$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: jWnJ1CMwb4k+lNPWAd5GKzEUIKLnciP5VOlARPblcXY= Subject key identifier: 78:D3:49:B3:08:6C:64:09:49:FC:85:84:B3:B7:05:34:8B:FB:36:44 Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 0540 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 0536 Signing time: Fri 24 Apr 2026 23:24:43 +0000 Manifest this update: Fri 24 Apr 2026 23:24:42 +0000 Manifest next update: Fri 01 May 2026 23:24:42 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: 1gY5llBYXAD99fht3nujpqouNkO2VQuCaHMNYNlOSIw=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: KHvp9huWR6D7V1yi6kkJocjAT/BK4ewK1tFBURi132k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 May 2026 23:24:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1344 (0x540) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Apr 24 23:24:42 2026 GMT Not After : May 1 23:24:42 2026 GMT Subject: CN=69ebfbba-e37c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6e:68:f4:b8:8c:b8:a2:2a:0b:34:79:94:48: c7:7a:9b:52:bf:15:22:5a:ff:2a:ab:f2:d7:de:bf: a1:ad:28:21:e6:79:38:cd:fd:9c:bc:82:5d:f6:c9: cc:91:04:83:dd:5a:73:20:58:23:ba:32:df:29:88: 22:d9:f0:f7:86:47:9c:0a:b2:2c:80:a4:42:dc:ac: 4c:07:e3:39:83:10:42:a5:d0:fd:55:82:49:44:e0: a9:cc:f7:4d:dc:e4:1f:6c:b2:68:d2:3a:35:31:16: 00:77:b9:27:04:56:a1:13:13:0b:76:98:7d:bf:0c: e6:f3:4b:ac:83:12:df:97:dc:de:01:5b:1c:b5:ed: b7:d4:63:f2:e1:a2:d2:b6:e7:71:5c:0e:b1:d8:7d: f1:f5:b8:be:9f:88:6d:b8:3a:fb:03:32:bf:02:1b: 1f:a0:8a:fb:94:0c:66:fa:7c:ac:04:fd:0f:ea:f1: 94:e2:08:54:8c:ad:ad:4f:96:91:9b:e7:b0:02:f1: 60:a5:cc:64:f9:f8:53:5d:c4:5c:e0:ba:81:05:f0: f9:c9:fd:a1:10:36:7e:84:d7:91:4f:a0:c1:fc:8e: 70:0f:9d:ac:82:19:d5:d8:91:2e:a5:b3:51:02:03: bc:c6:5b:59:da:18:04:fc:0b:3e:a9:64:44:56:6d: b3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D3:49:B3:08:6C:64:09:49:FC:85:84:B3:B7:05:34:8B:FB:36:44 X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:56:81:3f:80:01:ae:6f:e4:29:c4:82:69:41:42:2a:23:de: cc:66:58:c8:61:98:b0:1a:36:c6:c8:37:83:21:9f:5c:86:be: f0:bf:57:be:0c:21:7a:d2:9e:11:0f:90:cd:2b:cb:6f:ed:4d: c3:21:9b:a3:61:0d:98:f8:01:06:4d:f4:8d:44:86:f2:bb:cb: ca:ed:60:0c:7c:61:2a:81:67:9f:52:0e:7d:b0:32:72:68:b5: 94:cb:0e:ac:d5:c5:d0:f6:c6:32:9e:b7:f9:63:bc:61:2d:f8: 49:7a:a1:d8:cc:c8:05:71:f2:4c:60:a5:a3:95:52:60:aa:ec: da:8f:1e:26:24:7f:74:64:ea:1a:22:bd:72:1b:3c:a2:f1:31: d1:c6:50:82:0e:21:f4:07:f4:ac:9f:96:a9:47:42:09:bb:b4: e1:6a:97:fc:39:59:a2:7f:e6:82:b5:d2:31:a0:f1:23:e8:82: 40:d3:7d:15:83:fb:d4:12:2e:db:48:54:00:a8:f0:fc:50:df: 38:0d:91:7a:e1:43:7f:46:ce:53:04:fe:07:6b:3f:6b:1c:69: 97:35:22:7c:bc:d1:1c:a1:85:2a:15:b0:9b:54:76:2b:a6:da: 97:2d:71:c9:05:c7:9e:c3:8a:29:b3:fe:9b:46:d1:58:0d:8e: f8:ea:2a:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjYwNDI0MjMyNDQyWhcNMjYwNTAxMjMyNDQyWjAYMRYwFAYD VQQDEw02OWViZmJiYS1lMzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1m5o9LiMuKIqCzR5lEjHeptSvxUiWv8qq/LX3r+hrSgh5nk4zf2cvIJd9snM kQSD3VpzIFgjujLfKYgi2fD3hkecCrIsgKRC3KxMB+M5gxBCpdD9VYJJROCpzPdN 3OQfbLJo0jo1MRYAd7knBFahExMLdph9vwzm80usgxLfl9zeAVscte231GPy4aLS tudxXA6x2H3x9bi+n4htuDr7AzK/AhsfoIr7lAxm+nysBP0P6vGU4ghUjK2tT5aR m+ewAvFgpcxk+fhTXcRc4LqBBfD5yf2hEDZ+hNeRT6DB/I5wD52sghnV2JEupbNR AgO8xltZ2hgE/As+qWREVm2z5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHjTSbMI bGQJSfyFhLO3BTSL+zZEMB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS1aBP4ABrm/kKcSCaUFCKiPezGZYyGGYsBo2xsg3gyGfXIa+8L9XvgwhetKe EQ+QzSvLb+1NwyGbo2ENmPgBBk30jUSG8rvLyu1gDHxhKoFnn1IOfbAycmi1lMsO rNXF0PbGMp63+WO8YS34SXqh2MzIBXHyTGClo5VSYKrs2o8eJiR/dGTqGiK9chs8 ovEx0cZQgg4h9Af0rJ+WqUdCCbu04WqX/DlZon/mgrXSMaDxI+iCQNN9FYP71BIu 20hUAKjw/FDfOA2ReuFDf0bOUwT+B2s/axxplzUifLzRHKGFKhWwm1R2K6baly1x yQXHnsOKKbP+m0bRWA2O+OoqWA== -----END CERTIFICATE-----Generated at Sat Apr 25 15:32:20 2026 by rpki-client