$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft File: qafXPj7Y1cRm3LxsIJzUNTzemM8.mft (raw, json) Hash identifier: ucybXaEj9R2rPah/cITSym8jmBczsDRxTm9GDYjY2EQ= Subject key identifier: 9F:B9:95:48:38:21:A9:E0:D4:82:C8:E8:6D:6B:BC:9A:51:48:EB:9F Authority key identifier: A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF Certificate issuer: /CN=A9143FC4/serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Certificate serial: 34EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft Manifest number: 34E9 Signing time: Sat 04 Apr 2026 15:16:33 +0000 Manifest this update: Sat 04 Apr 2026 15:16:33 +0000 Manifest next update: Sat 11 Apr 2026 15:16:33 +0000 Files and hashes: 1: qafXPj7Y1cRm3LxsIJzUNTzemM8.crl (hash: vtDv6G9uTW0aumW4BF3fCQj+sitKUjjkaUH1iBB8HWM=) 2: FE96F04256EE11F09D243832C4F9AE02.roa (hash: oojYcBMoonELSfe45pkI581LosRHOK0/3Xt8Hp4n/PY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13548 (0x34ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FC4, serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Validity Not Before: Apr 4 15:16:33 2026 GMT Not After : Apr 11 15:16:33 2026 GMT Subject: CN=69d12b51-7960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:89:cb:30:fb:64:dd:00:73:7c:e5:82:4c:c2: 83:23:25:38:ca:34:e3:4d:72:3f:c0:98:77:b1:f7: 1d:2c:b0:9c:b3:9d:f7:b1:e0:d1:db:07:9a:b7:49: 44:d1:70:6c:5d:c0:8b:1c:79:09:47:94:59:15:f0: b5:d6:ac:37:0f:66:c3:28:b7:82:35:14:86:ce:3f: 71:60:1a:c4:b9:5f:9c:a4:e5:01:bc:0e:e6:3b:2e: 45:c6:1b:d4:fb:da:a3:d7:a6:c4:ba:4e:28:c5:ef: 70:b7:43:bf:cc:6e:53:90:67:54:a4:65:ae:5f:4c: e3:c6:22:a1:22:0c:e0:7c:68:af:ec:8d:94:52:a4: 0d:ba:51:1a:95:be:d1:9f:04:a9:f8:c6:b1:03:79: d0:07:28:4d:52:29:ba:9f:73:f4:86:5c:52:8e:47: 51:cc:d0:cb:0b:0e:fe:51:cf:66:8b:5c:4d:1e:9a: 0d:6d:59:36:16:e6:9e:2f:18:28:27:a9:5e:66:83: 3d:68:24:23:5b:e6:6e:7f:31:8d:4a:5c:93:df:5c: 52:4f:5c:94:3b:13:02:18:c4:50:53:94:5b:95:6e: 9b:a7:43:f0:e6:35:7a:85:ef:30:c3:fc:78:5f:6b: 54:c9:90:d0:5d:a3:c3:b1:11:3a:c0:27:f9:51:32: 7a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:B9:95:48:38:21:A9:E0:D4:82:C8:E8:6D:6B:BC:9A:51:48:EB:9F X509v3 Authority Key Identifier: keyid:A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:b4:5f:c3:b3:cb:18:54:34:6b:26:38:47:4e:23:98:ff:ec: 70:5d:ba:20:03:24:18:86:2b:fe:de:56:95:cf:cb:de:56:33: a8:8f:e6:81:cb:ea:de:6d:f0:f1:e2:73:2b:06:a5:f2:d6:08: ef:5b:a7:8f:c5:2c:07:bb:41:69:f5:b6:a5:10:9a:d0:1c:27: ee:dc:fe:ba:b3:9e:01:e7:0a:1d:a3:4b:48:88:55:99:d5:e0: f5:c0:cf:a9:99:f3:8c:52:22:bf:02:d9:4f:9e:5b:55:c3:df: 6e:7a:84:98:c5:a8:e4:c4:22:ff:0a:f7:0b:b6:f6:8b:6a:3c: f7:7a:39:a4:41:cc:54:85:82:a2:22:51:fb:9b:b1:13:6d:e4: d7:7f:66:90:ee:79:0d:e5:80:9a:28:4b:d9:a0:d3:63:b0:25: 6e:5c:b7:9b:72:c9:92:1d:0e:07:29:6c:07:04:f9:b1:82:f0: 9b:01:e9:5e:9c:19:26:a0:18:91:98:9c:46:1c:08:5e:a4:db: 8f:3c:68:15:09:16:c8:fa:73:e5:2b:f0:ec:2b:8a:69:28:a8: 17:fe:25:c1:2e:0d:3e:8a:a2:29:47:d9:bd:b1:93:62:e5:88: ab:4b:b2:50:57:1e:ee:ce:65:72:74:5e:6b:c5:22:44:e5:8e: 78:ef:0f:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGQzQxMTAvBgNVBAUTKEE5QTdENzNFM0VEOEQ1QzQ2NkRDQkM2QzIwOUNENDM1 M0NERTk4Q0YwHhcNMjYwNDA0MTUxNjMzWhcNMjYwNDExMTUxNjMzWjAYMRYwFAYD VQQDEw02OWQxMmI1MS03OTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3onLMPtk3QBzfOWCTMKDIyU4yjTjTXI/wJh3sfcdLLCcs533seDR2weat0lE 0XBsXcCLHHkJR5RZFfC11qw3D2bDKLeCNRSGzj9xYBrEuV+cpOUBvA7mOy5FxhvU +9qj16bEuk4oxe9wt0O/zG5TkGdUpGWuX0zjxiKhIgzgfGiv7I2UUqQNulEalb7R nwSp+MaxA3nQByhNUim6n3P0hlxSjkdRzNDLCw7+Uc9mi1xNHpoNbVk2FuaeLxgo J6leZoM9aCQjW+ZufzGNSlyT31xST1yUOxMCGMRQU5RblW6bp0Pw5jV6he8ww/x4 X2tUyZDQXaPDsRE6wCf5UTJ6vwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ+5lUg4 Iang1ILI6G1rvJpRSOufMB8GA1UdIwQYMBaAFKmn1z4+2NXEZty8bCCc1DU83pjP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZDNC9CMTY1QTNBODI5 NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFjUm0zTHhzSUp6VU5UemVt TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FhZlhQajdZMWNSbTNMeHNJSnpVTlR6ZW1NOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZDNC9CMTY1QTNBODI5NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFj Um0zTHhzSUp6VU5UemVtTTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOLRfw7PLGFQ0ayY4R04jmP/scF26IAMkGIYr/t5Wlc/L3lYzqI/mgcvq3m3w 8eJzKwal8tYI71unj8UsB7tBafW2pRCa0Bwn7tz+urOeAecKHaNLSIhVmdXg9cDP qZnzjFIivwLZT55bVcPfbnqEmMWo5MQi/wr3C7b2i2o893o5pEHMVIWCoiJR+5ux E23k139mkO55DeWAmihL2aDTY7Albly3m3LJkh0OBylsBwT5sYLwmwHpXpwZJqAY kZicRhwIXqTbjzxoFQkWyPpz5Svw7CuKaSioF/4lwS4NPoqiKUfZvbGTYuWIq0uy UFce7s5lcnRea8UiROWOeO8PjQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:04:13 2026 by rpki-client