$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft File: cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft (raw, json) Hash identifier: PYFYR4Ne5r9099tdqu173KIYrinMNmPjsG39IH/cPmc= Subject key identifier: D0:03:40:B8:75:EC:E9:12:27:92:E2:A1:4C:91:46:29:92:CC:90:CE Authority key identifier: 71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 Certificate issuer: /CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Certificate serial: 0C9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft Manifest number: 0C91 Signing time: Sat 04 Apr 2026 18:23:55 +0000 Manifest this update: Sat 04 Apr 2026 18:23:54 +0000 Manifest next update: Sat 11 Apr 2026 18:23:54 +0000 Files and hashes: 1: cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl (hash: Iq/EHn5bDnZtfnbsRWQLA/MjlyIkodXIkzEs+NfBKPI=) 2: 4697751815B111EA8277BA34C4F9AE02.roa (hash: mpWE3JxWmusWHtsdnUiKvPMOgwCqfgCScdAt8K/8YQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3227 (0xc9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C31, serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Validity Not Before: Apr 4 18:23:54 2026 GMT Not After : Apr 11 18:23:54 2026 GMT Subject: CN=69d1573b-7a01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:f9:f8:a5:1f:69:7d:97:68:c5:ff:22:9a:62: b8:d2:22:40:6e:45:8b:a3:9d:79:b7:be:fb:7b:76: 94:6d:3a:d2:f9:3a:71:46:48:83:79:13:70:91:e3: f8:b2:89:82:57:86:4e:5d:53:f7:e2:95:90:4d:f3: 3a:a3:81:2a:86:56:e9:84:ea:48:27:93:bc:6b:2a: 6d:5e:aa:19:ca:19:0e:00:b8:41:09:cf:00:c3:1e: 24:0b:d6:8b:da:c8:1f:50:65:b0:eb:0d:5e:f5:d8: ea:ff:77:b4:04:96:9e:78:ee:bd:20:fa:5d:03:e4: 05:84:d5:8a:8f:97:2c:22:24:2f:5b:fb:e4:8b:31: 80:9b:82:29:f9:df:54:1b:89:d0:5e:01:c6:88:8b: e1:85:38:30:64:29:04:88:dd:3a:89:f8:49:98:37: 51:af:8e:28:a2:08:70:12:b5:d7:64:76:1e:94:d4: ab:13:b1:d4:ac:91:fe:6a:03:b8:40:42:12:19:ea: 56:01:72:5e:df:e0:be:ab:ee:0e:d1:21:bb:f2:ff: 30:11:9b:0e:ce:7c:f6:42:4e:3c:b9:d5:b8:d8:81: a2:3b:7b:17:af:df:1e:63:af:c9:2d:c1:40:91:bc: 85:b9:b7:28:20:14:a9:9e:8d:e1:cc:7d:c1:b6:db: d9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:03:40:B8:75:EC:E9:12:27:92:E2:A1:4C:91:46:29:92:CC:90:CE X509v3 Authority Key Identifier: keyid:71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:ce:6e:9c:d0:77:96:80:98:1e:04:ca:39:3f:c0:92:be:aa: b6:84:eb:89:35:18:a7:6d:b3:56:9e:b7:0f:13:64:24:7b:c8: 42:c0:b4:0a:61:51:0c:47:09:be:2c:38:83:bc:ad:c9:27:b6: f7:02:cf:95:71:ba:c2:4c:77:f2:41:4e:aa:36:f1:5b:01:a3: 5a:20:83:1e:ef:68:46:ab:b1:c1:cf:7a:53:cf:ab:56:dc:d0: 72:ec:26:31:d5:4a:1a:3a:82:49:b8:e3:19:92:e3:da:ab:e2: ba:a9:58:cb:ae:27:a9:7e:5e:e4:b3:20:bd:31:03:61:1b:9b: 4c:e5:d1:91:b1:03:55:81:d9:eb:ed:cc:fc:7a:9a:70:0b:2a: 64:1b:fd:52:f8:67:81:4e:88:90:6a:11:24:cc:ec:80:fd:96: b9:15:78:57:7a:3e:8d:a7:37:8c:23:d9:8f:8e:83:35:6e:26: 42:b7:c1:29:66:11:cc:74:ed:e4:df:65:9b:f3:25:37:b9:df: a7:d9:73:67:2c:df:8b:56:b3:12:04:cc:91:ac:2a:14:65:6d: dc:4a:a2:52:b7:5b:30:e3:41:66:f1:dd:1d:33:c5:ac:ca:d1: ff:30:45:5c:8d:f1:c6:3e:16:75:59:ab:a4:f7:7f:0c:f8:f1: df:7c:58:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMzExMTAvBgNVBAUTKDcxMDUzNzI0NDZBMjA2NDU0NkQ5NjI5RjQyMUMzNzZG RENFRjIxRDYwHhcNMjYwNDA0MTgyMzU0WhcNMjYwNDExMTgyMzU0WjAYMRYwFAYD VQQDEw02OWQxNTczYi03YTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkPn4pR9pfZdoxf8immK40iJAbkWLo515t777e3aUbTrS+TpxRkiDeRNwkeP4 somCV4ZOXVP34pWQTfM6o4EqhlbphOpIJ5O8ayptXqoZyhkOALhBCc8Awx4kC9aL 2sgfUGWw6w1e9djq/3e0BJaeeO69IPpdA+QFhNWKj5csIiQvW/vkizGAm4Ip+d9U G4nQXgHGiIvhhTgwZCkEiN06ifhJmDdRr44ooghwErXXZHYelNSrE7HUrJH+agO4 QEISGepWAXJe3+C+q+4O0SG78v8wEZsOznz2Qk48udW42IGiO3sXr98eY6/JLcFA kbyFubcoIBSpno3hzH3BttvZfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNADQLh1 7OkSJ5LioUyRRimSzJDOMB8GA1UdIwQYMBaAFHEFNyRGogZFRtlin0IcN2/c7yHW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzMS8zOEJGNDA5QTE1 OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJrVkcyV0tmUWh3M2I5enZJ ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRVTNKRWFpQmtWRzJXS2ZRaHczYjl6dklkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzMS8zOEJGNDA5QTE1OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJr VkcyV0tmUWh3M2I5enZJZFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhM5unNB3loCYHgTKOT/Akr6qtoTriTUYp22zVp63DxNkJHvIQsC0CmFRDEcJ viw4g7ytySe29wLPlXG6wkx38kFOqjbxWwGjWiCDHu9oRquxwc96U8+rVtzQcuwm MdVKGjqCSbjjGZLj2qviuqlYy64nqX5e5LMgvTEDYRubTOXRkbEDVYHZ6+3M/Hqa cAsqZBv9UvhngU6IkGoRJMzsgP2WuRV4V3o+jac3jCPZj46DNW4mQrfBKWYRzHTt 5N9lm/MlN7nfp9lzZyzfi1azEgTMkawqFGVt3EqiUrdbMONBZvHdHTPFrMrR/zBF XI3xxj4WdVmrpPd/DPjx33xY9g== -----END CERTIFICATE-----Generated at Mon Apr 6 08:41:07 2026 by rpki-client