$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft File: JnQ7Hk4OkKGbJAwJNpecojdojfI.mft (raw, json) Hash identifier: VSAX/qc6CGfwh6un5aQxu85djitqMmgzPi5VIvF4Id8= Subject key identifier: AE:AD:06:EF:07:2A:47:2C:11:28:0D:23:79:01:62:20:8C:3E:ED:C1 Authority key identifier: 26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 Certificate issuer: /CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Certificate serial: 1785 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft Manifest number: 1759 Signing time: Mon 20 Apr 2026 16:33:42 +0000 Manifest this update: Mon 20 Apr 2026 16:33:41 +0000 Manifest next update: Mon 27 Apr 2026 16:33:41 +0000 Files and hashes: 1: JnQ7Hk4OkKGbJAwJNpecojdojfI.crl (hash: M+ZHcntVLb9DzZ1z2hpRjUnsGqzv2Luxyjcfy/P/A6E=) 2: DED757CC013811EF8A7E136EC4F9AE02.roa (hash: TmKZTioxlMesMkEEvyPRrkxii6ZYxhGxhSFj/5ba424=) 3: AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa (hash: G4irpBG19slrulSAFYlR+PU5Eph/ynSR0m07o08AgsU=) 4: CB91C8D2514D11EEADBDDC4DC4F9AE02.roa (hash: Vo4hXEocOsaARTcy4r/0nnenE+IAT7B33HFUwDy31kM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 16:33:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6021 (0x1785) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59, serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Validity Not Before: Apr 20 16:33:41 2026 GMT Not After : Apr 27 16:33:41 2026 GMT Subject: CN=69e65566-9781 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:df:2c:e8:30:6a:14:8c:19:53:eb:6a:aa:76: ac:04:e6:02:cd:0b:7d:57:62:2b:e9:e3:a0:41:be: 5c:77:c1:1d:a6:f7:7b:31:b8:b1:e5:41:31:d4:f2: b7:f4:b9:37:8b:fe:fe:48:f4:31:df:4b:3d:7d:e0: 1e:53:f4:1c:ad:f4:7c:70:67:84:9a:0b:4d:62:ad: 56:47:06:21:ad:7e:2f:43:42:cd:eb:e1:a3:56:f5: 9a:e1:72:49:08:c6:51:25:63:12:a9:60:e6:b1:63: c6:a9:b8:f8:ba:5c:b0:bc:54:6a:1c:a1:12:ce:00: da:cd:74:a9:c0:bd:17:57:f6:57:3f:cc:6e:2d:ef: 7b:f4:1e:73:71:35:78:cd:6d:8d:06:34:20:cf:19: c7:f3:c3:fd:4e:37:a2:e8:7a:d6:2e:2e:b0:4b:48: fc:cf:71:c2:90:b1:59:38:c0:8b:7b:02:7e:87:34: 7e:a2:00:5c:df:19:79:29:14:2a:df:89:94:a4:23: 19:d8:25:70:e7:f8:4c:91:ab:96:6b:44:b7:d8:34: 11:a1:9f:06:a4:6e:b8:51:fe:96:aa:46:95:d1:b7: 3f:7f:a1:fb:b8:8c:2c:b0:46:e0:7d:98:d3:89:88: 53:ef:c8:dd:25:48:28:74:6c:76:3d:1f:0e:1b:63: 79:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:AD:06:EF:07:2A:47:2C:11:28:0D:23:79:01:62:20:8C:3E:ED:C1 X509v3 Authority Key Identifier: