$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: qx7ydouq70l4qqKoFFx81qnEAr3H3VeGahi+FK5sTbA= Subject key identifier: C3:00:91:AF:DD:2E:57:F9:DA:FB:73:60:CC:79:CE:F7:2F:3C:AE:E1 Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 0381 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 0368 Signing time: Sun 05 Apr 2026 00:42:04 +0000 Manifest this update: Sun 05 Apr 2026 00:42:03 +0000 Manifest next update: Sun 12 Apr 2026 00:42:03 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: 9y2Nd6GA3ITHBTii2ecMOB/5hfMsjJf1q1fWu6/lrdw=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: fkyJKn8Oh+03JayycchiXNnOyFPcVFyNkr5e5TiQlCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:42:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 897 (0x381) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: Apr 5 00:42:03 2026 GMT Not After : Apr 12 00:42:03 2026 GMT Subject: CN=69d1afdc-ed51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:df:7c:6a:c5:63:ce:2e:3c:42:73:33:68:30: a5:86:6a:3a:60:58:48:85:b0:d9:14:da:88:5f:76: 59:be:11:90:7d:b1:74:be:3c:ff:b1:ee:1a:18:fb: 96:2c:07:4a:91:09:6b:3c:64:64:a9:5a:cc:85:d6: 26:8f:ee:a3:b8:c9:a8:b1:92:95:91:20:32:45:dc: e5:c0:8c:ca:6b:1e:14:e2:e8:b7:ee:42:69:3d:c2: 4f:0b:f0:12:72:dc:29:13:25:82:1c:c2:0e:5a:a0: 31:3c:a5:13:b5:b2:a9:a1:35:2b:c4:3f:d3:46:cb: 38:fb:78:e3:50:a4:97:e7:8a:46:51:e0:b8:27:e0: 4f:18:2c:5e:c8:c7:ff:01:4d:ad:66:9f:8b:3f:e0: c6:d8:3f:db:f3:b7:c9:a9:87:77:87:d4:cd:0a:e3: 78:a7:46:d2:c8:28:59:d8:29:9d:eb:50:3f:47:c9: a3:01:6e:2b:06:a2:1f:7c:34:4b:fa:48:b2:dd:f4: 16:08:1a:41:9a:be:f6:ca:64:fa:c1:ab:b5:c1:f8: 50:09:d7:88:9e:b3:68:5f:77:25:63:40:83:1e:6b: 9d:91:8c:e2:5c:32:4e:84:33:f1:03:6b:f5:59:69: 10:51:56:44:4a:83:9a:12:6f:c4:e2:5e:df:df:1d: 91:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:00:91:AF:DD:2E:57:F9:DA:FB:73:60:CC:79:CE:F7:2F:3C:AE:E1 X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:d6:96:02:e6:a6:35:21:bb:9d:ac:67:92:76:7f:c2:17:10: 59:5a:4e:ee:9f:91:93:e8:96:52:78:f8:6f:9b:a2:7f:dd:ca: f5:a7:47:94:61:81:99:18:34:9a:d8:55:55:29:3e:53:ac:b4: 60:7f:cf:70:6e:8d:5f:5b:be:17:0b:03:17:99:41:1a:e3:c9: ad:62:55:39:cf:49:b7:f3:46:f4:55:6d:61:a0:95:e9:d8:cd: d8:45:36:3a:9d:cd:0f:ce:ce:a6:d5:d6:50:59:09:09:ca:03: 30:98:4a:b2:c8:a5:81:f8:3c:fe:1c:77:dd:85:7d:7f:30:ec: 0a:b7:ed:75:97:98:cd:21:1e:ce:e5:ba:d2:4d:a1:43:6c:cf: 63:cc:25:65:49:d4:33:da:fe:a1:1b:80:0f:ec:e6:fd:d8:d8: f1:7b:40:10:11:3d:90:87:3b:2a:94:a9:cf:82:55:65:fc:e5: a6:ee:0a:fe:f9:ce:0f:f8:19:29:d5:95:b3:ba:c9:2d:1c:cb: 2c:51:cc:c6:c0:a9:71:58:12:b4:77:1b:70:b7:df:7b:81:80: ad:1e:72:fe:eb:ae:50:ae:c3:ed:1b:c4:37:23:1a:bb:f4:c8: 83:28:2f:1e:e5:17:08:d7:57:a9:ea:14:51:f0:b6:f8:72:30: f8:50:26:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjYwNDA1MDA0MjAzWhcNMjYwNDEyMDA0MjAzWjAYMRYwFAYD VQQDEw02OWQxYWZkYy1lZDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqt98asVjzi48QnMzaDClhmo6YFhIhbDZFNqIX3ZZvhGQfbF0vjz/se4aGPuW LAdKkQlrPGRkqVrMhdYmj+6juMmosZKVkSAyRdzlwIzKax4U4ui37kJpPcJPC/AS ctwpEyWCHMIOWqAxPKUTtbKpoTUrxD/TRss4+3jjUKSX54pGUeC4J+BPGCxeyMf/ AU2tZp+LP+DG2D/b87fJqYd3h9TNCuN4p0bSyChZ2Cmd61A/R8mjAW4rBqIffDRL +kiy3fQWCBpBmr72ymT6wau1wfhQCdeInrNoX3clY0CDHmudkYziXDJOhDPxA2v1 WWkQUVZESoOaEm/E4l7f3x2RQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMMAka/d Llf52vtzYMx5zvcvPK7hMB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAa9aWAuamNSG7naxnknZ/whcQWVpO7p+Rk+iWUnj4b5uif93K9adHlGGBmRg0 mthVVSk+U6y0YH/PcG6NX1u+FwsDF5lBGuPJrWJVOc9Jt/NG9FVtYaCV6djN2EU2 Op3ND87OptXWUFkJCcoDMJhKssilgfg8/hx33YV9fzDsCrftdZeYzSEezuW60k2h Q2zPY8wlZUnUM9r+oRuAD+zm/djY8XtAEBE9kIc7KpSpz4JVZfzlpu4K/vnOD/gZ KdWVs7rJLRzLLFHMxsCpcVgStHcbcLffe4GArR5y/uuuUK7D7RvENyMau/TIgygv HuUXCNdXqeoUUfC2+HIw+FAmRw== -----END CERTIFICATE-----Generated at Mon Apr 6 14:50:03 2026 by rpki-client