$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.mft File: QGOUHymkcXnuj_UfMB3x6kEfvTg.mft (raw, json) Hash identifier: HjuprEmvBdNcyy3vuIrtgcclxmqUzEybxpIuyIUXQ98= Subject key identifier: 60:7B:11:67:AC:5E:0E:E6:19:78:EC:C2:CB:40:72:FB:9E:E8:B2:81 Authority key identifier: 40:63:94:1F:29:A4:71:79:EE:8F:F5:1F:30:1D:F1:EA:41:1F:BD:38 Certificate issuer: /CN=A91E4700/serialNumber=4063941F29A47179EE8FF51F301DF1EA411FBD38 Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGOUHymkcXnuj_UfMB3x6kEfvTg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.mft Manifest number: 6B Signing time: Sun 05 Apr 2026 07:29:48 +0000 Manifest this update: Sun 05 Apr 2026 07:29:47 +0000 Manifest next update: Sun 12 Apr 2026 07:29:47 +0000 Files and hashes: 1: QGOUHymkcXnuj_UfMB3x6kEfvTg.crl (hash: dRHf3YaYJDNLI8BBA7+KqeqBExj4QCoPIt3BpK3bxME=) 2: 6A797774BDDF11F0B524BD85C4F9AE02.roa (hash: 8w/0YJBW6UK1DI6hNcDAiSGDGO9AI7vRgBVhPpRorOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.crl rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGOUHymkcXnuj_UfMB3x6kEfvTg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 07:29:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4700, serialNumber=4063941F29A47179EE8FF51F301DF1EA411FBD38 Validity Not Before: Apr 5 07:29:47 2026 GMT Not After : Apr 12 07:29:47 2026 GMT Subject: CN=69d20f6b-db5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4e:bd:19:ac:48:94:56:b9:a2:9b:dc:87:ae: b8:50:1c:f3:61:86:6c:39:51:d7:f9:4b:16:63:01: a6:86:1f:b7:3f:3c:2c:09:57:db:a0:79:9a:0e:5c: 72:3f:fe:53:16:ae:3e:d2:ef:a9:d0:03:04:71:b9: 5e:71:89:da:e8:d6:00:4a:7c:83:68:26:b1:e7:55: 6b:6e:0d:dc:56:cb:fa:ca:6c:a0:3e:bd:63:de:1f: e7:81:29:fb:89:79:38:5a:2a:3c:1a:2f:fc:ec:c7: de:14:53:ad:96:6f:d7:f8:00:8a:79:2d:52:fc:e0: 8e:42:0d:b8:c7:1d:1d:bb:40:d0:5e:57:aa:8b:e8: 3b:a8:61:ed:a1:64:ae:ca:71:41:86:12:42:40:8d: aa:5c:25:39:93:8d:5b:b8:9a:bd:5c:8d:f1:76:31: 3c:a9:a3:65:c8:25:6c:06:9f:e0:02:02:10:22:ac: 74:16:62:34:d8:6a:6d:65:a1:d3:a1:58:a3:36:96: c2:f3:f1:eb:f5:ec:08:b9:ad:6a:f9:00:94:55:40: b3:fb:ef:d7:df:a8:e2:09:d7:b7:97:c4:89:b1:75: 75:95:a3:14:8e:0b:53:4e:99:62:8a:3b:72:08:d1: 23:7c:48:18:53:16:de:d7:49:9f:09:a4:b1:25:93: 64:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:7B:11:67:AC:5E:0E:E6:19:78:EC:C2:CB:40:72:FB:9E:E8:B2:81 X509v3 Authority Key Identifier: