$ rpki-client -vvf rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft File: sQtPQ0P6rissTT3WYGS-km7HTJ8.mft (raw, json) Hash identifier: FbrMXXLzwKd9/zwSDDBRYr4zC1oWGsuM9Pbu3TCm8jw= Subject key identifier: 89:1B:C4:89:B5:36:51:9B:E2:4F:47:B2:0B:1F:70:B9:65:40:72:7F Authority key identifier: B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F Certificate issuer: /CN=A915CE2F/serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Certificate serial: 0280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft Manifest number: 0279 Signing time: Sun 05 Apr 2026 01:33:14 +0000 Manifest this update: Sun 05 Apr 2026 01:33:14 +0000 Manifest next update: Sun 12 Apr 2026 01:33:14 +0000 Files and hashes: 1: sQtPQ0P6rissTT3WYGS-km7HTJ8.crl (hash: ip/DumQ+NkcI0jfehK0K0j1so/qIsl42dr9HKIdkM9A=) 2: 670087C4EEF011ED9C693D31C4F9AE02.roa (hash: 9EODo3VTRqYwzjAsn5kOJ1RRcS5qGi8SpwuOaYpySHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:33:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CE2F, serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Validity Not Before: Apr 5 01:33:14 2026 GMT Not After : Apr 12 01:33:14 2026 GMT Subject: CN=69d1bbda-b7ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4f:66:7a:6f:5e:c3:5b:f0:81:cd:1a:16:12: f0:f5:5d:28:33:cc:4a:61:5c:ab:5e:17:35:b6:67: 0a:73:07:78:c8:88:9c:d8:0e:7f:fd:16:ad:0e:93: da:9f:a9:56:92:36:fd:1b:be:ae:be:59:a5:6f:28: 48:90:5b:e0:da:21:aa:26:3d:2c:57:c2:8e:34:01: cf:0c:94:e8:1a:60:07:f7:3b:c0:69:ce:d4:6d:24: cc:3d:ab:0b:5d:e0:93:4c:c5:3f:a5:9a:16:e7:76: a0:df:6b:f4:15:11:79:fe:93:78:b1:0e:e9:c8:ea: 5d:a4:b4:ac:8f:36:1e:01:a8:31:17:ae:b2:f6:97: 90:d2:1c:97:44:8d:9c:27:06:de:8e:f4:af:2f:a9: c7:35:44:c4:d4:09:a9:d9:90:8d:33:dd:3d:fa:bb: e5:dc:30:aa:d9:5a:4b:e3:8f:23:1d:b4:76:dd:78: 84:98:99:10:8b:6d:9c:7e:4b:d2:78:db:ce:4f:71: ca:9b:8e:20:f3:c2:91:80:dc:fa:76:fb:ec:9e:5c: 5c:db:ca:6d:30:5a:e6:44:74:2e:74:af:e6:86:16: de:fd:ec:55:bb:f7:0e:fb:8d:cb:1d:d1:1a:d8:14: 12:29:dc:48:7e:04:9b:2d:5c:9f:f7:23:0e:e8:80: 0b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:1B:C4:89:B5:36:51:9B:E2:4F:47:B2:0B:1F:70:B9:65:40:72:7F X509v3 Authority Key Identifier: keyid:B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:a0:80:43:b3:e3:1a:27:48:86:6a:72:6d:26:1b:ec:7d:f9: 99:de:c0:4e:0a:cf:c9:76:64:c8:31:88:33:a9:05:5d:f4:24: eb:65:fe:00:9c:6d:71:67:2d:fe:6b:53:25:d4:a5:24:29:68: 4a:72:46:57:cf:2c:c2:c2:de:a5:0a:cc:be:f1:ba:0f:9f:ce: fb:21:d3:9b:52:bb:e2:15:de:28:1d:a2:b4:5a:b0:b9:8c:32: ef:3f:64:88:91:56:3f:ad:71:aa:e0:79:27:b1:6c:f5:02:23: bc:e1:9c:fb:8e:65:28:01:00:e6:16:4c:5b:05:f3:9a:89:d2: 78:dc:1e:c1:c2:f5:ff:8d:26:4c:44:4f:57:d3:a1:0a:c0:c3: e5:7b:a9:25:d2:d6:9e:5a:e7:25:8e:83:04:4c:cd:34:69:23: bb:15:7e:87:30:ac:8b:66:7d:d7:db:58:2c:2d:fc:87:2c:95: 53:f9:8b:e2:4e:8f:97:c6:d0:1b:1e:b2:2a:5c:92:b8:47:2b: c7:01:54:bc:4a:f8:82:bd:50:f5:ef:f3:99:42:a0:fd:65:31: 66:c3:9d:3f:a7:a4:e1:da:a6:e1:c9:a3:f7:c9:9e:74:13:60: cf:46:41:96:ef:3a:a4:55:5f:9c:1d:45:a8:ca:af:91:f3:80: eb:36:a0:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNFMkYxMTAvBgNVBAUTKEIxMEI0RjQzNDNGQUFFMkIyQzREM0RENjYwNjRCRTky NkVDNzRDOUYwHhcNMjYwNDA1MDEzMzE0WhcNMjYwNDEyMDEzMzE0WjAYMRYwFAYD VQQDEw02OWQxYmJkYS1iN2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuU9mem9ew1vwgc0aFhLw9V0oM8xKYVyrXhc1tmcKcwd4yIic2A5//RatDpPa n6lWkjb9G76uvlmlbyhIkFvg2iGqJj0sV8KONAHPDJToGmAH9zvAac7UbSTMPasL XeCTTMU/pZoW53ag32v0FRF5/pN4sQ7pyOpdpLSsjzYeAagxF66y9peQ0hyXRI2c JwbejvSvL6nHNUTE1Amp2ZCNM909+rvl3DCq2VpL448jHbR23XiEmJkQi22cfkvS eNvOT3HKm44g88KRgNz6dvvsnlxc28ptMFrmRHQudK/mhhbe/exVu/cO+43LHdEa 2BQSKdxIfgSbLVyf9yMO6IAL7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIkbxIm1 NlGb4k9HsgsfcLllQHJ/MB8GA1UdIwQYMBaAFLELT0ND+q4rLE091mBkvpJux0yf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0UyRi8wQkRFQTUyODcw RTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJpc3NUVDNXWUdTLWttN0hU SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NRdFBRMFA2cmlzc1RUM1dZR1Mta203SFRKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0UyRi8wQkRFQTUyODcwRTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJp c3NUVDNXWUdTLWttN0hUSjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuKCAQ7PjGidIhmpybSYb7H35md7ATgrPyXZkyDGIM6kFXfQk62X+AJxtcWct /mtTJdSlJCloSnJGV88swsLepQrMvvG6D5/O+yHTm1K74hXeKB2itFqwuYwy7z9k iJFWP61xquB5J7Fs9QIjvOGc+45lKAEA5hZMWwXzmonSeNwewcL1/40mTERPV9Oh CsDD5XupJdLWnlrnJY6DBEzNNGkjuxV+hzCsi2Z919tYLC38hyyVU/mL4k6Pl8bQ Gx6yKlySuEcrxwFUvEr4gr1Q9e/zmUKg/WUxZsOdP6ek4dqm4cmj98medBNgz0ZB lu86pFVfnB1FqMqvkfOA6zagKA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:32:07 2026 by rpki-client