$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft File: QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft (raw, json) Hash identifier: next0U1ibKB9eYxrVloYNebUukxeD+iCQW+OLtvjgRs= Subject key identifier: AD:C5:DE:8B:C9:64:89:67:A9:EF:0D:A4:36:8C:5F:DF:20:A1:CF:57 Authority key identifier: 42:67:CF:5D:03:00:4A:8F:EF:DF:21:39:5D:0F:E8:24:54:8B:13:C1 Certificate issuer: /CN=A91FCEB1/serialNumber=4267CF5D03004A8FEFDF21395D0FE824548B13C1 Certificate serial: 212C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft Manifest number: 28D1 Signing time: Sat 04 Apr 2026 15:51:46 +0000 Manifest this update: Sat 04 Apr 2026 15:51:46 +0000 Manifest next update: Sat 11 Apr 2026 15:51:46 +0000 Files and hashes: 1: QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl (hash: +FuwqY6JZN4OQyJGUI5CF6j5GncDAFSeuiOnird4xUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:51:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8492 (0x212c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=4267CF5D03004A8FEFDF21395D0FE824548B13C1 Validity Not Before: Apr 4 15:51:46 2026 GMT Not After : Apr 11 15:51:46 2026 GMT Subject: CN=69d13392-a42b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ad:21:b3:56:1f:b4:ed:56:92:a2:f3:43:b6: d3:87:a7:47:45:94:36:32:af:8b:c5:12:86:ce:0b: 70:d5:fc:20:63:17:24:07:c9:5b:36:a7:4d:7c:c2: c8:56:f1:e6:68:af:e3:49:8b:0f:d7:76:ec:a1:6b: 63:e4:82:80:12:36:db:27:96:88:5c:10:94:57:d7: c5:4f:2f:b3:8e:7e:61:09:92:d4:b8:c4:8a:6f:f6: 07:2f:4c:e1:bd:b3:c6:95:c5:80:32:db:34:95:4e: 6f:61:10:ac:d3:d5:5a:f7:64:62:97:0b:96:e9:02: cd:fc:b9:e9:99:79:6a:1e:f6:1c:b2:a9:11:d6:94: 4b:79:33:20:5a:95:0b:2b:1f:8e:39:8a:9e:ef:a9: b9:15:b7:8b:dd:71:38:d5:b8:6b:a5:13:e9:3e:b7: c6:77:5f:67:80:c0:b4:c1:cc:a5:f3:72:91:d6:1d: 5c:97:47:a5:f2:33:5e:c8:cf:f7:8f:13:a1:39:26: 35:12:55:74:ea:0d:6c:37:0c:39:53:98:ec:ac:d7: 47:61:9e:ae:2d:c8:ad:8d:01:ca:39:72:22:3f:5d: 39:2c:d4:e6:59:c5:14:6e:48:b9:8f:56:d6:59:1b: af:48:68:f6:9e:47:94:cb:bb:06:e5:16:11:98:9b: f9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C5:DE:8B:C9:64:89:67:A9:EF:0D:A4:36:8C:5F:DF:20:A1:CF:57 X509v3 Authority Key Identifier: keyid:42:67:CF:5D:03:00:4A:8F:EF:DF:21:39:5D:0F:E8:24:54:8B:13:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmfPXQMASo_v3yE5XQ_oJFSLE8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/QmfPXQMASo_v3yE5XQ_oJFSLE8E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:0a:03:52:1f:1f:37:dd:bd:e4:f0:7e:26:fc:a9:86:9a:78: