$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft File: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft (raw, json) Hash identifier: NJKG8qptp6yMJ2drWeeDVnBAbF3JUmNseKKyTn05B8Y= Subject key identifier: 32:09:82:3E:A3:6B:20:25:1A:30:71:A5:8B:2F:68:8E:7E:40:DC:17 Authority key identifier: 0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB Certificate issuer: /CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Certificate serial: 0285 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft Manifest number: 026C Signing time: Sun 05 Apr 2026 01:45:25 +0000 Manifest this update: Sun 05 Apr 2026 01:45:24 +0000 Manifest next update: Sun 12 Apr 2026 01:45:24 +0000 Files and hashes: 1: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl (hash: SvjZIIdWlPhrDLBWZ/QvFsu5ZYCv4vN8v1vqdNQza0I=) 2: 08A1C0B8DC5011EF9C212C5CC4F9AE02.roa (hash: 4eriJ+anZ8scJn8XHXKnKYPlWoQjR5KP9FszJSNrcus=) 3: C0C268B8441C11EF9E110F1EC4F9AE02.roa (hash: BGZ/L+eylo480mcZ7HtgDtqGQJY6fpOnqOG9oduD88w=) 4: 1B8DE01C641911EF83FFBF3CC4F9AE02.roa (hash: 5SoS9wM/g+HshG7EbVwFWNY7qgmWv+2rIEwCE8gvraE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:45:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 645 (0x285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC017, serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Validity Not Before: Apr 5 01:45:24 2026 GMT Not After : Apr 12 01:45:24 2026 GMT Subject: CN=69d1beb4-4b9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:61:95:71:36:56:21:b9:17:c5:be:e6:2f:a6: bd:91:97:da:86:43:65:1e:ba:0c:83:30:c6:fe:30: c0:dd:84:e4:1a:ff:e3:2d:0d:74:7b:af:bd:1c:fd: 77:bf:ce:cd:f7:1e:d4:ad:8e:55:5b:19:31:1e:6f: e4:d2:1d:21:21:09:f9:0b:74:f3:e1:39:9b:da:44: 93:d4:e3:1d:84:8a:2f:e8:d4:a7:04:b0:f9:b0:1c: fd:12:5f:62:96:fd:fb:3a:d4:27:86:d1:35:15:80: 45:f2:69:4a:89:0c:9a:fe:01:6a:36:04:94:cc:55: e6:14:60:97:09:88:eb:32:1a:97:5f:4b:a9:b9:c8: cc:67:4d:29:81:23:55:f4:a9:11:62:b5:6b:16:17: 53:f9:2c:43:66:b7:d6:79:16:aa:9b:76:0a:36:58: e5:7b:b6:86:5f:f4:f0:3a:f8:8e:7f:2d:05:23:5f: cc:ad:0c:bb:e6:c1:25:e0:91:ec:dd:2a:fe:dc:35: e3:d8:c5:90:3e:1c:90:4b:6b:2a:23:04:f7:c4:22: 93:ef:17:0a:f7:d5:2a:0f:3a:62:c7:62:7f:8b:07: 6a:47:d6:1c:c5:f0:10:52:1c:c9:17:02:6e:b8:15: 4d:ad:72:55:33:3d:14:c8:72:35:b2:07:81:fb:06: 88:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:09:82:3E:A3:6B:20:25:1A:30:71:A5:8B:2F:68:8E:7E:40:DC:17 X509v3 Authority Key Identifier: keyid:0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e8:0e:3e:f1:84:41:cd:43:77:24:87:2f:74:35:46:a7:a9:6e: b1:72:2f:0c:fe:64:74:d1:3d:20:c5:6a:6a:01:60:73:24:ed: 0c:3e:72:a6:5d:1e:0c:f3:13:44:ae:42:ed:21:95:58:6c:9e: ca:80:84:bc:0e:ee:01:1d:10:61:16:27:12:ba:af:c9:f1:39: d6:ec:78:77:a8:2e:83:2f:b0:5f:0d:ab:76:77:be:c0:45:2f: 60:01:e2:8b:80:24:c7:2f:10:62:90:83:a0:d3:02:23:92:fd: 5b:8b:5b:b6:e0:46:1f:be:4a:9c:f3:77:c1:ad:e4:d3:3f:da: 16:e9:5c:4a:ac:fb:de:36:cf:57:2c:fb:6b:ed:70:3a:fb:6c: 29:64:2c:fe:0f:c3:8c:74:59:47:97:d2:d1:f9:ad:01:73:ff: 15:21:6f:93:50:e0:c3:c9:35:fa:e9:fa:f0:2a:04:9b:9a:47: 69:68:1f:74:21:4c:e9:c8:f6:4b:4c:bb:a9:9a:0b:ab:47:24: b9:5f:64:68:6d:56:55:d5:cc:f8:2e:85:44:d4:c7:e2:98:23: 19:49:ec:ea:fc:2e:33:79:7c:39:8d:26:67:75:4b:2a:68:12: be:a5:83:53:6a:25:19:d5:a2:20:c5:f8:6f:59:90:c9:8d:8a: 55:9d:90:0c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMTcxMTAvBgNVBAUTKDBBQTVERTI5MjY1QTA4RTI3QTU4MUQ4OTQ0NjVCRENE QjczNzA5QkIwHhcNMjYwNDA1MDE0NTI0WhcNMjYwNDEyMDE0NTI0WjAYMRYwFAYD VQQDEw02OWQxYmViNC00YjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnmGVcTZWIbkXxb7mL6a9kZfahkNlHroMgzDG/jDA3YTkGv/jLQ10e6+9HP13 v87N9x7UrY5VWxkxHm/k0h0hIQn5C3Tz4Tmb2kST1OMdhIov6NSnBLD5sBz9El9i lv37OtQnhtE1FYBF8mlKiQya/gFqNgSUzFXmFGCXCYjrMhqXX0upucjMZ00pgSNV 9KkRYrVrFhdT+SxDZrfWeRaqm3YKNljle7aGX/TwOviOfy0FI1/MrQy75sEl4JHs 3Sr+3DXj2MWQPhyQS2sqIwT3xCKT7xcK99UqDzpix2J/iwdqR9YcxfAQUhzJFwJu uBVNrXJVMz0UyHI1sgeB+waI2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDIJgj6j ayAlGjBxpYsvaI5+QNwXMB8GA1UdIwQYMBaAFAql3ikmWgjielgdiURlvc23Nwm7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAxNy8xMDVBQzhGQzkw QzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNPSjZXQjJKUkdXOXpiYzND YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxWGVLU1phQ09KNldCMkpSR1c5emJjM0Nicy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAxNy8xMDVBQzhGQzkwQzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNP SjZXQjJKUkdXOXpiYzNDYnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA6A4+8YRBzUN3JIcvdDVGp6lusXIvDP5kdNE9IMVqagFgcyTtDD5ypl0eDPMT RK5C7SGVWGyeyoCEvA7uAR0QYRYnErqvyfE51ux4d6gugy+wXw2rdne+wEUvYAHi i4Akxy8QYpCDoNMCI5L9W4tbtuBGH75KnPN3wa3k0z/aFulcSqz73jbPVyz7a+1w OvtsKWQs/g/DjHRZR5fS0fmtAXP/FSFvk1Dgw8k1+un68CoEm5pHaWgfdCFM6cj2 S0y7qZoLq0ckuV9kaG1WVdXM+C6FRNTH4pgjGUns6vwuM3l8OY0mZ3VLKmgSvqWD U2olGdWiIMX4b1mQyY2KVZ2QDA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:41:08 2026 by rpki-client