$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft File: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft (raw, json) Hash identifier: SfGGLA/2+CWcdWNNFvx+I9xUfLsP06UMr29OgJBUTfk= Subject key identifier: AA:FB:DC:A2:F1:46:16:5B:76:37:83:7B:F8:78:A7:69:5A:E5:ED:39 Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0B85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft Manifest number: 0ACB Signing time: Mon 20 Apr 2026 19:35:21 +0000 Manifest this update: Mon 20 Apr 2026 19:35:21 +0000 Manifest next update: Mon 27 Apr 2026 19:35:21 +0000 Files and hashes: 1: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl (hash: vubTnEUt6ottYhVBlkOqU4R9qkaPXs6PxuVzURH1szA=) 2: 61EFB2ACAC3611EDA5995F3FC4F9AE02.roa (hash: lxrRVOjIONZ0+sk1QUPdtSqTSIWnhV1Sgp2inbSvE0o=) 3: 84023C06D24611EABDDF5344C4F9AE02.roa (hash: FMzg28ZdQ4F0sdhtK2wuRkllmrqXUEFKB65mg1sG8L4=) 4: C3E2252E205F11EE8117111CC4F9AE02.roa (hash: jZ6Iauv/dN/4P0hBUVndivCUUgxGO8TMbCYwzqgk7iI=) 5: 0EA44D4E5ADD11EBB9CEE568C4F9AE02.roa (hash: xyMhDnjS1J7j5KhCCxE7FkpfD0zlq+Ub21i1KmDM4ok=) 6: DCF88EAE5ED811EBAB677671C4F9AE02.roa (hash: M8kgzZ/qskhWT6RqbwLXgYKBgdTgBhgTCm6VDEfCRyI=) 7: 553170245AC511EBA052F663C4F9AE02.roa (hash: 7erTlCvInc3AVRLw7wvtHf/eZ1jEoIGiOeY13F8Zqv8=) 8: 0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa (hash: zt8ovKN7+n8nwUz7dlHlvLBjh4KwXCc4mYOMPsqbe38=) 9: 8626FFC65AE511EBA452D33EC4F9AE02.roa (hash: If1p2T4ry814caqPtmeuOiTH0yVCnehjVYiIPxJ8aBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 19:35:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2949 (0xb85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Apr 20 19:35:21 2026 GMT Not After : Apr 27 19:35:21 2026 GMT Subject: CN=69e67ff9-8966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e4:56:bc:67:99:60:dc:46:58:97:fb:b6:79: 09:38:13:32:73:09:3b:aa:d5:a4:0c:c0:ca:da:fb: 57:5d:fe:60:07:71:fc:e2:cb:83:c2:c7:92:62:70: 54:93:8d:4e:92:af:c2:56:37:39:88:dc:a4:29:b8: ae:50:fa:df:53:e4:91:74:e4:38:a7:6f:2f:ae:04: d3:03:b8:4d:9c:9e:e2:5e:cc:48:16:47:57:bf:0d: 03:3e:8f:c3:b2:9f:dd:05:40:88:07:44:72:dd:7e: 83:aa:79:c1:e0:41:de:6b:d5:d4:35:1a:65:12:9f: 31:3b:e8:08:38:2f:72:e5:04:87:a3:8f:a9:61:9c: 7e:e7:b9:d0:04:4f:3b:0f:59:6e:3f:c1:4c:3d:f1: 20:33:07:bf:23:2d:92:cb:7c:67:60:87:89:e4:84: 13:01:94:5d:9b:d9:a3:ce:61:0b:8f:18:f5:19:1f: 55:9f:6a:7c:e2:f9:c5:e1:76:3b:f1:87:66:4b:f3: 