cc:25:f1:b6:00:a0:ad:f7:fd:53:25:6f:a9:2c:c2:e8:d3:8d: 03:02:a9:9f:36:d1:5b:79:90:41:49:06:06:aa:f6:2e:70:e7: f7:7b:ba:c6:78:2a:a4:2c:5e:f4:80:20:59:9c:f1:b5:c2:98: 8d:c4:b8:a6:41:cb:a3:ae:0d:ae:48:92:28:bf:db:30:c9:a8: 49:99:58:cb:78:47:87:51:a8:b9:f3:33:f8:bd:6c:00:44:c8: e5:f4:b4:02:69:8f:18:66:f2:78:4d:c5:6d:cf:17:50:48:ad: c6:50:d7:f8:17:06:92:6b:21:e8:d6:d1:a2:b1:fa:8c:13:05: 87:d4:af:72:88:45:f4:db:ec:e7:11:b8:f2:3d:f4:4a:c9:7f: b1:6c:7e:06:3a:70:26:de:dc:ce:ec:59:f6:ba:f6:2d:09:ca: dc:0c:78:f0:e4:a2:4c:a9:56:74:84:6b:4f:9b:ec:cc:f5:ab: c3:74:e9:c3:f8:b5:4d:66:66:59:c5:3b:24:34:3e:87:6f:eb: 3f:a0:3a:00:16:a0:48:1d:e6:4e:60:93:e3:b2:5c:40:d3:2c: 37:ee:8a:cd:f3:36:50:b2:60:50:03:a2:25:81:c1:e2:cc:bb: 1f:4d:5a:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICISwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKDQyNjdDRjVEMDMwMDRBOEZFRkRGMjEzOTVEMEZFODI0 NTQ4QjEzQzEwHhcNMjYwNDA0MTU1MTQ2WhcNMjYwNDExMTU1MTQ2WjAYMRYwFAYD VQQDEw02OWQxMzM5Mi1hNDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAva0hs1YftO1WkqLzQ7bTh6dHRZQ2Mq+LxRKGzgtw1fwgYxckB8lbNqdNfMLI VvHmaK/jSYsP13bsoWtj5IKAEjbbJ5aIXBCUV9fFTy+zjn5hCZLUuMSKb/YHL0zh vbPGlcWAMts0lU5vYRCs09Va92RilwuW6QLN/LnpmXlqHvYcsqkR1pRLeTMgWpUL Kx+OOYqe76m5FbeL3XE41bhrpRPpPrfGd19ngMC0wcyl83KR1h1cl0el8jNeyM/3 jxOhOSY1ElV06g1sNww5U5jsrNdHYZ6uLcitjQHKOXIiP105LNTmWcUUbki5j1bW WRuvSGj2nkeUy7sG5RYRmJv5MwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK3F3ovJ ZIlnqe8NpDaMX98goc9XMB8GA1UdIwQYMBaAFEJnz10DAEqP798hOV0P6CRUixPB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS9FRkI4NzVDODA4 QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9RbWZQWFFNQVNvX3YzeUU1WFFfb0pGU0xF OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FtZlBYUU1BU29fdjN5RTVYUV9vSkZTTEU4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS9FRkI4NzVDODA4QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9RbWZQWFFNQVNv X3YzeUU1WFFfb0pGU0xFOEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfgoDUh8fN9295PB+Jvyphpp4zCXxtgCgrff9UyVvqSzC6NONAwKpnzbRW3mQ QUkGBqr2LnDn93u6xngqpCxe9IAgWZzxtcKYjcS4pkHLo64NrkiSKL/bMMmoSZlY y3hHh1GoufMz+L1sAETI5fS0AmmPGGbyeE3Fbc8XUEitxlDX+BcGkmsh6NbRorH6 jBMFh9SvcohF9Nvs5xG48j30Ssl/sWx+BjpwJt7czuxZ9rr2LQnK3Ax48OSiTKlW dIRrT5vszPWrw3Tpw/i1TWZmWcU7JDQ+h2/rP6A6ABagSB3mTmCT47JcQNMsN+6K zfM2ULJgUAOiJYHB4sy7H01aWw== -----END CERTIFICATE-----Generated at Sun Apr 5 20:58:54 2026 by rpki-client