$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: 9ZtmH9OSxar3OGPjTHiPz+AjfmvI5Uv11dx3tTKWqrM= Subject key identifier: D8:4A:0C:D2:8E:31:02:02:DA:6F:84:A1:D5:93:E7:BA:31:D9:09:CF Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 2562 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 2536 Signing time: Sat 18 Apr 2026 15:42:10 +0000 Manifest this update: Sat 18 Apr 2026 15:42:09 +0000 Manifest next update: Sat 25 Apr 2026 15:42:09 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: e47jTm3v2TcU+MFUaOpWySWjwa7hBpSfegGMAuuXtrI=) 2: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: 6oC3s9zXSmCynBY9z0T8TeaSrJ6gHinauk9Zr2y+ucg=) 3: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: /w4t5dhbmQEa84JEDJ39VitjjFskPm/mEpnYuZ0T6wQ=) 4: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: l+zP+x/ZY9cq3nbV4r5XpYolKqUr/0Lu8hDJSfvQgkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 15:42:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9570 (0x2562) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Apr 18 15:42:09 2026 GMT Not After : Apr 25 15:42:09 2026 GMT Subject: CN=69e3a652-579d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:35:ae:64:09:34:0d:d5:7a:5e:57:26:69:4c: 3d:2c:da:64:19:de:db:98:26:b9:ce:c4:69:bb:a8: 0e:e0:d8:08:b1:f4:64:b0:63:72:e7:37:e1:91:bc: 71:70:38:ed:70:e3:1c:b9:1d:14:fd:e1:d3:ce:06: 4a:2c:f2:76:be:19:24:21:05:84:71:5f:bd:e8:42: 4b:3b:57:0e:c0:8d:35:75:5b:d8:0b:9e:24:77:77: 06:f7:81:a2:bb:2b:ec:db:c7:dc:03:47:1f:ee:7c: 82:aa:44:2b:df:9f:f4:da:74:0d:bd:30:e9:da:10: f7:3f:6f:aa:83:2a:73:bb:31:4f:5d:fa:59:58:6c: 0c:f9:a8:e9:0b:87:c5:86:1a:57:8d:94:fb:eb:e8: 79:96:30:24:d6:06:cd:37:cd:50:c4:f7:2b:a9:d2: dd:1c:67:98:5a:b5:ad:c7:a2:42:86:12:3e:d7:33: b9:ab:bb:d2:f1:f5:fe:2e:2b:2e:fc:0f:73:19:10: 4b:06:5b:d3:6c:59:16:04:68:47:1b:55:c3:9d:cb: 0b:cf:d6:48:38:b9:5b:d8:0a:9a:0e:65:96:bb:e0: 47:21:dc:a8:63:92:d9:86:97:28:0c:2c:30:18:56: 88:b7:54:43:1c:3c:31:1a:d0:8e:06:8b:3c:b1:d0: 4d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:4A:0C:D2:8E:31:02:02:DA:6F:84:A1:D5:93:E7:BA:31:D9:09:CF X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:19:04:9c:ee:78:7b:d9:f3:10:a1:2f:5f:9c:8c:8a:92:66: fe:11:44:25:47:21:6d:46:09:58:d4:95:fd:d8:49:c0:d8:ff: be:2f:5c:34:e3:7e:16:26:d8:15:0b:96:e5:7c:f7:70:f1:d6: ed:68:ec:ab:00:ef:61:fb:52:79:9a:38:cc:f8:cc:75:8a:3e: a0:5c:f4:a7:99:8d:b5:fd:25:91:2b:ed:f3:fb:14:be:81:d9: 74:a9:ee:d0:db:7a:26:75:0c:d6:ff:24:fd:0c:00:e6:63:64: 21:de:3e:6c:58:8f:e1:b7:92:25:03:17:be:47:38:9f:9a:14: 17:76:a0:ef:c1:a0:3c:9a:58:57:f5:9d:42:bf:d8:a0:a5:98: b5:92:fb:09:d1:07:55:c6:b4:f8:fa:92:ea:69:4d:44:90:83: c3:e2:31:32:e0:05:79:46:40:28:1d:3d:64:57:f8:4a:15:23: 2d:62:a3:3e:bc:93:fb:b4:09:a5:3c:83:de:46:b1:4e:df:b3: 11:45:5e:f5:6a:5f:81:6b:ea:5e:6b:67:04:79:e5:b0:e0:3b: 46:77:7f:d8:da:b7:3a:bb:3f:c4:0c:61:c5:34:28:23:a8:38: d8:0e:d8:17:c5:d5:4a:b8:a8:fd:0c:3e:59:10:f7:76:d2:b3: 7c:cb:88:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjYwNDE4MTU0MjA5WhcNMjYwNDI1MTU0MjA5WjAYMRYwFAYD VQQDEw02OWUzYTY1Mi01NzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzWuZAk0DdV6XlcmaUw9LNpkGd7bmCa5zsRpu6gO4NgIsfRksGNy5zfhkbxx cDjtcOMcuR0U/eHTzgZKLPJ2vhkkIQWEcV+96EJLO1cOwI01dVvYC54kd3cG94Gi uyvs28fcA0cf7nyCqkQr35/02nQNvTDp2hD3P2+qgypzuzFPXfpZWGwM+ajpC4fF hhpXjZT76+h5ljAk1gbNN81QxPcrqdLdHGeYWrWtx6JChhI+1zO5q7vS8fX+Lisu /A9zGRBLBlvTbFkWBGhHG1XDncsLz9ZIOLlb2AqaDmWWu+BHIdyoY5LZhpcoDCww GFaIt1RDHDwxGtCOBos8sdBNAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNhKDNKO MQIC2m+EodWT57ox2QnPMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgBkEnO54e9nzEKEvX5yMipJm/hFEJUchbUYJWNSV/dhJwNj/vi9cNON+FibY FQuW5Xz3cPHW7WjsqwDvYftSeZo4zPjMdYo+oFz0p5mNtf0lkSvt8/sUvoHZdKnu 0Nt6JnUM1v8k/QwA5mNkId4+bFiP4beSJQMXvkc4n5oUF3ag78GgPJpYV/WdQr/Y oKWYtZL7CdEHVca0+PqS6mlNRJCDw+IxMuAFeUZAKB09ZFf4ShUjLWKjPryT+7QJ pTyD3kaxTt+zEUVe9WpfgWvqXmtnBHnlsOA7Rnd/2Nq3Ors/xAxhxTQoI6g42A7Y F8XVSrio/Qw+WRD3dtKzfMuI6Q== -----END CERTIFICATE-----Generated at Sun Apr 19 02:45:31 2026 by rpki-client