMLvJxvjz+gftPYDrfw4a72LKs e+WrmWE3dcnoPKBbNxSQQKUmkTFLABKqhq0O/vFrcKZLYrq5UleCuiZD1qCbO3QT 0oxY269ymqmVXUr6UCQk7f1L6HEkZ4M8+gKVs8BBAVRpZX49RzBlqTmDP9Q1Ew2U Bd2GvyH39v6qEQXpccNS8+58rKoL8jLwF4mOWYLGZ72SYtXgwXydQbzheeL938YL XtjjBCGqXloygenTuRvE4Ii7EA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:42:36 2026 by rpki-client