$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft File: qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft (raw, json) Hash identifier: g6qZLjIqtNj6+D+12FHnyqn1DCnEnh9rjxWJPaFcAXY= Subject key identifier: 00:8B:7C:F5:4C:25:8F:F3:01:7A:C1:A7:B6:71:B1:8A:02:E8:90:24 Authority key identifier: AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E Certificate issuer: /CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Certificate serial: 0B79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft Manifest number: 0B68 Signing time: Sat 04 Apr 2026 19:01:42 +0000 Manifest this update: Sat 04 Apr 2026 19:01:42 +0000 Manifest next update: Sat 11 Apr 2026 19:01:42 +0000 Files and hashes: 1: qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl (hash: Aii2ZTRJwkcwzCKIIrhsRTmPlCwryYNoAY5Ze640WCY=) 2: 2512D04C22BE11EC9240097DC4F9AE02.roa (hash: PPFiA6qNq6GDtkUBy0eT9Y5FpJTkF5X4pnd1msh8TAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2937 (0xb79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Validity Not Before: Apr 4 19:01:42 2026 GMT Not After : Apr 11 19:01:42 2026 GMT Subject: CN=69d16016-8e9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8d:0b:39:05:42:09:e6:59:e7:36:eb:8c:6b: be:83:93:ed:ee:42:2d:59:ba:56:9c:e3:ef:df:8b: 31:89:75:06:34:11:e4:8f:94:57:f1:66:86:ed:83: 82:17:ec:be:23:4c:f5:bb:f7:a8:96:95:dd:c5:a2: cf:1c:55:bf:69:a4:d5:6f:08:6f:19:9b:11:ef:be: 18:4b:6d:1a:6c:35:8f:76:c7:38:dc:da:b2:ed:8c: cd:7b:f0:e2:f7:5b:c4:45:86:a7:82:bc:21:81:8f: 49:05:5f:61:08:f7:ad:32:37:b5:08:3f:16:d4:85: 6d:d1:86:d7:8a:d7:13:f5:d7:78:98:5e:61:38:23: be:96:54:2d:39:ac:05:bf:e4:58:98:9c:66:35:06: 7a:a1:6f:15:78:18:fd:0e:a0:de:ef:d7:a1:e2:49: 30:85:83:6c:b8:29:8c:47:c7:9e:e0:89:88:82:46: 78:80:6d:79:97:06:de:80:79:63:f8:1c:18:b4:ca: 71:34:68:29:0b:1b:65:a6:4f:0c:d0:13:f1:6b:c0: 95:86:04:e8:19:f0:15:5f:b7:69:cb:ef:19:00:9c: 63:5b:3d:43:9e:2d:3b:ac:60:c9:07:59:15:9c:17: 45:44:fc:0b:13:db:83:c9:4d:cc:5e:f2:84:ab:3b: c9:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:8B:7C:F5:4C:25:8F:F3:01:7A:C1:A7:B6:71:B1:8A:02:E8:90:24 X509v3 Authority Key Identifier: keyid:AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:c3:31:f6:9c:56:e4:78:82:bc:2f:a1:93:d7:df:23:0e:49: 75:0c:c3:ed:b0:c0:63:e4:4e:eb:a7:75:a0:45:7b:a6:d0:51: de:e3:d4:d5:a5:d4:e2:62:4b:bf:e7:8a:a4:6d:da:3c:1c:1e: 54:c2:e1:40:0d:ed:5e:b6:92:57:70:5d:88:16:50:ff:57:df: ed:fc:5e:20:d0:26:f0:bc:ed:d0:4a:65:fc:8d:58:52:e4:90: 13:65:4c:f0:cf:7a:68:65:25:e7:05:3e:93:a8:e3:92:42:45: e4:87:51:97:c1:07:27:55:47:4d:cc:78:85:c4:8a:02:91:8a: 39:54:6d:c8:1b:8f:81:22:36:40:a8:b3:35:d6:c4:3b:45:41: c4:58:20:34:3b:12:22:9f:d9:10:de:02:dd:9b:17:9e:9b:ff: 0e:b9:44:95:91:1d:66:fe:8c:c5:01:24:2e:04:6d:f5:6f:31: 31:8f:57:be:09:01:05:f0:cc:dd:cf:3c:54:25:fc:b5:dd:c9: 8b:ac:6b:c7:8e:6a:5b:1b:13:c0:33:50:69:fd:cc:d6:45:0d: ac:bf:02:7d:e6:d5:d4:62:5e:43:79:ab:1d:bb:91:8b:82:f9: a5:a2:8e:79:17:5f:33:ac:4d:84:66:5f:82:89:63:1b:ec:f2: fb:ff:f5:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKEFBNDM2QUFGQzY4ODA0NUJGNTE0ODg2MTU0NkZBM0ZE Q0E5ODQwOEUwHhcNMjYwNDA0MTkwMTQyWhcNMjYwNDExMTkwMTQyWjAYMRYwFAYD VQQDEw02OWQxNjAxNi04ZTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuY0LOQVCCeZZ5zbrjGu+g5Pt7kItWbpWnOPv34sxiXUGNBHkj5RX8WaG7YOC F+y+I0z1u/eolpXdxaLPHFW/aaTVbwhvGZsR774YS20abDWPdsc43Nqy7YzNe/Di 91vERYangrwhgY9JBV9hCPetMje1CD8W1IVt0YbXitcT9dd4mF5hOCO+llQtOawF v+RYmJxmNQZ6oW8VeBj9DqDe79eh4kkwhYNsuCmMR8ee4ImIgkZ4gG15lwbegHlj +BwYtMpxNGgpCxtlpk8M0BPxa8CVhgToGfAVX7dpy+8ZAJxjWz1Dni07rGDJB1kV nBdFRPwLE9uDyU3MXvKEqzvJlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFACLfPVM JY/zAXrBp7ZxsYoC6JAkMB8GA1UdIwQYMBaAFKpDaq/GiARb9RSIYVRvo/3KmECO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9EMDZCRjMyODUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJGdjFGSWhoVkctal9jcVlR STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrTnFyOGFJQkZ2MUZJaGhWRy1qX2NxWVFJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9EMDZCRjMyODUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJG djFGSWhoVkctal9jcVlRSTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVcMx9pxW5HiCvC+hk9ffIw5JdQzD7bDAY+RO66d1oEV7ptBR3uPU1aXU4mJL v+eKpG3aPBweVMLhQA3tXraSV3BdiBZQ/1ff7fxeINAm8Lzt0Epl/I1YUuSQE2VM 8M96aGUl5wU+k6jjkkJF5IdRl8EHJ1VHTcx4hcSKApGKOVRtyBuPgSI2QKizNdbE O0VBxFggNDsSIp/ZEN4C3ZsXnpv/DrlElZEdZv6MxQEkLgRt9W8xMY9XvgkBBfDM 3c88VCX8td3Ji6xrx45qWxsTwDNQaf3M1kUNrL8CfebV1GJeQ3mrHbuRi4L5paKO eRdfM6xNhGZfgoljG+zy+//1TA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:51:36 2026 by rpki-client