$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: iWz8sNKAHXCPpp6ZBYKp9tgQLsyqLW7xld8Cq14ZotU= Subject key identifier: 2A:5D:7D:A6:46:52:88:2A:3A:61:D5:E4:B5:18:D7:3B:8E:E0:B4:38 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0CF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0CD5 Signing time: Tue 28 Apr 2026 18:34:03 +0000 Manifest this update: Tue 28 Apr 2026 18:34:02 +0000 Manifest next update: Tue 05 May 2026 18:34:02 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: v5bpbjn3jz7DeIx4eGaJzAtz+XHaCyMZaYQpjHFR0/Q=) 2: 2BA0624C078511ED87041524C4F9AE02.roa (hash: ZcdBlD0cGDsdpulCv2fc2yReHhNwViqaBn++RZ5qJME=) 3: 2D0509BC078511ED87041524C4F9AE02.roa (hash: FLx8pb39u5dZ14LSQha4djjm7m8zVtkJpA9CuWtbNEg=) 4: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: svlh2+vPV9FFZwbhD1Wgc1v2nG2kP+knUxNtCuCVjZk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 18:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3314 (0xcf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Apr 28 18:34:02 2026 GMT Not After : May 5 18:34:02 2026 GMT Subject: CN=69f0fd9a-5124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:aa:b4:84:a4:ba:3d:ed:e9:49:f2:b2:3c:aa: 8f:c6:2b:16:6c:60:67:a6:51:3d:21:e5:d5:03:b9: 95:bc:59:e2:4a:8b:32:1e:fb:28:9d:2b:98:d0:0b: 6e:40:11:3b:5d:a3:57:ae:69:f4:7e:2a:bb:38:37: ee:e5:04:63:94:7b:ae:bd:8d:9c:7b:f7:d3:36:5c: 25:5e:22:d2:87:b7:ad:bb:47:52:91:61:f4:40:cb: 4d:a8:4a:eb:84:79:d5:d1:a9:6c:92:9b:df:b6:58: 18:25:8e:39:2a:a0:f3:8b:5f:6e:83:15:64:24:db: 6b:03:bf:78:e8:ee:50:a9:08:83:98:eb:82:7c:f1: f5:93:8c:4d:75:ef:77:3f:a8:42:08:81:ca:b5:b0: c2:30:68:88:78:7b:53:bd:75:79:91:7b:f4:81:9c: b3:08:12:2f:f8:15:89:30:40:85:85:f3:f2:95:df: 44:0a:9b:3c:eb:71:4d:85:86:dd:ac:a4:e9:34:d0: c8:df:01:0f:bf:e8:c6:30:56:f1:0f:72:f5:66:9e: 14:54:d8:6f:be:e4:90:c5:9b:31:66:06:ae:2d:7e: 12:74:45:b0:39:da:fe:7c:a4:e6:99:19:c1:b3:d5: 57:dd:e5:51:b5:4d:32:04:92:1f:db:46:b7:ea:4e: 9c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5D:7D:A6:46:52:88:2A:3A:61:D5:E4:B5:18:D7:3B:8E:E0:B4:38 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:ad:08:67:b5:db:e1:ef:50:84:3a:39:b2:d3:b1:d6:fd:6e: a5:e3:0a:0c:e9:d9:f1:d1:e0:d8:cd:74:81:d3:53:ed:78:51: cd:c2:77:2c:95:dc:25:1e:10:62:a4:f6:10:0a:f7:bb:79:f5: 9d:e7:3e:97:e5:2c:a6:3e:df:fa:56:59:cc:78:47:f7:1f:e7: 43:51:88:50:c5:c6:29:06:23:ae:0b:13:74:0f:4a:3e:d7:37: 3e:83:e5:ac:f3:77:a9:53:34:19:ce:ec:b6:b3:57:9f:22:f6: 2b:92:e2:97:a2:95:4d:0e:a7:02:7f:04:cf:ec:b7:d8:c2:91: fa:f0:a9:1c:35:b5:77:ea:97:1b:a9:ea:96:09:40:7f:bb:78: 5d:ea:cc:a5:5d:6b:8d:f7:d0:5f:c1:55:a8:88:14:6d:58:62: 0c:2f:8e:b6:dc:c4:b3:67:72:87:1d:e4:dd:c3:ad:b4:b8:9f: 0f:d0:f3:63:a3:bb:c3:a3:00:1a:a5:14:83:23:40:77:be:d1: 8f:82:53:af:a4:76:51:f6:29:9a:ea:36:8c:57:1f:9e:7c:ee: 24:df:2d:2e:90:89:17:69:26:8b:61:f5:d7:b9:fd:2f:87:48: a5:70:ec:bb:30:19:18:1f:a7:63:97:57:dd:eb:fd:47:e1:47: 26:94:2e:1b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjYwNDI4MTgzNDAyWhcNMjYwNTA1MTgzNDAyWjAYMRYwFAYD VQQDEw02OWYwZmQ5YS01MTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaq0hKS6Pe3pSfKyPKqPxisWbGBnplE9IeXVA7mVvFniSosyHvsonSuY0Atu QBE7XaNXrmn0fiq7ODfu5QRjlHuuvY2ce/fTNlwlXiLSh7etu0dSkWH0QMtNqErr hHnV0alskpvftlgYJY45KqDzi19ugxVkJNtrA7946O5QqQiDmOuCfPH1k4xNde93 P6hCCIHKtbDCMGiIeHtTvXV5kXv0gZyzCBIv+BWJMECFhfPyld9ECps863FNhYbd rKTpNNDI3wEPv+jGMFbxD3L1Zp4UVNhvvuSQxZsxZgauLX4SdEWwOdr+fKTmmRnB s9VX3eVRtU0yBJIf20a36k6cZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCpdfaZG UogqOmHV5LUY1zuO4LQ4MB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlK0IZ7Xb4e9QhDo5stOx1v1upeMKDOnZ8dHg2M10gdNT7XhRzcJ3LJXcJR4Q YqT2EAr3u3n1nec+l+Uspj7f+lZZzHhH9x/nQ1GIUMXGKQYjrgsTdA9KPtc3PoPl rPN3qVM0Gc7strNXnyL2K5Lil6KVTQ6nAn8Ez+y32MKR+vCpHDW1d+qXG6nqlglA f7t4XerMpV1rjffQX8FVqIgUbVhiDC+OttzEs2dyhx3k3cOttLifD9DzY6O7w6MA GqUUgyNAd77Rj4JTr6R2UfYpmuo2jFcfnnzuJN8tLpCJF2kmi2H117n9L4dIpXDs uzAZGB+nY5dX3ev9R+FHJpQuGw== -----END CERTIFICATE-----Generated at Tue Apr 28 22:16:36 2026 by rpki-client