$ rpki-client -vvf rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft File: Q2NMcBuh8e_Oj1aqatHbKUWh258.mft (raw, json) Hash identifier: bDL3HTxGok9OmXMAN/hQPdKefBaROOXu5eCYwRHi6bA= Subject key identifier: A8:17:AD:1F:10:27:38:28:1B:C8:10:5C:E1:C5:78:FC:EB:29:D4:F8 Authority key identifier: 43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F Certificate issuer: /CN=A918549C/serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft Manifest number: 0156 Signing time: Wed 13 May 2026 05:10:12 +0000 Manifest this update: Wed 13 May 2026 05:10:12 +0000 Manifest next update: Wed 20 May 2026 05:10:12 +0000 Files and hashes: 1: Q2NMcBuh8e_Oj1aqatHbKUWh258.crl (hash: GpJfLnXdfZeHbYfBMctwa81VwWTqAq+xLYpB9Q/a9Vk=) 2: 9C6F77784A3211EFBDBCEB2FC4F9AE02.roa (hash: POI2gtWNO02fmkeuPIBgEnMpIQB9HpbIZTb9ltFjGKA=) 3: ABA45B1A740611F0B304387CC4F9AE02.roa (hash: NoRAYMKDz7ruenjU4EI/k6TTzNlrpDAvnAEzcechXd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918549C, serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F Validity Not Before: May 13 05:10:12 2026 GMT Not After : May 20 05:10:12 2026 GMT Subject: CN=6a0407b4-d68a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e3:f2:a9:63:44:15:1f:6f:b0:73:e0:15:a2: ed:48:58:ed:36:0a:0d:b2:84:c7:4b:9a:49:0e:f6: 29:0e:7b:38:c6:51:7b:b2:d2:a5:e4:d5:64:7f:12: f3:3f:65:f2:fc:72:6b:de:07:c4:3e:50:ae:c4:43: 0b:c4:0a:cd:79:0b:69:fe:5a:38:78:6b:15:6e:13: b2:95:f8:78:0a:ad:bc:f5:7b:50:de:79:a1:7f:45: 2c:8a:a0:da:fa:9d:bb:46:b0:2b:96:39:36:64:7a: 22:15:89:c2:16:78:f9:c9:b6:6a:09:91:81:07:65: 2c:06:b8:6a:e4:16:01:6d:60:9f:bf:ea:f7:2f:3a: c2:7a:39:ef:eb:6e:b8:e4:7e:55:e7:7b:33:99:63: 94:07:c1:d4:70:8f:c3:63:27:c4:e6:5c:ec:66:e3: f7:fa:39:1e:5d:fc:23:36:6b:35:05:b5:82:46:ca: 69:e2:5b:48:20:4b:7f:b8:be:3c:aa:6d:12:6a:e8: b4:d3:3e:d0:f1:85:9c:5e:a9:f2:d7:cb:97:a5:96: 20:69:cd:c4:0c:38:41:a3:59:3d:32:9b:ac:25:0c: d9:a5:b7:a5:e3:a5:d5:cd:59:5c:fb:2f:4f:c9:75: a6:92:c8:7d:be:71:e2:2c:d5:cf:52:42:4d:12:42: d9:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:17:AD:1F:10:27:38:28:1B:C8:10:5C:E1:C5:78:FC:EB:29:D4:F8 X509v3 Authority Key Identifier: keyid:43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:1c:50:6c:67:c5:a7:3f:b8:e6:6d:93:08:56:85:0b:3a:46: f4:fc:67:be:a0:f7:f6:6a:71:30:a8:0a:9a:7d:b8:e6:67:74: 