$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: Yh7orYIjzt73ywx7KMJv0B82SHKM7kG5icbXA0KJ4Zc= Subject key identifier: B0:7C:1D:AF:3D:DB:4F:50:7C:AF:4F:75:5D:0B:63:5C:41:45:F1:13 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0D76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0D4C Signing time: Tue 24 Mar 2026 17:55:13 +0000 Manifest this update: Tue 24 Mar 2026 17:55:12 +0000 Manifest next update: Tue 31 Mar 2026 17:55:12 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: 7vzndQyMTJWi0GVDGxWcNntd+qY/eRTBVkPRpoRbuDQ=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: 2j8ZEZZDC+v0AsplIrNRFX86JLUI1D1lZouNpF7eL1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:55:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3446 (0xd76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Mar 24 17:55:12 2026 GMT Not After : Mar 31 17:55:12 2026 GMT Subject: CN=69c2d001-8902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:34:b1:59:3f:53:89:ef:7a:c9:dc:48:8c:f3: af:17:3d:35:93:92:0b:24:52:5d:19:5c:94:96:79: 5a:53:75:a4:43:3d:91:7d:a0:c5:91:1d:c5:11:6a: 2b:99:74:e1:29:f3:6d:0a:99:67:38:14:e9:46:47: 56:09:c6:5a:fb:e8:4b:45:94:62:aa:fe:e3:97:8c: 83:91:70:12:75:3c:1f:c7:97:17:e9:be:01:f4:02: 2d:0b:c9:c2:41:a7:18:e0:ff:54:08:07:a1:f1:ba: 61:7a:1a:fc:dc:90:0b:e7:cc:bf:dd:c9:bb:d6:55: 4b:04:d3:b8:b5:fe:8a:a2:55:86:db:38:7b:54:40: 60:53:b3:e5:30:85:1a:69:0a:9e:22:c0:26:c4:1e: 14:84:e8:19:b9:de:30:49:67:cf:12:dd:fe:c2:22: ac:12:d4:02:f0:b6:86:cf:cb:7e:86:17:30:a7:6a: ff:88:d7:0d:46:6b:84:37:38:fa:5f:d0:6f:6d:9f: 2a:4c:6e:84:7c:3b:88:b2:a4:b5:82:6c:5d:ca:e0: c0:f2:2d:69:ee:01:1f:33:70:3f:be:06:01:58:56: a1:42:ef:cb:ec:a9:17:b2:32:0b:12:a2:13:7e:bf: d2:74:94:67:56:4a:d1:42:a8:b5:9d:24:bf:6b:d3: dc:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:7C:1D:AF:3D:DB:4F:50:7C:AF:4F:75:5D:0B:63:5C:41:45:F1:13 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:ff:d4:8c:04:71:05:32:fe:aa:1b:19:b8:62:22:f1:43:8a: 14:1e:13:fa:db:53:f5:25:00:2c:ac:15:8e:b0:13:90:39:d1: f1:f1:35:a7:8d:42:cb:11:b0:7c:83:9c:21:63:3b:c3:02:8b: 53:2b:34:4f:da:fc:51:99:4a:43:b1:51:fc:99:89:a8:ff:b6: 0e:05:6c:5b:eb:4c:a5:36:d7:b3:23:03:c0:2b:6d:11:99:a9: cf:ba:6e:73:f6:3a:3a:b8:17:e2:ef:42:eb:57:0a:da:16:54: 00:79:60:11:a1:a3:5b:45:c8:7a:a6:b3:50:73:b4:32:f3:d0: 87:89:82:80:b4:ec:4e:7c:60:34:98:f9:21:69:a8:c3:a0:6d: 73:ae:52:4f:29:3d:41:a7:c4:2e:5e:de:10:61:df:39:dc:91: 0a:07:f7:72:33:8c:72:af:4d:5c:7e:2c:9f:31:f7:7b:1c:3d: be:5a:e2:cf:0a:e0:c2:f2:e1:3d:b4:e2:be:43:f3:79:7f:f2: bf:bf:9b:29:64:ac:68:3a:23:97:8c:54:9e:61:8b:e6:23:80: e2:0e:be:6d:20:9d:7b:9a:07:f4:33:57:c9:d1:89:e1:40:06: c9:01:62:8f:02:e3:14:36:97:50:dd:40:f6:08:61:06:7f:81: 38:a8:2b:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjYwMzI0MTc1NTEyWhcNMjYwMzMxMTc1NTEyWjAYMRYwFAYD VQQDEw02OWMyZDAwMS04OTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTSxWT9Tie96ydxIjPOvFz01k5ILJFJdGVyUlnlaU3WkQz2RfaDFkR3FEWor mXThKfNtCplnOBTpRkdWCcZa++hLRZRiqv7jl4yDkXASdTwfx5cX6b4B9AItC8nC QacY4P9UCAeh8bphehr83JAL58y/3cm71lVLBNO4tf6KolWG2zh7VEBgU7PlMIUa aQqeIsAmxB4UhOgZud4wSWfPEt3+wiKsEtQC8LaGz8t+hhcwp2r/iNcNRmuENzj6 X9BvbZ8qTG6EfDuIsqS1gmxdyuDA8i1p7gEfM3A/vgYBWFahQu/L7KkXsjILEqIT fr/SdJRnVkrRQqi1nSS/a9PcbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLB8Ha89 209QfK9PdV0LY1xBRfETMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmv/UjARxBTL+qhsZuGIi8UOKFB4T+ttT9SUALKwVjrATkDnR8fE1p41CyxGw fIOcIWM7wwKLUys0T9r8UZlKQ7FR/JmJqP+2DgVsW+tMpTbXsyMDwCttEZmpz7pu c/Y6OrgX4u9C61cK2hZUAHlgEaGjW0XIeqazUHO0MvPQh4mCgLTsTnxgNJj5IWmo w6Btc65STyk9QafELl7eEGHfOdyRCgf3cjOMcq9NXH4snzH3exw9vlrizwrgwvLh PbTivkPzeX/yv7+bKWSsaDojl4xUnmGL5iOA4g6+bSCde5oH9DNXydGJ4UAGyQFi jwLjFDaXUN1A9ghhBn+BOKgrRQ== -----END CERTIFICATE-----Generated at Thu Mar 26 19:05:03 2026 by rpki-client