$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.mft File: sQnalQV25mJneVo066kbw3qZI7Q.mft (raw, json) Hash identifier: ARGU1LNtLdZ+q6s8KThm+KVXNcm90IuQs36LaO04T3A= Subject key identifier: B7:79:24:42:A4:52:A6:D9:4A:FC:76:4E:C1:83:74:E9:21:C3:6C:6E Authority key identifier: B1:09:DA:95:05:76:E6:62:67:79:5A:34:EB:A9:1B:C3:7A:99:23:B4 Certificate issuer: /CN=A9196DC9/serialNumber=B109DA950576E66267795A34EBA91BC37A9923B4 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sQnalQV25mJneVo066kbw3qZI7Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.mft Manifest number: 5A Signing time: Wed 25 Mar 2026 07:23:18 +0000 Manifest this update: Wed 25 Mar 2026 07:23:18 +0000 Manifest next update: Wed 01 Apr 2026 07:23:18 +0000 Files and hashes: 1: sQnalQV25mJneVo066kbw3qZI7Q.crl (hash: ATGS+jwts4un21uenovWqAWOhw9FwnG1v6o6zMYqSn8=) 2: EBBEEC14C36711F084BC3465C4F9AE02.roa (hash: uPG9pu8QvfhYYfKydayvidbu8T+6yea/sIcvIkCXplU=) 3: 0FDE83B6C36811F0BB7F9C65C4F9AE02.roa (hash: MzAB5KprvbK6qlIO9zxGM5M9rFh7aMIvXuGpXbvRjV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.crl rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sQnalQV25mJneVo066kbw3qZI7Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DC9, serialNumber=B109DA950576E66267795A34EBA91BC37A9923B4 Validity Not Before: Mar 25 07:23:18 2026 GMT Not After : Apr 1 07:23:18 2026 GMT Subject: CN=69c38d66-1327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d6:90:33:82:71:1a:92:c6:08:d0:8d:2f:ae: 6f:2b:34:4a:cb:62:d9:a8:2e:70:56:fc:7c:96:db: 1c:c1:33:75:ad:04:5d:9c:09:f5:c7:f4:19:b3:c1: 33:28:65:e8:2c:b3:cb:c8:07:9e:2c:d6:19:a3:4c: 60:18:f2:23:3b:2c:58:0e:65:b6:56:85:21:48:4e: e6:dc:22:39:c3:23:27:9b:eb:76:cf:65:11:56:c4: 09:f4:ed:60:bb:f6:e8:67:ef:34:ba:48:8c:64:00: fb:4a:7e:d4:e5:ab:c0:8b:16:21:ac:8c:31:9a:61: b1:24:a4:10:b6:43:8c:03:23:2a:cf:6e:3c:0c:ed: 57:2f:5d:d1:da:8b:b1:9e:66:68:f2:9e:2c:b0:89: d3:85:54:8c:ee:5b:41:fa:c2:1b:7c:a2:f8:2b:b2: 2a:13:67:69:34:02:fe:af:f9:2d:45:cb:46:64:df: 04:ab:f5:6c:62:6d:c2:49:0f:9d:4c:57:4e:6f:f0: 26:e0:ca:27:a9:81:55:77:b9:62:d5:23:1f:6d:c7: f6:ba:91:e7:87:b7:38:9f:63:c5:74:02:a0:d0:78: e3:ef:e2:9b:1e:f3:c9:a9:65:95:a5:83:dd:c0:2c: 9e:08:6d:32:d2:2a:50:4f:63:b1:58:43:67:eb:97: 7d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:79:24:42:A4:52:A6:D9:4A:FC:76:4E:C1:83:74:E9:21:C3:6C:6E X509v3 Authority Key Identifier: