$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: NdDkJFk4KpDE3EZoUbxk6h/zDdpS/TKU5qgPdr6LVu0= Subject key identifier: 43:DA:DC:95:83:8C:13:8E:69:6F:BA:9F:DC:EA:2E:46:2A:2C:68:07 Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 01E8 Signing time: Sun 05 Apr 2026 02:52:57 +0000 Manifest this update: Sun 05 Apr 2026 02:52:57 +0000 Manifest next update: Sun 12 Apr 2026 02:52:57 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: LEZpNLdr+ekWSomsH02dPKlWs0cyMuSnFa/PD3pIq0Q=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: SRaZz8UkrG0xf8PPTUnVH04dIH0Z2Emcacglv7QsArQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:52:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: Apr 5 02:52:57 2026 GMT Not After : Apr 12 02:52:57 2026 GMT Subject: CN=69d1ce89-f1f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a5:eb:4f:3c:b8:7d:1b:6a:9d:80:ef:5b:a1: be:73:f3:2d:66:54:3b:95:69:68:9a:36:d0:cb:6f: fd:68:29:59:aa:47:7e:33:ba:93:41:23:5d:30:94: d7:76:16:0b:80:c8:8a:48:f1:80:cf:65:81:b4:cc: c3:e5:6f:7a:57:7d:25:d2:61:8c:39:dc:cf:1f:cf: 3d:39:9f:69:76:31:ad:e3:82:fc:88:31:82:8b:c7: 69:f6:85:b7:5d:0a:9e:4a:97:af:b7:0a:66:48:27: 7f:d0:b9:15:07:cd:4e:a5:21:ce:09:a0:f3:4a:16: 4c:61:f8:2a:a1:72:70:28:d9:52:21:6e:30:7d:37: 83:a5:80:f4:fd:2d:89:90:d0:b6:69:a5:e7:7c:6b: 63:35:d7:e4:e8:e9:a8:5c:18:71:b3:25:35:0a:1d: 19:fd:4a:55:fa:ee:a3:85:95:77:01:41:fc:d6:ce: 98:58:62:a7:f0:9e:33:dc:ff:06:d1:68:2b:db:8f: ce:a9:f9:78:75:da:30:1d:d4:e0:66:f6:77:93:04: 04:47:de:23:2a:fa:20:42:0c:0c:9e:4d:7d:a0:00: 9d:9b:2e:b9:12:8b:dd:b1:b3:de:20:00:ea:59:e5: 97:1f:f0:01:59:a3:e1:0a:da:ff:81:9f:83:d3:c6: 11:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:DA:DC:95:83:8C:13:8E:69:6F:BA:9F:DC:EA:2E:46:2A:2C:68:07 X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:fa:96:45:62:68:f9:cd:d2:68:9e:97:d5:de:ed:41:6b:45: 51:79:e4:90:8f:8f:3a:33:46:a8:64:9e:d3:28:c4:80:24:64: c3:d0:3f:cf:2e:99:ad:ef:2e:f8:69:4a:5b:1d:8a:c4:3f:be: 51:80:08:77:b0:35:49:e4:cc:55:b7:fb:5a:e5:4a:7c:47:17: 5c:fb:ed:01:a9:13:f7:95:6e:f8:c8:a8:5d:f1:e5:34:fd:7b: 93:65:41:8f:c4:bd:7d:b7:2f:d8:82:a5:c0:f2:bf:d1:e0:13: 9b:dd:00:e9:01:0c:f4:39:4c:1f:2b:e6:2d:79:f3:04:41:44: e4:5b:47:30:ad:1e:40:b6:98:fd:9d:73:03:cb:01:94:e6:13: 8c:65:de:32:d2:e5:ef:bf:33:0f:a7:cd:b3:82:45:f3:26:8d: e8:99:e8:04:02:1d:25:4f:dd:37:54:39:d0:7b:86:10:34:8a: 78:79:c7:1f:d4:0a:74:64:92:d0:ab:d5:0e:90:78:40:f7:a3: c2:2e:7a:bf:84:80:af:66:5e:51:87:e3:e3:bf:89:10:f8:52: 88:6b:75:54:e7:0b:17:a3:c0:92:75:99:95:77:3e:6a:10:c8: 8e:69:53:6a:d6:67:f1:40:42:b5:75:67:9b:40:2f:f7:46:30: e9:02:38:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjYwNDA1MDI1MjU3WhcNMjYwNDEyMDI1MjU3WjAYMRYwFAYD VQQDEw02OWQxY2U4OS1mMWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnaXrTzy4fRtqnYDvW6G+c/MtZlQ7lWlomjbQy2/9aClZqkd+M7qTQSNdMJTX dhYLgMiKSPGAz2WBtMzD5W96V30l0mGMOdzPH889OZ9pdjGt44L8iDGCi8dp9oW3 XQqeSpevtwpmSCd/0LkVB81OpSHOCaDzShZMYfgqoXJwKNlSIW4wfTeDpYD0/S2J kNC2aaXnfGtjNdfk6OmoXBhxsyU1Ch0Z/UpV+u6jhZV3AUH81s6YWGKn8J4z3P8G 0Wgr24/Oqfl4ddowHdTgZvZ3kwQER94jKvogQgwMnk19oACdmy65EovdsbPeIADq WeWXH/ABWaPhCtr/gZ+D08YRZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEPa3JWD jBOOaW+6n9zqLkYqLGgHMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo/qWRWJo+c3SaJ6X1d7tQWtFUXnkkI+POjNGqGSe0yjEgCRkw9A/zy6Zre8u +GlKWx2KxD++UYAId7A1SeTMVbf7WuVKfEcXXPvtAakT95Vu+MioXfHlNP17k2VB j8S9fbcv2IKlwPK/0eATm90A6QEM9DlMHyvmLXnzBEFE5FtHMK0eQLaY/Z1zA8sB lOYTjGXeMtLl778zD6fNs4JF8yaN6JnoBAIdJU/dN1Q50HuGEDSKeHnHH9QKdGSS 0KvVDpB4QPejwi56v4SAr2ZeUYfj47+JEPhSiGt1VOcLF6PAknWZlXc+ahDIjmlT atZn8UBCtXVnm0Av90Yw6QI4sA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:59:37 2026 by rpki-client