73:b3:12:35:db:79:e1:74:37:4d:2b:89:e6:ff:72:bb:75:9a: cf:60:77:06:a1:b7:ef:b3:a7:fa:4c:cb:05:fd:60:f8:c4:52: bb:29:1d:f1:af:19:4c:94:7d:7b:aa:57:c1:80:e3:b6:f4:6e: 4f:c5:8d:42:2d:a0:57:fc:30:9b:a3:b6:a7:24:4d:e3:63:bc: d4:7a:44:c1:29:46:3f:df:5a:ba:a2:65:e5:17:b8:78:cc:26: a3:c8:bc:40:c0:83:c4:d9:c6:84:5f:e3:f7:e9:e7:42:97:29: 59:8d:83:03:62:b5:04:ac:12:6c:ec:17:31:0b:d6:ca:c9:a5: ff:e9:e7:f4:23:bc:2f:9e:84:77:d3:35:1f:52:4f:af:96:eb: f7:9e:2c:b5:31:4a:b8:b1:d2:28:e6:89:fd:40:52:3a:88:0a: e4:fc:00:27:9f:3b:a5:08:79:77:8a:50:a4:b7:d2:36:ae:f6: ea:05:47:71:58:3a:69:f2:48:40:ec:47:cf:a5:d6:36:fb:39: 90:d5:98:cd:04:f4:96:b4:12:5e:57:0a:6c:fd:96:0d:d2:5c: d5:88:25:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0OUMxMTAvBgNVBAUTKDQzNjM0QzcwMUJBMUYxRUZDRThGNTZBQTZBRDFEQjI5 NDVBMURCOUYwHhcNMjYwNTEzMDUxMDEyWhcNMjYwNTIwMDUxMDEyWjAYMRYwFAYD VQQDEw02YTA0MDdiNC1kNjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsePyqWNEFR9vsHPgFaLtSFjtNgoNsoTHS5pJDvYpDns4xlF7stKl5NVkfxLz P2Xy/HJr3gfEPlCuxEMLxArNeQtp/lo4eGsVbhOylfh4Cq289XtQ3nmhf0UsiqDa +p27RrArljk2ZHoiFYnCFnj5ybZqCZGBB2UsBrhq5BYBbWCfv+r3LzrCejnv6264 5H5V53szmWOUB8HUcI/DYyfE5lzsZuP3+jkeXfwjNms1BbWCRspp4ltIIEt/uL48 qm0Saui00z7Q8YWcXqny18uXpZYgac3EDDhBo1k9MpusJQzZpbel46XVzVlc+y9P yXWmksh9vnHiLNXPUkJNEkLZtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKgXrR8Q JzgoG8gQXOHFePzrKdT4MB8GA1UdIwQYMBaAFENjTHAbofHvzo9WqmrR2ylFoduf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQ5Qy9ERTg3MThDNDRB MzExMUVGQjdCQkQ1MUNDNEY5QUUwMi9RMk5NY0J1aDhlX09qMWFxYXRIYktVV2gy NTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1EyTk1jQnVoOGVfT2oxYXFhdEhiS1VXaDI1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTQ5Qy9ERTg3MThDNDRBMzExMUVGQjdCQkQ1MUNDNEY5QUUwMi9RMk5NY0J1aDhl X09qMWFxYXRIYktVV2gyNTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAExxQbGfFpz+45m2TCFaFCzpG9PxnvqD39mpxMKgKmn245md0c7MSNdt54XQ3 TSuJ5v9yu3Waz2B3BqG377On+kzLBf1g+MRSuykd8a8ZTJR9e6pXwYDjtvRuT8WN Qi2gV/wwm6O2pyRN42O81HpEwSlGP99auqJl5Re4eMwmo8i8QMCDxNnGhF/j9+nn QpcpWY2DA2K1BKwSbOwXMQvWysml/+nn9CO8L56Ed9M1H1JPr5br954stTFKuLHS KOaJ/UBSOogK5PwAJ587pQh5d4pQpLfSNq726gVHcVg6afJIQOxHz6XWNvs5kNWY zQT0lrQSXlcKbP2WDdJc1YglOg== -----END CERTIFICATE-----Generated at Wed May 13 15:17:56 2026 by rpki-client