keyid:26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:c1:3b:39:f0:c7:65:03:8c:4f:41:b8:93:d1:89:14:17:ed: 9e:94:e0:55:6d:f5:37:da:64:ad:ca:25:86:5e:ee:0f:86:44: 29:bc:c5:2e:43:a0:98:48:e9:ab:de:88:5c:63:21:33:e8:db: c3:ce:4d:08:44:c8:1c:78:58:5a:9d:a8:d2:42:b2:50:7e:a2: 26:c7:55:2c:94:c0:63:95:38:7a:ef:ef:ea:0c:a6:32:80:77: 5a:0a:fe:f7:8f:c0:87:d7:47:b4:b5:b8:99:02:fc:2e:db:5c: 58:14:1d:d1:15:ab:7d:df:b0:33:29:f9:24:d5:a2:f9:4f:de: 24:41:73:20:3c:73:b8:8b:4b:5e:6e:6d:dc:01:33:7f:8f:d0: f4:41:03:c9:ae:2d:c7:62:eb:34:9d:e0:a3:a6:b2:32:ba:e8: 59:79:45:63:96:a3:1f:f4:98:f8:f8:be:7b:c3:cf:a3:52:42: da:67:f3:98:5c:45:a1:fc:fb:72:75:df:db:53:bd:e5:e5:0d: 35:f5:11:6a:05:9f:d0:80:ba:80:a3:fc:45:a0:65:7a:cb:b8: ad:a1:9a:41:c0:9c:92:cd:11:38:c5:0a:92:28:6d:04:06:b6: 8a:76:8a:2a:c4:08:bf:a7:0f:5e:33:82:00:1b:28:8d:b6:07: dc:5f:0e:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICF4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKDI2NzQzQjFFNEUwRTkwQTE5QjI0MEMwOTM2OTc5Q0Ey Mzc2ODhERjIwHhcNMjYwNDIwMTYzMzQxWhcNMjYwNDI3MTYzMzQxWjAYMRYwFAYD VQQDEw02OWU2NTU2Ni05NzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAst8s6DBqFIwZU+tqqnasBOYCzQt9V2Ir6eOgQb5cd8Edpvd7Mbix5UEx1PK3 9Lk3i/7+SPQx30s9feAeU/QcrfR8cGeEmgtNYq1WRwYhrX4vQ0LN6+GjVvWa4XJJ CMZRJWMSqWDmsWPGqbj4ulywvFRqHKESzgDazXSpwL0XV/ZXP8xuLe979B5zcTV4 zW2NBjQgzxnH88P9Tjei6HrWLi6wS0j8z3HCkLFZOMCLewJ+hzR+ogBc3xl5KRQq 34mUpCMZ2CVw5/hMkauWa0S32DQRoZ8GpG64Uf6WqkaV0bc/f6H7uIwssEbgfZjT iYhT78jdJUgodGx2PR8OG2N53wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK6tBu8H KkcsESgNI3kBYiCMPu3BMB8GA1UdIwQYMBaAFCZ0Ox5ODpChmyQMCTaXnKI3aI3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80NEE2RkY2NDAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tLR2JKQXdKTnBlY29qZG9q ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0puUTdIazRPa0tHYkpBd0pOcGVjb2pkb2pmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY1OS80NEE2RkY2NDAwQ0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tL R2JKQXdKTnBlY29qZG9qZkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFsE7OfDHZQOMT0G4k9GJFBftnpTgVW31N9pkrcolhl7uD4ZEKbzFLkOgmEjp q96IXGMhM+jbw85NCETIHHhYWp2o0kKyUH6iJsdVLJTAY5U4eu/v6gymMoB3Wgr+ 94/Ah9dHtLW4mQL8LttcWBQd0RWrfd+wMyn5JNWi+U/eJEFzIDxzuItLXm5t3AEz f4/Q9EEDya4tx2LrNJ3go6ayMrroWXlFY5ajH/SY+Pi+e8PPo1JC2mfzmFxFofz7 cnXf21O95eUNNfURagWf0IC6gKP8RaBlesu4raGaQcCcks0ROMUKkihtBAa2inaK KsQIv6cPXjOCABsojbYH3F8Ovg== -----END CERTIFICATE-----Generated at Wed Apr 22 10:27:23 2026 by rpki-client