$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft File: Qql4rYPdXtKaTl3bYbVvExelpaQ.mft (raw, json) Hash identifier: 6CapjtDEPcg4sBtep+Pwxp08GYsDnTNK4QJjpk95jP0= Subject key identifier: A5:54:6D:FC:74:E3:15:85:4B:E1:43:FF:9F:2D:E1:62:AF:37:91:3D Authority key identifier: 42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 Certificate issuer: /CN=A91D4803/serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Certificate serial: 05DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft Manifest number: 05D4 Signing time: Sat 04 Apr 2026 22:48:18 +0000 Manifest this update: Sat 04 Apr 2026 22:48:17 +0000 Manifest next update: Sat 11 Apr 2026 22:48:17 +0000 Files and hashes: 1: Qql4rYPdXtKaTl3bYbVvExelpaQ.crl (hash: erweRwbxluARNPkookNVF/JxCUFsm7QCF/cvTB5uIw0=) 2: 2B1B8C92F9E511EBBB9B5D22C4F9AE02.roa (hash: fQgQ0VLTGkoR20JE5CrFqxEVCmsrE7jBwatjIG70kMM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1501 (0x5dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4803, serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Validity Not Before: Apr 4 22:48:17 2026 GMT Not After : Apr 11 22:48:17 2026 GMT Subject: CN=69d19532-5c85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:52:9b:9f:4f:68:c9:a6:ed:4f:6c:35:6d:dc: d7:a6:e8:93:30:7a:fb:a1:19:f1:91:de:3d:11:f4: 0d:da:1e:18:46:ed:f3:27:5a:eb:fa:8b:e3:f3:f2: 2d:ae:37:95:6a:b9:17:62:0c:99:16:85:c6:cb:98: 82:b5:4d:68:0e:20:53:4e:4c:5e:03:7f:d6:54:a0: c7:9d:01:4b:01:e1:42:2c:8e:4e:14:b9:5d:52:ea: 15:d9:a1:4a:30:a4:7c:6e:8d:64:24:4d:78:e2:34: 6d:7e:99:e6:d1:1f:53:65:d1:3f:7f:84:56:0c:b7: 9e:d3:bc:c2:5a:aa:c8:9a:e1:a1:f4:19:17:57:f4: 96:de:ec:9a:54:05:b1:5c:2f:4c:be:0f:a7:a0:bf: f4:2f:8e:28:e8:9c:1c:9c:51:cd:0b:00:2c:64:e8: b1:79:15:8c:f9:16:65:81:5b:14:d9:9b:6a:1f:8d: 07:3a:bf:55:86:fc:d8:79:f3:f8:73:41:c3:2e:a9: 0c:36:0c:c8:58:b5:6a:bd:fe:46:7c:a8:34:d0:8c: db:9b:18:f4:a3:67:49:24:65:21:09:e9:64:e4:d5: 17:af:25:d8:cb:3b:7d:d4:7e:2e:38:94:5e:b1:59: a3:bf:ba:d1:4d:78:61:8d:28:d1:9b:b6:a1:aa:a6: 2a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:54:6D:FC:74:E3:15:85:4B:E1:43:FF:9F:2D:E1:62:AF:37:91:3D X509v3 Authority Key Identifier: keyid:42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:d7:e3:3d:30:dc:f6:ee:4f:35:00:50:69:e5:b8:2e:47:fb: ee:1a:06:44:83:c8:bd:ef:6d:ec:17:99:ca:3d:ca:52:20:53: 0c:d5:c0:4e:4c:4c:86:cd:19:b2:c4:ad:ab:dc:d6:26:6c:b6: 1b:31:06:8a:da:7d:36:84:cf:08:d8:c2:2f:bf:04:62:7a:e9: d4:2f:38:51:7c:1c:67:3f:84:3b:45:64:b6:31:67:49:38:d9: c1:39:28:cb:04:82:8b:6d:be:18:49:d6:c1:8f:67:2b:f1:8c: 2a:4e:a1:e8:44:db:88:92:05:5c:c1:a0:53:64:69:57:9f:44: e2:e5:19:da:ee:17:1c:57:03:09:5b:0f:b1:1c:ad:e8:de:d8: 3d:64:fa:38:56:00:5c:73:99:5a:22:e0:fe:5a:2d:45:a7:1b: 2e:4b:34:75:47:92:89:74:cd:82:30:38:33:4f:46:da:3e:63: cc:3a:02:ee:6d:76:3c:49:4d:85:05:bb:c3:7b:82:bb:02:01: 03:97:c4:b4:11:9e:04:69:0a:30:8f:36:4f:67:b1:8b:80:35: 92:f8:30:61:ba:d1:e9:b0:b8:43:17:53:95:9f:72:66:0e:0b: ca:aa:17:f1:23:03:a8:46:0d:41:f2:28:83:70:64:0e:a7:c6: 41:61:fa:da -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MDMxMTAvBgNVBAUTKDQyQTk3OEFEODNERDVFRDI5QTRFNUREQjYxQjU2RjEz MTdBNUE1QTQwHhcNMjYwNDA0MjI0ODE3WhcNMjYwNDExMjI0ODE3WjAYMRYwFAYD VQQDEw02OWQxOTUzMi01Yzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1Kbn09oyabtT2w1bdzXpuiTMHr7oRnxkd49EfQN2h4YRu3zJ1rr+ovj8/It rjeVarkXYgyZFoXGy5iCtU1oDiBTTkxeA3/WVKDHnQFLAeFCLI5OFLldUuoV2aFK MKR8bo1kJE144jRtfpnm0R9TZdE/f4RWDLee07zCWqrImuGh9BkXV/SW3uyaVAWx XC9Mvg+noL/0L44o6JwcnFHNCwAsZOixeRWM+RZlgVsU2ZtqH40HOr9VhvzYefP4 c0HDLqkMNgzIWLVqvf5GfKg00Izbmxj0o2dJJGUhCelk5NUXryXYyzt91H4uOJRe sVmjv7rRTXhhjSjRm7ahqqYqGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKVUbfx0 4xWFS+FD/58t4WKvN5E9MB8GA1UdIwQYMBaAFEKpeK2D3V7Smk5d22G1bxMXpaWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgwMy84MEYwMzRCRUY5 RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0S2FUbDNiWWJWdkV4ZWxw YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxbDRyWVBkWHRLYVRsM2JZYlZ2RXhlbHBhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgwMy84MEYwMzRCRUY5RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0 S2FUbDNiWWJWdkV4ZWxwYVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJdfjPTDc9u5PNQBQaeW4Lkf77hoGRIPIve9t7BeZyj3KUiBTDNXATkxMhs0Z ssStq9zWJmy2GzEGitp9NoTPCNjCL78EYnrp1C84UXwcZz+EO0VktjFnSTjZwTko ywSCi22+GEnWwY9nK/GMKk6h6ETbiJIFXMGgU2RpV59E4uUZ2u4XHFcDCVsPsRyt 6N7YPWT6OFYAXHOZWiLg/lotRacbLks0dUeSiXTNgjA4M09G2j5jzDoC7m12PElN hQW7w3uCuwIBA5fEtBGeBGkKMI82T2exi4A1kvgwYbrR6bC4QxdTlZ9yZg4LyqoX 8SMDqEYNQfIog3BkDqfGQWH62g== -----END CERTIFICATE-----Generated at Sun Apr 5 19:42:37 2026 by rpki-client