$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft File: QxsKSDX89paz7NM1klqOE2EM0Tc.mft (raw, json) Hash identifier: zF9gqP8c8IZWq5RO9CvIx3dr9NNB2IqyGppHEAozr0U= Subject key identifier: 4B:92:28:19:D3:68:66:4A:D7:AC:C6:73:4A:DC:4A:F8:9C:7A:4A:08 Authority key identifier: 43:1B:0A:48:35:FC:F6:96:B3:EC:D3:35:92:5A:8E:13:61:0C:D1:37 Certificate issuer: /CN=A91BE89F/serialNumber=431B0A4835FCF696B3ECD335925A8E13610CD137 Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft Manifest number: 0143 Signing time: Thu 21 May 2026 05:25:50 +0000 Manifest this update: Thu 21 May 2026 05:25:50 +0000 Manifest next update: Thu 28 May 2026 05:25:50 +0000 Files and hashes: 1: QxsKSDX89paz7NM1klqOE2EM0Tc.crl (hash: CZfjkm4ur3SeHGrIs+wpBDQgTCvI59OXmkppxMN4ZQk=) 2: 49ADB44C6DCC11EF8BE2A566C4F9AE02.roa (hash: /4+lF6tlUt2UR6b5tRfzTFnRtlIHVlDaWV39Y4Dm8cI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.crl rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 05:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE89F, serialNumber=431B0A4835FCF696B3ECD335925A8E13610CD137 Validity Not Before: May 21 05:25:50 2026 GMT Not After : May 28 05:25:50 2026 GMT Subject: CN=6a0e975e-bb6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4a:0e:27:a8:a2:47:99:36:38:7c:1a:d7:76: 97:78:a0:38:ac:33:60:0c:00:40:e0:2c:58:0a:cf: c9:6e:aa:f9:09:cb:44:34:dc:82:28:54:5a:15:ab: 3c:d7:b2:b5:76:d8:7c:4f:5f:a7:e0:b4:17:7b:12: 24:ee:51:92:78:e2:11:87:b2:24:32:bd:38:c5:d4: c9:40:3b:9d:e8:a5:6b:d0:38:a4:f8:9d:db:e0:c0: 14:02:1b:08:a3:5f:3e:21:77:3d:07:c8:89:b2:f7: 43:ef:4e:6a:6d:17:96:95:b2:ba:44:d3:06:ae:b1: 25:18:dd:e0:33:48:c3:02:d4:96:8e:0e:b9:76:60: aa:dc:13:39:6a:77:e2:4c:69:ca:0e:03:fc:e5:6b: 52:26:06:06:67:f5:74:cb:c7:81:09:ea:d9:ce:85: f9:08:7a:02:f2:71:b3:ca:76:93:61:6a:43:df:c4: 62:a3:35:ba:61:2c:83:4c:5f:2e:4e:f0:e8:93:06: 62:77:e9:1e:35:d4:41:a5:b3:63:13:ac:4f:cd:53: 4f:00:d1:0c:d6:4a:a9:9f:a4:75:9e:80:d2:cd:0e: 5d:ea:67:9d:38:c8:9b:ed:f6:27:b8:99:51:87:87: f8:28:d1:f4:5f:43:b8:77:59:d6:d4:d8:9d:ec:ec: df:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:92:28:19:D3:68:66:4A:D7:AC:C6:73:4A:DC:4A:F8:9C:7A:4A:08 X509v3 Authority Key Identifier: keyid:43:1B:0A:48:35:FC:F6:96:B3:EC:D3:35:92:5A:8E:13:61:0C:D1:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:d0:09:2f:42:9b:1b:17:8f:e7:3d:30:27:90:1c:65:ed:3e: fd:ad:4a:39:45:a1:16:7e:9c:3e:d4:89:31:36:a3:61:0f:19: 4b:7c:90:6a:48:64:b5:51:0b:26:20:25:cd:b4:fe:a2:af:74: 43:30:77:0f:2c:c4:0a:88:09:28:eb:5b:dc:4c:2c:76:3d:24: 57:0a:f0:6d:a3:c7:a8:7c:c0:91:1f:41:fd:1b:08:66:97:00: 46:62:03:0d:3d:22:9c:6a:26:d2:bd:4f:21:b5:b9:63:a2:fc: f0:4a:a4:0d:db:98:40:b6:5b:94:23:3b:39:94:31:cd:5b:a2: f5:de:bd:a8:e0:a4:df:27:98:fb:b7:93:84:32:84:d0:02:ef: a8:9a:ff:6c:85:e4:a0:d0:f7:7e:d8:d3:3e:7e:dc:99:d8:6d: 86:0b:f1:96:a6:a5:b1:79:a4:86:c0:d5:8f:b1:c3:e4:cc:9d: 06:9d:07:55:c0:7d:f3:39:98:65:18:c3:06:84:05:50:67:41: de:ab:66:9a:18:19:71:19:a8:09:b2:94:9b:85:58:2e:8f:f6: b3:0f:f5:5a:63:79:66:5c:21:a5:c7:d7:3f:c8:7b:cb:74:dd: 59:61:3e:45:72:1a:e9:58:39:3d:b5:58:83:bb:00:84:3c:c8: a4:29:b7:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkU4OUYxMTAvBgNVBAUTKDQzMUIwQTQ4MzVGQ0Y2OTZCM0VDRDMzNTkyNUE4RTEz NjEwQ0QxMzcwHhcNMjYwNTIxMDUyNTUwWhcNMjYwNTI4MDUyNTUwWjAYMRYwFAYD VQQDEw02YTBlOTc1ZS1iYjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EoOJ6iiR5k2OHwa13aXeKA4rDNgDABA4CxYCs/Jbqr5CctENNyCKFRaFas8 17K1dth8T1+n4LQXexIk7lGSeOIRh7IkMr04xdTJQDud6KVr0Dik+J3b4MAUAhsI o18+IXc9B8iJsvdD705qbReWlbK6RNMGrrElGN3gM0jDAtSWjg65dmCq3BM5anfi TGnKDgP85WtSJgYGZ/V0y8eBCerZzoX5CHoC8nGzynaTYWpD38RiozW6YSyDTF8u TvDokwZid+keNdRBpbNjE6xPzVNPANEM1kqpn6R1noDSzQ5d6medOMib7fYnuJlR h4f4KNH0X0O4d1nW1Nid7OzfGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEuSKBnT aGZK16zGc0rcSvicekoIMB8GA1UdIwQYMBaAFEMbCkg1/PaWs+zTNZJajhNhDNE3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTg5Ri9BRkZEMjE3MDZE Q0IxMUVGOUIzOUI4NjVDNEY5QUUwMi9ReHNLU0RYODlwYXo3Tk0xa2xxT0UyRU0w VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F4c0tTRFg4OXBhejdOTTFrbHFPRTJFTTBUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTg5Ri9BRkZEMjE3MDZEQ0IxMUVGOUIzOUI4NjVDNEY5QUUwMi9ReHNLU0RYODlw YXo3Tk0xa2xxT0UyRU0wVGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbtAJL0KbGxeP5z0wJ5AcZe0+/a1KOUWhFn6cPtSJMTajYQ8ZS3yQakhktVEL JiAlzbT+oq90QzB3DyzECogJKOtb3Ewsdj0kVwrwbaPHqHzAkR9B/RsIZpcARmID DT0inGom0r1PIbW5Y6L88EqkDduYQLZblCM7OZQxzVui9d69qOCk3yeY+7eThDKE 0ALvqJr/bIXkoND3ftjTPn7cmdhthgvxlqalsXmkhsDVj7HD5MydBp0HVcB98zmY ZRjDBoQFUGdB3qtmmhgZcRmoCbKUm4VYLo/2sw/1WmN5ZlwhpcfXP8h7y3TdWWE+ RXIa6Vg5PbVYg7sAhDzIpCm30Q== -----END CERTIFICATE-----Generated at Thu May 21 10:24:21 2026 by rpki-client