$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: D9GFtpiAHSuXzqhvlyiI/HIGH/Ono3ZUHe2UmPD/Q1k= Subject key identifier: 71:64:60:D6:A8:36:5D:0B:8B:53:30:50:5B:76:D2:E5:76:E8:B0:3F Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 0644 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 0629 Signing time: Tue 28 Apr 2026 23:17:57 +0000 Manifest this update: Tue 28 Apr 2026 23:17:56 +0000 Manifest next update: Tue 05 May 2026 23:17:56 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: PCEpLLPlO7cPXUQ+aXK3THgqPzWH+3P+LKe4WK8pfTA=) 2: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: uvL2gNEthqGV41KwTfLQpnni0nIuRN7IKI+1/XnuE+o=) 3: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: 7N+kBhMTPa/IDmaHS5j88uMau/dBXAyZziXt2IYR/Jg=) 4: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: 8A4Wb2KJcDqzfgpVuNBZcnB+OO/NHwZAcOnGRk55RA8=) 5: 368F5308A27311EFA8731822C4F9AE02.roa (hash: KBf8JxajMdMMi2+GI03db8VLySuC8cD1rgByqAKzBds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 23:17:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1604 (0x644) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Apr 28 23:17:56 2026 GMT Not After : May 5 23:17:56 2026 GMT Subject: CN=69f14024-cc3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8d:e3:d2:5e:e9:7c:b0:65:d5:92:b1:b7:e8: 98:f8:74:de:c0:df:ea:a2:73:5a:11:02:b4:4a:d4: 7c:c2:05:ad:55:1a:b0:a9:4f:12:d7:00:02:70:07: c6:e2:60:b4:9e:23:23:93:70:24:8e:ad:00:d8:3c: d8:82:d3:05:74:79:a1:3b:c2:16:f5:e3:28:76:6e: 36:b5:05:28:8c:64:21:e1:75:6e:4a:6d:98:5c:06: 2f:53:82:86:43:b5:4e:49:ec:9b:74:0a:8e:88:81: 0c:c6:79:13:62:97:0a:a1:ae:c3:a3:1d:2d:ba:ee: 49:14:1b:1c:c3:c9:c1:c8:12:c3:46:a6:15:ff:71: 52:f0:da:ca:df:99:2c:01:6b:53:c4:c9:23:31:35: 40:fc:3e:96:9c:e3:79:ab:6d:c1:aa:39:d6:e6:64: 1e:0e:6a:21:00:df:a7:c3:c1:a4:d8:0b:cc:4f:55: 6e:76:5c:31:32:82:4f:8d:56:21:73:46:9f:95:4e: 65:6b:ca:0c:ca:ad:ab:d0:32:34:5c:8d:ac:a1:af: cd:92:3d:81:23:d0:08:6d:b7:d1:23:d5:6d:15:a6: 6d:bd:4a:8e:d1:15:05:57:66:46:a3:2a:c0:8d:da: b8:0a:9a:2e:64:c2:27:20:3e:70:b2:aa:1e:9c:22: b6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:64:60:D6:A8:36:5D:0B:8B:53:30:50:5B:76:D2:E5:76:E8:B0:3F X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:23:61:1f:84:91:71:5f:b8:6f:db:8f:64:c6:13:33:55:7e: 21:9c:82:02:f4:f7:4e:42:4a:be:01:4b:23:c2:8a:dd:e8:08: 25:42:46:9d:55:55:03:e8:ed:c1:ba:09:91:52:86:22:dd:76: c8:19:3e:8b:c8:57:69:85:e9:8c:be:2a:2f:04:54:e3:51:01: f1:9f:47:c9:0a:b2:b2:52:ed:c9:a3:7f:94:d4:3c:9f:5b:fd: 67:f6:a4:62:36:f6:3d:1b:bc:87:82:18:6f:45:91:11:a9:c2: a1:2b:67:21:71:d1:63:8c:89:29:e8:e5:be:3f:bc:b2:b4:aa: 30:27:ba:1c:79:ff:4e:e4:73:27:8f:0b:12:05:dc:c0:7c:80: 79:18:e5:d2:13:7e:e1:a4:66:d1:3f:a6:fc:6e:a7:cb:69:77: e8:d1:5d:db:e5:32:e0:86:6d:ed:e2:af:dc:33:e5:e8:bc:cd: 2a:0e:ea:c5:07:e6:d4:74:d3:5d:14:9f:ed:0e:5b:ae:c7:a0: b7:17:41:da:67:8d:90:e7:73:65:41:d4:28:49:c0:3b:bc:b7: e8:e0:fe:3e:23:f3:aa:31:f7:99:15:94:58:e0:ce:b1:63:4d: 0a:bc:54:ee:1a:b4:6e:86:0f:f5:8a:4c:18:63:91:13:3d:d7: aa:49:5a:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjYwNDI4MjMxNzU2WhcNMjYwNTA1MjMxNzU2WjAYMRYwFAYD VQQDEw02OWYxNDAyNC1jYzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Y3j0l7pfLBl1ZKxt+iY+HTewN/qonNaEQK0StR8wgWtVRqwqU8S1wACcAfG 4mC0niMjk3Akjq0A2DzYgtMFdHmhO8IW9eModm42tQUojGQh4XVuSm2YXAYvU4KG Q7VOSeybdAqOiIEMxnkTYpcKoa7Dox0tuu5JFBscw8nByBLDRqYV/3FS8NrK35ks AWtTxMkjMTVA/D6WnON5q23BqjnW5mQeDmohAN+nw8Gk2AvMT1VudlwxMoJPjVYh c0aflU5la8oMyq2r0DI0XI2soa/Nkj2BI9AIbbfRI9VtFaZtvUqO0RUFV2ZGoyrA jdq4CpouZMInID5wsqoenCK26wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHFkYNao Nl0Li1MwUFt20uV26LA/MB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABCNhH4SRcV+4b9uPZMYTM1V+IZyCAvT3TkJKvgFLI8KK3egIJUJGnVVVA+jt wboJkVKGIt12yBk+i8hXaYXpjL4qLwRU41EB8Z9HyQqyslLtyaN/lNQ8n1v9Z/ak Yjb2PRu8h4IYb0WREanCoStnIXHRY4yJKejlvj+8srSqMCe6HHn/TuRzJ48LEgXc wHyAeRjl0hN+4aRm0T+m/G6ny2l36NFd2+Uy4IZt7eKv3DPl6LzNKg7qxQfm1HTT XRSf7Q5brsegtxdB2meNkOdzZUHUKEnAO7y36OD+PiPzqjH3mRWUWODOsWNNCrxU 7hq0boYP9YpMGGOREz3Xqklamw== -----END CERTIFICATE-----Generated at Wed Apr 29 17:11:05 2026 by rpki-client