$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft File: -qIKGvsgkct_URR4g_NkpFMJQTE.mft (raw, json) Hash identifier: YAW1cy8Q4JIgQ1qohLoz9GEty+ZtsIJzSYzZMgZdDxg= Subject key identifier: BF:52:12:20:3E:66:30:C0:A3:23:D0:D9:37:3E:5A:31:B8:1F:C8:ED Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 353E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft Manifest number: 3531 Signing time: Sat 04 Apr 2026 15:04:58 +0000 Manifest this update: Sat 04 Apr 2026 15:04:57 +0000 Manifest next update: Sat 11 Apr 2026 15:04:57 +0000 Files and hashes: 1: -qIKGvsgkct_URR4g_NkpFMJQTE.crl (hash: Rdm5IBQPxFqCS9uOqLQ/QQQROQAFbWlA/gZmdroQKcI=) 2: 0A956A80B48711EC83327546C4F9AE02.roa (hash: DWDLfS9VFoRUspo4gPt0SLH/400cssY5io0TF9oRBK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:04:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13630 (0x353e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8, serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Apr 4 15:04:57 2026 GMT Not After : Apr 11 15:04:57 2026 GMT Subject: CN=69d12899-c70b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:b3:93:4b:bd:a6:ab:08:61:ae:9a:a2:d7:6a: 9e:67:94:58:70:9d:12:bd:fd:dc:29:43:45:1c:4f: 64:fa:2f:c5:02:41:17:de:06:0e:18:34:d0:2b:a5: 71:91:76:10:45:6d:bf:ed:55:f8:60:07:1c:87:0a: 80:b6:7c:68:93:fb:c9:d6:04:13:8b:d9:ae:66:ad: 8a:38:d6:0c:d0:49:18:a7:47:b6:95:cf:1b:aa:6d: d5:c9:92:fe:bd:2f:1b:3c:8a:58:5f:7f:03:23:96: 21:04:ac:8d:b6:11:35:9d:ea:ad:4a:e0:f6:d1:f3: 7c:44:f0:1d:53:25:59:d5:ee:3b:17:92:d6:d0:6f: 91:25:f8:0e:9e:0c:ef:22:e5:39:53:8e:ad:b6:37: 7e:59:76:6f:86:0d:e5:48:aa:c1:d8:bf:7d:95:b9: df:f8:e1:4a:bb:37:23:47:da:bd:51:96:69:95:7f: 0c:58:0f:ef:0c:a6:d4:f3:6e:d7:f3:84:ba:b3:9f: 76:d1:12:b1:39:4a:27:b5:01:bb:ef:45:39:c8:34: 74:00:65:de:7e:68:dd:58:30:d5:b6:39:15:c3:92: 7d:c3:87:15:18:d5:3c:bd:ad:2e:79:5c:ff:fb:88: b4:de:eb:46:23:81:9b:5a:af:62:35:09:15:85:7d: ff:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:52:12:20:3E:66:30:C0:A3:23:D0:D9:37:3E:5A:31:B8:1F:C8:ED X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:fd:98:8d:10:f1:7f:0d:ca:45:b5:72:ff:10:99:14:5a:51: 2c:74:6f:73:ee:49:16:2e:d0:4f:3c:db:69:2d:12:3c:15:6e: 48:88:77:c4:cd:a4:b6:c8:3f:3f:18:73:76:ce:f1:1f:46:bb: ed:78:25:d4:3f:ee:31:3a:35:7c:27:2f:b7:c0:80:ae:7d:a4: 99:28:6e:d7:72:47:a3:d9:eb:6d:8a:61:3a:2f:e9:53:c7:6d: 14:8f:99:63:88:1d:ae:88:8c:4c:ae:c3:a7:6d:d9:7c:c9:22: ab:fb:8e:ac:04:c7:8f:b0:de:66:5a:a8:bb:23:33:3c:1d:62: 2c:55:e2:04:85:0c:39:9b:83:2b:a6:f6:75:91:6d:44:f2:7e: ff:d0:d0:08:c1:d7:33:de:ee:28:48:14:02:be:af:e6:ee:67: 8b:fb:ee:60:ec:1a:96:0e:d5:1d:aa:09:51:73:4d:19:cf:1f: a0:7f:2c:9d:8a:7d:b2:51:95:6d:2b:29:3a:13:97:81:3b:1d: 29:3e:04:7e:a2:a5:7e:0c:00:11:dd:63:3b:9a:ad:27:5a:39: 69:5f:d9:48:65:6e:a9:05:92:0c:23:1c:59:3f:a9:fe:e3:66: 53:fc:0a:d8:26:ac:49:9b:7d:77:1d:1f:38:17:b5:ce:d5:5a: 8c:14:ce:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjYwNDA0MTUwNDU3WhcNMjYwNDExMTUwNDU3WjAYMRYwFAYD VQQDEw02OWQxMjg5OS1jNzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA67OTS72mqwhhrpqi12qeZ5RYcJ0Svf3cKUNFHE9k+i/FAkEX3gYOGDTQK6Vx kXYQRW2/7VX4YAcchwqAtnxok/vJ1gQTi9muZq2KONYM0EkYp0e2lc8bqm3VyZL+ vS8bPIpYX38DI5YhBKyNthE1neqtSuD20fN8RPAdUyVZ1e47F5LW0G+RJfgOngzv IuU5U46ttjd+WXZvhg3lSKrB2L99lbnf+OFKuzcjR9q9UZZplX8MWA/vDKbU827X 84S6s5920RKxOUontQG770U5yDR0AGXefmjdWDDVtjkVw5J9w4cVGNU8va0ueVz/ +4i03utGI4GbWq9iNQkVhX3/LQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL9SEiA+ ZjDAoyPQ2Tc+WjG4H8jtMB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBFOC80NTc5NkFEMjFEQTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tj dF9VUlI0Z19Oa3BGTUpRVEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACP2YjRDxfw3KRbVy/xCZFFpRLHRvc+5JFi7QTzzbaS0SPBVuSIh3xM2ktsg/ Pxhzds7xH0a77Xgl1D/uMTo1fCcvt8CArn2kmShu13JHo9nrbYphOi/pU8dtFI+Z Y4gdroiMTK7Dp23ZfMkiq/uOrATHj7DeZlqouyMzPB1iLFXiBIUMOZuDK6b2dZFt RPJ+/9DQCMHXM97uKEgUAr6v5u5ni/vuYOwalg7VHaoJUXNNGc8foH8snYp9slGV bSspOhOXgTsdKT4EfqKlfgwAEd1jO5qtJ1o5aV/ZSGVuqQWSDCMcWT+p/uNmU/wK 2CasSZt9dx0fOBe1ztVajBTOyw== -----END CERTIFICATE-----Generated at Mon Apr 6 09:03:06 2026 by rpki-client