$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft File: KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft (raw, json) Hash identifier: QAc7tn/CaTB3ujLTvhvhQ31fbR1h6M9PVut0qWrLACs= Subject key identifier: 4D:4C:97:E2:AA:69:CC:E1:37:2E:DD:63:09:8D:DA:F8:3E:19:B4:24 Authority key identifier: 29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C Certificate issuer: /CN=A91A3456/serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Certificate serial: 0BBB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft Manifest number: 0BAE Signing time: Sat 04 Apr 2026 18:49:59 +0000 Manifest this update: Sat 04 Apr 2026 18:49:58 +0000 Manifest next update: Sat 11 Apr 2026 18:49:58 +0000 Files and hashes: 1: KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl (hash: BMvLqqrMJdbXONhNh+Y80Zmx3NI/gTmgR5WtQxepk8Q=) 2: 496096EE41A311EABAADCE0AC4F9AE02.roa (hash: owbB/QFVhS3E4rWN71OSFx1s7RgWi4YjBcaDXgNNaiI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3003 (0xbbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3456, serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Validity Not Before: Apr 4 18:49:58 2026 GMT Not After : Apr 11 18:49:58 2026 GMT Subject: CN=69d15d57-36ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:68:7e:43:5e:81:61:88:97:97:3f:15:6c:f2: 53:94:f8:a4:99:8c:af:81:c5:2c:25:db:2b:d7:cb: 6b:54:a3:48:3e:a1:b9:40:1c:85:7f:be:96:76:e9: a0:3b:4f:07:ca:c1:60:41:66:db:6a:46:c4:35:8d: e5:5a:7f:4d:af:15:76:5f:cc:09:48:01:89:07:0b: ca:bd:9e:44:4c:d7:33:8c:2d:41:78:b5:a3:e7:72: 51:b8:d4:ee:b7:87:8d:12:b8:68:bd:d1:80:91:93: c4:b7:57:8c:ec:aa:b5:c4:44:c2:ed:7c:1f:c3:d5: a4:ec:02:8f:7d:0e:40:b2:b6:6f:0c:80:d3:10:4c: a4:59:5e:86:68:79:d7:73:f1:2e:a0:1b:19:5f:1c: 06:88:40:03:fd:cb:6a:6a:78:ef:63:68:9d:60:2a: 1d:50:c7:f8:dc:32:1d:65:08:32:da:98:09:52:e3: 4c:47:23:5a:0a:1c:ba:ca:1e:af:bd:1a:ab:5a:6f: 69:a7:3a:8b:59:3c:91:76:1a:29:6a:34:03:80:0d: 50:ed:7d:b8:2b:49:1a:56:8d:1d:13:64:e0:b1:27: 05:b3:a7:bb:18:1c:9a:4a:55:67:68:ba:e7:f8:95: a2:d5:81:7c:d8:f0:c3:82:a5:20:08:a2:0f:18:da: ec:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:4C:97:E2:AA:69:CC:E1:37:2E:DD:63:09:8D:DA:F8:3E:19:B4:24 X509v3 Authority Key Identifier: keyid:29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:2c:76:75:39:6f:cc:35:b1:61:20:31:ed:f0:e3:0f:fa:66: 8a:ed:fd:65:02:d9:9a:f0:79:ef:58:3e:38:46:aa:77:62:99: b7:1f:65:3d:61:8c:bf:f9:04:4c:43:f6:61:e8:72:c6:2d:e1: 96:59:47:c0:eb:91:fe:f4:8e:52:97:99:73:13:09:f1:86:50: cf:d5:c1:fc:07:ec:7c:b5:4a:b1:2d:83:11:f7:85:85:1f:e3: 6b:17:f0:f5:e3:6c:fb:99:89:47:93:9e:18:93:f6:75:94:b5: 64:d3:d8:71:a6:e2:3a:21:dc:7d:51:59:f8:ae:39:67:7a:7d: 03:5b:d0:a8:2a:0b:f0:c0:db:29:d9:87:1a:5b:99:21:0c:b3: 75:b1:c7:eb:ca:ce:58:8a:2b:b1:a0:4d:1b:ad:56:1a:b5:25: 24:d5:01:fa:00:d3:82:6b:17:13:0b:64:70:ce:b4:16:c9:46: 1f:e8:a0:92:ef:5d:f1:c3:00:22:3e:53:a7:54:d9:19:6c:92: e1:66:0a:03:9a:7a:10:7e:80:7d:07:81:72:69:7c:2b:31:f8: 11:ba:01:14:48:b2:2d:95:03:42:a8:83:3d:d7:53:08:2a:0c: b1:68:8f:a8:94:0c:ab:4f:7f:60:c2:f1:9f:a2:d7:3c:2a:d8: ab:c1:29:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM0NTYxMTAvBgNVBAUTKDI5MEM0MDEwRkFEQzQ3Njk0N0UwMDkzRjQzRjcwMDRG MEQ3QzVDMUMwHhcNMjYwNDA0MTg0OTU4WhcNMjYwNDExMTg0OTU4WjAYMRYwFAYD VQQDEw02OWQxNWQ1Ny0zNmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Gh+Q16BYYiXlz8VbPJTlPikmYyvgcUsJdsr18trVKNIPqG5QByFf76Wdumg O08HysFgQWbbakbENY3lWn9NrxV2X8wJSAGJBwvKvZ5ETNczjC1BeLWj53JRuNTu t4eNErhovdGAkZPEt1eM7Kq1xETC7Xwfw9Wk7AKPfQ5AsrZvDIDTEEykWV6GaHnX c/EuoBsZXxwGiEAD/ctqanjvY2idYCodUMf43DIdZQgy2pgJUuNMRyNaChy6yh6v vRqrWm9ppzqLWTyRdhopajQDgA1Q7X24K0kaVo0dE2TgsScFs6e7GByaSlVnaLrn +JWi1YF82PDDgqUgCKIPGNrsXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE1Ml+Kq aczhNy7dYwmN2vg+GbQkMB8GA1UdIwQYMBaAFCkMQBD63EdpR+AJP0P3AE8NfFwc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzQ1Ni82QzI3RjI1QTQx QTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1IybEg0QWtfUV9jQVR3MThY QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tReEFFUHJjUjJsSDRBa19RX2NBVHcxOFhCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzQ1Ni82QzI3RjI1QTQxQTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1Iy bEg0QWtfUV9jQVR3MThYQncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqSx2dTlvzDWxYSAx7fDjD/pmiu39ZQLZmvB571g+OEaqd2KZtx9lPWGMv/kE TEP2Yehyxi3hlllHwOuR/vSOUpeZcxMJ8YZQz9XB/AfsfLVKsS2DEfeFhR/jaxfw 9eNs+5mJR5OeGJP2dZS1ZNPYcabiOiHcfVFZ+K45Z3p9A1vQqCoL8MDbKdmHGluZ IQyzdbHH68rOWIorsaBNG61WGrUlJNUB+gDTgmsXEwtkcM60FslGH+igku9d8cMA Ij5Tp1TZGWyS4WYKA5p6EH6AfQeBcml8KzH4EboBFEiyLZUDQqiDPddTCCoMsWiP qJQMq09/YMLxn6LXPCrYq8EpNQ== -----END CERTIFICATE-----Generated at Mon Apr 6 11:20:59 2026 by rpki-client