$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft File: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft (raw, json) Hash identifier: Un1GS4Msmxuug9ES/FcTb+apbj2nqqoSaHZlIF8elPU= Subject key identifier: 34:F7:E2:EC:B9:FF:DF:27:C8:41:56:5D:A5:E9:0A:29:48:31:36:1F Authority key identifier: 42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 Certificate issuer: /CN=A91DF9B9/serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft Manifest number: 01FA Signing time: Sun 05 Apr 2026 02:44:45 +0000 Manifest this update: Sun 05 Apr 2026 02:44:44 +0000 Manifest next update: Sun 12 Apr 2026 02:44:44 +0000 Files and hashes: 1: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl (hash: dkrNqRKlkxmOEAtpafULErwR3oNBSJxtt6TdxDPGKso=) 2: F3484DBA34CE11EEBBA9D046C4F9AE02.roa (hash: cCwngW+0nv7VgTk47lxbgT3+ex2bp6tm2PDtS8RdU9M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:44:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF9B9, serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Validity Not Before: Apr 5 02:44:44 2026 GMT Not After : Apr 12 02:44:44 2026 GMT Subject: CN=69d1cc9d-f44b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7e:4d:de:36:99:95:d0:27:bc:8f:d6:85:ff: d5:9e:4a:91:a8:3c:4f:5b:7d:aa:0c:ff:ca:97:ec: cc:b3:e2:a7:ec:45:cb:bd:9a:ca:ab:90:60:c5:79: 3b:88:54:4b:1f:5b:78:60:8d:ae:22:a0:f6:8d:53: b9:e8:31:ab:15:04:3f:16:9c:9d:36:a1:40:fc:26: 2a:b2:4b:ab:2d:3b:6c:e8:2c:45:2a:ec:38:18:92: 33:93:c0:85:6e:94:69:e4:71:18:09:bf:1b:1c:7e: a9:83:de:8b:b5:22:e7:e2:a4:96:de:c2:07:c8:f9: 99:f2:50:81:ab:be:77:9d:27:b6:76:b2:c1:2c:2d: 32:7b:4e:5a:77:8c:3f:cb:9f:28:11:41:5e:1a:af: e4:14:e2:10:ce:f7:a5:f6:f8:cf:d8:72:af:36:7c: e4:07:50:71:90:b3:47:54:fb:48:ce:30:18:0c:18: b9:c5:40:5f:7d:00:ba:17:5b:1b:43:81:4b:67:70: 01:99:b1:6f:d9:a8:00:a1:38:91:e2:73:93:17:8d: d9:f1:e2:1e:23:7d:7f:fd:53:ad:ac:f8:e9:d5:38: a4:00:c5:d5:4c:6f:2d:6c:b2:a4:35:7a:8e:75:f5: 7d:84:22:68:9b:5f:12:21:16:4c:e0:a2:ba:59:f7: 5e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:F7:E2:EC:B9:FF:DF:27:C8:41:56:5D:A5:E9:0A:29:48:31:36:1F X509v3 Authority Key Identifier: keyid:42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:25:cc:8d:ca:ea:3c:c5:a8:a2:67:c3:25:71:02:b1:98:f5: 6b:77:aa:3e:6f:c4:7f:95:75:98:7b:07:a6:e6:0d:32:45:9a: 8d:5e:50:42:c6:a4:eb:b8:f6:c2:46:1f:4b:b8:ef:23:3d:f1: d8:13:46:d3:b3:28:d0:a4:99:01:8f:f3:3b:f7:b5:24:9f:d8: 1d:21:8c:00:ce:bd:fb:8c:47:81:7f:c9:06:4a:98:15:e7:bc: ee:04:4e:11:a2:b3:0c:2c:65:1e:55:58:e4:64:1b:fc:9f:26: 23:83:0a:81:8c:b6:3a:9f:62:14:a1:19:9f:d7:ae:5f:df:81: 39:0f:80:a3:e9:0f:59:40:4a:56:66:a6:8a:93:98:f8:52:10: 0d:61:92:52:31:84:8f:56:c6:44:94:50:59:e3:0e:c5:79:35: ae:10:1d:a0:f4:ea:44:a1:58:12:bb:cf:74:05:01:1d:1d:5c: c7:a8:0f:07:2c:e3:df:39:2f:66:d3:1b:ed:2b:52:1f:01:13: 4e:54:80:69:a5:59:85:3f:37:94:cd:5f:ea:32:a0:0b:5a:05: 8d:37:2e:97:50:4a:62:ce:7b:ee:e3:27:98:1a:b6:4d:f1:8c: e9:97:01:19:21:99:23:8a:d1:c3:e8:00:fa:01:66:d1:a0:f1: 24:8d:88:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5QjkxMTAvBgNVBAUTKDQyQ0U1MEUxQUM3MzNENUExNjZCNTQyQzNDNDkzMDlG MzY1NkJGMjIwHhcNMjYwNDA1MDI0NDQ0WhcNMjYwNDEyMDI0NDQ0WjAYMRYwFAYD VQQDEw02OWQxY2M5ZC1mNDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtX5N3jaZldAnvI/Whf/VnkqRqDxPW32qDP/Kl+zMs+Kn7EXLvZrKq5BgxXk7 iFRLH1t4YI2uIqD2jVO56DGrFQQ/FpydNqFA/CYqskurLTts6CxFKuw4GJIzk8CF bpRp5HEYCb8bHH6pg96LtSLn4qSW3sIHyPmZ8lCBq753nSe2drLBLC0ye05ad4w/ y58oEUFeGq/kFOIQzvel9vjP2HKvNnzkB1BxkLNHVPtIzjAYDBi5xUBffQC6F1sb Q4FLZ3ABmbFv2agAoTiR4nOTF43Z8eIeI31//VOtrPjp1TikAMXVTG8tbLKkNXqO dfV9hCJom18SIRZM4KK6WfdeuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDT34uy5 /98nyEFWXaXpCilIMTYfMB8GA1UdIwQYMBaAFELOUOGscz1aFmtULDxJMJ82Vr8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjlCOS85NTFGOThFQTMy RDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBWb1dhMVFzUEVrd256Wld2 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzNVE0YXh6UFZvV2ExUXNQRWt3bnpaV3Z5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjlCOS85NTFGOThFQTMyRDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBW b1dhMVFzUEVrd256Wld2eUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACiXMjcrqPMWoomfDJXECsZj1a3eqPm/Ef5V1mHsHpuYNMkWajV5QQsak67j2 wkYfS7jvIz3x2BNG07Mo0KSZAY/zO/e1JJ/YHSGMAM69+4xHgX/JBkqYFee87gRO EaKzDCxlHlVY5GQb/J8mI4MKgYy2Op9iFKEZn9euX9+BOQ+Ao+kPWUBKVmamipOY +FIQDWGSUjGEj1bGRJRQWeMOxXk1rhAdoPTqRKFYErvPdAUBHR1cx6gPByzj3zkv ZtMb7StSHwETTlSAaaVZhT83lM1f6jKgC1oFjTcul1BKYs577uMnmBq2TfGM6ZcB GSGZI4rRw+gA+gFm0aDxJI2I/A== -----END CERTIFICATE-----Generated at Sun Apr 5 19:58:05 2026 by rpki-client