$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: uJq4WFP3CBbJZbABZnD0sPqSC3Q7hhkDDlH2i4ObGzc= Subject key identifier: 8E:D7:E7:FD:0D:86:DC:EB:5E:A5:6E:CB:3A:94:D0:4A:A9:6D:B5:55 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0D79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0D4F Signing time: Mon 30 Mar 2026 18:03:03 +0000 Manifest this update: Mon 30 Mar 2026 18:03:03 +0000 Manifest next update: Mon 06 Apr 2026 18:03:03 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: E9ZRr1hHxk5V1uKi9SPVcUVRR+ZmFraKYMrwt5WcXxQ=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: 2j8ZEZZDC+v0AsplIrNRFX86JLUI1D1lZouNpF7eL1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3449 (0xd79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Mar 30 18:03:03 2026 GMT Not After : Apr 6 18:03:03 2026 GMT Subject: CN=69cabad7-a750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b4:2f:46:6b:2d:f4:e9:d9:e3:f8:b0:6b:37: 85:7f:b7:d9:f3:64:b1:b8:d9:21:73:d2:fd:1e:d0: ec:b1:df:33:5c:19:da:27:a9:d5:1c:40:31:77:dc: 29:68:bc:b8:95:86:34:a5:e1:b6:17:12:25:6f:6a: 6a:b8:c3:82:1a:35:cf:4d:2a:67:62:77:d5:7b:f5: 37:1e:e6:81:c5:ee:3c:0c:8e:b7:a5:ab:3c:f3:98: b0:63:68:d1:df:13:a0:dc:0d:c5:61:eb:4e:fc:be: 6b:80:44:14:44:39:b0:b1:e2:01:e6:c2:d5:c2:f4: c0:51:88:8e:dd:08:f1:d1:97:38:4e:a8:8a:0a:b2: 5f:0a:db:0a:6c:e5:8c:e4:94:a0:ca:30:d7:61:e9: bf:e6:04:ac:dc:86:f4:da:99:02:d0:8a:f2:86:c2: e7:97:3a:27:ab:0a:fb:1c:97:96:bf:bd:ab:3e:97: 0c:49:df:b3:b3:cd:a1:bf:7f:75:c0:fa:aa:65:89: 1e:dd:64:7f:c0:57:d0:58:cb:b6:85:26:d4:d4:18: fc:9a:29:5e:d5:69:45:6e:a6:06:b5:75:36:ee:2b: 15:2b:ca:57:5e:cf:db:19:6e:21:f0:c3:5d:39:93: c0:62:55:4f:c9:fc:2e:31:46:8f:43:9b:8c:a2:2e: 98:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D7:E7:FD:0D:86:DC:EB:5E:A5:6E:CB:3A:94:D0:4A:A9:6D:B5:55 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:67:b4:9c:59:b5:f2:25:d4:13:f0:21:18:67:06:96:a6:9f: c8:67:38:7a:4e:ad:4e:0b:f2:34:fc:d2:17:0c:f4:75:59:cc: 93:52:f6:f3:6d:03:31:d3:02:7a:4a:7a:f4:0e:e4:59:0b:b6: 50:7d:4f:c5:3c:fa:d5:e7:55:fa:24:4a:62:24:61:83:3c:ee: 8a:9b:b3:d3:3b:a7:85:d2:d1:bc:1a:af:8c:55:c7:4f:b1:72: 9d:0a:97:8e:c4:28:59:59:a9:2d:b6:57:25:44:d0:8b:68:27: 79:94:6d:98:1e:05:d4:06:36:d8:97:c4:8c:fa:86:b1:c0:40: 54:a8:23:2e:c8:1e:2e:d7:c0:08:44:39:52:67:9b:a2:8f:4d: 0b:5a:41:40:6e:b2:82:d5:2a:35:35:26:74:12:5d:28:d6:c8: e3:79:ac:8e:17:2e:2a:5c:20:0e:f1:e8:39:dc:e7:ed:60:89: e2:74:7f:bd:00:47:22:2f:a5:c1:fc:13:66:75:6f:9b:f2:e0: 48:5b:fe:8b:ae:b8:cc:d0:8e:60:f1:1f:c9:22:c0:1b:1b:1d: 61:48:6e:a4:72:16:61:12:6d:1a:a0:a4:fd:b4:9c:18:be:ad: e2:47:7e:bd:49:40:d9:23:b3:eb:c4:a9:40:4b:b5:13:79:f1: 8a:ae:ce:6c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjYwMzMwMTgwMzAzWhcNMjYwNDA2MTgwMzAzWjAYMRYwFAYD VQQDEw02OWNhYmFkNy1hNzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnLQvRmst9OnZ4/iwazeFf7fZ82SxuNkhc9L9HtDssd8zXBnaJ6nVHEAxd9wp aLy4lYY0peG2FxIlb2pquMOCGjXPTSpnYnfVe/U3HuaBxe48DI63pas885iwY2jR 3xOg3A3FYetO/L5rgEQURDmwseIB5sLVwvTAUYiO3Qjx0Zc4TqiKCrJfCtsKbOWM 5JSgyjDXYem/5gSs3Ib02pkC0IryhsLnlzonqwr7HJeWv72rPpcMSd+zs82hv391 wPqqZYke3WR/wFfQWMu2hSbU1Bj8mile1WlFbqYGtXU27isVK8pXXs/bGW4h8MNd OZPAYlVPyfwuMUaPQ5uMoi6YHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI7X5/0N htzrXqVuyzqU0EqpbbVVMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbWe0nFm18iXUE/AhGGcGlqafyGc4ek6tTgvyNPzSFwz0dVnMk1L2820DMdMC ekp69A7kWQu2UH1PxTz61edV+iRKYiRhgzzuipuz0zunhdLRvBqvjFXHT7FynQqX jsQoWVmpLbZXJUTQi2gneZRtmB4F1AY22JfEjPqGscBAVKgjLsgeLtfACEQ5Umeb oo9NC1pBQG6ygtUqNTUmdBJdKNbI43msjhcuKlwgDvHoOdzn7WCJ4nR/vQBHIi+l wfwTZnVvm/LgSFv+i664zNCOYPEfySLAGxsdYUhupHIWYRJtGqCk/bScGL6t4kd+ vUlA2SOz68SpQEu1E3nxiq7ObA== -----END CERTIFICATE-----Generated at Mon Mar 30 22:46:20 2026 by rpki-client