$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft File: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft (raw, json) Hash identifier: iMQ7Cer6vOAh4YY9kcfKOGw8186lA4Z1KHMDx+cK/6Y= Subject key identifier: 2A:9E:2D:37:ED:23:34:CB:AD:9F:CB:3C:29:CF:71:09:45:46:82:1B Authority key identifier: 41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 Certificate issuer: /CN=A91E5D61/serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Certificate serial: 1346 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft Manifest number: 489E Signing time: Mon 20 Apr 2026 14:21:10 +0000 Manifest this update: Mon 20 Apr 2026 14:21:09 +0000 Manifest next update: Mon 27 Apr 2026 14:21:09 +0000 Files and hashes: 1: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl (hash: Y/qBNKASqYiF4VN1HSM0M6Trpq+tHoKQ1eLMKr74ljs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 14:21:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4934 (0x1346) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Validity Not Before: Apr 20 14:21:09 2026 GMT Not After : Apr 27 14:21:09 2026 GMT Subject: CN=69e63656-42e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:33:bf:46:7a:55:2d:ea:27:6d:ba:77:11:de: f4:d1:e4:bf:7c:01:54:ad:40:5a:18:1c:87:45:11: 00:02:5d:dd:5c:d0:4d:e0:d8:81:c4:d3:fd:be:86: a0:d7:af:23:98:25:c6:4b:d1:a6:f8:f6:5d:d2:9c: 39:b7:8c:73:a4:ab:05:81:d3:94:65:10:f7:ee:70: 7c:0b:d9:0f:9e:90:9b:3a:d6:d9:46:6f:67:39:04: 67:d2:a7:e0:7f:53:0e:bc:af:e8:45:f8:2a:25:77: 63:8c:6e:50:50:46:1d:2a:6c:e7:11:75:f6:c9:ba: c1:0a:6f:7d:b8:f9:20:62:ee:55:32:7c:21:a0:91: ba:88:38:d4:c7:2b:15:36:d3:9a:f5:0a:0a:76:9b: d9:b4:8e:b0:52:5c:41:59:86:a8:57:39:1d:5b:9a: 55:42:ea:c9:8e:c7:b2:c4:e7:59:95:ff:7c:6a:ee: 4d:2c:0c:02:9e:85:bd:6b:28:26:bf:62:fc:6d:1e: c5:88:95:81:c8:93:c3:70:7a:8f:17:e5:0e:dc:61: be:59:1e:d3:35:8b:bf:85:b8:91:f1:e0:49:81:8c: 8f:ed:dd:3e:0b:ac:7e:7d:fb:c4:14:d7:7a:a5:29: b0:87:09:54:72:bc:1b:09:cc:94:92:a5:e0:c2:aa: 27:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:9E:2D:37:ED:23:34:CB:AD:9F:CB:3C:29:CF:71:09:45:46:82:1B X509v3 Authority Key Identifier: keyid:41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:24:ec:62:88:73:4f:b9:54:1b:33:36:37:0b:4b:d1:c9:2c: 39:e2:fa:98:d2:c2:73:68:0b:92:e5:95:3c:2e:96:b2:8e:bb: 29:57:2c:9d:63:03:33:02:61:07:e0:b9:d2:d0:fa:9f:86:07: 40:c9:d2:6d:d1:1e:5c:63:bd:2b:81:b0:de:de:cf:a4:89:6e: 9a:b6:1a:9a:93:70:3b:a0:ff:30:95:41:95:be:37:91:06:9b: 31:91:60:8a:70:41:11:b7:84:f1:c7:cc:ec:ab:e2:4c:24:93: cc:33:48:00:f3:64:d2:99:fd:8e:2f:db:80:35:99:bb:32:e2: 89:76:41:66:0a:ae:5e:23:54:89:5a:82:58:c1:a2:ca:e3:0c: 67:72:d3:b8:f4:fb:2d:6e:6b:e1:59:d7:01:51:66:9d:96:c3: 5c:de:41:d2:4a:3e:f3:83:c9:ea:34:0d:a6:7e:64:03:6b:0b: e1:45:32:28:2b:17:05:83:e1:37:16:9c:5a:42:0c:da:c8:a1: d9:28:22:4d:ba:38:53:a5:9b:82:cf:56:c2:aa:39:95:57:8b: 17:df:91:d4:83:3a:a9:f0:62:44:8b:e6:9b:9f:28:b2:a7:c7: c4:d2:06:a2:06:75:7e:a2:2a:8e:02:de:30:7d:d5:11:77:6d: 81:2a:04:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDQxNkQ2Q0Q2MDM5MEZCN0M5NkVENzlENzhDRTc2RjU0 QUZDRjQ0NTgwHhcNMjYwNDIwMTQyMTA5WhcNMjYwNDI3MTQyMTA5WjAYMRYwFAYD VQQDEw02OWU2MzY1Ni00MmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkzO/RnpVLeonbbp3Ed700eS/fAFUrUBaGByHRREAAl3dXNBN4NiBxNP9voag 168jmCXGS9Gm+PZd0pw5t4xzpKsFgdOUZRD37nB8C9kPnpCbOtbZRm9nOQRn0qfg f1MOvK/oRfgqJXdjjG5QUEYdKmznEXX2ybrBCm99uPkgYu5VMnwhoJG6iDjUxysV NtOa9QoKdpvZtI6wUlxBWYaoVzkdW5pVQurJjseyxOdZlf98au5NLAwCnoW9aygm v2L8bR7FiJWByJPDcHqPF+UO3GG+WR7TNYu/hbiR8eBJgYyP7d0+C6x+ffvEFNd6 pSmwhwlUcrwbCcyUkqXgwqonAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCqeLTft IzTLrZ/LPCnPcQlFRoIbMB8GA1UdIwQYMBaAFEFtbNYDkPt8lu1514znb1Svz0RY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8yQTdDN0Q5ODFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0zeVc3WG5Yak9kdlZLX1BS RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FXMXMxZ09RLTN5VzdYblhqT2R2VktfUFJGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8yQTdDN0Q5ODFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0z eVc3WG5Yak9kdlZLX1BSRmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYCTsYohzT7lUGzM2NwtL0cksOeL6mNLCc2gLkuWVPC6Wso67KVcsnWMDMwJh B+C50tD6n4YHQMnSbdEeXGO9K4Gw3t7PpIlumrYampNwO6D/MJVBlb43kQabMZFg inBBEbeE8cfM7KviTCSTzDNIAPNk0pn9ji/bgDWZuzLiiXZBZgquXiNUiVqCWMGi yuMMZ3LTuPT7LW5r4VnXAVFmnZbDXN5B0ko+84PJ6jQNpn5kA2sL4UUyKCsXBYPh NxacWkIM2sih2SgiTbo4U6Wbgs9Wwqo5lVeLF9+R1IM6qfBiRIvmm58osqfHxNIG ogZ1fqIqjgLeMH3VEXdtgSoEqQ== -----END CERTIFICATE-----Generated at Tue Apr 21 22:53:40 2026 by rpki-client