$ rpki-client -vvf rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft File: NdqtT3Wuk43GUzSEzejIF93Csig.mft (raw, json) Hash identifier: UBnIVJoHEbY7plzJTw3deF+ie70b7qlmTm1nXFyvqZo= Subject key identifier: 7D:C9:46:58:F4:D3:1A:7F:15:5B:00:F6:29:A5:D9:2F:60:E8:84:B2 Authority key identifier: 35:DA:AD:4F:75:AE:93:8D:C6:53:34:84:CD:E8:C8:17:DD:C2:B2:28 Certificate issuer: /CN=A911E351/serialNumber=35DAAD4F75AE938DC6533484CDE8C817DDC2B228 Certificate serial: 049F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft Manifest number: 0498 Signing time: Sat 04 Apr 2026 23:45:28 +0000 Manifest this update: Sat 04 Apr 2026 23:45:28 +0000 Manifest next update: Sat 11 Apr 2026 23:45:28 +0000 Files and hashes: 1: NdqtT3Wuk43GUzSEzejIF93Csig.crl (hash: PLuR8tpbIWl2i2774S8ZGYv8FtgzTMESI01TH3IOy/c=) 2: E9ED080A785011ECBD2B6A10C4F9AE02.roa (hash: 0VJSSuNZNqd6Mi6Fcfyrw/oW75/x9p5H40HqIw6BOBA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.crl rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1183 (0x49f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E351, serialNumber=35DAAD4F75AE938DC6533484CDE8C817DDC2B228 Validity Not Before: Apr 4 23:45:28 2026 GMT Not After : Apr 11 23:45:28 2026 GMT Subject: CN=69d1a298-8db9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:10:d4:da:fa:f7:b2:4f:96:6a:04:3d:ab:82: 38:e3:6e:b6:a4:94:57:1a:e7:a1:dd:24:fd:4f:d1: ad:d2:24:48:14:15:fe:cb:45:e1:29:1f:1c:30:ba: 94:9b:1a:83:2f:b6:cd:53:75:d0:be:b8:8a:3e:b8: 9a:4b:bd:92:9d:cb:41:91:97:01:6e:b9:53:d1:73: 39:d4:b3:bb:fe:0c:02:d3:c7:7b:d7:1f:3a:1f:70: d7:5b:7d:c2:f0:69:fc:9f:96:12:89:a1:42:f5:eb: e1:e7:93:03:db:d5:e2:32:d8:6d:b3:e1:47:03:02: 5c:81:76:94:66:3f:1d:03:dd:08:ba:f7:b7:5e:e3: 01:79:fe:b8:59:ef:b0:ee:53:50:66:e2:83:aa:e1: b4:e2:1d:fb:e8:8d:bc:0f:c1:67:e4:5f:11:5e:42: 8a:09:e7:f1:f7:0f:2a:30:20:6e:d6:12:8a:e7:a6: 3c:a3:af:9c:5b:0c:2d:ba:bb:95:c4:ab:74:63:f3: c2:69:9e:69:f4:4f:37:fc:5a:e0:bd:91:e1:29:f3: e7:86:a2:e8:1e:64:71:07:80:c2:46:0c:6b:c2:1d: df:2b:87:45:1d:c2:ce:97:95:c2:1f:ac:47:92:ae: c5:2d:ce:22:67:cc:18:1f:e5:bc:49:7e:2b:59:f6: a0:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:C9:46:58:F4:D3:1A:7F:15:5B:00:F6:29:A5:D9:2F:60:E8:84:B2 X509v3 Authority Key Identifier: keyid:35:DA:AD:4F:75:AE:93:8D:C6:53:34:84:CD:E8:C8:17:DD:C2:B2:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:5c:05:cd:28:b1:9a:d5:39:eb:3a:00:ce:51:8c:4d:37:b2: 