keyid:B1:09:DA:95:05:76:E6:62:67:79:5A:34:EB:A9:1B:C3:7A:99:23:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sQnalQV25mJneVo066kbw3qZI7Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:59:3c:c4:38:b4:fd:21:1f:47:0c:fc:5c:7d:a1:ab:71:c2: 75:a8:20:e2:4a:17:83:cf:11:6f:57:9d:c0:c8:55:b1:f3:50: 6e:db:03:95:87:60:6d:41:ba:00:c3:1e:ff:6e:f1:a1:bd:39: 5d:1f:32:7b:32:84:5e:20:e6:bc:d1:0b:15:92:bf:73:17:aa: d5:65:81:66:49:00:9c:9b:29:58:81:83:34:8a:cf:02:b9:dd: 1c:01:7f:74:f9:c7:ff:dc:db:f9:6e:de:56:ba:05:ba:50:07: 77:15:a7:f7:4e:dc:e1:4d:2d:7b:b0:28:c4:72:48:d1:60:e1: c4:d8:83:f2:ce:20:6f:8c:27:c3:eb:f9:01:51:90:db:8e:09: d4:9b:55:2e:9f:1a:7c:a4:79:95:f3:49:c4:f6:a2:df:6f:dd: 71:15:e5:1e:8b:a5:f1:c0:25:ba:f1:41:0b:0d:94:a4:92:12: 33:3e:3a:be:0a:fa:db:3f:ed:0e:58:a4:a7:9b:64:0f:00:1d: f5:d0:7b:77:74:01:cd:cd:aa:08:24:1d:b8:39:41:97:e3:7f: 95:6c:7c:49:3e:8b:de:4b:c6:c2:66:ac:67:4f:cc:5d:03:3d: cc:d1:20:0d:26:a0:a4:aa:dc:f9:c4:28:a1:e6:0f:46:96:a1: 21:0a:a5:76 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NkRDOTExMC8GA1UEBRMoQjEwOURBOTUwNTc2RTY2MjY3Nzk1QTM0RUJBOTFCQzM3 QTk5MjNCNDAeFw0yNjAzMjUwNzIzMThaFw0yNjA0MDEwNzIzMThaMBgxFjAUBgNV BAMTDTY5YzM4ZDY2LTEzMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDA1pAzgnEaksYI0I0vrm8rNErLYtmoLnBW/HyW2xzBM3WtBF2cCfXH9BmzwTMo Zegss8vIB54s1hmjTGAY8iM7LFgOZbZWhSFITubcIjnDIyeb63bPZRFWxAn07WC7 9uhn7zS6SIxkAPtKftTlq8CLFiGsjDGaYbEkpBC2Q4wDIyrPbjwM7VcvXdHai7Ge ZmjyniywidOFVIzuW0H6wht8ovgrsioTZ2k0Av6v+S1Fy0Zk3wSr9WxibcJJD51M V05v8CbgyiepgVV3uWLVIx9tx/a6keeHtzifY8V0AqDQeOPv4pse88mpZZWlg93A LJ4IbTLSKlBPY7FYQ2frl30BAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUt3kkQqRS ptlK/HZOwYN06SHDbG4wHwYDVR0jBBgwFoAUsQnalQV25mJneVo066kbw3qZI7Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2REM5LzBFNkZGNTRBQUU1 QjExRjA4QzdDQUM1M0M0RjlBRTAyL3NRbmFsUVYyNW1KbmVWbzA2NmtidzNxWkk3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc1FuYWxRVjI1bUpuZVZvMDY2a2J3M3FaSTdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 REM5LzBFNkZGNTRBQUU1QjExRjA4QzdDQUM1M0M0RjlBRTAyL3NRbmFsUVYyNW1K bmVWbzA2NmtidzNxWkk3US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCNWTzEOLT9IR9HDPxcfaGrccJ1qCDiSheDzxFvV53AyFWx81Bu2wOVh2BtQboA wx7/bvGhvTldHzJ7MoReIOa80QsVkr9zF6rVZYFmSQCcmylYgYM0is8Cud0cAX90 +cf/3Nv5bt5WugW6UAd3Faf3TtzhTS17sCjEckjRYOHE2IPyziBvjCfD6/kBUZDb jgnUm1Uunxp8pHmV80nE9qLfb91xFeUei6XxwCW68UELDZSkkhIzPjq+CvrbP+0O WKSnm2QPAB310Ht3dAHNzaoIJB24OUGX43+VbHxJPoveS8bCZqxnT8xdAz3M0SAN JqCkqtz5xCih5g9GlqEhCqV2 -----END CERTIFICATE-----Generated at Thu Mar 26 21:06:51 2026 by rpki-client