1f:8c:05:18:c2:8c:8c:6b:3d:6a:74:c2:d0:4d:0e: 9f:da:e9:d3:e5:0d:75:25:9e:86:b6:97:dd:95:ea: 70:d5:32:10:1b:7f:e0:41:53:e6:cb:a2:ca:48:b6: 59:83:52:ce:df:1f:7e:18:30:ad:4b:28:54:2e:7d: 28:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:FB:DC:A2:F1:46:16:5B:76:37:83:7B:F8:78:A7:69:5A:E5:ED:39 X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:1a:17:76:b5:1a:73:9c:0e:ab:d3:35:5b:c9:28:a5:6f:7a: 17:eb:2b:9f:ac:2b:cc:b4:c3:dd:74:2d:ad:a6:82:e1:90:3a: 32:9f:80:82:5e:14:e6:c4:27:67:c0:26:72:57:65:af:c9:e0: c5:7b:dd:e7:aa:c2:65:66:a6:8c:63:5c:c6:11:00:a3:45:9d: 0b:8e:69:ba:cf:d7:b8:ae:ed:42:0f:e4:12:ac:d3:1b:4c:ea: 4a:ca:59:df:1c:3b:b1:aa:9f:11:03:3b:d2:97:1d:b2:0f:b3: 18:12:5f:07:6c:3c:f2:f1:7b:0d:98:d1:2c:ca:d5:09:35:1e: c9:c3:34:e3:0d:ea:89:7b:fc:58:c6:ca:84:5b:64:f8:fd:47: 2a:5c:ac:c3:d1:f3:95:af:b2:f9:17:39:b8:64:5a:86:a8:e6: a1:30:f9:c3:87:7c:97:8a:bd:9b:0d:64:f8:a9:4b:d8:3c:3d: 7e:c1:c5:cc:6f:b0:72:75:46:40:85:cf:15:63:b6:93:62:b3: 51:1e:5a:e5:97:a0:05:a8:54:6f:9c:93:85:b3:b5:5d:4d:3f: f5:67:81:73:42:e3:43:2e:98:20:a6:fc:ad:5b:2a:b8:c3:ec: a8:2e:6a:44:93:aa:62:f9:58:47:20:f4:3a:3d:a4:0f:d9:27: c2:cc:d4:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjYwNDIwMTkzNTIxWhcNMjYwNDI3MTkzNTIxWjAYMRYwFAYD VQQDEw02OWU2N2ZmOS04OTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAseRWvGeZYNxGWJf7tnkJOBMycwk7qtWkDMDK2vtXXf5gB3H84suDwseSYnBU k41Okq/CVjc5iNykKbiuUPrfU+SRdOQ4p28vrgTTA7hNnJ7iXsxIFkdXvw0DPo/D sp/dBUCIB0Ry3X6DqnnB4EHea9XUNRplEp8xO+gIOC9y5QSHo4+pYZx+57nQBE87 D1luP8FMPfEgMwe/Iy2Sy3xnYIeJ5IQTAZRdm9mjzmELjxj1GR9Vn2p84vnF4XY7 8YdmS/MfjAUYwoyMaz1qdMLQTQ6f2unT5Q11JZ6Gtpfdlepw1TIQG3/gQVPmy6LK SLZZg1LO3x9+GDCtSyhULn0oTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKr73KLx RhZbdjeDe/h4p2la5e05MB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy80MzdDQzQwNjg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhL ZEJ4cUpKM0FGYWJWUktZcVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArxoXdrUac5wOq9M1W8kopW96F+srn6wrzLTD3XQtraaC4ZA6Mp+Agl4U5sQn Z8Amcldlr8ngxXvd56rCZWamjGNcxhEAo0WdC45pus/XuK7tQg/kEqzTG0zqSspZ 3xw7saqfEQM70pcdsg+zGBJfB2w88vF7DZjRLMrVCTUeycM04w3qiXv8WMbKhFtk +P1HKlysw9Hzla+y+Rc5uGRahqjmoTD5w4d8l4q9mw1k+KlL2Dw9fsHFzG+wcnVG QIXPFWO2k2KzUR5a5ZegBahUb5yThbO1XU0/9WeBc0LjQy6YIKb8rVsquMPsqC5q RJOqYvlYRyD0Oj2kD9knwszUmA== -----END CERTIFICATE-----Generated at Tue Apr 21 19:04:01 2026 by rpki-client