03:41:69:37:22:9b:a1:74:9c:b0:85:a4:39:4a:36:fc:6b:3c: 3c:37:03:0e:b2:77:25:07:87:21:4c:8a:19:1a:65:03:f9:84: 10:0e:71:9b:59:83:bb:c2:4f:49:b7:5c:42:d4:61:66:65:86: 52:0a:62:94:ff:37:b2:30:12:24:76:f1:e7:4a:4c:2c:69:af: c1:fd:b7:b5:06:b4:f6:c3:d1:88:c9:66:92:6c:3b:33:19:fd: 43:a5:3b:29:82:d4:b8:f7:6c:64:d0:e6:8e:cd:4b:83:74:7c: 35:ca:1c:d5:de:76:56:30:4e:a3:d6:09:cc:96:b1:89:57:c6: 11:ea:5c:68:0b:79:84:00:50:a3:d4:73:30:7b:45:38:9a:8e: ca:04:a4:f7:3d:6b:d6:06:a1:91:91:e0:bb:06:d7:91:fa:7c: 1f:9c:99:9f:ac:16:46:42:46:ba:26:84:05:ae:c0:06:c3:67: ca:5b:fa:21:2a:cf:3f:4b:f9:82:a4:2a:09:e2:d4:c8:99:29: 76:5d:64:98:c1:56:21:0b:e9:91:26:3d:35:50:c8:21:c9:bd: e7:c6:e7:21:7a:6c:ee:48:09:8a:02:52:06:68:3f:06:ca:3b: 55:e2:fd:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUzNTExMTAvBgNVBAUTKDM1REFBRDRGNzVBRTkzOERDNjUzMzQ4NENERThDODE3 RERDMkIyMjgwHhcNMjYwNDA0MjM0NTI4WhcNMjYwNDExMjM0NTI4WjAYMRYwFAYD VQQDEw02OWQxYTI5OC04ZGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAohDU2vr3sk+WagQ9q4I44262pJRXGueh3ST9T9Gt0iRIFBX+y0XhKR8cMLqU mxqDL7bNU3XQvriKPriaS72SnctBkZcBbrlT0XM51LO7/gwC08d71x86H3DXW33C 8Gn8n5YSiaFC9evh55MD29XiMthts+FHAwJcgXaUZj8dA90Iuve3XuMBef64We+w 7lNQZuKDquG04h376I28D8Fn5F8RXkKKCefx9w8qMCBu1hKK56Y8o6+cWwwturuV xKt0Y/PCaZ5p9E83/FrgvZHhKfPnhqLoHmRxB4DCRgxrwh3fK4dFHcLOl5XCH6xH kq7FLc4iZ8wYH+W8SX4rWfagWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH3JRlj0 0xp/FVsA9iml2S9g6ISyMB8GA1UdIwQYMBaAFDXarU91rpONxlM0hM3oyBfdwrIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTM1MS81QkNGODhBNjc4 NEUxMUVDOEE0NDQ1MEVDNEY5QUUwMi9OZHF0VDNXdWs0M0dVelNFemVqSUY5M0Nz aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05kcXRUM1d1azQzR1V6U0V6ZWpJRjkzQ3NpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTM1MS81QkNGODhBNjc4NEUxMUVDOEE0NDQ1MEVDNEY5QUUwMi9OZHF0VDNXdWs0 M0dVelNFemVqSUY5M0NzaWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQFwFzSixmtU56zoAzlGMTTeyA0FpNyKboXScsIWkOUo2/Gs8PDcDDrJ3JQeH IUyKGRplA/mEEA5xm1mDu8JPSbdcQtRhZmWGUgpilP83sjASJHbx50pMLGmvwf23 tQa09sPRiMlmkmw7Mxn9Q6U7KYLUuPdsZNDmjs1Lg3R8Ncoc1d52VjBOo9YJzJax iVfGEepcaAt5hABQo9RzMHtFOJqOygSk9z1r1gahkZHguwbXkfp8H5yZn6wWRkJG uiaEBa7ABsNnylv6ISrPP0v5gqQqCeLUyJkpdl1kmMFWIQvpkSY9NVDIIcm958bn IXps7kgJigJSBmg/Bso7VeL9DQ== -----END CERTIFICATE-----Generated at Mon Apr 6 11:34:43 2026 by rpki-client