$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.mft File: sQnalQV25mJneVo066kbw3qZI7Q.mft (raw, json) Hash identifier: RDwdN2DzyKwNT+vFZXHuxxEPXMErGv/qK/bu7y9GJXM= Subject key identifier: 9A:D4:EF:F3:C5:8E:1B:8B:85:09:CD:9D:4A:A3:93:EC:85:80:68:DB Authority key identifier: B1:09:DA:95:05:76:E6:62:67:79:5A:34:EB:A9:1B:C3:7A:99:23:B4 Certificate issuer: /CN=A9196DC9/serialNumber=B109DA950576E66267795A34EBA91BC37A9923B4 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sQnalQV25mJneVo066kbw3qZI7Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.mft Manifest number: 7B Signing time: Wed 13 May 2026 08:00:29 +0000 Manifest this update: Wed 13 May 2026 08:00:29 +0000 Manifest next update: Wed 20 May 2026 08:00:29 +0000 Files and hashes: 1: sQnalQV25mJneVo066kbw3qZI7Q.crl (hash: tCPAVe7kzfe3WVIhgqC4UNNWEQiFiXCG3zEYYXqphro=) 2: A7C3D2B2316811F19417970E9A833773.roa (hash: AV0jegaonQnfecWhF4qjPIga5TAipRMyKt3mCTrZPnA=) 3: C75F23C4319A11F1AC7C94E0AD833773.roa (hash: 1Ajgj3M7Y6gTIT79eYTCLQ55nPjbdLfEyaEufEH+E5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.crl rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sQnalQV25mJneVo066kbw3qZI7Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 06:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DC9, serialNumber=B109DA950576E66267795A34EBA91BC37A9923B4 Validity Not Before: May 13 08:00:29 2026 GMT Not After : May 20 08:00:29 2026 GMT Subject: CN=6a042f9d-798f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:43:21:12:06:f7:0b:6a:0f:4e:99:15:7a:f1: 4d:eb:34:1c:f9:9b:26:2c:9a:12:39:d8:93:49:18: fc:e9:5b:85:64:98:60:66:d5:34:48:6b:d5:d4:75: c4:3d:40:59:bb:9c:b2:4b:b7:74:a7:cc:d9:b0:68: f5:83:3c:5c:0a:aa:55:f3:9a:d4:b8:2a:34:bf:a2: 3a:1b:32:32:ee:3d:ef:5f:56:aa:9b:73:f1:2c:d3: 27:e7:e2:9a:01:fc:7e:db:33:24:b8:29:02:95:98: 95:fd:0f:f4:bf:0b:a4:89:7b:55:66:38:5a:5e:3e: ef:29:39:80:e0:57:f4:97:e6:29:87:e9:38:c5:9d: a1:f5:d5:f6:a3:7c:b5:ad:3e:6f:c1:bd:4b:b4:b9: bb:c5:23:a8:3c:d2:e3:e1:4b:fd:34:42:68:b6:b7: be:39:86:b0:4f:a9:98:66:48:a8:bf:f7:a8:97:e6: 4a:7f:97:dd:3c:14:0e:45:f2:53:86:9c:5d:0a:14: a4:43:c3:88:d8:ce:75:c1:d9:f3:3b:cc:cc:bb:12: 76:8e:99:8d:1c:36:d4:c1:cd:6a:5f:e3:10:b6:79: 04:e3:59:a6:8e:46:ca:4d:49:d0:ba:ab:e4:e3:72: fa:10:9a:43:ef:a3:2f:27:47:ea:93:24:bb:09:75: 35:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D4:EF:F3:C5:8E:1B:8B:85:09:CD:9D:4A:A3:93:EC:85:80:68:DB X509v3 Authority Key Identifier: