$ rpki-client -vvf rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft File: Pq60tRb3A-pY8W4I2opmdwP7XK4.mft (raw, json) Hash identifier: IOcudGTeVAzMJySm+DS4YLRpf5Fyz5rBV91Fs0nsCm8= Subject key identifier: 18:AE:5D:C8:B8:5E:05:8D:98:8B:E7:5B:44:5C:EF:DD:E4:CB:5C:44 Authority key identifier: 3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE Certificate issuer: /CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft Manifest number: 01E3 Signing time: Sun 05 Apr 2026 03:01:58 +0000 Manifest this update: Sun 05 Apr 2026 03:01:57 +0000 Manifest next update: Sun 12 Apr 2026 03:01:57 +0000 Files and hashes: 1: Pq60tRb3A-pY8W4I2opmdwP7XK4.crl (hash: 4CI/EsikTdq8PVxCGmDhT132mkc/Y4hk0b/1rM2rvJk=) 2: B67DC27A60E311EEB04BEA49C4F9AE02.roa (hash: Ammp8qF05nah6v/McxV23VKxzM9VW/7aLFZmanvDnyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D109, serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Validity Not Before: Apr 5 03:01:57 2026 GMT Not After : Apr 12 03:01:57 2026 GMT Subject: CN=69d1d0a5-f2a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:cd:a4:a2:00:41:66:53:39:23:ff:af:44:fe: bd:64:2a:6e:d0:05:21:46:f0:31:f3:3c:0b:b0:b0: 2a:0a:b3:f3:ba:4d:78:b9:c4:46:ce:a0:6e:71:66: ec:ae:a9:74:5c:51:a7:42:f2:3b:2b:ca:8e:c3:03: 57:21:c4:f0:65:60:06:cc:6c:c5:76:6f:1b:44:bd: 73:3d:ef:66:1b:15:fc:67:9e:7d:b2:b8:2e:76:6c: da:7d:ef:ab:a7:e4:de:fa:59:87:81:26:94:91:39: 55:ff:c9:47:6f:6b:08:64:0f:76:f2:57:fb:86:da: ec:b3:19:97:b5:d2:16:a9:b3:59:10:1b:73:3b:2b: bb:f2:07:54:cd:fd:33:79:77:ed:b6:bc:00:17:be: 5c:1d:92:eb:3b:4c:cd:3b:4d:4e:47:24:f1:9a:ef: 75:49:f1:13:e1:ce:20:19:ae:42:07:d3:4a:88:b8: 5c:85:27:20:9e:06:26:9d:bb:b7:ba:95:81:3d:bd: 88:7f:51:28:dc:22:60:df:a5:59:c5:c6:0c:4e:5f: 2c:44:15:8e:e2:97:ee:93:56:24:09:45:9a:9b:91: 89:85:b7:15:95:a1:ba:6b:1f:6e:9d:b8:99:17:97: 2c:da:b3:ed:8f:0a:4b:4e:f7:2b:6b:01:04:d8:e8: ba:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:AE:5D:C8:B8:5E:05:8D:98:8B:E7:5B:44:5C:EF:DD:E4:CB:5C:44 X509v3 Authority Key Identifier: keyid:3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:27:bf:96:ed:e9:b4:b1:0f:31:2e:b4:71:a6:55:43:c7:38: eb:45:99:09:db:b4:76:fb:3e:e7:aa:33:52:38:e1:c3:f4:ea: b3:56:95:54:b4:5f:94:8e:55:81:66:9d:11:52:64:3c:96:46: 28:ee:1b:f7:6b:d2:92:38:d6:0f:da:28:50:37:40:0a:ec:50: 76:61:1a:f2:26:f1:58:49:dc:81:9d:66:97:a2:20:b1:ac:95: c7:60:7c:dd:26:bf:f1:88:f2:8d:58:1d:e8:e8:f2:4c:66:97: fe:c5:c3:f1:db:6c:02:e0:40:b8:6b:75:fb:3d:f8:30:31:15: e6:c2:3e:c3:d9:fc:56:5f:64:12:78:d1:0a:f2:40:e9:8c:e7: 84:1e:88:91:5c:c3:70:09:b2:8a:f4:61:c5:99:d4:04:8a:5a: f2:d2:35:b2:14:c3:09:bb:6b:97:4f:fc:2c:19:be:be:23:bd: fd:4f:c6:5d:0b:4b:52:24:70:46:07:59:27:f9:3d:98:2e:e3: e7:32:e6:99:52:b4:4b:99:1c:2d:bb:2b:ff:01:64:cd:d2:56: 19:d8:fa:2b:2c:94:6f:97:47:5f:45:fc:7a:9e:87:56:c6:68: e7:b0:99:0a:14:34:66:54:b5:9d:49:cb:10:ef:3d:ae:2b:77: 11:90:a9:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMDkxMTAvBgNVBAUTKDNFQUVCNEI1MTZGNzAzRUE1OEYxNkUwOERBOEE2Njc3 MDNGQjVDQUUwHhcNMjYwNDA1MDMwMTU3WhcNMjYwNDEyMDMwMTU3WjAYMRYwFAYD VQQDEw02OWQxZDBhNS1mMmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnc2kogBBZlM5I/+vRP69ZCpu0AUhRvAx8zwLsLAqCrPzuk14ucRGzqBucWbs rql0XFGnQvI7K8qOwwNXIcTwZWAGzGzFdm8bRL1zPe9mGxX8Z559srgudmzafe+r p+Te+lmHgSaUkTlV/8lHb2sIZA928lf7htrssxmXtdIWqbNZEBtzOyu78gdUzf0z eXfttrwAF75cHZLrO0zNO01ORyTxmu91SfET4c4gGa5CB9NKiLhchScgngYmnbu3 upWBPb2If1Eo3CJg36VZxcYMTl8sRBWO4pfuk1YkCUWam5GJhbcVlaG6ax9unbiZ F5cs2rPtjwpLTvcrawEE2Oi6hwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBiuXci4 XgWNmIvnW0Rc793ky1xEMB8GA1UdIwQYMBaAFD6utLUW9wPqWPFuCNqKZncD+1yu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDEwOS9EQUM2NjZDMDVD RTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0EtcFk4VzRJMm9wbWR3UDdY SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxNjB0UmIzQS1wWThXNEkyb3BtZHdQN1hLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDEwOS9EQUM2NjZDMDVDRTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0Et cFk4VzRJMm9wbWR3UDdYSzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKCe/lu3ptLEPMS60caZVQ8c460WZCdu0dvs+56ozUjjhw/Tqs1aVVLRflI5V gWadEVJkPJZGKO4b92vSkjjWD9ooUDdACuxQdmEa8ibxWEncgZ1ml6IgsayVx2B8 3Sa/8YjyjVgd6OjyTGaX/sXD8dtsAuBAuGt1+z34MDEV5sI+w9n8Vl9kEnjRCvJA 6YznhB6IkVzDcAmyivRhxZnUBIpa8tI1shTDCbtrl0/8LBm+viO9/U/GXQtLUiRw RgdZJ/k9mC7j5zLmmVK0S5kcLbsr/wFkzdJWGdj6KyyUb5dHX0X8ep6HVsZo57CZ ChQ0ZlS1nUnLEO89rit3EZCphw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:32:06 2026 by rpki-client