keyid:40:63:94:1F:29:A4:71:79:EE:8F:F5:1F:30:1D:F1:EA:41:1F:BD:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGOUHymkcXnuj_UfMB3x6kEfvTg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:b4:ad:66:c3:1f:fe:52:5f:55:4f:42:cb:a5:92:01:c0:b6: 75:01:93:56:53:05:d9:5a:e8:b1:a4:d0:67:fe:4f:e8:2c:40: 82:11:f6:67:7d:a6:7f:a2:ba:29:b9:5f:70:f6:44:21:d4:23: c0:01:a3:51:43:bf:eb:29:9a:8c:b8:02:37:bc:5d:a0:84:cf: a0:39:4b:9e:34:9e:19:29:85:be:00:a0:17:63:14:12:e3:28: 7f:7e:00:91:2b:f2:ed:56:f7:02:2f:b9:d5:ba:3c:59:2f:b9: 4a:45:ac:72:36:bd:36:e4:29:99:13:9f:13:92:95:9d:7e:5c: 56:db:ba:47:f6:53:d9:57:c6:3b:0d:f8:64:f4:96:3f:1a:a0: 86:81:57:ef:06:8a:d9:bc:cd:83:7a:98:ff:94:53:d5:1f:87: 09:16:d4:a7:99:df:ba:00:fd:e7:f4:0e:7c:52:55:e1:9e:d3: cd:9a:0c:4f:7f:04:74:d3:d3:fd:1a:c1:78:6e:87:41:5f:80: 49:68:41:6e:a4:10:08:0a:1c:29:ea:0b:ed:f7:ca:2d:2d:25: f6:74:0e:9d:1f:f5:7b:e2:34:6b:a3:d8:52:f4:26:0d:7b:1c: 81:0b:f5:33:57:a5:7a:8c:fb:7c:60:ee:23:24:81:26:ab:f7: aa:71:76:a2 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NDcwMDExMC8GA1UEBRMoNDA2Mzk0MUYyOUE0NzE3OUVFOEZGNTFGMzAxREYxRUE0 MTFGQkQzODAeFw0yNjA0MDUwNzI5NDdaFw0yNjA0MTIwNzI5NDdaMBgxFjAUBgNV BAMTDTY5ZDIwZjZiLWRiNWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDITr0ZrEiUVrmim9yHrrhQHPNhhmw5Udf5SxZjAaaGH7c/PCwJV9ugeZoOXHI/ /lMWrj7S76nQAwRxuV5xidro1gBKfINoJrHnVWtuDdxWy/rKbKA+vWPeH+eBKfuJ eThaKjwaL/zsx94UU62Wb9f4AIp5LVL84I5CDbjHHR27QNBeV6qL6DuoYe2hZK7K cUGGEkJAjapcJTmTjVu4mr1cjfF2MTypo2XIJWwGn+ACAhAirHQWYjTYam1lodOh WKM2lsLz8ev17Ai5rWr5AJRVQLP779ffqOIJ17eXxImxdXWVoxSOC1NOmWKKO3II 0SN8SBhTFt7XSZ8JpLElk2T3AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUYHsRZ6xe DuYZeOzCy0By+57osoEwHwYDVR0jBBgwFoAUQGOUHymkcXnuj/UfMB3x6kEfvTgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0NzAwLzQyQ0MwRDUwQjNC QjExRjBBOTMxQkE2RkM0RjlBRTAyL1FHT1VIeW1rY1hudWpfVWZNQjN4NmtFZnZU Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUUdPVUh5bWtjWG51al9VZk1CM3g2a0VmdlRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 NzAwLzQyQ0MwRDUwQjNCQjExRjBBOTMxQkE2RkM0RjlBRTAyL1FHT1VIeW1rY1hu dWpfVWZNQjN4NmtFZnZUZy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAVtK1mwx/+Ul9VT0LLpZIBwLZ1AZNWUwXZWuixpNBn/k/oLECCEfZnfaZ/orop uV9w9kQh1CPAAaNRQ7/rKZqMuAI3vF2ghM+gOUueNJ4ZKYW+AKAXYxQS4yh/fgCR K/LtVvcCL7nVujxZL7lKRaxyNr025CmZE58TkpWdflxW27pH9lPZV8Y7Dfhk9JY/ GqCGgVfvBorZvM2Depj/lFPVH4cJFtSnmd+6AP3n9A58UlXhntPNmgxPfwR009P9 GsF4bodBX4BJaEFupBAIChwp6gvt98otLSX2dA6dH/V74jRro9hS9CYNexyBC/Uz V6V6jPt8YO4jJIEmq/eqcXai -----END CERTIFICATE-----Generated at Mon Apr 6 09:54:41 2026 by rpki-client