keyid:B1:09:DA:95:05:76:E6:62:67:79:5A:34:EB:A9:1B:C3:7A:99:23:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sQnalQV25mJneVo066kbw3qZI7Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:63:52:b4:4c:af:3c:f5:1f:1b:bb:a0:6f:a7:0a:92:c2:8f: 87:9b:7d:8e:d0:77:5d:38:86:a3:10:4f:12:2f:b8:63:5b:a4: ba:ed:0b:1d:d3:b9:f0:a7:55:65:c2:06:91:1e:65:af:b0:a2: ac:1f:18:bb:2b:0c:79:c4:94:4b:a6:46:55:d4:80:19:cc:ba: 10:15:6a:6a:97:34:15:dc:a5:2d:00:eb:ea:ae:02:be:87:4c: e5:28:53:c4:29:bd:0c:2e:50:8d:13:16:09:64:df:54:0b:86: 1e:7d:a1:3b:7a:05:1f:6e:a0:a5:dd:81:73:19:9c:ad:f9:87: 3b:00:be:ee:40:ce:9f:02:28:51:49:7b:ae:95:12:8e:50:00: d6:1d:c6:fd:e2:6a:ef:e7:53:4c:b5:ce:ff:c0:98:63:e9:5f: 73:b3:b1:15:d6:18:d3:1f:36:7e:f7:7a:27:a9:f0:c9:c5:5b: 30:4c:6a:82:b0:00:cf:43:df:4e:d0:d4:5e:50:7b:2f:4a:0f: a4:5f:dd:82:b1:14:ec:53:15:69:b3:25:97:7a:6b:04:6b:d4: 78:fd:cc:65:f0:af:82:8f:e6:08:47:03:08:eb:60:26:84:89: 6c:ae:72:44:84:31:e3:99:8c:0c:d4:79:78:b3:20:b1:a4:d5: c3:c0:64:5a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZEQzkxMTAvBgNVBAUTKEIxMDlEQTk1MDU3NkU2NjI2Nzc5NUEzNEVCQTkxQkMz N0E5OTIzQjQwHhcNMjYwNTEzMDgwMDI5WhcNMjYwNTIwMDgwMDI5WjAYMRYwFAYD VQQDEw02YTA0MmY5ZC03OThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEMhEgb3C2oPTpkVevFN6zQc+ZsmLJoSOdiTSRj86VuFZJhgZtU0SGvV1HXE PUBZu5yyS7d0p8zZsGj1gzxcCqpV85rUuCo0v6I6GzIy7j3vX1aqm3PxLNMn5+Ka Afx+2zMkuCkClZiV/Q/0vwukiXtVZjhaXj7vKTmA4Ff0l+Yph+k4xZ2h9dX2o3y1 rT5vwb1LtLm7xSOoPNLj4Uv9NEJotre+OYawT6mYZkiov/eol+ZKf5fdPBQORfJT hpxdChSkQ8OI2M51wdnzO8zMuxJ2jpmNHDbUwc1qX+MQtnkE41mmjkbKTUnQuqvk 43L6EJpD76MvJ0fqkyS7CXU17wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJrU7/PF jhuLhQnNnUqjk+yFgGjbMB8GA1UdIwQYMBaAFLEJ2pUFduZiZ3laNOupG8N6mSO0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkRDOS8wRTZGRjU0QUFF NUIxMUYwOEM3Q0FDNTNDNEY5QUUwMi9zUW5hbFFWMjVtSm5lVm8wNjZrYnczcVpJ N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NRbmFsUVYyNW1KbmVWbzA2NmtidzNxWkk3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkRDOS8wRTZGRjU0QUFFNUIxMUYwOEM3Q0FDNTNDNEY5QUUwMi9zUW5hbFFWMjVt Sm5lVm8wNjZrYnczcVpJN1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAO2NStEyvPPUfG7ugb6cKksKPh5t9jtB3XTiGoxBPEi+4Y1ukuu0LHdO58KdV ZcIGkR5lr7CirB8YuysMecSUS6ZGVdSAGcy6EBVqapc0FdylLQDr6q4CvodM5ShT xCm9DC5QjRMWCWTfVAuGHn2hO3oFH26gpd2BcxmcrfmHOwC+7kDOnwIoUUl7rpUS jlAA1h3G/eJq7+dTTLXO/8CYY+lfc7OxFdYY0x82fvd6J6nwycVbMExqgrAAz0Pf TtDUXlB7L0oPpF/dgrEU7FMVabMll3prBGvUeP3MZfCvgo/mCEcDCOtgJoSJbK5y RIQx45mMDNR5eLMgsaTVw8BkWg== -----END CERTIFICATE-----Generated at Wed May 13 16:02:42 2026 by rpki-client