$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft File: QxsKSDX89paz7NM1klqOE2EM0Tc.mft (raw, json) Hash identifier: fFUg/jFCnTIgYvhuR8AXNlLm9L3VGkR/o0gQJnwkuvA= Subject key identifier: B7:5C:71:D2:5A:95:8A:22:A3:79:28:23:87:7A:57:E1:F4:BB:9F:2D Authority key identifier: 43:1B:0A:48:35:FC:F6:96:B3:EC:D3:35:92:5A:8E:13:61:0C:D1:37 Certificate issuer: /CN=A91BE89F/serialNumber=431B0A4835FCF696B3ECD335925A8E13610CD137 Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft Manifest number: 012C Signing time: Sun 05 Apr 2026 05:02:29 +0000 Manifest this update: Sun 05 Apr 2026 05:02:29 +0000 Manifest next update: Sun 12 Apr 2026 05:02:29 +0000 Files and hashes: 1: QxsKSDX89paz7NM1klqOE2EM0Tc.crl (hash: d1QfssDRElwl7D6W8HYr4jbZiUVNcGZL4eY/6AbLrXs=) 2: 49ADB44C6DCC11EF8BE2A566C4F9AE02.roa (hash: /4+lF6tlUt2UR6b5tRfzTFnRtlIHVlDaWV39Y4Dm8cI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.crl rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE89F, serialNumber=431B0A4835FCF696B3ECD335925A8E13610CD137 Validity Not Before: Apr 5 05:02:29 2026 GMT Not After : Apr 12 05:02:29 2026 GMT Subject: CN=69d1ece5-ab18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f5:9b:b6:e1:98:d1:8f:d3:ba:a2:1c:22:bb: 83:3c:3d:fd:3e:17:9a:69:bd:5e:be:79:96:82:f3: 3a:f5:20:00:85:36:b7:2a:a3:9b:2a:41:b2:fa:32: 06:8f:e1:92:28:6c:49:68:3c:01:38:87:f7:5e:83: 8c:ed:35:2e:59:1a:de:75:28:2d:e8:03:18:6c:05: 94:98:2e:f9:c9:95:d9:04:fb:3b:49:5f:d1:2c:ca: 34:87:73:8b:3f:fa:e8:6c:53:5d:02:dc:86:20:d6: 09:69:ff:01:f8:90:6b:d2:70:f0:f5:30:b5:37:cb: 18:1d:bd:48:0e:ee:d6:80:eb:84:8c:0a:80:91:fd: 62:91:c8:f0:c2:70:68:93:36:85:10:cd:0d:f5:05: 57:98:45:03:1c:09:5a:96:8b:b0:3f:04:3d:0b:c0: 2e:b8:96:2e:61:b6:ce:98:e7:2f:c3:44:24:46:bc: 26:fe:49:a0:f8:f7:40:84:a2:0d:e7:75:4c:24:0f: ac:5f:d8:a7:53:8b:71:97:2c:7f:96:bf:a4:a0:8c: 4a:69:1e:bb:32:81:42:22:de:94:0d:6d:1e:3a:c3: 7a:25:c3:90:75:33:f9:19:9a:cd:43:5b:3f:19:8a: 3a:af:e4:bf:54:95:2a:99:ab:b9:e9:95:fb:d0:50: cc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:5C:71:D2:5A:95:8A:22:A3:79:28:23:87:7A:57:E1:F4:BB:9F:2D X509v3 Authority Key Identifier: keyid:43:1B:0A:48:35:FC:F6:96:B3:EC:D3:35:92:5A:8E:13:61:0C:D1:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:22:48:1b:eb:06:50:26:ba:bf:90:df:73:a6:c7:58:63:e5: e2:4e:33:79:c0:ef:48:fe:78:d5:6d:5e:a1:f4:4e:9e:b6:26: 17:2f:86:0f:1a:43:8a:7f:7f:8b:4a:07:e3:7d:93:94:56:7f: 72:72:71:b5:7f:e4:2e:ac:ea:c6:24:1e:55:a3:aa:f5:9d:1a: c0:91:28:dd:95:37:24:18:53:dc:a3:ec:2f:36:2b:e5:aa:f6: ef:e0:56:c6:99:f7:f2:36:e2:11:a4:d3:90:e5:a4:0b:20:e3: 3f:31:1e:f2:02:6d:1b:83:df:33:f0:41:bc:16:6a:3d:39:1a: bb:7e:fb:dd:ce:62:d1:de:78:32:92:e6:a3:76:14:83:71:69: 5b:26:7c:72:31:2d:68:6d:7b:1b:d8:a0:77:71:ec:ea:03:28: 92:af:33:91:f5:10:9d:23:c8:dc:63:0a:ec:ff:5e:3e:0e:65: 3f:52:b0:ca:89:52:0e:05:5c:5d:f1:45:c5:d2:0e:8c:8a:d6: 23:6d:f0:1c:d3:ff:27:b1:bf:19:8e:ce:6e:2c:92:19:0b:a9: 6a:cb:3d:13:81:29:78:5c:77:59:a6:06:8c:1c:9f:14:45:8a: dc:ec:69:0a:5e:49:61:ee:aa:ed:e5:f9:3b:04:5a:41:0c:a1: 80:da:fe:4f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkU4OUYxMTAvBgNVBAUTKDQzMUIwQTQ4MzVGQ0Y2OTZCM0VDRDMzNTkyNUE4RTEz NjEwQ0QxMzcwHhcNMjYwNDA1MDUwMjI5WhcNMjYwNDEyMDUwMjI5WjAYMRYwFAYD VQQDEw02OWQxZWNlNS1hYjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/WbtuGY0Y/TuqIcIruDPD39Pheaab1evnmWgvM69SAAhTa3KqObKkGy+jIG j+GSKGxJaDwBOIf3XoOM7TUuWRredSgt6AMYbAWUmC75yZXZBPs7SV/RLMo0h3OL P/robFNdAtyGINYJaf8B+JBr0nDw9TC1N8sYHb1IDu7WgOuEjAqAkf1ikcjwwnBo kzaFEM0N9QVXmEUDHAlalouwPwQ9C8AuuJYuYbbOmOcvw0QkRrwm/kmg+PdAhKIN 53VMJA+sX9inU4txlyx/lr+koIxKaR67MoFCIt6UDW0eOsN6JcOQdTP5GZrNQ1s/ GYo6r+S/VJUqmau56ZX70FDMbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLdccdJa lYoio3koI4d6V+H0u58tMB8GA1UdIwQYMBaAFEMbCkg1/PaWs+zTNZJajhNhDNE3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTg5Ri9BRkZEMjE3MDZE Q0IxMUVGOUIzOUI4NjVDNEY5QUUwMi9ReHNLU0RYODlwYXo3Tk0xa2xxT0UyRU0w VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F4c0tTRFg4OXBhejdOTTFrbHFPRTJFTTBUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTg5Ri9BRkZEMjE3MDZEQ0IxMUVGOUIzOUI4NjVDNEY5QUUwMi9ReHNLU0RYODlw YXo3Tk0xa2xxT0UyRU0wVGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFyJIG+sGUCa6v5Dfc6bHWGPl4k4zecDvSP541W1eofROnrYmFy+GDxpDin9/ i0oH432TlFZ/cnJxtX/kLqzqxiQeVaOq9Z0awJEo3ZU3JBhT3KPsLzYr5ar27+BW xpn38jbiEaTTkOWkCyDjPzEe8gJtG4PfM/BBvBZqPTkau3773c5i0d54MpLmo3YU g3FpWyZ8cjEtaG17G9igd3Hs6gMokq8zkfUQnSPI3GMK7P9ePg5lP1KwyolSDgVc XfFFxdIOjIrWI23wHNP/J7G/GY7ObiySGQupass9E4EpeFx3WaYGjByfFEWK3Oxp Cl5JYe6q7eX5OwRaQQyhgNr+Tw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:16 2026 by rpki-client